小贝子编程

keycloak spring引导配置用于客户角色



我有一个配置了keycloak的弹簧启动启用的REST API。

keycloak.realm = demo
keycloak.realmKey = yfdsfdiufuydhf
keycloak.auth-server-url = http://localhost:8080/auth
keycloak.ssl-required = external
keycloak.resource = lib-backend
keycloak.bearer-only = true
keycloak.credentials.secret = a9fa2e60-324b-4508-b33d-84be2a981da3
# Keycloak Enable CORS
keycloak.cors = true
keycloak.securityConstraints[0].securityCollections[0].name = spring secured api
keycloak.securityConstraints[0].securityCollections[0].authRoles[0] = lib_sadmin

上面的代码将毫无任何问题将API返回到客户端。

如果要使用客户端角色操作,则应将其添加到您的配置中:

keycloak.use-resource-role-mappings=true

请参阅文档。

keycloak.use-resource-lole-mappings = true = true返回403。= false,它能够看到角色并按预期工作。这是尚未解决的变更请求的链接

相关内容

最新更新


热门标签:

javascript python java c# php android html jquery c++ css ios sql mysql arrays asp.net json python-3.x ruby-on-rails .net sql-server django objective-c excel regex ruby linux ajax iphone xml vba spring asp.net-mvc database wordpress string postgresql wpf windows xcode bash git oracle list vb.net multithreading eclipse algorithm macos powershell visual-studio image forms numpy scala function api selenium