Keycloak
Keycloak is an open-source software product to enable integrated identity management (single sign-on with Identity and Access Management) with support for modern applications and services.
Security
The Devprime platform simplifies the implementation of modern security messaging to control end-user exposure using a native integration with marketplace identity providers such as: Auth0, Keycloak, Azure AD, Amazon Cognito, Google Identity Platform and many others following the OpenID Connect (OIDC), OAuth 2.0 protocols.
When publishing the application in a cluster such as Kubernetes, Azure AKS, AWS EKS, Google GKE it is necessary in addition to creating the credentials in the Identity Provider and configuring in the application it is necessary to create a certificate to activate the “ASP.NET Data Protection” allowing the replicas to share the same encryption algorithm.
When creating this certificate file, it is necessary to upload it to the cluster and store it in a storage in the Kubernetes cluster, which must be mapped “mount” as a volume in the pod configuration. That way, just inform the path of this file in the Devprime configuration.
Auth0
Auth0 is a platform for quickly integrating authentication and authorization into web, mobile, and legacy applications so you can focus on your core business.
Data Protection
When using more than one replica in a cluster environment such as Kubernetes or similar, it is necessary to define a strategy for sharing the encryption key between the instances of the .NET/ASP.NET this mechanism is established through the Data Protection feature.
Last modified October 17, 2023 (e38ae05b)