A custom external identity provider

[Cristian Gagliardi]

Hi all,

I'm using keycloak as indentity broker for a web application, and I should use an alternative login method through an external identity provider, with  the own login form reached with a browser redirection.

But... unfortunately the external idp doesn't support a standard protocol like OpenID connect, so I need to implement a new connection into the "Identity Providers" section.

Is there  a way to reach the goal, e.g. extending or implementing some components?

Thanks,

Cristian.

[Tobias Häfner]

Hallo Cristian,

you have to develop your own keycloak plugin for this issue. See server developer guide on how to this.

If it is not a standard protocol like SAML and OIDC a starting point would be  to inherit from the class org.keycloak.broker.provider.AbstractIdentityProvider.

Study the other implementations of that class to see how they work. Then you will get the job done.

Also you have to write your own UI if you have any configuration parameter. Just copy one of the existing files and create your own theme.

Best regards

Tobias