Keymate Logo

See Everything, Miss Nothing—From Tokens to Topics

Keymate integrates native OpenTelemetry instrumentation and streams traces, metrics, and logs into SigNoz—offering end-to-end observability across authentication, authorization, API gateway, event pipelines, and transformation logic. No more guesswork in debugging, SLA monitoring, or security tracing.

See Everything, Miss Nothing—From Tokens to Topics

One Pipeline. Complete Visibility.

All Keymate components are instrumented with OpenTelemetry for consistent observability. This includes: Authentication flows (including external IdP and token exchange). Authorization decisions (FGAC, policy evaluation, risk analysis). API Gateway plugins and service mesh filters. Event pipelines (subscription, transformation, delivery). Internal microservices (enrichment, audit, config store). Each trace includes span metadata such as tenant, user ID, session, org-unit, resource, and policy result. All signals (traces, metrics, logs) are streamed to SigNoz, allowing: Real-time dashboarding. Threshold-based alerts. Per-request debugging. SLA & latency monitoring. Distributed transaction reconstruction.

End-to-End Observability Pipeline

Native OpenTelemetry instrumentation across all Keymate components provides complete visibility into authentication, authorization, and event processing workflows.

Example: Unified tracing, logging, and performance insights for IAM workloads

Key Components:

OpenTelemetry Instrumentation
SigNoz Integration
Multi-Tenant Telemetry
Real-time Dashboards
Alert & SLA Monitoring

What Makes It Unique

Full OpenTelemetry Coverage

Traces, logs, metrics collected across all Keymate components

SigNoz Integration

Visualize traces, metrics, and alerts in an open-source APM tool

Trace Context Linking

Every log is enriched with trace/span ID for root-cause analysis

Multi-Tenant Telemetry Segmentation

Tenant-aware filtering and analysis

Token Flow Tracing

From login to token issue to access decision, all steps observable

Policy Execution Span Tagging

See which policies were evaluated and why access was granted/denied

Event Pipeline Tracing

Visualize each stage of an event lifecycle, including errors

Alert Hooks & SLA Dashboards

Trigger alerts on latency, error rates, or policy failures

Frequently Asked Questions

No, but it is the default visualization backend. OpenTelemetry allows you to plug in your preferred collector or APM.
Default retention is 14 days. Log files are also optionally retained locally for fallback and replay.
Yes. Keymate core services (API gateway plugin, FGAC, Admin Console, Event Hub, etc.) are instrumented out-of-the-box.
Yes. Trace metadata includes tenant and org-unit info for segmented views.
Yes. PII is either anonymized or masked based on log level, and all logs are access-controlled.

How to Use This Feature

Follow these steps to enable comprehensive observability for your IAM workloads.

Implementation Steps

1

Deploy Keymate components with OpenTelemetry sidecar or agent enabled

2

Configure OTLP collector to stream data to SigNoz (or your own APM)

3

Use Admin Console to define alert rules and dashboard widgets

4

Monitor key workflows (auth, policy check, event flow) via live traces

5

Drill into access denial spans or latency outliers using span metadata

6

Retain logs and traces for compliance auditing or forensics

ELEVATE YOUR IAM STRATEGY

Ready to Transform Your Keycloak Experience?

Implement fine-grained authorization, multi-tenant infrastructure, and comprehensive security policies with Keymate — built on the Keycloak foundation you already trust.