https://www.youngju.dev/blog 천천히 올바르게. AI Researcher & DevOps Engineer Youngju's tech blog. GPU/CUDA, LLM, MLOps, Kubernetes AI workloads, distributed training, and data engineering. ko fjvbn2003@gmail.com (Youngju Kim) fjvbn2003@gmail.com (Youngju Kim) Fri, 12 Jun 2026 00:00:00 GMT https://www.youngju.dev/blog/devops/2026-06-12-keycloak-authorization-services-uma-fine-grained.en https://www.youngju.dev/blog/devops/2026-06-12-keycloak-authorization-services-uma-fine-grained.en A deep dive into Keycloak Authorization Services that goes beyond the limits of RBAC. Covers the resource/scope/policy/permission model, the UMA 2.0 grant flow, policy enforcer configuration, decision strategies, and how to compare and combine Keycloak with external authorization engines like OPA and OpenFGA. Fri, 12 Jun 2026 00:00:00 GMT fjvbn2003@gmail.com (Youngju Kim) keycloakauthorizationumaoauthsecuritydevops https://www.youngju.dev/blog/devops/2026-06-12-keycloak-authorization-services-uma-fine-grained.ja https://www.youngju.dev/blog/devops/2026-06-12-keycloak-authorization-services-uma-fine-grained.ja RBAC の限界を超える Keycloak Authorization Services を深掘りします。resource/scope/policy/permission モデル、UMA 2.0 grant フロー、policy enforcer の設定、decision strategy、さらに OPA や OpenFGA といった外部認可エンジンとの比較と併用パターンまで整理します。 Fri, 12 Jun 2026 00:00:00 GMT fjvbn2003@gmail.com (Youngju Kim) keycloakauthorizationumaoauthsecuritydevops https://www.youngju.dev/blog/devops/2026-06-12-keycloak-authorization-services-uma-fine-grained https://www.youngju.dev/blog/devops/2026-06-12-keycloak-authorization-services-uma-fine-grained RBAC의 한계를 넘어서는 Keycloak Authorization Services를 깊이 있게 다룹니다. resource/scope/policy/permission 모델, UMA 2.0 grant 흐름, policy enforcer 설정, decision strategy, 그리고 OPA/OpenFGA 같은 외부 인가 엔진과의 비교와 병행 패턴까지 정리합니다. Fri, 12 Jun 2026 00:00:00 GMT fjvbn2003@gmail.com (Youngju Kim) keycloakauthorizationumaoauthsecuritydevops