Out of interest, what are peoples experience like with self hosted identity management options? I've been evaluating keycloak recently, and it seems pretty good.
Hey! Corrrect me if I'm wrong But It seems using Azure's(or any third party) client credential flow is better (or say easier) option as it can be used for managing multiple microservices.
However, I came across this specific need of implementing both Authorization and resource server on the same application and for that I'm planning to implement Authorization Server using Spring but I came to know that Spring have stopped active oauth project development and so I'm planning to use Keycloak for my application also I'm planning to store client id & client secret in mysql database.
In authorization server I have to generate access token and then send it back to the client and verify when the api call is made with the same token.
If you don't mind do you have any link or specific resources for the development which you did? I would love to see your project as well. Thanks.
I looked at azure a while back, funny thing is, like this incident, azure had an outage, I found keycloak pretty simple, you run it, you get a web front end, configure the bits, connect your app. I don't really have any resources at the moment, but I am going to do a github repo of example projects for connecting it to .NET stuff
Keycloak is pretty good in the average case, but when you get to esoteric use-cases like multi-thousand group/role setups it breaks down, performance-wise. Stuff like that isn’t common practice though.
