[Koha-devel] Keycloak as Identity Provider using Koha's users

David Cook dcook at prosentient.com.au
Mon Oct 23 00:47:36 CEST 2023 

Sounds good. Thanks, Paul!

 

David Cook

Senior Software Engineer

Prosentient Systems

Suite 7.03

6a Glen St

Milsons Point NSW 2061

Australia

 

Office: 02 9212 0899

Online: 02 8005 0595

 

From: Paul Derscheid <paul.derscheid at lmscloud.de> 
Sent: Friday, October 20, 2023 8:07 PM
To: David Cook <dcook at prosentient.com.au>; 'Koha Devel' <koha-devel at lists.koha-community.org>
Cc: 'Renvoize, Martin' <martin.renvoize at ptfs-europe.com>
Subject: Re: Keycloak as Identity Provider using Koha's users

 

Hi David,

thanks for putting so much work into this. I will try to use it to for a third party integration a little down the road.
I'll share my experience with you if you're interested (or write an issue if something is broken :D).

Thanks again

Paul

On 10/19/23 03:01, David Cook wrote:

Hi all,

 

I’ve posted the Keycloak extension for using Koha’s user database as Keycloak’s user datastore: https://gitlab.com/minusdavid/keycloak-user-storage-koha

 

This effectively allows you to use Koha (version 22.11.03 and upwards) as an Identity Provider – mediated via Keycloak (version 20 and up). 

 

So you can set up Koha to use Keycloak via SAML or OIDC and then have other third-party services like EBSCO EDS using the Keycloak, and thus you have SSO across the board while the users are fully managed through Koha, which is pretty cool.

 

At some point, I might look into how I can host the built JAR on Gitlab as well, but I’ve provided the command to build the JAR using Docker, so it is very easy to do even if you’re not a Java expert. 

 

Let me know if you need any help trying it out.

 

David Cook

Senior Software Engineer

Prosentient Systems

Suite 7.03

6a Glen St

Milsons Point NSW 2061

Australia

 

Office: 02 9212 0899

Online: 02 8005 0595

 

-- 
LMSCloud GmbH
Paul Derscheid - Software Engineer
Bismarckstr. 3 -  D-72764 Reutlingen
m +49 174 2436308
e paul.derscheid at lmscloud.de <mailto:paul.derscheid at lmscloud.de> 
w www.lmscloud.de <http://www.lmscloud.de> 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.koha-community.org/pipermail/koha-devel/attachments/20231023/c93c4c1d/attachment.htm>

More information about the Koha-devel mailing list