A technical Q&A around censhare WP, external authentication, and Keycloak topics.
With censhare WP, censhare offers increased performance combined with lower latency for the web client. In conjunction with the external authentication options introduced with Keycloak support, these are key benefits that take censhare to the next level.
An overview of the components and architecture of censhare WP.
censhare WP uses Webpack technology and requires Keycloak for identity management. Follow this tutorial to set up censhare WP.
Initial configuration of censhare WP, including Webpack and the required Keycloak settings.
Monitor and log the censhare WP and Keycloak related services.
With Keycloak, censhare provides an external authentication solution that can integrate existing authentication methods. Keycloak is available in combination with censhare WP.
- Install Keycloak — Learn how to install a fresh Keycloak instance or use an existing one with censhare WP.
- Upgrade Keycloak — Learn about the steps to upgrade Keycloak to a later version.
- Configure Keycloak for external authentication — censhare WP requires external authentication using Keycloak as identity broker. Keycloak runs on a dedicated authentication server. Learn how to configure Keycloak to use it with censhare WP.
- Configure Keycloak with censhare standard login — Learn how to add users to Keycloak. Keycloak can be configured with the censhare standard login. Keycloak verifies the user credentials and authenticates the users. Users can log into censhare Web, the censhare Client, and censhare Admin Client.
- Add new users to Keycloak — Keycloak user authentication requires users to have an account in Keycloak or to be linked to it, for example via LDAP. Learn how to create an account directly in Keycloak.
- Configure user group mapping — Learn how to configure user group mapping for censhare Server based on user information stored in Keycloak.
- Migrate users to Keycloak — Learn how to migrate users with censhare standard login into Keycloak by script.
- Configure Keycloak with LDAP — You can add an LDAP/AD service to Keycloak to log in users to censhare with their LDAP/AD user profile.
- Configure Keycloak with SAML — The SAML protocol provides single sign-on to applications across organizational boundaries. Keycloak serves as an identity broker between censhare and an identity provider.
- Enable password reset on login page — Learn how to enable users to reset their passwords on the Keycloak login page.
- Enable password change — Learn how to enable password change for censhare Web and censhare Client via Keycloak.
- Authorization mapper — The authorization mapper synchronizes the roles, domains, groups and other settings of a user from Keycloak with the user table of the censhare Server.