[keycloak-user] Unexpected ForbiddenException on createClient with 3.2.0.Final

Sebastien Blanc sblanc at redhat.com
Wed Jul 19 10:44:54 EDT 2017 

Thx and it's https://issues.jboss.org/browse/KEYCLOAK-5211 I believe ;)

On Wed, Jul 19, 2017 at 4:25 PM, Stephane Granger <
stephane.granger at gmail.com> wrote:

> https://issues.jboss.org/browse/KEYCLOAK-5015
>
> On Wed, Jul 19, 2017 at 1:44 AM, Sebastien Blanc <sblanc at redhat.com>
> wrote:
>
>> Hi,
>>
>> Do you have a link to your test program/reproducer ?
>> And could you also open a ticket at https://issues.jboss.org/brows
>> e/KEYCLOAK ?
>>
>> Seb
>>
>>
>> On Tue, Jul 18, 2017 at 10:56 PM, Stephane Granger <
>> stephane.granger at gmail.com> wrote:
>>
>>> Hi,
>>>
>>> since upgrading to 3.2.0.Final, my client is not able to create clients
>>> in
>>> a realm it just created.  This was working before with 3.1.0.Final and
>>> earlier versions as well.
>>>
>>> I wrote a small program to demonstrate the problem.
>>>
>>> Before running the program, you'll need to add the "testClient" to the
>>> master realm,
>>> Protocol: openid-connect
>>> Access type: confidential
>>>
>>> You will need to modify the code to change the CLIENT_SECRET constant to
>>> match your environment.  You'll also need to change the keycloak.version
>>> property in the pom.xml to match the version you're testing against.
>>>
>>> When running with 3.2.0.Final, we get the following:
>>> 14:50:28,552 ERROR [org.jboss.resteasy.resteasy_jaxrs.i18n] (default
>>> task-48) RESTEASY002005: Failed executing POST
>>> /admin/realms/testRealm/clients: org.keycloak.services.Forbidde
>>> nException
>>> at
>>> org.keycloak.services.resources.admin.permissions.ClientPerm
>>> issions.requireManage(ClientPermissions.java:248)
>>> at
>>> org.keycloak.services.resources.admin.ClientsResource.create
>>> Client(ClientsResource.java:164)
>>>
>>> With 3.1.0.Final, the "testClient" is created successfully in the new
>>> testRealm.
>>>
>>> Stephane
>>>
>>> _______________________________________________
>>> keycloak-user mailing list
>>> keycloak-user at lists.jboss.org
>>> https://lists.jboss.org/mailman/listinfo/keycloak-user
>>>
>>
>>
>

More information about the keycloak-user mailing list