Hello Aritz,

couldn't you just use a JWT parser library to parse the AccessToken string?

http://jwt.io/ lists quite a few usable ones:

I created a gist with a quick example for parsing a keycloak AccessToken with jjwt:

https://gist.github.com/thomasdarimont/23a80208c1ef529169be

To get the roles for a particular application (acme-petclinic) in this case, you could do the following:

((Map<String,Object)((Map<String,Object>)claimsJws.getBody().get("resource_access")).get("acme-petclinic")).get("roles")

Cheers,

Thomas

2016-03-07 15:53 GMT+01:00 Aritz Maeztu <amaeztu@tesicnor.com>:

Hi all,

I'm managing the keycloak authentication-authorization for my Android app. I do it manually since there's no adapter still available as far as I know. Currently I am able to log in from a webview, retrieve the access token using the code and refresh the token when it's necessary and retrieve the user info using the openid-connect compliant endpoints. However, I would like to grab the roles available for the token too, in order to show/hide specific operations in the screen.

How to achieve it?

Thanks in advance.

--

Aritz Maeztu Otaño
Departamento Desarrollo de Software

Pol. Ind. Mocholi. C/Rio Elorz, Nave 13E 31110 Noain (Navarra)
Telf.: 948 21 40 40
Fax.: 948 21 40 41

Antes de imprimir este e-mail piense bien si es necesario hacerlo: El medioambiente es cosa de todos.

_______________________________________________
keycloak-user mailing list
keycloak-user@lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user

Aritz Maeztu Otaño Departamento Desarrollo de Software
	Pol. Ind. Mocholi. C/Rio Elorz, Nave 13E 31110 Noain (Navarra) Telf.: 948 21 40 40 Fax.: 948 21 40 41
Antes de imprimir este e-mail piense bien si es necesario hacerlo: El medioambiente es cosa de todos.