[keycloak-dev] Optional client role to specify who is permitted to authenticate to client

Stian Thorgersen sthorger at redhat.com
Thu Jun 1 07:05:44 EDT 2017

Would it be an idea to have a field on a client to specify a required role
that users have to have to be permitted to authenticate to the client?

We could add support for this directly in the login flows. If the user has
the required role redirect to the app, but if the user doesn't display an
error page stating you don't have access.

More information about the keycloak-dev mailing list