I am not a kerberos expert, so am initially looking to understand the bounds of possibility using keycloak.
My example use case is as follows
- User logs into front end app, protected by keycloak
- User clicks a
GETrequest is sent to a Python API along with the JWT token issued by Keycloak
- The Python API must now access data in an SQL Server database that has row level security, secured through Active Directory (Kerberos)
Can Keycloak issue a kerberos ticket that will allow python to query the SQL Server through ODBC and get access to the protected records?