On Keycloak v15.0.2
Title hopefully conveys my meaning, but here is a scenario to illustrate:
A user accesses the login page for a Keycloak client (‘Client A’) on a realm (‘Realm’); they successfully authenticate by entering their credentials (password)
This same user now navigates to another client (‘Client B’) on the same realm (‘Realm’) - because they previously logged in on Client A, they do not have to re-enter their credentials for Client B.
Within Keycloak’s event logging, the above actions generate 2 separate LOGIN events with similar fields listed under the ‘Details’ section.
Is there a way within Keycloak’s event logging that we can differentiate when a user LOGIN event occurs where the user manually entered their credentials vs when they are being logged in as a part of the background SSO processes that Keycloak handles?
If that is not possible with Keycloak’s event logging, is there a method of doing so via modifying/extending existing classes, or other means to accomplish the same goal?
Thanks!