keycloak
Keycloak identity and access management. Use for SSO.
Best use case
keycloak is best used when you need a repeatable AI agent workflow instead of a one-off prompt.
Keycloak identity and access management. Use for SSO.
Teams using keycloak should expect a more consistent output, faster repeated execution, less prompt rewriting.
When to use this skill
- You want a reusable workflow that can be run more than once with consistent structure.
When not to use this skill
- You only need a quick one-off answer and do not need a reusable workflow.
- You cannot install or maintain the underlying files, dependencies, or repository context.
Installation
Claude Code / Cursor / Codex
Manual Installation
- Download SKILL.md from GitHub
- Place it in
.claude/skills/keycloak/SKILL.mdinside your project - Restart your AI agent — it will auto-discover the skill
How keycloak Compares
| Feature / Agent | keycloak | Standard Approach |
|---|---|---|
| Platform Support | Not specified | Limited / Varies |
| Context Awareness | High | Baseline |
| Installation Complexity | Unknown | N/A |
Frequently Asked Questions
What does this skill do?
Keycloak identity and access management. Use for SSO.
Where can I find the source code?
You can find the source code on GitHub using the link provided at the top of the page.
SKILL.md Source
# Keycloak Keycloak is an open-source Identity and Access Management solution aimed at modern applications and services. It makes it easy to secure applications and services with little to no code. ## When to Use - **Self-Hosted IAM**: You want Auth0 features but deployed on your own infrastructure (GDPR/Compliance). - **Enterprise Integration**: Connecting to legacy LDAP/Active Directory user federations. - **Single Sign-On (SSO)**: One login for your internal wiki, chat, and cloud apps. ## Quick Start (Docker) ```bash docker run -p 8080:8080 -e KEYCLOAK_ADMIN=admin -e KEYCLOAK_ADMIN_PASSWORD=admin quay.io/keycloak/keycloak:latest start-dev ``` ## Core Concepts ### Realm A space where you manage objects (users, apps, roles). You usually create a dedicated realm for your app (e.g., `my-app-realm`) and leave `master` for admin tasks. ### Clients Applications (Web, Mobile, Service) that can request login. ### Identity Brokering Keycloak can act as a broker: User clicks "Login with GitHub" -> Keycloak talks to GitHub -> Keycloak issues its own token to your app. ## Best Practices (2025) **Do**: - **Use the Operator**: On Kubernetes, use the Keycloak Operator for upgrades and scaling. - **Production Mode**: `start-dev` is for local only. Use an external DB (Postgres) and proper HTTPS for production. - **Theme It**: Don't use the default login page. Extend the theme to match your brand. **Don't**: - **Don't Modify Core**: Use the SPI (Service Provider Interface) to write plugins if you need custom logic. - **Don't expose Admin Console**: Block `/admin` and `/master` access from the public internet. ## References - [Keycloak Documentation](https://www.keycloak.org/documentation)
Related Skills
keycloak-expert
This skill should be used when the user asks to 'configure Keycloak', 'set up ABAC', 'create Keycloak realm', 'integrate Azure AD with Keycloak', 'implement authorization services', 'configure OIDC client', 'create Keycloak policies', 'set up UMA/RPT tokens', 'deploy Keycloak on OpenShift', 'integrate Spring Security with Keycloak', 'configure NextAuth.js with Keycloak', 'create protocol mappers', 'map Azure groups to roles', or needs guidance on Keycloak realm/client configuration, ABAC policies and permissions, identity provider federation, or Configuration as Code patterns.
bgo
Automates the complete Blender build-go workflow, from building and packaging your extension/add-on to removing old versions, installing, enabling, and launching Blender for quick testing and iteration.
network-engineer
Expert network engineer specializing in modern cloud networking, security architectures, and performance optimization.
NestJS Deployment
Docker builds, Memory tuning, and Graceful shutdown.
Naming & Tagging Standards
Establish consistent resource naming conventions and mandatory tagging for cost allocation, security, and governance
Multi-Platform Deployment
This skill should be used when the user asks to "deploy application", "deploy to production", "release app", "deploy to AWS", "deploy to Vercel", "deploy to Kubernetes", "iOS deployment", "Android deployment", "deploy smart contract", "web3 deployment", "deploy to multiple platforms", or needs guidance on deployment strategies across web, mobile, and blockchain platforms.
multi-cloud-architecture
Design multi-cloud architectures using a decision framework to select and integrate services across AWS, Azure, and GCP. Use when building multi-cloud systems, avoiding vendor lock-in, or leveragin...
moon
This skill should be used when the user asks to "configure moon", "set up moonrepo", "create moon tasks", "run moon commands", "configure moon workspace", "add moon project", "moon ci setup", "moon docker", "moon query", "migrate to moon v2", or mentions moon.yml, .moon/workspace.yml, .moon/toolchains.yml, moon run, moon ci, or moonrepo in general.
moodle-mirror
Mirror Moodle course/module pages to local folders (e.g., Obsidian vaults), preserving structure, extracting page text/Markdown, and downloading attachments. Use for authenticated Moodle crawling, Cloudflare/SSO handling, and repeatable offline search across course content.
monitoring
Set up observability for applications and infrastructure with metrics, logs, traces, and alerts.
monitoring-observability
Monitoring and observability patterns for Prometheus metrics, Grafana dashboards, Langfuse LLM tracing, and drift detection. Use when adding logging, metrics, distributed tracing, LLM cost tracking, or quality drift monitoring.
mongodb
Guide for implementing MongoDB - a document database platform with CRUD operations, aggregation pipelines, indexing, replication, sharding, search capabilities, and comprehensive security. Use when working with MongoDB databases, designing schemas, writing queries, optimizing performance, configuring deployments (Atlas/self-managed/Kubernetes), implementing security, or integrating with applications through 15+ official drivers. (project)