keycloak is great, it's very flexible and fairly lightweight (all things considered).

it can get a bit complex, but to be fair the whole oauth/oauth2.0/openid/openid-connect/saml is quite messy in general.

I have been using it for a year. No problems so far, and found it to be really flexible

Keycloak FTW. Been using it for 18 months now in production.

Very tangent question but someone could help as the discussion is about Keycloak.

In particular, I am trying to solve the problem of how I can share client secrets (so they can generate access token using it) with the respective clients.

I don't want to share them over email/ password protected doc.

I tried making one client for each realm and adding one user to it. When I login via user account using GUI, I am unable to see any info related to clients.

What am I doing wrong here?

What are the good practices around this?

Thanks kind folks

I have found confusing then support for multi-tenants and your own auth tables (ie: put the auth tables in the schema of each tenant?) across the board. Exist one project where I can do both?

Keycloak is great and pretty extensible on a per basis need.