Is there an easy way to update a response header based on the authentication status of a user? Example: failed login already shows to the client as it is known information. Can Keycloak set a header based on that event?
If you are building a custom authentication flow, you can create a custom Authenticator that sets a response header.
Look here for more documentation Server Developer Guide
1 Like
As in the only way to do this is with a custom extension?
As far as I know, yes.