<html>
<head>
<meta content="text/html; charset=utf-8" http-equiv="Content-Type">
</head>
<body text="#000000" bgcolor="#FFFFFF">
<div class="moz-cite-prefix">+1. That's what we have now and it's
good pattern IMO.<br>
<br>
Marek<br>
<br>
On 07/12/15 09:38, Stian Thorgersen wrote:<br>
</div>
<blockquote
cite="mid:CAJgngAebTnOyAfHfs+PEWzNM+c9K8jhqR4n6VHuqnrV_0qo3vA@mail.gmail.com"
type="cite">
<div dir="ltr">Should we not have one client for the roles that
represents the services (bearer-only), then have a separate
clients for admin GUI and CLI?</div>
<div class="gmail_extra"><br>
<div class="gmail_quote">On 7 December 2015 at 09:34, Marek
Posolda <span dir="ltr"><<a moz-do-not-send="true"
href="mailto:mposolda@redhat.com" target="_blank">mposolda@redhat.com</a>></span>
wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0
.8ex;border-left:1px #ccc solid;padding-left:1ex"><span
class="">On 03/12/15 20:06, Bill Burke wrote:<br>
> * We can remove the realm-management client in each
realm and just merge<br>
> the roles into security-admin-console.<br>
</span>Not sure about this one TBH. Also in 1.7 we
introduced the "admin-cli"<br>
client, which is used for direct-grants and has scope to<br>
realm-management similarly like security-admin-console. The<br>
security-admin-console is used for UI of admin console
(javascript<br>
client) when admin-cli is used for direct access to admin
REST endpoints<br>
for example from admin-client.<br>
<span class="HOEnZb"><font color="#888888"><br>
Marek<br>
</font></span>
<div class="HOEnZb">
<div class="h5">_______________________________________________<br>
keycloak-dev mailing list<br>
<a moz-do-not-send="true"
href="mailto:keycloak-dev@lists.jboss.org">keycloak-dev@lists.jboss.org</a><br>
<a moz-do-not-send="true"
href="https://lists.jboss.org/mailman/listinfo/keycloak-dev"
rel="noreferrer" target="_blank">https://lists.jboss.org/mailman/listinfo/keycloak-dev</a><br>
</div>
</div>
</blockquote>
</div>
<br>
</div>
</blockquote>
<br>
</body>
</html>