Request 2FA for authorize an specific resource

paulogervas · March 1, 2020, 4:39pm

Hi,

I would like to know if there are any specific standard or flow to request a confirmation of type 2FA for the authorization of a specific endpoint, as described below:

the User authenticates normally. And receive your access token.
the User accesses “resource 1” and consumes the API service normally.
Now, the user tries to access “resource 2”. At this point I would like for the authorization to consume this API to be released if there was a request to confirm the authenticity of the user using 2FA.

For this need I create a module for Keycloak?

Thank you.

Topic		Replies	Views
Keycloak authorization of a public endpoint Configuring the server	1	372	August 23, 2022
keycloak with oauth2 client credential grant for authenticate external clients(services/applications) to my public API Getting advice	2	469	December 2, 2019
How to make Keycloak accept POST requests to an authorization endpoint Extending the server	1	1055	April 5, 2021
Getting 2FA devices with API	0	440	January 28, 2022
OAuth 2.0 Device Authorization Grant Getting advice	5	3431	November 2, 2021

Request 2FA for authorize an specific resource

Related Topics