[go: up one dir, main page]

Skip to content

Keycloak C# High Level Client

This a documentation on how to use the Keycloak client in C# to communicate with a Keycloak application.

Installation

To install the Keycloak.Net library, run the following command in the terminal:

dotnet add package Keycloak.Net
  1. Add the Keycloak settings to your appsettings.json file:

    {
        "Keycloak": {
            "ServerUrl": "https://your-keycloak-server/auth",
            "RealmName": "your-realm-name",
            "AdminUsername": "your-admin-username",
            "AdminPassword": "your-admin-password"
        }
    }
    
  2. Optionally, create configuration class to hold the Keycloak settings:

    public class KeycloakClientOptions
    {
        public string Url { get; set; }
        public string RealmName { get; set; }
        public string AdminUserName { get; set; }
        public string AdminPassword { get; set; }
    }
    
  3. Configure your options with KeycloakOptions on your module project and then register it.

    [DependsOn(
        //...other dependencies
        typeof(AbpAutofacModule) // <-- Prerequisite
    )]
    public class YourModule : AbpModule
    {
        public override void ConfigureServices(ServiceConfigurationContext context)
        {
            var configuration = context.Services.GetConfiguration();
    
            Configure<KeycloakClientOptions>(options =>
            {
                options.Url = configuration["Keycloak:Url"];
                options.AdminUserName = configuration["Keycloak:AdminUsername"];
                options.AdminPassword = configuration["Keycloak:AdminPassword"];
                options.RealmName = configuration["Keycloak:RealmName"];
            });
        }
    }
    

Usage

Inject the IKeycloakClient into your service or controller:

public class KeycloakDataSeeder : ITransientDependency
{  
    private readonly KeycloakClient _keycloakClient;
    private readonly KeycloakClientOptions _keycloakOptions;

    public KeycloakDataSeeder(IOptions<KeycloakClientOptions> keycloakClientOptions)
    {
         _keycloakOptions = keycloakClientOptions.Value;

         _keycloakClient = new KeycloakClient(
             _keycloakOptions.Url,
             _keycloakOptions.AdminUserName,
             _keycloakOptions.AdminPassword
         );
     } 

     private async Task CreateWebClientAsync()
     {
         var webClientId = "GMSS_Web";
         var webClient = (await _keycloakClient.GetClientsAsync(_keycloakOptions.RealmName, clientId: webClientId)).FirstOrDefault();

         if (webClient == null)
         {
             var webRootUrl = "https://localhost:44322"
             webClient = new Client
             {
                 ClientId = webClientId,
                 Name = "Web Client",
                 Protocol = "openid-connect",
                 Enabled = true,
                 BaseUrl = webRootUrl,
                 RedirectUris = new List<string>
                 {
                     $"{webRootUrl}signin-oidc"
                 },
                 ImplicitFlowEnabled = true,  // for hybrid flow
                 FrontChannelLogout = true,
                 PublicClient = false,
                 Secret = "1q2w3e*"
             };
             webClient.Attributes = new Dictionary<string, object>
             {
                 { "post.logout.redirect.uris", $"{webRootUrl}signout-callback-oidc" }
             };

             await _keycloakClient.CreateClientAsync(_keycloakOptions.RealmName, webClient);
         }
     }
}  

This documentation should help you set up and use the Keycloak client in your C# project. If you have any specific questions or need further assistance, feel free to ask!