Re: [keycloak-user] ClientRoles property is empty in UserRepresentation

On 09/08/16 11:48, NEMECKAY Marek wrote: Dear all, We are facing a problem with retrieving the client roles from Keycloak. In our implementation we are using the following API to find a retrieve user data via username: *http://www.keycloak.org/docs/rest-api/index.html#_get_users* <http://www.keycloak.org/docs/rest-api/index.html#_get_users> *It seems that you need different admin REST endpoint to get the client role mappings of user. It's this one : * GET /admin/realms/{realm}/users/{id}/role-mappings/clients/{client} Marek In the retrieved *UserRepresentation* <http://www.keycloak.org/docs/rest-api/index.html> object instance the property clientRoles is always null. We are using Keycloak 1.9.8 connected to a LDAP server for user federation. We are connecting a receiving the access token with a admin-user of the corresponding realm. This works just fine. We are also receiving user data like name, e-mail etc., but the client roles are always null. The mappers to sync roles between Keycloak and LDAP are also defined and working. Is there anything else we have overlooked or we should check? Thanks and BR, Marek _______________________________________________ keycloak-user mailing listkeycloak-user@lists.jboss.orghttps://lists.jboss.org/mailman/listinfo/keycloak-user _______________________________________________ keycloak-user mailing list keycloak-user(a)lists.jboss.org https://lists.jboss.org/mailman/listinfo/keycloak-user