Can you elaborate a bit on your use-case? Why would you have users that are not allowed to authenticate?

On 28 July 2016 at 11:01, gambol <gambol99@gmail.com> wrote:

Hiya

Assuming you have a realm with x client defined and each have a APP-USER role. Is there a way to authenticate a user only if the user have the role associated? ... 

Obviously I can check the check the access token, or place a proxy in-front which does that for me, but is there a native way of saying ask for this scope and if you don't have it you are denied

Best Regards .. 



_______________________________________________
keycloak-dev mailing list
keycloak-dev@lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-dev