We are in the process of choosing a auth tool and have a need to support multiple tenants and for each tenant be able to configure access to multiple sites. I am wondering if this is supported in keycloak or if anyone as come up with a way of handling this if it is not OOTB.
support multiple tenants and for each tenant be able to configure access to multiple sites
Dig a little deeper into keycloak and try understand the realms concept. I think this can be achieved easily if each tenant has its own realm in keycloak.
Then each site that tenant / realm owns will be configured uniquely.
If however all your tenants are in a single realm…but only certain tenants can access certain sites I think this can be achieved with the use of groups, roles or user attributes. Although I am not 100% sure on this and I am also searching for a concrete example.