Login Platform with Auth Keycloak

User account is created in Keycloak by their client. Admin Client have access to manage their users.

Data required to log in using Keycloak :

• Username
• Password

In new flow, system in Qoin service will be generate JWT Token from token Keycloak to access all API Product and login platform.

Verify Access Platform

After users login to platform, system will verify access with Vault.

Example Request & Response

Generate JWT Token from Qoin Service

Method : GET

Endpoint URL : https://{hostname}/access/v2/generate/token/keycloak

Request Body :

Authorization : 
		"Bearer Token" : "{token_keycloak}"
Hedares :
		"PlatformKey" : "{platform_key}"

Response Body :

{
    "Status": "success",
    "StatusCode": 200,
    "Message": "success generate token",
    "Data": {
        "Token": "eyJhbGciOiJSUzI1Nfg46InR5cCI6IkpXVCJ9.eyJDbGllbnRJZCI6MTE0LCJFbWFpbCI6InVzZXJuYW1lQGdtYWlsLmNvbSIsIkV4cGlyZWQiOiIyMDI0LTA1LTEzIDE4OjIxOjU4IiwiRXhwb3NlUGVybWlzc2lvbiI6ZmFsc2UsIkZ1bGxuYW1lIjoiIiwiUGhvbmUiOiIiLCJQbGF0Zm9ybVNjb3BlIjoicHVibGljIiwiUm9sZSI6WyJBZG1pbmlzdHJhdG9yIExldmVsIDIiLCJBZG1pbmlzdHJhdG9yIl0sIlJvbGVUeXBlIjoicGxhdGZvcm0iLCJTb3VyY2UiOiJwbGF0Zm9ybSIsIlVzZXJJZCI6MCwiVXNlcm5hbWUiOiIifQ.dmF1bHQ6djE6UUttNXRNd2lHTW5KN0swbjlFc0NGVDVrZzlxRktjV2ZNN1UxMzV4clNOVmZaUGdjbmhzd2s3TjkzaW42RlhSb2lTcGtILzRTN0JUUWxhbHdFWFZ3NjRWWFBHc2J3NjEySjI1T3NuVmcrVWs5WjFSQlpNTllQWDJkUW1tTm83ZmgzVEpEOHdmUTIxc2ZDemsvM3pOL1NUaTF1MDdSMTgvS1lBQzV2OHlUTW1rTHBFUXZyVHhoNUZrUnNLV1hCREltR2Q3dk1WZjJEbE0vZlkwZFJNeHFiVTZCdkpZNGU0RTU5c3o2bzB4M2VDRVIraUFsK1BKNlZKUFJObmY3UWlaUE55Tm9HTitkdG15NUVSWWQ2M1NTVFNMUnFWVEs4bjJTU0RMRVNyQ3dhRDZnRUFMYXpTN0xscDJtSXpHbDhReURHRStoNmg4VFVkRW1BM0FYK1Jic0VnPT0",
        "RefreshToken": "eyJhbGciOiJSUzI1Ni9sdgl4tknR5cCI6IkpXVCJ9.eyJFbWFpbCI6InVzZXJuYW1lQGdtYWlsLmNvbSIsIkV4cGlyZWQiOiIyMDI0LTA1LTIwIDE2OjIxOjU4IiwiRnVsbG5hbWUiOiIiLCJJbnZhbGlkVW50aWwiOiIyMDI0LTA1LTEzIDE4OjIxOjU4IiwiUGhvbmUiOiIiLCJSZWZyZXNoSWQiOiIxNmU2MDJhZC1iOWM5LTRhMjktYWViYS05NDk4OGI5ZTNhYTciLCJSb2xlIjpbIkFkbWluaXN0cmF0b3IgTGV2ZWwgMiIsIkFkbWluaXN0cmF0b3IiXSwiVXNlcklkIjowLCJVc2VybmFtZSI6IiJ9.dmF1bHQ6djE6UzNDS3Nra1N1QVhCcnNEaHEzUXY3YmpVSDd3bXIrUUlaU0xBOU40bmdUdVF1aXZKcXh1eTgxZDBkbml3REpIZ0g0QTBGSkRuM2l2c25FdFFyYVhwaWJDak12Z0pZWFBIVUFXa01WMFhrK2R2RVcrTnJKdVRxU3N0WTFNNzhaQ3NoSmRWOFd4cjNmTWhTR3FOSGRONWcrMDJ4T1BWemtVMjJEUFB0dm83Ym1GaHZrL1RiYlo1QUpDS08xRDNONXNnaVVsaHQ3UHFwc1R5ZVMwLzRWSzV5Y1RabTlicGN2T0ZsZEFtNU96dldscnpuN1J3dEp6bVpmZER4aGJXbDR2VG10UzFua0wxa0xDTW0wTzBuK2tPNzZCTlF0ZkZvU1hVYmVuMVprbXJ2UFB3NHdBc0ZPaTd3RUY0WkxCa3I1V1lOYWx5dFVHdUxSUjRTN0VGbkw1WlJnPT0"
    }
}

*Use the result Token to hit all API Product and access in Qoin Service.