Remove saml user

Using keycloak with saml and some apps.

If a user is deleted in keycloak, the user should

  1. be deleted in the connected apps
  2. the already existing session in the apps needs to be destroyed
  3. a script should be called to cleanup the user in the apps

Does someone know if this is already possible with keycloak? 1) and 2) would be really nice to have but I would be happy with 3) and cleanup the user in the apps within the script.

1 Like

Iā€™m trying to implement the same thing. I think one way is to use the User Storage SPI, but that might be overkill.

The simpler solution seems to be creating an Event Listener/Hook/Trigger, for when the user is deleted in order to send an delete request to the connected app API and perform the other operations.