[keycloak-user] Loading extra info in the access token
Aritz Maeztu
amaeztu at tesicnor.com
Wed Sep 28 04:08:41 EDT 2016
I'm developing the authorization part for my application with keycloak,
but I need to include some extra info when the authentication is performed.
Each user in my application has permissions for a set of organizations
and I want to have the organization ids loaded in the access token (I
think this might be convenient?). The users themselves might be stored
in the keycloak database itself, but the organizations they have access
to might change in runtime, that's why I want to store them in the
access token, to have them reloaded each time a user logs in. Do I need
to implement a custom SPI for this?
Regards
--
Aritz Maeztu Otaño
Departamento Desarrollo de Software
<https://www.linkedin.com/in/aritz-maeztu-ota%C3%B1o-65891942>
<http://www.tesicnor.com>
Pol. Ind. Mocholi. C/Rio Elorz, Nave 13E 31110 Noain (Navarra)
Telf. Aritz Maeztu: 948 68 03 06
Telf. Secretaría: 948 21 40 40
Antes de imprimir este e-mail piense bien si es necesario hacerlo: El
medioambiente es cosa de todos.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20160928/717317d4/attachment.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: linkdin.gif
Type: image/gif
Size: 1295 bytes
Desc: not available
Url : http://lists.jboss.org/pipermail/keycloak-user/attachments/20160928/717317d4/attachment.gif
-------------- next part --------------
A non-text attachment was scrubbed...
Name: logo.png
Type: image/png
Size: 2983 bytes
Desc: not available
Url : http://lists.jboss.org/pipermail/keycloak-user/attachments/20160928/717317d4/attachment.png
More information about the keycloak-user
mailing list