Hi Jason,

do you really need to use the raw REST API or would it be an option to use the keycloak-admin-client API?

here is an example for creating and deleting a user via the admin-client API:

package de.tdlabs.training.keycloak;

import static java.util.Arrays.asList;

import javax.ws.rs.core.Response;

import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;

import org.keycloak.admin.client.Keycloak;

import org.keycloak.admin.client.KeycloakBuilder;

import org.keycloak.representations.idm.CredentialRepresentation;

import org.keycloak.representations.idm.UserRepresentation;

public class KeycloakAdminClientExample {

public static void main(String[] args) throws Exception {

Keycloak kc = KeycloakBuilder.builder() //

.serverUrl("http://localhost:8081/auth") //

.realm("rest-example")//

.username("rest-user-admin") //

.password("password") //

.clientId("admin-cli") //

.resteasyClient(new ResteasyClientBuilder().connectionPoolSize(10).build()) //

.build();

CredentialRepresentation credential = new CredentialRepresentation();

credential.setType(CredentialRepresentation.PASSWORD);

credential.setValue("test123");

credential.setTemporary(false);

UserRepresentation user = new UserRepresentation();

user.setUsername("testuser");

user.setFirstName("Test");

user.setLastName("User");

user.setCredentials(asList(credential));

user.setEnabled(true);

user.setRealmRoles(asList("admin"));

// Create testuser

Response result = kc.realm("rest-example").users().create(user);

if (result.getStatus() != 201) {

System.err.println("Couldn't create user.");

System.exit(0);

}

System.out.println("Testuser created.... verify in keycloak!");

System.out.println("Press any key...");

System.in.read();

// Delete testuser

String locationHeader = result.getHeaderString("Location");

String userId = locationHeader.replaceAll(".*/(.*)$", "$1");

kc.realm("rest-example").users().get(userId).remove();

}

https://gist.github.com/thomasdarimont/43689aefb37540624e35

Cheers,

Thomas

2016-01-12 19:05 GMT+01:00 JasonPeng <hpeng@redhat.com>:

Hi there,

Can someone give me some hint about how to correctly setup a client that can accept REST request from a httpclient in keycloak?
For example, I use the admin-access example from keycloak source project and modify it to do a DELETE action through REST API, however I keep getting the request Forbidden 403 from keycloak server. I don’t change any setting of the admin-client imported from the json file and my code snippet of deleting user as below:

public static void deleteUser(HttpServletRequest request, AccessTokenResponse res) throws Failure {
HttpClient client = new DefaultHttpClient();
String userId = "e20277f8-2ebe-4e5e-aa00-0cee9c578249";
try {
HttpDelete delete = new HttpDelete(getBaseUrl(request) + "/admin/realms/demo/users/" + userId);
delete.addHeader("Authorization", "Bearer " + res.getToken());
HttpResponse response = client.execute(delete);
System.out.println(response.getStatusLine().getReasonPhrase());
if (response.getStatusLine().getStatusCode() != 200) {
throw new Failure(response.getStatusLine().getStatusCode());
}
HttpEntity entity = response.getEntity();
InputStream is = entity.getContent();
if (is != null)
is.close();
} catch (IOException e) {
throw new RuntimeException(e);
} finally {
client.getConnectionManager().shutdown();
}
}

_______________________________________________
keycloak-user mailing list
keycloak-user@lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user