keycloak-scim/server_admin/topics/identity-broker.adoc


[[_identity_broker]]
== Integrating identity providers

An Identity Broker is an intermediary service connecting service providers with identity providers. The identity broker creates a relationship with an external identity provider to use the provider's identities to access the internal services the service provider exposes.

From a user perspective, identity brokers provide a user-centric, centralized way to manage identities for security domains and realms. You can link an account with one or more identities from identity providers or create an account based on the identity information from them.

An identity provider derives from a specific protocol used to authenticate and send authentication and authorization information to users. It can be:

* A social provider such as Facebook, Google, or Twitter. 
* A business partner whose users need to access your services.
* A cloud-based identity service you want to integrate.

Typically, {project_name} bases identity providers on the following protocols: 

* `SAML v2.0`            
* `OpenID Connect v1.0`            
* `OAuth v2.0`
Keycloak 15778 (#59) * KEYCLOAK-15778 Initial commit * KEYCLOAK-15778 fixes missing master realm png * KEYCLOAK-15778 fixes missing master realm png 2021-03-19 21:31:19 +00:00
fixing cross-references, adding and changing attribute id's 2016-06-01 08:49:54 +00:00			`[[_identity_broker]]`
Applying official TOC 2021-02-19 19:10:41 +00:00			`== Integrating identity providers`
add 2016-04-18 15:15:25 +00:00
KEYCLOAK-15756 Initial wording (#58) * KEYCLOAK-15756 Initial wording * KEYCLOAK-15756 Post feedback changes 2021-03-22 13:20:23 +00:00			`An Identity Broker is an intermediary service connecting service providers with identity providers. The identity broker creates a relationship with an external identity provider to use the provider's identities to access the internal services the service provider exposes.`
add 2016-04-18 15:15:25 +00:00
KEYCLOAK-15756 Initial wording (#58) * KEYCLOAK-15756 Initial wording * KEYCLOAK-15756 Post feedback changes 2021-03-22 13:20:23 +00:00			`From a user perspective, identity brokers provide a user-centric, centralized way to manage identities for security domains and realms. You can link an account with one or more identities from identity providers or create an account based on the identity information from them.`
add 2016-04-18 15:15:25 +00:00
KEYCLOAK-15756 Initial wording (#58) * KEYCLOAK-15756 Initial wording * KEYCLOAK-15756 Post feedback changes 2021-03-22 13:20:23 +00:00			`An identity provider derives from a specific protocol used to authenticate and send authentication and authorization information to users. It can be:`
Minor changes to identity brokering chapter. 2016-06-05 21:22:42 +00:00
KEYCLOAK-15756 Initial wording (#58) * KEYCLOAK-15756 Initial wording * KEYCLOAK-15756 Post feedback changes 2021-03-22 13:20:23 +00:00			`* A social provider such as Facebook, Google, or Twitter.`
			`* A business partner whose users need to access your services.`
			`* A cloud-based identity service you want to integrate.`

			`Typically, {project_name} bases identity providers on the following protocols:`
add 2016-04-18 15:15:25 +00:00
			* `SAML v2.0`
			* `OpenID Connect v1.0`
Small fixes * keycloak by Keycloak * uri by URI * oAuth by OAuth * saml by SAML * oidc by OIDC * infinispan by Infinispan * uri vs URI 2016-06-01 14:16:15 +00:00			* `OAuth v2.0`