<div dir="ltr">Actually, I wanted to clarify one thing:<div><br></div><div>In the demos the database-service is set up as bearer-only. Maybe that’s the problem I’m having. I have the dependent service set as confidential. But shouldn’t this be supported?</div><div><br></div><div>What if the service provides both user facing features and APIs that can be accessed with bearer tokens?</div><div><br></div><div>Thanks again,</div><div>Scott</div></div><div class="gmail_extra"><br><div class="gmail_quote">On Wed, Apr 15, 2015 at 11:41 AM, Scott Rossillo <span dir="ltr"><<a href="mailto:srossillo@smartling.com" target="_blank">srossillo@smartling.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">In the demos, there’s a clear example of how a user is authenticated against an application, say the customer-portal, and then the customer-portal requests information from the database-service using the access token as a bearer token. <div><br></div><div>In this example, the database-service accepts the bearer token and returns data.</div><div><br></div><div>However, using the Keycloak Adapters and attempting to do the same thing, the authentication is rejected. Any idea what may be causing this?</div><div><br></div><div>Thanks,</div><div>Scott</div></div>
</blockquote></div><br></div>