Keycloak Beta-1 发布，SSO 集成解决方案

Keycloak 是一个为浏览器和 RESTful Web 服务提供 SSO 的集成。基于 OAuth 2.0 和 JSON Web Token(JWT) 规范。最开始是面向 JBoss 和 Wildfly 通讯，但已经计划为其他诸如 Tomcat、Jetty、Node.js、Rails、Grails 等环境提供解决方案。

Keycloak Beta-1 发布，此版本改进内容如下：

• LDAP/Active Directory integration built on Picketlink.  Thanks Marek!

• User Session management – can now view login IP address and which applications and oauth clients have open tokens.  Works with any type of app too.  Can view and manage sessions through user account pages or admin console

• Audit log for important events.  Integration with admin console and ability to receive emails on certain events.

• Account log viewable in user account management pages

• Export database.  Allows you to export a full dump of keycloak database into an encrypted file.  Will help out tremendously to migrate between Keycloak versions.

• Authentication SPI.  Allows you to plug in different mechanisms to retrieve and authenticate users.

• Theme support for the admin console and any sent email.

• Per-realm admin console.  You can now designate a user within a realm that is an admin of that realm.

• Documented the Admin REST API finally.  (Docs still kinda suck here)

• CORS support for Admin REST API

• Improvements in Javascript adapter.  Including OpenID Connect session iframe style for single-sign out and support for Cordova.

• Support for relative URLs when configuring admin console

• Server configuration file

• Social Only Logins

• Installed application adapter

• Expanded the number of example projects

下载和更多文档内容请看这里。

这是最后一个主要特性发布版本，以后将会集中在性能，集群，安全监察，测试，文档和可用性方面的改进，1.0 Final 版本计划在七月推出。更多内容请看发行说明。