We want them and there's no big problem supporting them as we already have
the code to require one of a list of roles, for example get profile is
permitted for view-profile or manage-account.
On Tue, 19 Nov 2019 at 23:37, Douglas Palmer <dpalmer(a)redhat.com> wrote:
In the commit 0ce10a3249db69592cb7fee70cefd4a2eec66423, three new
AccountRoles were added:
view-applications
view-consent
manage-consent
Do we need/want such fine grain access control? Or should we stick with
just using manage-account and view-profile?
Regards
Doug
_______________________________________________
keycloak-dev mailing list
keycloak-dev(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-dev