Actually, I wanted to clarify one thing:

In the demos the database-service is set up as bearer-only. Maybe that’s the problem I’m having. I have the dependent service set as confidential. But shouldn’t this be supported?

What if the service provides both user facing features and APIs that can be accessed with bearer tokens?

Thanks again,

Scott

On Wed, Apr 15, 2015 at 11:41 AM, Scott Rossillo <srossillo@smartling.com> wrote:

In the demos, there’s a clear example of how a user is authenticated against an application, say the customer-portal, and then the customer-portal requests information from the database-service using the access token as a bearer token.

In this example, the database-service accepts the bearer token and returns data.

However, using the Keycloak Adapters and attempting to do the same thing, the authentication is rejected. Any idea what may be causing this?

Thanks,
Scott