TwoGenIdentity at Keycloak DevDay 2025

Our presentation at Keycloak DevDay 2025

We had a great time speaking at Keycloak DevDay 2025 (Germany - Remote) on Mastering Access Control - Low-Code Authorization with ReBAC, Decoupling Patterns, and Policy as Code.

Martin Besozzi presented and shared insights on on open standards such as OpenID Connect, OAuth 2.0, and the emerging OpenID AuthZEN specifications, along with the integration of Keycloak, OpenFGA, and Apache APISIX - Cloud-Native API Gateway to enable externalized and centralized authorization, decoupled access control, and policy as code.
These platform integrations are made possible through custom open-source extensions and plugins developed and maintained by TwoGenIdentity. The OpenFGA Event Publisher Keycloak extension synchronizes authorization-relevant data between Keycloak and OpenFGA models, while the Authorizer OpenFGA APISIX plugin enforces fine-grained access control using Relationship-Based Access Control (ReBAC) policies.
Thank you to everyone who joined the session and shared their feedback! Is was truly inspiring to connect with so many experts driving innovation in modern authentication and authorization.

If you’d like to learn more, let’s stay connected through TwoGenIdentity and arrange a call to continue the discussion.