I finally made it work.

The problem I was having was that the provider was not taking the information from the access token because the provider I created in Keycloak B was not a "Keycloak OpenID Connect" provider, was just OpenID Connect, so It didnt try to get the info from the access token cause it does't have to be a jwt token.

Thank you

2015-09-30 12:48 GMT-03:00 Bill Burke <bburke@redhat.com>:

On 9/30/2015 11:45 AM, Bill Burke wrote:
> Or, you can use the Attribute Importer. You can reference the
> testrole via "realm_access.roles.testrole" or
> "resource_access.<app>.roles.testrole".
>

Actually, this won't work. You have to map testrole to a role in
Keycloak B.

--
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com
_______________________________________________
keycloak-user mailing list
keycloak-user@lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user