[keycloak-user] What's the point of creating roles per realm and client?
Stian Thorgersen
sthorger at redhat.com
Thu Feb 11 03:22:03 EST 2016
Realm roles vs client roles are there to give you an option. You can use
one or both, it's up to you.
In general realm roles would be roles that are global to your organization
(for example sales, admin, etc..). While client roles would be roles that
are specific to the client.
On 11 February 2016 at 07:33, Renann Prado <darkness.renann at gmail.com>
wrote:
> I'm pretty new to keycloak. Amazing application btw.
> It's working very well, however I found strange/confusing that I have to
> create roles in the level of the realm, then per client and then assign to
> each user.
> What I mean is: why don't we have the roles created in the level of the
> realm and then we just assign per application user or is there an option to
> make that happen?
> Otherwise I have to keep creating roles for all clients, then assigning
> for all users. In my case there aren't many users/roles/applications, so
> it's fine. But it would be nice to know how to do that.
>
> Thanks
>
> Renann Prado
>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20160211/a884965a/attachment.html
More information about the keycloak-user
mailing list