User IP inside JWT

p141592 · June 10, 2020, 3:30am

Hello, community.

How I can get user IP inside JWT?

I have a task to extend JWT by custom fields. The most confusing field displays user IP inside the payload. I do it through admin REST inside OIDC. After get JWT I going inside a keycloak, catch user IP by session. Then insert it inside the session. But it looks like a bad decision.

Please advise me on how I can do it highly correctly. If I should change source code, every advice will be best.

Thank u

How I catch IP:
url --location --request GET ‘http://0.0.0.0:8080/auth/admin/realms/master/users/64f225e2-2d1e-4a00-a2aa-d96bcc93f395/sessions’ --header ‘Authorization: bearer’ | | jq ‘.[0].ipAddress’

erosas · August 19, 2020, 8:12pm

Hello, I have a similar requirement, did you ever figure out another way of passing IP into the JWT?

zonaut · August 20, 2020, 5:28am

You could create a custom even listener and add the ip address on a login event as a user attribute.
An example can be found on https://github.com/zonaut/keycloak-extensions/tree/master/spi-event-listener

Topic		Replies	Views
External Idp integration via script Getting advice authentication	15	1213	March 23, 2021
Extract payload data from the received access token and store in Keycloak Getting advice oidc	2	814	October 30, 2021
Keycloak Login and User Model with custom data from external REST API Getting advice authentication , user-federation , oidc	2	3984	April 28, 2022
Custom OIDC IdP that only validates external token with Public Key Extending the server identity-brokering , oidc	0	199	October 22, 2023
JWT in the response with roles Getting advice authentication , oidc	0	218	October 10, 2023

User IP inside JWT

Related Topics