[keycloak-user] Impersonating User via API
Alexander Schwartz
alexander.schwartz at gmx.net
Wed Feb 17 14:08:51 EST 2016
Hi Sarp,
I've seen this discussion, but it doesn't solve my problem as far as I
can see: direct grant needs a username and a password to get the access
token for that user.
For impersonation I don't have the password of the second user.
Basically I want to use an access token of the first user and the
username of the second user to receive an access token for the second user.
Regards,
Alexander
Am 17.02.2016 um 15:41 schrieb Sarp Kaya:
> Hi Alexander, please follow my Disabling status cookie thread
> http://lists.jboss.org/pipermail/keycloak-user/2016-February/004937.html
>
> On 2/17/16, 10:32 PM, "keycloak-user-bounces at lists.jboss.org on behalf of
> Alexander Schwartz" <keycloak-user-bounces at lists.jboss.org on behalf of
> alexander.schwartz at gmx.net> wrote:
>
>> Hello Keycloak Community,
>>
>> I want to use impersonate a user via API.
>>
>> The start point is a logged in user with an access token.
>>
>> The goal is to have an access and refresh token of an impersonated user.
>>
>> In a proof-of-concept I've used the impersonation admin API, but this
>> returns only cookies and redirects. When I follow the redirects I will
>> eventually retrieve access and refresh token.
>>
>> I wonder if there is a better suited API to obtain them directly.
>>
>> Thank you very much,
>> Alexander
>>
>> --
>> Alexander Schwartz (alexander.schwartz at gmx.net)
>> http://www.ahus1.de
>>
>> _______________________________________________
>> keycloak-user mailing list
>> keycloak-user at lists.jboss.org
>> https://lists.jboss.org/mailman/listinfo/keycloak-user
--
Alexander Schwartz (alexander.schwartz at gmx.net)
http://www.ahus1.de
More information about the keycloak-user
mailing list