Hi,
I’m new to Keycloak, and setting up auth services. Securing REST APIs seems simple enough, but I can’t find anything in the documentation that refers to Kafka. If I’ve understood correctly, I could just use Keycloak as an OAuth/OIDC identity provider for authentication, with authorisation handled by setting up an identity pool in Confluent, using RBACs and/or ACLs for filters. But ideally I’d like to handle both authentication & topic-level authorisation centrally in Keycloak.
Is this possible? Are there any examples of this, or can anyone suggest the steps that would be required?
If I add a user through Keycloak, can I grant them Kafka permissions and Keycloak will somehow put them into a token that Confluent/Kafka will understand?