Re: [keycloak-dev] getting rid of master realm

Should we not have one client for the roles that represents the services (bearer-only), then have a separate clients for admin GUI and CLI? On 7 December 2015 at 09:34, Marek Posolda <mposolda(a)redhat.com <mailto:mposolda@redhat.com>> wrote: On 03/12/15 20:06, Bill Burke wrote: > * We can remove the realm-management client in each realm and just merge > the roles into security-admin-console. Not sure about this one TBH. Also in 1.7 we introduced the "admin-cli" client, which is used for direct-grants and has scope to realm-management similarly like security-admin-console. The security-admin-console is used for UI of admin console (javascript client) when admin-cli is used for direct access to admin REST endpoints for example from admin-client. Marek _______________________________________________ keycloak-dev mailing list keycloak-dev(a)lists.jboss.org <mailto:keycloak-dev@lists.jboss.org> https://lists.jboss.org/mailman/listinfo/keycloak-dev