I'm considering abandoning #KeyCloak in favor of #Zitadel for #IAM. It's a tiny #Kubernetes based setup, and #KeyCloak seems like a massive GUI-first Java behemoth, which is pretty far from my personal preference - something that's light weight, declarative, cloud-native and preferably written in a modern language like Go.
My requirements are:
Open source
Self-hosted
Supports MFA (including YubiKeys)
Supports social logins (FB, GH, Google etc.)
Supports simple user groups
Any thoughts or tips?
Contributing to #Keycloak in 2026!
Join us on Feb 10 to see how to contribute, what has changed in the last months, and learn from the experiences of others. We will report back from Keycloak DevDay 2025, where we ran an experiment: a hands-on hackathon where participants contribute to Keycloak together. Now, with DevDay 2026 on the horizon, it’s time to look back and ahead! 🚀
https://www.meetup.com/keycloak-hour-of-code/events/313038986/
"Keeping applications secure by evolving #OAuth 2.0 and OpenID Connect"
Thank you for having my talk at #FOSDEM at how use client policies in #Keycloak!
Slides are online, recorded video hopefully soon as well!
https://fosdem.org/2026/schedule/event/ZRDQYN-keep-applications-secure-by-evolving-oidc-oauth2/
Are you interested in #sovereign #identity? Meet the #keycloak team at #FOSDEM tomorrow! We will have our stand in the K building level 1 all Saturday!
Je viens de publier un cours intitulé "Identité et méthodes d'authentification" sous licence CC-BY : https://broken-by-design.fr/posts/cours-id-authn/
Ce cours s'adresse aux personnes de niveau M2 et aux professionnel.les débutant.es, même si les plus expérimenté.es pourraient y trouver des informations intéressantes.
Il comprend une introduction aux différents types de référentiels d'identités, avant de plonger dans l'authentification, sous des angles juridiques et techniques. Authentification multifacteur, forte, résistante au phishing, assurant de bonnes garanties de vie privée ! Authentification à l'état de l'art ! Vous pourrez en apprendre plus à ces sujets grâce à ce cours.
Et ce n'est que la première partie ! Ce mois-ci, une seconde partie sera publiée, sur le sujet de l'autorisation, avec un TP de mise en place de #Keycloak pour une authentification fédérée avec OpenID Connect! À suivre !
#oidc #webauthn #identité #authentification #saml #tls #motdepasse #password #snc #eidas #dsp2 #infosec #cours #ccby4 #phishing
Submit your #Keycloak talks to FOSDEM 2026 by Nov 30! ✍️
#FOSDEM is a free event for software developers to meet, share ideas and collaborate. Every year, thousands of developers of free and open source software from all over the world gather at the event.
Submit your talks now to present on January 31st and February 1st in Brussels, and meet us and help out at #SovereignIdentity stand.
🎉 Self-Hosted Human and Machine #Identity in #Keycloak 🎉
Our 26.4 release brings great updates with #passkeys and the latest security best practices for #OpenID Connect with #FAPI and DPoP.
Automatically roll out and rotate client credentials with #spiffe, #spire and #Kubernetes service account tokens.
Start your #sovereign journey and read all in our latest #cncf blog post:
https://www.cncf.io/blog/2025/11/07/self-hosted-human-and-machine-identities-in-keycloak-26-4/
🔐 Passwordless Authentication with WebAuthn
In his #BaselOne25 talk, Ralph Hees shows how to implement WebAuthn-based biometric authentication using Spring Boot, Keycloak, OAuth-proxy & Kubernetes — with deep-dive insights & real-world security best practices.
📅 16 Oct | Markthalle Basel
🎟️ https://eventfrog.ch/BaselOne2025
📌 Full program with awesome speakers like @ixchelruiz or @patbaumgartner: https://baselone.org/#schedule
#WebAuthn #SpringBoot #Keycloak #Security #BaselOne
We scaled #Keycloak to 2_000 logins per second and 10_000 token refreshes per seconds on #AWS and it scaled linearly in our #loadtest! It performed just fine with the latest optimizations in the 26.4 release.
What load do you run on Keycloak? Do you host your own #IAM?
Spoiler: Most of the CPU is burned for crypto operations (password hashing, signatures, TLS)
#Keycloak 26.4 is out with a lot of new capabilities for your self-hosted #iam:
* #Passkeys
* Client Authentication to use #SPIFFE or #Kubernetes service account tokens
* Simplified deployments across multiple availability zones to boost availability.
* #FAPI 2 Final
* #DPoP: The OAuth 2.0 Demonstrating Proof-of-Possession at the Application Layer (DPoP) is now fully supported.
Read more the full release announcement: https://www.keycloak.org/2025/09/keycloak-2640-released
#Keycloak at #FrOSCon - we shared how you can run a #sovereign identity management, and listened to the stories of those who are already using it.
Rewatch "Delegate #authentication and a lot more to Keycloak with #OpenIDConnect":
🎥 https://media.ccc.de/v/froscon2025-3237-delegate_authentication_and_a_lot_more_to_keycloak_with_openid_connect
🎞️ https://speakerdeck.com/ahus1/delegating-the-chores-of-authenticating-users
Want to connect with more Keycloak people? Join us for KeyConf25 in Amsterdam on August 28: https://keyconf.dev/
BRZ migrated the Austrian Business Service Portal with 2M+ users to #keycloak.
Read more in our latest #egovernment case study integrating 130+ public services which now uses Keycloak, #microservices and #GitOps: https://www.keycloak.org/2025/08/brz-case-study
The talks have now been announced for KEYCONF25, the annual one-day conference about #Keycloak! Secure your ticket for August 28 in Amsterdam now!
Join this one-day conference to learn how to manage #identities, use it in AI and non-AI scenarios, scale and manage it with great #observability, and run it securely with confidence!
Last but not least, the the "Meet the maintainers" panel to ask live questions.
See you all in Amsterdam soon!
Meet #Keycloak at KubeCon India in August!
Keycloak will be part of this year’s #KubeCon edition in #Hyderabad, #India on August 6-7. A lot of people use Keycloak and develop extensions for Keycloak in India, so we are thrilled to connect with the community. Ping me to have your contributions or projects mentioned in the talk!
https://www.keycloak.org/2025/06/keycloak-kubecon25-india-announce
The @OpenTalkMeeting videoconferencing solution needed a secure and scalable Identity and Access Management (IAM) solution to authenticate users across various services and chose to use #Keycloak.
Read more on their challenges and the solution in our #CNCF case study!