[keycloak-user] Unexpected ForbiddenException on createClient with 3.2.0.Final
Stephane Granger
stephane.granger at gmail.com
Wed Jul 19 10:25:51 EDT 2017
https://issues.jboss.org/browse/KEYCLOAK-5015
On Wed, Jul 19, 2017 at 1:44 AM, Sebastien Blanc <sblanc at redhat.com> wrote:
> Hi,
>
> Do you have a link to your test program/reproducer ?
> And could you also open a ticket at https://issues.jboss.org/
> browse/KEYCLOAK ?
>
> Seb
>
>
> On Tue, Jul 18, 2017 at 10:56 PM, Stephane Granger <
> stephane.granger at gmail.com> wrote:
>
>> Hi,
>>
>> since upgrading to 3.2.0.Final, my client is not able to create clients in
>> a realm it just created. This was working before with 3.1.0.Final and
>> earlier versions as well.
>>
>> I wrote a small program to demonstrate the problem.
>>
>> Before running the program, you'll need to add the "testClient" to the
>> master realm,
>> Protocol: openid-connect
>> Access type: confidential
>>
>> You will need to modify the code to change the CLIENT_SECRET constant to
>> match your environment. You'll also need to change the keycloak.version
>> property in the pom.xml to match the version you're testing against.
>>
>> When running with 3.2.0.Final, we get the following:
>> 14:50:28,552 ERROR [org.jboss.resteasy.resteasy_jaxrs.i18n] (default
>> task-48) RESTEASY002005: Failed executing POST
>> /admin/realms/testRealm/clients: org.keycloak.services.ForbiddenException
>> at
>> org.keycloak.services.resources.admin.permissions.ClientPerm
>> issions.requireManage(ClientPermissions.java:248)
>> at
>> org.keycloak.services.resources.admin.ClientsResource.
>> createClient(ClientsResource.java:164)
>>
>> With 3.1.0.Final, the "testClient" is created successfully in the new
>> testRealm.
>>
>> Stephane
>>
>> _______________________________________________
>> keycloak-user mailing list
>> keycloak-user at lists.jboss.org
>> https://lists.jboss.org/mailman/listinfo/keycloak-user
>>
>
>
More information about the keycloak-user
mailing list