Hi everyone,
I have the following scenario:
A customer is using a third-party application where users log in and are authenticated via their LDAP. Separately, I have my Web application, which is integrated with Keycloak. My Keycloak is also connected to their LDAP via User Federation.
The challenge is that their third-party application does not natively support OIDC, but it can generate a JWT and send it to Keycloak (through my application?) if required.
My question is: Is it possible to implement the following workflow?
Users log in to their application using their Active Directory (AD) credentials.
After logging in, they access my application through their application.
Their application forwards an HTTP request to my application, including the generated JWT (containing LDAP information?).
Keycloak recognizes that both systems are using the same LDAP.
Keycloak generates a token for the users to access my application.
I’d appreciate any insights or guidance on whether this workflow is achievable and how it might be implemented.
Thanks in advance!