Am worried this could be too granular. There may be thousands of Organizations and Facilities, each of which has its own demographic info

each of which may come and go with frequency.

For example, user DoctorSmith may be a member of Facility BestEyeCare within Organization BestMedicalPractice.

Is modelling the above in Keycloak as Roles reasonable?

Can Keycloak easily support creating/deleting Organization and Facility roles with demographic info?

Also: is there a way for an App to solicit all the Orgs and Facilities available in the realm, exhaustively? (Maybe with a dummy user "AllOrgs"?

-Richard

From: bruno.palermo@outlook.com
To: rllavallee@hotmail.com
CC: keycloak-user@lists.jboss.org
Subject: RE: [keycloak-user] Membership
Date: Mon, 25 Apr 2016 18:40:32 -0300

What about add Fac11, Fac12, Fac21, etc.. as roles?

Date: Mon, 25 Apr 2016 13:25:00 -0700
From: rllavallee@hotmail.com
To: keycloak-user@lists.jboss.org
Subject: [keycloak-user] Membership

As a keycloak user I wish to create a user with a username and password and one or more roles. Including demographic info about the user: name, address, zip, phones, etc. I think Keycloak supports all this.

But in addition to the above I want also to persist a user's membership in an "Organization", e.g. Org1, and maybe Org2. And for each organization of which he is a member, a Facility within that organization. E.g. For Org1 he would also be a member of Fac11 and Fac12. For Org2 he would also be a member of Fac21 and Fac22.

All the above info would be communicatable from Keycloak to each realm app as the user logs in.

Is the above feasible, please, without customization of Keycloak?

Thank you.

-Richard

_______________________________________________ keycloak-user mailing list keycloak-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/keycloak-user