Jitsi Keycloak Adapter v2

• 1. Features
• 2. Setup
• 3. Keycloak configuration
• 4. Similar projects
• 5. Sponsors

Allow Jitsi to use Keycloak as an identity and OIDC provider. This is the second generation of jitsi-keycloak-adapter designed for better integration with Jitsi's built-in features such as tokenAuthUrl, muc_wait_for_host, etc.

See jitsi-keycloak-adapter-v1 for the initial design which is still actively maintained.

1. Features

• SSO for Jitsi through Keycloak. Allows Jitsi to run as an OIDC consumer.
• Better integration with Jitsi's built-in features for authentication flow.
• Allows guest users and wait for host screen if needed.

2. Setup

See standalone setup guide to install it on a standalone Jitsi server.

See Docker setup guide to integrate it with a Dockerized Jitsi setup.

3. Keycloak configuration

Create client inside realm.

• Set client id
• Add Jitsi URL into Valid redirect URIs
• Add Jitsi URL into Web origins
• Set Access type

  • For Keycloak versions < 20.x, set Access type to public:

    

  • For Keycloak versions >= 20.x, disable Client authentication.

    

4. Similar projects

• jitsi-keycloak-adapter-v1
• jitsi-keycloak
• Jitsi-SAML2JWT
• jitsi-OIDC-adapter
• Jitsi Go OpenID

5. Sponsors