Guilliano Molaire
Founder at Skycloak
Guilliano is the founder of Skycloak and a cloud infrastructure specialist with deep expertise in product development and scaling SaaS products. He discovered Keycloak while consulting on enterprise IAM and built Skycloak to make managed Keycloak accessible to teams of every size.
Articles by Guilliano Molaire
API Authentication Best Practices in 2026
Comprehensive guide to API authentication in 2026 covering OAuth 2.0 with PKCE, mTLS, DPoP, JWT validation, token introspection, and choosing…
JWT Best Practices: Security, Storage, and Rotation
A comprehensive guide to JWT security best practices covering token storage, key rotation, claim validation, refresh token rotation, and Keycloak…
Spring Boot + Keycloak OAuth 2.0: The Complete 2026 Guide
The complete guide to securing Spring Boot 3.x apps with Keycloak using spring-security-oauth2-resource-server, JWT validation, and method-level security.
OpenID Connect Explained: A Developer’s Guide with Keycloak
A developer's deep dive into OpenID Connect (OIDC) covering ID tokens, claims, scopes, discovery endpoints, and UserInfo with practical Keycloak…
How to Migrate from Okta to Keycloak
Step-by-step Okta to Keycloak migration guide covering user export, application migration, MFA enrollment, group mapping, and phased rollout strategy.
API Keys vs OAuth: When to Use Each with Keycloak
Decision guide comparing API keys and OAuth tokens for API security. Learn when to use each approach, hybrid patterns, and…
SSO Implementation Guide: SAML and OIDC with Keycloak
Comprehensive SSO implementation guide for developers covering SAML vs OIDC protocols, SP and IdP-initiated flows, single logout, and Keycloak configuration.
Is Keycloak Production Ready? A Practical Checklist
A practical production readiness checklist for Keycloak deployments covering PostgreSQL tuning, clustering, TLS, monitoring, backups, and security hardening.
How OAuth 2.0 Works: A Developer’s Visual Guide
Visual developer guide to OAuth 2.0 grant types including authorization code with PKCE, client credentials, and device flow with Keycloak…
Keycloak Realm Not Found: Causes and Solutions
Fix Keycloak realm not found errors. Covers common typos, case sensitivity, URL pattern changes, realm import failures, and version migration…