Using Keycloak with Streamlit

dirk · October 6, 2022, 9:01pm

Hey guys,

Got anyone a working example of an integration of
authentification with Keyclock into Streamlit?

I am able to authentificate when using login and password. But I do not want to deliver the login form in my application but like to redirect to the keycloak login form and go back to my application if login is correct.

So a access token has to be used. But after reading for hours I haven’t found the part dealing with the redirection to Keyclock and so on.

Every hint and ideas are highly appreciated.

Dirk

bleumink · November 3, 2022, 7:17pm

Hi Dirk,

I was running into similar issues and came up with the following component: streamlit-keycloak

The component first attempts single sign on silently and if this fails, opens a popup to the keycloak login page. After logging in, authentication state, an oauth token and user info is available in the application.

Hopefully this also works for your use case. Feedback is always welcome.

bruno · November 22, 2022, 1:24am

Hi @bleumink ,

As you know, I try your component and it’s usefull for me
I wanted to know how do you logout? I tried to add a disconnect button.

I tried some stuff like below without success: Probably because it attempts to sign on silently first.

from dataclasses import asdict
from streamlit_keycloak import login
import streamlit as st


def main():
    st.subheader(f"Welcome {keycloak.user_info['preferred_username']}!")
    st.write(f"Here is your user information:")
    st.write(asdict(keycloak))
    if st.button("Disconnect"):
        keycloak.authenticated = False


st.title("Streamlit Keycloak example")
keycloak = login(
    url="http://localhost:8080",
    realm="myrealm",
    client_id="myclient",
)

if keycloak.authenticated:
    main()

Is there a proper way to logout with your component or the functionnality is not implemented?

Enjoy your day
Bruno

bleumink · November 23, 2022, 8:07am

Hi Bruno,

Logging out is currently not implemented. The reasoning behind this is that a large use case for Keycloak is the single sign-on functionality. So signing out from the Streamlit app would also sign you put from all other services. So I reasoned Keycloak users wouldn’t be signing out that much.

It is on my todo list to implement this at some point though and keycloak-js provides functionality for doing this, but it might take a while until I get around to actually doing it.

Gideon

bruno · November 23, 2022, 9:32am

Alright, I understand.
Thank you very much for your answer.
Enjoy your day

system · November 23, 2023, 9:33am

This topic was automatically closed 365 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Introducing Streamlit-Keycloak: A component for user authentication and single sign-on in your app using Keycloak Custom Components	9	7309	May 17, 2024
Streamlit keycloak integration - Auth fails all the time Using Streamlit debugging , keycloak	1	638	November 17, 2024
Unable to authenticate using keycloak Custom Components docker	2	1982	March 28, 2025
Question about st.login() and st.logout() Using Streamlit session-state , discussion , login	2	273	December 26, 2025
Logout Doesn't require logging back in Deployment	1	1018	October 6, 2023

Using Keycloak with Streamlit

Related topics