Ever wondered how banking apps require additional challenge when we make a sensitive operation like transferring money ? This practice of requiring additional levels of authentication is not limited to financial apps, in fact it has become popular nowadays and it is called Step-up Authentication.
This repo is a demonstration of this process using Keycloak as Identity provider, Angular for developing the relaying party and Dotnet for developing the resource server.
You can read more about this project in this article
First go to config folder and type
docker-compose up -dThis will start a keycloak container exposed on the local port 8080. Once it's up and ready, run the script to create terraform client in keycloak
./create-terraform-client.shWe will use then terraform to setup new realm, client, user, custom authentication flow, acr/loa mapping etc...
Once you got terraform installed, type the following commands:
terraform init
terraform applyYou will be prompted to enter a value, so type yes then press enter. That's it you got keycloak up and configured
To run the app you must go to keycloak-angular directory and run the following commands:
npm install keycloak-angular keycloak-js
npm run showcase:exampleThis angular app used for demonstration is based on this gihtub repo