Once an organization has rolled out single-sign-on, some of the next challenges are how to enable user self-management, integrating the user base of other organizations, and using social logins.
Keycloak is an Open Source Identity and Access Management (IAM) solution that is well-known for its single-sign-on capabilities based on OpenID Connect and SAML. It also provides among other features like identity brokerage, federation, and user self-management. With the latest additions around dynamic user profiles, this is getting even more powerful.
This talk demos Keycloak's features and shows how it hides the configuration and complexity of these integrations from the client applications which only need to support either OpenID Connect or SAML.
Keycloak homepage: https://www.keycloak.org/