Introduction

Keycloak is an open-source identity and Access Management solution. It is a single sign-on security application for web applications and RESTful web services. Design Server and Runtime REST API supports Keycloak solution of user administration for authentication and authorization.

Existing user databases hold user credentials. Keycloak federates these existing external user databases through the concept of storage providers. By default, Keycloak supports an LDAP and Active Directory storage provider.

When an user tries to access the Design Server Web-console, the browser is redirected to Keycloak authentication system to authenticate user credentials. User gets a reference token from the Keycloak to connect to the server.