OpenKM 6.3.12 & Keycloak 21.1.2 Integration

$30-250 USD

Closed

Posted 3 months ago

$30-250 USD

Paid on delivery

Technical Task Document for OpenKM & Keycloak Integration Project Overview: The goal of this task is to integrate OpenKM 6.3.12 with Keycloak 21.1.2 using OpenID Connect (OIDC) for user authentication and authorization. Additionally, we need to configure the REST APIs of OpenKM to be authorized using the JWT tokens issued by Keycloak. Current Status: • We have successfully set up the integration where OpenKM redirects to Keycloak for authentication. • OpenKM is able to receive a token from Keycloak. • However, the necessary configurations to ensure the authentication flow and authorization of REST APIs using the token are not yet implemented. Tasks: 1. Complete the OpenKM Keycloak Integration: • Ensure that OpenKM correctly handles the redirect to Keycloak and receives the authentication token. • Configure OpenKM to properly use the Keycloak token to establish a user session. 2. Configure OpenKM for OpenID Connect (OIDC): • Verify that OpenKM is set up to use OpenID Connect for authentication with Keycloak. • Update the OpenKM authentication configuration to correctly use Keycloak as the identity provider. • Ensure that the OpenKM configuration allows seamless login using Keycloak credentials. 3. Configure REST API Authorization: • Modify the OpenKM security filter to authorize the REST API endpoints using the Keycloak-issued token. o Use the token received from Keycloak to authorize access to REST API endpoints. • Ensure that only authenticated users (those with a valid token) are able to access the OpenKM REST APIs. • Implement security checks to validate the token for all incoming API requests. • Add the necessary code or configurations to handle token validation for each API request. 4. Testing and Validation: • Test the OpenKM login process to ensure the Keycloak authentication and authorization work smoothly. • Test the REST APIs to confirm they are properly secured and only accessible with a valid token from Keycloak. • Ensure token expiration and renewal are handled correctly in the OpenKM system. • Test the role-based access control (RBAC) by verifying that users are assigned the appropriate roles/permissions in OpenKM based on Keycloak groups or roles. 5. Documentation: • Document all the steps taken to configure the integration between OpenKM and Keycloak. • Provide a brief overview of how the security filter for REST APIs was modified and how it handles token validation. • Include any configuration details for OpenKM and Keycloak that need to be set up on the server. Required Skills: • OpenKM 6.3.12 configuration and security settings. • Keycloak 21.1.2 for user authentication and authorization. • OpenID Connect (OIDC) integration for seamless authentication with Keycloak. • Experience modifying security filters in web applications for token-based authorization. • Strong understanding of REST API security and JWT (JSON Web Tokens) token validation. • Proficiency in Spring MVC for configuring and managing the security layer. • Experience with Maven for managing dependencies and building the OpenKM project. • Knowledge of Spring Security for configuring authentication and authorization mechanisms. Deliverables: 1. Fully integrated OpenKM with Keycloak using OpenID for authentication. 2. Secure REST APIs in OpenKM that are authorized using JWT tokens from Keycloak. 3. Documentation for the configuration and implementation steps. Timeline: Estimated completion time: 16 hours.

Project ID: 39238307

About the project

7 proposals

Remote project

Active 2 mos ago

Looking to make some money?

Email address

Benefits of bidding on Freelancer

Set your budget and timeframe

Get paid for your work

Outline your proposal

It's free to sign up and bid on jobs

7 freelancers are bidding on average $223 USD for this job

@TheCodingZone99

Hello, Regarding REST API authorization, is the intention to completely replace the existing OpenKM security or augment it? Are there any specific Keycloak client roles that need to be mapped to OpenKM roles for RBAC? What is the preferred method for persisting user session information after successful authentication with Keycloak? Are there any existing custom OpenKM modules or configurations that could impact the integration? I'm confident in my ability to complete this integration and secure the REST APIs, we need to discuss further to send an accurate quote.

$250 USD in 1 day

0.0

(0 reviews)

0.0

@MIndlabsAi6

Hello Faraj, I am Vishal Maharaj, a seasoned professional with 20 years of experience in REST API development. I have carefully reviewed the requirements for integrating OpenKM 6.3.12 with Keycloak 21.1.2 using OpenID Connect for user authentication and authorization. To achieve this integration, I will ensure that OpenKM seamlessly handles the redirect to Keycloak and correctly utilizes the authentication token. I will configure OpenKM to effectively use the Keycloak token for establishing user sessions and update the authentication settings to integrate with Keycloak as the identity provider. Additionally, I will modify the OpenKM security filter to authorize REST API endpoints using Keycloak-issued tokens, implementing stringent security checks for token validation. I am eager to discuss the project further and address any queries you may have. Best regards, Vishal Maharaj

$250 USD in 7 days

0.0

(0 reviews)

0.0

@hamzakhattabi

I am a Software Engineer with over 5 years of experience specializing in authentication and API security. I have successfully integrated OpenID Connect (OIDC) with various platforms, ensuring secure authentication and authorization using Keycloak and JWT-based REST API security. I can complete the OpenKM and Keycloak integration, configure the security filter for REST API authorization, and ensure proper token validation and RBAC enforcement. My expertise includes Spring Security, OpenID Connect (OIDC), and JWT authentication. With my experience, I’m confident I can finish this task efficiently while ensuring seamless authentication and security. Feel free to check my profile and contact me for more details. Regards,

$180 USD in 3 days

0.0

(0 reviews)

0.0

@mwwaqas246

Hi, I came across your project and would love to assist with integrating OpenKM with Keycloak using OIDC and securing REST APIs with JWT authentication. With my expertise in OpenKM, Keycloak, Spring Security, and REST API security, I can ensure a seamless authentication flow and robust security measures. Here’s how I can help: ✅ Complete OpenKM-Keycloak integration for smooth authentication. ✅ Secure REST APIs with Keycloak-issued JWT tokens. ✅ Configure role-based access control (RBAC) using Keycloak groups. ✅ Comprehensive documentation so you can manage and replicate the setup easily. ✅ Thorough testing to ensure security, token validation, and expiration handling. I have prior experience working with similar integrations and can deliver this within 16 hours as required. Let’s discuss further to get started! Looking forward to collaborating. Best regards,

$240 USD in 3 days

0.0

(0 reviews)

0.0

@kchbail

I am well-equipped to complete your OpenKM-Keycloak integration project efficiently within the 16-hour timeframe. I'll finalize the authentication flow between OpenKM 6.3.12 and Keycloak 21.1.2, implement proper JWT validation for REST API authorization, and ensure all security filters correctly process tokens for seamless user authentication. My approach will include rigorous testing of all authentication scenarios and role-based access controls, along with comprehensive documentation detailing the configuration process. Having successfully implemented similar integrations using OpenID Connect, Spring Security, and JWT validation, I'm confident I can deliver a robust solution that maintains security while providing a smooth user experience.

$140 USD in 3 days