[keycloak-dev] Unifying applications and oauth clients

Stian Thorgersen stian at redhat.com
Wed Apr 8 00:29:15 EDT 2015 


----- Original Message -----
> From: "Bill Burke" <bburke at redhat.com>
> To: "Stian Thorgersen" <stian at redhat.com>
> Cc: keycloak-dev at lists.jboss.org
> Sent: Tuesday, 7 April, 2015 3:26:55 PM
> Subject: Re: [keycloak-dev] Unifying applications and oauth clients
> 
> Also you forgot:
> 
> * Redo all the screencast demos.  I'm happy to do it. (well, not that
> happy), but need to schedule a week for this.

Maybe we should wait with redoing the screencasts until after we've done the other polishing tasks of the admin console?

> 
> 
> 
> On 4/7/2015 9:18 AM, Stian Thorgersen wrote:
> > This is going to be fun!
> >
> > So plan is:
> >
> > 1. Remove oauth-client
> > 2. Move everything from abstract client to application
> > 3. Add consent required option to application
> > 4. Rename application to client
> > 5. Migration of db and representations
> >
> > Please, don't do to much changes to the model and representations in the
> > next few days ;)
> >
> > ----- Original Message -----
> >> From: "Stian Thorgersen" <stian at redhat.com>
> >> To: "Bill Burke" <bburke at redhat.com>
> >> Cc: keycloak-dev at lists.jboss.org
> >> Sent: Tuesday, 7 April, 2015 2:38:43 PM
> >> Subject: Re: [keycloak-dev] Unifying applications and oauth clients
> >>
> >> consent is nicer as well ;)
> >>
> >> ----- Original Message -----
> >>> From: "Bill Burke" <bburke at redhat.com>
> >>> To: keycloak-dev at lists.jboss.org
> >>> Sent: Tuesday, 7 April, 2015 2:26:11 PM
> >>> Subject: Re: [keycloak-dev] Unifying applications and oauth clients
> >>>
> >>> FYI, I think the correct term might be "consent" rather than "grant".
> >>> "Consent" pops up a lot in the OIDC spec.
> >>>
> >>> On 4/7/2015 7:53 AM, Stian Thorgersen wrote:
> >>>> I'm starting work on combining applications and oauth clients into a
> >>>> single
> >>>> client type.
> >>>>
> >>>> For now there will be a single toggle to enable/disable grant page, but
> >>>> in
> >>>> the future we can consider having finer grained control of this. For
> >>>> example an application can get role-a without consent screen, but
> >>>> consent
> >>>> screen would be displayed for role-b.
> >>>>
> >>>> Depending on how long it takes I may add some sort of filtering option
> >>>> on
> >>>> the admin console to make it easier to find a client.
> >>>> _______________________________________________
> >>>> keycloak-dev mailing list
> >>>> keycloak-dev at lists.jboss.org
> >>>> https://lists.jboss.org/mailman/listinfo/keycloak-dev
> >>>>
> >>>
> >>> --
> >>> Bill Burke
> >>> JBoss, a division of Red Hat
> >>> http://bill.burkecentral.com
> >>> _______________________________________________
> >>> keycloak-dev mailing list
> >>> keycloak-dev at lists.jboss.org
> >>> https://lists.jboss.org/mailman/listinfo/keycloak-dev
> >>>
> >> _______________________________________________
> >> keycloak-dev mailing list
> >> keycloak-dev at lists.jboss.org
> >> https://lists.jboss.org/mailman/listinfo/keycloak-dev
> >>
> 
> --
> Bill Burke
> JBoss, a division of Red Hat
> http://bill.burkecentral.com
>

More information about the keycloak-dev mailing list