As you are of course aware, users ask for help authoring a custom login and signup page often:
- How to create a custom login page using javascript adapter - #15 by softshipper
- Login via REST API from custom made Login Page
- Problem with custom login page - #6 by emartinezr
- Custom login ans signup page instead of custom theme
There are a range of sophistications among these users. To some extent, you acknowledge, people receive a design for a sign-up and login page, and they have to implement it, and the net result is they just enable Direct Grants, the least secure of all options, for the login page. And who knows how they do sign-up - probably through the Keycloak Admin interface.
I think it’s worth writing a guide for this particular scenario: Authoring a custom sign-up and login page. Otherwise someone is going to write this guide with Direct Grants.
Do you have an opinion about how Keycloak-JS users should store tokens? Apparently not, so people will use localStorage
.
I don’t think it looks good for RedHat to operate under the “the fastest way to get an answer on the Internet is to say something wrong” approach. It’s immature and reactive. Please, I’m begging you, create a guide for the basic use of Keycloak that doesn’t involve its hideous themes.