This repository includes custom policies to exetend Keycloak's functionalities to support STIG-ready content for securing Keycloak against the Defense Information Systems Agency's (DISA) Authentication, Authorization and Accounting Server Security Requirements Guide.
Content available on the Maven Central Repository.
See the subdirectory READMEs for info on using the modules/inserting them into your Keycloak installation
- Emails an admin on User and Admin Events.
- Enforces 24 hours as the minimum lifetime for passwords.