[keycloak-user] How to implement this using Keycloak
Rong Sang (CL-ATL)
rsang at carelogistics.com
Fri Jul 29 16:23:20 EDT 2016
Hi all,
I’m doing a POC using Keycloak. The normal authentication/authorization features work well, but I have the following requirement that cannot find a straightforward solution for. I hope some security experts in the mailing list can point me to the right direction.
Here is the requirement. A hospital has multiple units. Users should not have the access to patients in a unit that they are not authorized. I have one service that returns a list of patients across units. What’s the best way to set up authorization for this service?
As I said earlier, I cannot find a feature for me to implement this. Any idea is greatly appreciated.
Thanks,
Rong
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20160729/6211fe03/attachment.html
More information about the keycloak-user
mailing list