Is it possible to set data encryption in DB in Keycloak settings

Due to some GDPR rules required on our project we need to encrypt not only passwords or keys, but also other user data such as name, email, etc. Is there a possibility to define what user data should be encrypted in DB? If not what solution do you suggest?

2 Likes

Is there any feedback for this question?

i’m looking for the same “problem”.
I’d tried different way to implement it (without success):

  1. Create Custom SPI (it seems we haven’t a factory to do that…UserStoareProviderFactory seems not good for the goal or maybe i haven’t an idea about his implementation :smiley: )
  2. DB Level Encryption (it requires to make a lot of modifies on queries to use the correct function)
  3. Create an Extension to try to create a plugin to encrypt\decrypt user_entity datas any time a method call set\get methods. (i dunno how to to this…if it can be do it XD).

Any ideas\suggestions? :slight_smile:

Thank you

Somebody managed to implement this feature?