<div dir="ltr"><div><div><div>Thanks Stian for replying,<br></div>Yes, we are implementing something like WIldCardPermissions and managing permissions at a application level , rather than on Keycloak.<br></div><div>each app maintains its own role to permission mappings.<br><br></div>thanks and regards,<br></div>Subhro.<br><div><br></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Wed, Jan 6, 2016 at 7:46 PM, Stian Thorgersen <span dir="ltr"><<a href="mailto:sthorger@redhat.com" target="_blank">sthorger@redhat.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">Currently Keycloak is limited to roles only. We are looking into expanding on that in the future though.</div><div class="gmail_extra"><br><div class="gmail_quote"><div><div class="h5">On 5 January 2016 at 05:08, Subhrajyoti Moitra <span dir="ltr"><<a href="mailto:subhrajyotim@gmail.com" target="_blank">subhrajyotim@gmail.com</a>></span> wrote:<br></div></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div><div class="h5"><div dir="ltr"><div><div><div><div><div><div>Hello,<br><br></div>Is there an ability in Keycloak to manage application/client "permissions", similar to what Shiro has using WildCardPermissions.<br><a href="http://shiro.apache.org/permissions.html" target="_blank">http://shiro.apache.org/permissions.html</a><br><br></div>I understand that this is very domain and application specific, but is there some generic way to manage these for specific Keycloak clients?<br><br></div>Currently trying to implement permissions for a couple of keycloak clients in custom way; roles are stored in keycloak, the applications manages the permission mapping with the specific roles.<br><br></div>Any pointers to the same would be very helpful.<br><br></div>Thanks and regards,<br></div>Subhro.<br></div>
<br></div></div>_______________________________________________<br>
keycloak-user mailing list<br>
<a href="mailto:keycloak-user@lists.jboss.org" target="_blank">keycloak-user@lists.jboss.org</a><br>
<a href="https://lists.jboss.org/mailman/listinfo/keycloak-user" rel="noreferrer" target="_blank">https://lists.jboss.org/mailman/listinfo/keycloak-user</a><br></blockquote></div><br></div>
</blockquote></div><br></div>