react-keycloak
Advanced tools
React bindings for Keycloak
React Keycloak requires:
keycloak-js matching the main version (e.g. "react-keycloak": "8.0.1" => "keycloak-js": "8.0.1-yymmdd")yarn add react-keycloak
or
npm install --save react-keycloak
Wrap your App inside KeycloakProvider and pass a keycloak instance as prop
import Keycloak from 'keycloak-js';
import { KeycloakProvider } from 'react-keycloak';
// Setup Keycloak instance as needed
const keycloak = new Keycloak();
// Wrap everything inside KeycloakProvider
const App = () => {
return <KeycloakProvider keycloak={keycloak}>...</KeycloakProvider>;
};
N.B. If your using other providers (such as react-redux) it is recommended to place them inside KeycloakProvider.
KeycloakProvider automatically invokes keycloak.init() method when needed and supports the following props:
initConfig, contains the object to be passed to keycloak.init() method, by default the following is used
{
onLoad: 'check-sso',
promiseType: 'native',
}
for more options see Keycloak docs.
LoadingComponent, a component to be displayed while keycloak is being initialized, if not provided child components will be rendered immediately. Defaults to null
isLoadingCheck, an optional loading check function to customize LoadingComponent display condition. Return true to display LoadingComponent, false to hide it.
Can be implemented as follow
keycloak => !keycloak.authenticated;
onEvent, an handler function that receives events launched by keycloak, defaults to null.
It can be implemented as follow
(event, error) => {
console.log('onKeycloakEvent', event, error);
}
Published events are:
onReadyonAuthSuccessonAuthErroronAuthRefreshSuccessonAuthRefreshErroronTokenExpiredonAuthLogoutonTokens, an handler function that receives keycloak tokens as an object every time they change, defaults to null.
Keycloak tokens are returned as follow
{
"idToken": string,
"refreshToken": string,
"token": string,
}
When a component requires access to Keycloak, wrap it inside the withKeycloak HOC.
import { withKeycloak } from 'react-keycloak';
const LoginPage = ({ keycloak, keycloakInitialized }) => {
// Here you can access all of keycloak methods and variables.
// See https://www.keycloak.org/docs/latest/securing_apps/index.html#javascript-adapter-reference
return (
<div>
<button type="button" onClick={() => keycloak.login()}>
Login
</button>
</div>
);
};
export default withKeycloak(LoginPage);
Alternately, when a component requires access to Keycloak, you can also use the useKeycloak Hook.
import { useKeycloak } from 'react-keycloak';
export default () => {
// Using array destructuring
const [keycloak, initialized] = useKeycloak();
// or Object destructuring
const { keycloak, initialized } = useKeycloak();
// Here you can access all of keycloak methods and variables.
// See https://www.keycloak.org/docs/latest/securing_apps/index.html#javascript-adapter-reference
return (
<div>
<div>{`User is ${!keycloak.authenticated ? 'NOT ' : ''}authenticated`}</div>
{!!keycloak.authenticated && (
<button type="button" onClick={() => keycloak.logout()}>
Logout
</button>
)}
</div>
);
};
See inside src/demo for a demo implementing this library main features.
To run the demo app:
npm install or yarn)keycloak.json file inside public folder or setup Keycloak instance inside src/demo/App.js following Keycloak guidenpm start or yarn start)Note: The demo app is not meant to be production-ready nor a starter-kit but just a way to show this module components and their usage.
Library bootstrapped using DimiMikadze/create-react-library and inspired by react-redux
Made with :sparkles: & :heart: by Mattia Panzeri and contributors
If you found this project to be helpful, please consider buying me a coffee.
FAQs
React bindings for Keycloak javascript adapter
The npm package react-keycloak receives a total of 80 weekly downloads. As such, react-keycloak popularity was classified as not popular.
We found that react-keycloak demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
GitHub postponed a new billing model for self-hosted Actions after developer pushback, but moved forward with hosted runner price cuts on January 1.
Research
Destructive malware is rising across open source registries, using delays and kill switches to wipe code, break builds, and disrupt CI/CD.
Security News
Socket CTO Ahmad Nassri shares practical AI coding techniques, tools, and team workflows, plus what still feels noisy and why shipping remains human-led.