I notice this github repository, but the explanation of the intentions is vague.
Q. Can anyone please tell me more about plans for keycloak and how it might be integrated in UCS? I am considering UCS as a user directory behind keycloak, but i am wondering what others thoughts are. Keycloak is quite mature and offers a lot of security mechanisms out of the box, which I don’t believe are currently being offered by UCS. For example:
- Last login IP
- Currently logged in devices
- Brute force mitigation
- Custom login flows like Require 2FA everytime for Client X, optional 2FA for Client Y
- 2FA options like webAuthn, passwordless auth