Go to file
2021-08-02 08:12:04 +02:00
.github Change event to get tag_name 2021-05-02 15:42:29 +02:00
src/main Add the list of authorized mails in registration forms 2021-04-14 22:13:03 +02:00
.gitignore 🎉 First try 2019-06-19 07:21:48 +02:00
LICENSE 🎉 First try 2019-06-19 07:21:48 +02:00
pom.xml Bump maven-gpg-plugin from 1.6 to 3.0.1 2021-08-02 08:12:04 +02:00
README.md Add the list of authorized mails in registration forms 2021-04-14 22:13:03 +02:00

Keycloak - Whitelist email domain for registration

This extension allows you to validate email domain used for registration in keycloak to accept only a finite list of domain.

You can use basic glob syntax (only * and ? are supported)

How to install

Simply drop the jar in $KEYCLOAK_HOME\standalone\deployments, it will be automatically deployed by keycloak.

How to use

  • Go to the admin console, in authentication menu.
  • Copy the registration flow
  • add a new execution below "Profile Validation" and choose "Profile Validation With Email Domain Check"
  • Configure this new execution (otherwise, keycloak will only accept "exemple.org" domains)
  • Change the registration binding to this new flow
  • Configure the realm to accept registration and verify email (this is important!)

Display authorized mail domains in register forms

This extension provides the list of authorized patterns in the authorizedMailDomains attribute of the registration page.

This can be used like this :

 <div class="${properties.kcLabelWrapperClass!}">
                    <label for="email" class="${properties.kcLabelClass!}">${msg("email")} (only ${authorizedMailDomains?join(", ")})</label>
 </div>