The Keycloak Auth Proxy makes it possible to protect web resources that have no build in authentication.
+------------+
| |
| Internet |
| |
+------|-----+
|
|
|
+------|-----+ +------------+
| | | |
| Auth Proxy ----------------- Keycloak |
| | | |
+------|-----+ +------------+
|
|
|
+------|-----+
| Secured |
| Content |
| |
+------------+
There are two very common usecases why one would like to use Keycloak Auth Proxy together with an Identity & Access Management Service (IAM)
- Protect static website and allow only authenticated users to see the content
- Outsource the authentication to Keycloak Auth Proxy on just relay on the header parameter about the user then Keycloak Auth Proxy forward to you.
Despite the uniqueness of keycloak-auth-proxy there are other project that solve the similar problem differently.
...