<div dir="ltr">Hi Bill,<div><span style="color:rgb(0,0,0)">the roles are defined at realm level. Frontend and backend applications have a scope mapping with assigned roles "user" under the menu "</span><span style="color:rgb(80,80,80);font-family:'Open Sans',Helvetica,Arial,sans-serif;font-size:13px;font-weight:bold;line-height:23.636362075805664px">Realm Roles".</span><div>
<div><pre style="color:rgb(0,0,0)">> Where are your roles defined? At the realm level? At the application
> level? If they are defined at the realm level you need to define a
> scope for the application. Go to the admin console. The application
> link for your front-end application. Go to the scope menu item and add
> the realm roles to the scope for the front-end application
<span style="font-family:arial">> Build and deploy the preconfigured demo and view the realm in the admin
</span><span style="font-family:arial">> console. You will see a similar setup where the "customer-portal" and
</span><span style="font-family:arial">> "product-portal" apps have their scope set to the realm level roles.
</span><span style="font-family:arial">> Scope is the set of roles an application or oauth client is allowed to
</span><span style="font-family:arial">> ask for.</span></pre><div><div>--</div>Davide</div>
</div></div></div></div>