8000 GitHub - cpbuckingham/pub-keycloak: Keycloak SAML with NET8 React/TS front end.
[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to content

cpbuckingham/pub-keycloak

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
keycloak
keycloak
 
 
net8saml
net8saml
 
 
reactsaml
reactsaml
 
 
.gitignore
.gitignore
 
 
context.sh
context.sh
 
 
keycloak.code-workspace
keycloak.code-workspace
 
 
readme.md
readme.md
 
 

Repository files navigation

Project Overview

NOTE: this application and repository was created with the assistance of ChatGPT. The "context.sh" builds scripts you can run past ChatGPT 4o and build up a context to ask questions.

This project is a SAML authentication system integrating Keycloak, .NET 8 Web API (net8saml), and a React frontend (reactsaml). It provides Single Sign-On (SSO) using SAML 2.0 and supports session management, user authentication, and secure communication between components.

1. Architectural Overview

Components

  • Keycloak (Identity Provider - IdP): Manages authentication and issues SAML assertions.
  • .NET 8 Web API (net8saml): Handles SAML authentication callbacks, user sessions, and provides API endpoints.
  • React + Vite Frontend (reactsaml): Acts as the UI for users, interacting with the backend for authentication and data display.

Flow

  1. The React frontend redirects users to Keycloak's SAML login page.
  2. Keycloak authenticates users and returns a SAML assertion to the .NET backend.
  3. The .NET API validates the assertion, creates a session, and provides authenticated API access.
  4. The React frontend communicates with the backend to retrieve user session data.

2. Keycloak: Build, Create, and Configure

Step 1: Build the Keycloak Docker Image

cd keycloak
bash build.sh

This builds the Keycloak Docker image and pushes it to the container registry.

Step 2: Create and Start the Keycloak Container

bash create.sh

This starts a Keycloak container on port 8080.

Step 3: Configure Keycloak with SAML Client

bash configure.sh

This script:

  • Creates a new realm (mycompany).
  • Registers a SAML client (net8saml).
  • Configures SAML authentication settings.
  • Creates a test user (shawnz) and group (net8saml_admins).

3. Configure and Build .NET Web API (net8saml)

Step 1: Set Up the .NET Environment

Install .NET 8:

Step 2: Restore Dependencies and Build

cd net8saml
dotnet restore
dotnet build

This compiles the .NET Web API.

Step 3: Configure SAML Authentication (appsettings.json)

Ensure the SAML settings are correctly configured in appsettings.json:

"SAML": {
  "IdpSsoUrl": "http://localhost:8080/realms/mycompany/protocol/saml",
  "EntityId": "net8saml",
  "AssertionConsumerServiceUrl": "http://localhost:5000/api/auth/callback",
  "PrivateKeyPath": "../private-key-pkcs8.pem"
}

4. Generate Certificates for SAML Authentication

cd keycloak
bash certs.sh

This script:

  • Extracts the SAML signing certificate and private key from Keycloak.
  • Saves them as private-key.pem and public-cert.pem.
  • Converts the private key to PKCS8 format (private-key-pkcs8.pem).

Ensure the backend API references these files in appsettings.json.

5. Build and Configure React Frontend (reactsaml)

Step 1: Install Dependencies

cd reactsaml
npm install

Step 2: Configure API Endpoint

Edit .env:

echo "VITE_API_BASE_URL=http://localhost:5000" > reactsaml/.env

Step 3: Build the React App

npm run build

This generates the production build in reactsaml/dist, which is served by the .NET Web API.

6. Run the .NET Web API and Frontend

Step 1: Start the React Frontend (Development Mode)

cd reactsaml
npm run dev

This runs the React app at http://localhost:5000, pointing to the backend API at http://localhost:5000.

Step 2: Start the .NET Web API

cd net8saml
dotnet run

This starts the API at http://localhost:5000.

Step 3: Access the Application

7. API Endpoints Overview

Endpoint Method Description
/api/auth/login GET Redirects user to Keycloak SSO.
/api/auth/callback POST Handles SAML authentication response.
/api/debug GET Returns session data for debugging.
/api/user/hello GET Returns "Hello {user}" message.

Conclusion

This project provides a secure and scalable authentication solution using SAML with Keycloak, .NET 8, and React. You can now deploy and extend it based on your authentication and authorization needs.

🚀 Happy Coding!

About

Keycloak SAML with NET8 React/TS front end.

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • C# 36.4%
  • Shell 33.5%
  • TypeScript 15.7%
  • CSS 6.3%
  • Dockerfile 4.2%
  • JavaScript 2.6%
  • HTML 1.3%
0