[keycloak-user] Unexpected ForbiddenException on createClient with 3.2.0.Final
Bill Burke
bburke at redhat.com
Wed Jul 19 19:38:50 EDT 2017
See my response in the JIRA. This bug was rejected as it is expected
behavior. The code I used to reproduce and explanation is in the JIRA
comment
On 7/19/17 10:55 AM, Stephane Granger wrote:
> Doh! You are right :).
>
> Bad cut & paste!
>
>
>
> 2017-07-19 14:44:54 +0000 Sebastien Blanc <sblanc at redhat.com> :
>
>> Thx and it's https://issues.jboss.org/browse/KEYCLOAK-5211 I believe ;)
>>
>> On Wed, Jul 19, 2017 at 4:25 PM, Stephane Granger <
>> stephane.granger at gmail.com> wrote:
>>
>>> https://issues.jboss.org/browse/KEYCLOAK-5015
>>>
>>> On Wed, Jul 19, 2017 at 1:44 AM, Sebastien Blanc <sblanc at redhat.com>
>>> wrote:
>>>
>>>> Hi,
>>>>
>>>> Do you have a link to your test program/reproducer ?
>>>> And could you also open a ticket at https://issues.jboss.org/brows
>>>> e/KEYCLOAK ?
>>>>
>>>> Seb
>>>>
>>>>
>>>> On Tue, Jul 18, 2017 at 10:56 PM, Stephane Granger <
>>>> stephane.granger at gmail.com> wrote:
>>>>
>>>>> Hi,
>>>>>
>>>>> since upgrading to 3.2.0.Final, my client is not able to create clients
>>>>> in
>>>>> a realm it just created. This was working before with 3.1.0.Final and
>>>>> earlier versions as well.
>>>>>
>>>>> I wrote a small program to demonstrate the problem.
>>>>>
>>>>> Before running the program, you'll need to add the "testClient" to the
>>>>> master realm,
>>>>> Protocol: openid-connect
>>>>> Access type: confidential
>>>>>
>>>>> You will need to modify the code to change the CLIENT_SECRET constant to
>>>>> match your environment. You'll also need to change the keycloak.version
>>>>> property in the pom.xml to match the version you're testing against.
>>>>>
>>>>> When running with 3.2.0.Final, we get the following:
>>>>> 14:50:28,552 ERROR [org.jboss.resteasy.resteasy_jaxrs.i18n] (default
>>>>> task-48) RESTEASY002005: Failed executing POST
>>>>> /admin/realms/testRealm/clients: org.keycloak.services.Forbidde
>>>>> nException
>>>>> at
>>>>> org.keycloak.services.resources.admin.permissions.ClientPerm
>>>>> issions.requireManage(ClientPermissions.java:248)
>>>>> at
>>>>> org.keycloak.services.resources.admin.ClientsResource.create
>>>>> Client(ClientsResource.java:164)
>>>>>
>>>>> With 3.1.0.Final, the "testClient" is created successfully in the new
>>>>> testRealm.
>>>>>
>>>>> Stephane
>>>>>
>>>>> _______________________________________________
>>>>> keycloak-user mailing list
>>>>> keycloak-user at lists.jboss.org
>>>>> https://lists.jboss.org/mailman/listinfo/keycloak-user
>>>>>
>>>>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
More information about the keycloak-user
mailing list