[keycloak-user] ClientRoles property is empty in UserRepresentation
Tom Pearson
tpearson at bkool.com
Tue Aug 9 09:19:04 EDT 2016
I ran into the same issue with the realm roles. The problem is that the
documentation for methods such as getUser
<http://www.keycloak.org/docs/rest-api/index.html#_get_represenation_of_the_user>
should
make it clear that the UserRepresentation returns only a subset of the
fields. The same goes for creating a user - certain fields in the
UserRepresentation such as roles, password are ignored.
2016-08-09 15:04 GMT+02:00 Marek Posolda <mposolda at redhat.com>:
> On 09/08/16 11:48, NEMECKAY Marek wrote:
>
> Dear all,
>
> We are facing a problem with retrieving the client roles from Keycloak. In
> our implementation we are using the following API to find a retrieve user
> data via username:
> *http://www.keycloak.org/docs/rest-api/index.html#_get_users*
> <http://www.keycloak.org/docs/rest-api/index.html#_get_users>
>
> *It seems that you need different admin REST endpoint to get the client
> role mappings of user. It's this one : *
>
> GET /admin/realms/{realm}/users/{id}/role-mappings/clients/{client}
>
> Marek
>
>
> In the retrieved *UserRepresentation*
> <http://www.keycloak.org/docs/rest-api/index.html> object instance the
> property clientRoles is always null. We are using Keycloak 1.9.8 connected
> to a LDAP server for user federation. We are connecting a receiving the
> access token with a admin-user of the corresponding realm. This works just
> fine. We are also receiving user data like name, e-mail etc., but the
> client roles are always null. The mappers to sync roles between Keycloak
> and LDAP are also defined and working.
>
> Is there anything else we have overlooked or we should check?
>
> Thanks and BR,
> Marek
>
>
>
> _______________________________________________
> keycloak-user mailing listkeycloak-user at lists.jboss.orghttps://lists.jboss.org/mailman/listinfo/keycloak-user
>
>
>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20160809/ae446c94/attachment.html
More information about the keycloak-user
mailing list