Re: [keycloak-dev] Realm admin permissions added
On 2/27/2014 6:12 AM, Stian Thorgersen wrote:
Added one more role create-realm. This is handy as it allows adding
users that can create new realms without giving them permissions to everything. When a
realm is created and the user is not an admin the user will be given all roles for that
realm. As a side-effect this also let's you have a SaaS type solution where
self-registered users can create and manage their own realms, but not access other
realms.
Now it's only a bit more testing + documentation left for this
Awesome! You figured out the chicken and egg problem with SaaS that
baffled me for awhile. Very cool Stian.
--
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com