Hello,
We are using ABP 8.2.1 currently but if necessary we can upgrade to 9.
We have two topics:
1. We are developing different applications using ABP. We do not want to have separate user and permission management for each application. Instead, we want all applications to communicate with a central identity management system. In other words, whether logging into Application A or Application B, we want to redirect users to the same central login application (we will send the application client information within the URL). After successful authentication, we want roles and permissions to be included in the token and redirect back to the application.
Is this possible with the AbpAccountPro module?
If it is possible, we assume that the user and role tables will exist only in the central application, and the client applications will not need these tables. Is that correct?
2. The applications we develop are used by different enterprise customers. Some of these customers want to handle the authentication part within their own systems (e.g., Keycloak or Azure MFA). In this scenario, only the authentication will be handled via Keycloak, but all other processes such as roles and permissions will continue to be managed on our side.
Is it possible to achieve this?
When the login screen is opened, can we directly redirect to the Keycloak (external provider) login screen? We don’t want users to have to click a "Login with Keycloak" button again when the login page opens.
