Can keycloak provide access to kerberos protected MSSQL database

simonjcarr · October 1, 2020, 10:12am

I am not a kerberos expert, so am initially looking to understand the bounds of possibility using keycloak.

User logs into front end app, protected by keycloak
User clicks a Get Data button
A GET request is sent to a Python API along with the JWT token issued by Keycloak
The Python API must now access data in an SQL Server database that has row level security, secured through Active Directory (Kerberos)

Can Keycloak issue a kerberos ticket that will allow python to query the SQL Server through ODBC and get access to the protected records?

Topic		Replies	Views
Keycloak MSSQL database permissions Securing applications database	0	725	December 30, 2021
PostgreSQL authentication and authorization using Keycloak and FastAPI Getting advice	0	647	March 6, 2022
Keycloak as a Kerberos proxy, instead of forwarder, with gss_delegation_credential appended to JWT Getting advice	0	645	December 14, 2021
Database hardening Getting advice	3	1054	October 5, 2020
Securing a Flask web app and restful api Securing applications	1	2707	January 16, 2023