SSO with Keycloak
Configure SSO using OpenID Connect and Keycloak
This feature is temporarily unavailable
Please check back for updates or follow the progress via the related GitHub issue here.
OpenID Connect
To become familiar with OpenID Connect in Budibase, see: OpenID Connect
Configuration
Add a Client
Visit the 'Clients' pane on the left side of your Keycloak admin console and click the 'Create client' button.
Give your new client an ID and select 'OpenID Connect' from the dropdown. Then click next. (If you have a client already created, bypass this step.)
Capability config
In the Capability config screen, toggle on 'Client authentication'. (This allows you to grab your secret key, which you will use within Budibase later.) Click the 'next' button.
Next add the Callback URL to the 'Valid Redirect URIs' field ands then click 'Save'
Find your configuration details
Client ID
The Client ID field in Budibase should be the same ID as you gave the Client in Keycloak earlier.
Client Secret
You can find the Client Secret from the Credentials tab in the Client Configuration screen
Configuration URL
Visit the 'Realms settings' pane on the left hand side of your Keycloak admin console. Click into the general tab at the top of this page. Scroll down to the bottom and then click on the OpenID Endpoint Configuration link and copy the URL that opens.
Updated 6 days ago