Login Page best practices
--- For more than 1 Identity Provider in your app, use IDP hint
If there is more than one IDP in the realm, the Keycloak server directs your users into a login page to let them choose the IDP that they want to authenticate with. It is possible to skip the login page or override the default IDP in Keycloak by passing the optional query param" kc_idp_hint". List of kc_idp_hints here
- If using an adapter, there is an option for providing
idpHint
, and - if not, please specify it in the
Authorization URL
in your code or configuration, i.e.http://localhost:8080/auth?kc_idp_hint=<idp_name>
- Please see here for more detail.
If the framework you are using prevents you from being able to pass through the IDP hint, please reach out to our team through rocket chat or email to ask about alternative options.