[keycloak-user] Auth with Kaycloak
valsaraj pv
valsarajpv at gmail.com
Mon Feb 19 09:48:43 EST 2018
Hi,
Yes, I did these steps and created role mapper.
But what is the difference between role mapper and group mapper?
I checked roles and tooltips, need to check ldap sample.
How to set default roles if a user don't have any role mapped in LDAP?
Thanks!
On 19-Feb-2018 7:49 PM, "Marek Posolda" <mposolda at redhat.com> wrote:
You need to create LDAP UserStorage provider in admin console and then
configure some mappers (Role mappers or Group mappers) for LDAP provider.
See docs, admin console tooltips and our example "ldap" from
keycloak-examples distribution for more details.
Marek
On 19/02/18 09:43, valsaraj pv wrote:
> Hi,
>
> I would like to know how to implement auth using Keyclock for an existing
> model using JAAS & LDAP. Currently a user is aithenticated with LDAP
> directly from login module. If the user is in LDAP group, those roles will
> be set. If there is no group for a user in LDAP, some hard coded roles will
> be set from login module. When Keyclock is used, what kind of role mapping
> required for this scenario? How to do this conditional role mapping?
>
> Thanks!
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>
More information about the keycloak-user
mailing list