I'm not working on this plugin anymore, because I think, given the direction Keycloak is taking, it would be better to have this functionality as an external service, outside Keycloak.
I suggest implementing an SPI for user and user credentials. Then call an external service with those credentials and force https.
After you'll install this, you'll be able to choose this Hash provider as default in the console. Keep in mind this article, where the question about bcrypt or PBKDF2 over SHA256-crypt is discussed. Please read it, before using this plugin.
This plugin might be useful if you imported your users from a system who have Bcrypt as password hashing provider.
- Password Hash Provider.
- Bcrypt from patrickfav.
These providers are used to keep the plugin configuration running.