I think it will be just as common that each application has different
token requirements, so it needs to be easy to add additional mappers as
well. For example, each may want the same user attribute claims, but
each will want a different role scope and maybe want to format the roles
to match how their application wants them. This is especially true for
SAML where how the roles are formatted may be different per app.
On 3/13/2015 2:24 AM, Stian Thorgersen wrote:
Bill,
As I mentioned when you demoed protocol mappers I think we should introduce a protocol
mapper type that is configured on a realm level, then one or more applications can use the
same configuration. It would be good to do that before releasing 1.2.0.Beta1.
I think that having it like is will be an overhead to most folks as they'll want the
same token sent to all applications and will have to re-create the same mapping multiple
times (and make changes multiple times as well).
_______________________________________________
keycloak-dev mailing list
keycloak-dev(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-dev
--
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com