Keycloak - Identity and Access Management for Modern Applications: Harness the power of Keycloak, OpenID Connect, and OAuth 2.0 protocols to secure applications (Paperback)

Thorgersen, Stian, Silva, Pedro Igor

Keycloak - Identity and Access Management for Modern Applications: Harness the power of Keycloak, OpenID Connect, and OAuth 2.0 protocols to secure applications (Paperback)
  • 出版商: Packt Publishing
  • 出版日期: 2021-06-11
  • 售價: $3,680
  • 貴賓價: 9.5$3,496
  • 語言: 英文
  • 頁數: 362
  • 裝訂: Quality Paper - also called trade paper
  • ISBN: 1800562497
  • ISBN-13: 9781800562493

    • 海外代購書籍(需單獨結帳)

買這商品的人也買了...

相關主題

商品描述

Key Features

  • Get up to speed with Keycloak, OAuth 2.0, and OpenID Connect using practical examples
  • Configure, manage, and extend Keycloak for optimized security
  • Leverage Keycloak features to secure different application types

Book Description

Implementing authentication and authorization for applications can be a daunting experience, often leaving them exposed to security vulnerabilities. Keycloak is an open-source solution for identity management and access management for modern applications.

Keycloak - Identity and Access Management for Modern Applications is a comprehensive introduction to Keycloak, helping you get started with using it and securing your applications. Complete with hands-on tutorials, best practices, and self-assessment questions, this easy-to-follow guide will show you how to secure a sample application and then move on to securing different application types. As you progress, you will understand how to configure and manage Keycloak as well as how to leverage some of its more advanced capabilities. Finally, you'll gain insights into securely using Keycloak in production.

By the end of this book, you will have learned how to install and manage Keycloak as well as how to secure new and existing applications.

What you will learn

  • Understand how to install, configure, and manage Keycloak
  • Secure your new and existing applications with Keycloak
  • Gain a basic understanding of OAuth 2.0 and OpenID Connect
  • Understand how to configure Keycloak to make it ready for production use
  • Discover how to leverage additional features and how to customize Keycloak to fit your needs
  • Get to grips with securing Keycloak servers and protecting applications

Who this book is for

Developers, sysadmins, security engineers, or anyone who wants to leverage Keycloak and its capabilities for application security will find this book useful. Beginner-level knowledge of app development and authentication and authorization is expected.

商品描述(中文翻譯)

關鍵特點

- 透過實際範例快速了解 Keycloak、OAuth 2.0 和 OpenID Connect
- 配置、管理和擴展 Keycloak 以優化安全性
- 利用 Keycloak 的功能來保護不同類型的應用程式

書籍描述

為應用程式實施身份驗證和授權可能是一個艱鉅的任務,常常使其暴露於安全漏洞之中。Keycloak 是一個開源的身份管理和訪問管理解決方案,適用於現代應用程式。

《Keycloak - 現代應用程式的身份與訪問管理》是一本全面介紹 Keycloak 的書籍,幫助您開始使用它並保護您的應用程式。本書包含實作教程、最佳實踐和自我評估問題,這本易於跟隨的指南將向您展示如何保護一個範例應用程式,然後再進一步保護不同類型的應用程式。隨著進展,您將了解如何配置和管理 Keycloak,以及如何利用其一些更高級的功能。最後,您將獲得在生產環境中安全使用 Keycloak 的見解。

在本書結束時,您將學會如何安裝和管理 Keycloak,以及如何保護新建和現有的應用程式。

您將學到的內容

- 了解如何安裝、配置和管理 Keycloak
- 使用 Keycloak 保護您的新建和現有應用程式
- 獲得對 OAuth 2.0 和 OpenID Connect 的基本理解
- 了解如何配置 Keycloak 以使其準備好進入生產環境
- 探索如何利用額外功能以及如何自定義 Keycloak 以符合您的需求
- 熟悉保護 Keycloak 伺服器和應用程式的安全性

本書適合誰

開發人員、系統管理員、安全工程師或任何希望利用 Keycloak 及其功能來增強應用程式安全性的人都會發現這本書非常有用。預期讀者具備初級的應用程式開發及身份驗證和授權知識。

作者簡介

Stian Thorgersen started his career at Arjuna Technologies building a cloud federation platform, years before most companies were even ready for a single-vendor public cloud. He later joined Red Hat, looking for ways to make developers' lives easier, which is where the idea of Keycloak started. In 2013, Stian co-founded the Keycloak project with another developer at Red Hat.

Today, Stian is the Keycloak project lead and is also the top contributor to the project. He is still employed by Red Hat as a senior principal software engineer focusing on identity and access management, both for Red Hat and for Red Hat's customers.

In his spare time, there is nothing Stian likes more than throwing his bike down the mountains of Norway.

Pedro Igor Silva is a proud dad of amazing girls. He started his career back in 2000 at an ISP, where he had his first experiences with open source projects such as FreeBSD and Linux, as well as a Java and J2EE software engineer. Since then, he has worked in different IT companies as a system engineer, system architect, and consultant.

Today, Pedro Igor is a principal software engineer at Red Hat and one of the core developers of Keycloak. His main area of interest and study is now IT security, specifically in the application security and identity and access management spaces.

作者簡介(中文翻譯)

Stian Thorgersen 開始他的職業生涯於 Arjuna Technologies,負責建立一個雲聯邦平台,這在大多數公司甚至還未準備好使用單一供應商的公共雲之前就已經開始了。他後來加入了 Red Hat,尋找讓開發者生活更輕鬆的方法,這也是 Keycloak 構想的起源。2013 年,Stian 與 Red Hat 的另一位開發者共同創立了 Keycloak 專案。

如今,Stian 是 Keycloak 專案的負責人,也是該專案的主要貢獻者。他仍然在 Red Hat 擔任高級首席軟體工程師,專注於身份和存取管理,為 Red Hat 及其客戶提供服務。

在他的空閒時間,Stian 最喜歡的就是在挪威的山上騎自行車。

Pedro Igor Silva 是一位驕傲的父親,擁有幾位了不起的女兒。他的職業生涯始於 2000 年,在一家 ISP 工作,並首次接觸到開源專案,如 FreeBSD 和 Linux,同時擔任 Java 和 J2EE 軟體工程師。此後,他在不同的 IT 公司擔任系統工程師、系統架構師和顧問。

如今,Pedro Igor 是 Red Hat 的首席軟體工程師,也是 Keycloak 的核心開發者之一。他目前的主要研究和興趣領域是 IT 安全,特別是在應用安全和身份及存取管理方面。

目錄大綱

Table of Contents

  1. Getting Started with Keycloak
  2. Securing Your First Application
  3. Brief Introduction to Standards
  4. Authenticating Users with OpenID Connect
  5. Authorizing Access with OAuth 2.0
  6. Securing Different Application Types
  7. Integrating Applications with Keycloak
  8. Authorization Strategies
  9. Configuring Keycloak for Production
  10. Managing Users
  11. Authenticating Users
  12. Managing Tokens and Sessions
  13. Extending Keycloak
  14. Securing Keycloak and Applications

目錄大綱(中文翻譯)

目錄

1. 開始使用 Keycloak
2. 保護您的第一個應用程式
3. 標準簡介
4. 使用 OpenID Connect 驗證用戶
5. 使用 OAuth 2.0 授權訪問
6. 保護不同類型的應用程式
7. 與 Keycloak 整合應用程式
8. 授權策略
9. 為生產環境配置 Keycloak
10. 管理用戶
11. 驗證用戶
12. 管理令牌和會話
13. 擴展 Keycloak
14. 保護 Keycloak 和應用程式

類似商品