Add keycloak auth (parse-community#703)

* Add keycloak referering to PR #6376 in parse-server * Update _includes/parse-server/third-party-auth.md Co-Authored-By: Tom Fox <13188249+TomWFox@users.noreply.github.com> * Update _includes/parse-server/third-party-auth.md Co-Authored-By: Tom Fox <13188249+TomWFox@users.noreply.github.com> * Update _includes/parse-server/third-party-auth.md Co-Authored-By: Tom Fox <13188249+TomWFox@users.noreply.github.com> * Update _includes/parse-server/third-party-auth.md Co-Authored-By: Tom Fox <13188249+TomWFox@users.noreply.github.com> * Update _includes/parse-server/third-party-auth.md Co-Authored-By: Tom Fox <13188249+TomWFox@users.noreply.github.com> Co-authored-by: Tom Fox <13188249+TomWFox@users.noreply.github.com>
dblythy · Nov 2, 2020 · ca9e2f3 · ca9e2f3
1 parent 37498c6
commit ca9e2f3
Showing 1 changed file with 31 additions and 0 deletions.
diff --git a/_includes/parse-server/third-party-auth.md b/_includes/parse-server/third-party-auth.md
@@ -9,6 +9,7 @@ Parse Server supports 3rd party authentication with
 * Instagram
 * Janrain Capture
 * Janrain Engage
+* Keycloak
 * LDAP
 * LinkedIn
 * Meetup
@@ -161,6 +162,36 @@ Google oauth supports validation of id_token's and access_token's.
 }
 ```
 
+### Keycloak `authData`
+
+```js
+{
+  "keycloak": {
+    "access_token": "access token from keycloak JS client authentication",
+    "id": "the id retrieved from client authentication in Keycloak",
+    "roles": ["the roles retrieved from client authentication in Keycloak"],
+    "groups": ["the groups retrieved from client authentication in Keycloak"]
+  }
+}
+```
+
+The authentication module will test if the authData is the same as the userinfo oauth call, by comparing the attributes.
+
+Copy the JSON config file generated on Keycloak ([tutorial](https://www.keycloak.org/docs/latest/securing_apps/index.html#_javascript_adapter))
+and paste it inside of a folder (Ex.: `auth/keycloak.json`) in your server.
+
+The options passed to Parse Server:
+
+```js
+{
+  auth: {
+    keycloak: {
+      config: require(`./auth/keycloak.json`) // Required
+    }
+  }
+}
+```
+
 ### Configuring Parse Server for LDAP
 
 The [LDAP](https://en.wikipedia.org/wiki/Lightweight_Directory_Access_Protocol) module can check if a