[keycloak-dev] Permission for client scopes

Tuesday, 4 September 2018

As scopes are often used for permissions in the applications themselves it
would be useful to have a mechanism to grant a user access to a scope.

For example if you have the scopes "photos:view" and "photos:edit"
you
would like only users that are permitted to use the photos application to
be able to get those scopes in the token.

One simple way of doing this would be to have a optional required role
associated with a client scope. Then we can simply apply the client scopes
for which the user has the required role.

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

[keycloak-dev] Permission for client scopes