Obfuscation of sensitive data in keycloak

I have use case of obfuscating sensitive data via an asynchrous job. Since we would like to replace this job with an implementation with in keycloak.

What is the best way to do that?

Thank you in advance

What data do you need to obfuscate? PII? One way to start that satisfies some security requirements is to store the database in an encrypted format. While out of the scope of Keycloak’s responsibility, it means your data would be encrypted at rest. Depending on your specific requirements, that might be a good route to go. See your database’s documentation for specifics.

Data of inactive users should be obfuscated.
We have different database for keeping our users and have implementated a custom provider to have access to those users.