Tag

keycloak

Articles tagged with keycloak.

Fixing Keycloak 502 Bad Gateway Errors

Fix Keycloak 502 Bad Gateway errors behind a reverse proxy: proxy headers, timeouts, health checks, hostname configuration, and startup timing…

Guilliano Molaire June 25, 2026 10 min read

troubleshooting

Fixing CORS Errors with Keycloak

Fix Keycloak CORS errors: configure Web Origins on the client, understand preflight requests, and resolve 'blocked by CORS policy' issues…

Guilliano Molaire June 24, 2026 10 min read

comparisons

Zitadel Alternatives for Developers

Compare the best Zitadel alternatives for developers: Keycloak, Authentik, Ory, FusionAuth, SuperTokens, Auth0, and WorkOS, by license, deployment, and protocols.

Guilliano Molaire June 24, 2026 13 min read

Definition and Basics

Token Introspection vs Local JWT Validation in Keycloak

Keycloak token introspection vs local JWT validation: how each works, the latency and revocation trade-offs, and which to use for…

Guilliano Molaire June 23, 2026 10 min read

Definition and Basics

Keycloak Offline Tokens Explained

What Keycloak offline tokens are, how the offline_access scope works, how they differ from regular refresh tokens, and when to…

Guilliano Molaire June 22, 2026 11 min read

Tutorials

How to Run the Keycloak Admin Console on a Separate Hostname Behind nginx (KC_HOSTNAME_ADMIN)

KC_HOSTNAME_ADMIN does work behind nginx. Serve the Keycloak admin console on a separate hostname with the proxy headers and server…

Guilliano Molaire June 21, 2026 10 min read

Tutorials

Token and Claims Modeling in Keycloak: Reproducing Legacy IdP Behavior

Reproduce legacy IdP tokens in Keycloak so apps survive cutover. Build a claim contract, map UAA/SiteMinder/Okta claims, and diff old…

George Thomas June 21, 2026 16 min read

Tutorials

Dual-Run IAM Migration: Switching Identity Providers Without Downtime

An IAM migration strategy for large estates: run old and new IdPs at once, cut apps over in waves, and…

George Thomas June 20, 2026 14 min read

Tutorials

Keycloak and SiteMinder Federation: SAML and OIDC Integration Guide

Keycloak SiteMinder integration without a rip-and-replace: run both side by side, federate over SAML or OIDC, and migrate apps at…

George Thomas June 20, 2026 15 min read

security

Keycloak Refresh Token Rotation: Setup and Best Practices

How to configure refresh token rotation in Keycloak: revoke-on-use, reuse detection, token lifetimes, SPA vs confidential clients, and security best…

Guilliano Molaire June 19, 2026 11 min read

1 2 3 … 24 Next

Stay ahead on identity & security

Get tutorials, product updates, and Keycloak tips delivered to your inbox.

Start Free Trial Talk to Sales