Re: [keycloak-user] shared UMA 2.0 resource & scope based policies

On Wednesday, 16 January 2019 00:54:43 HKT Lamina, Marco wrote: It may be related but I am not 100% sure yet. What do your policies & permissions look like ? If you compare your evaluation screenshot and mine you can see that my keycloak has a policy installed which forbids non-owners to access the resource. That DENY policy is overruled due to some unrelated scope. In your case there seems to be no DENY at all. Could be you have an 'allow everybody' policy in place. Keycloak comes with such default policies you may want to look into. Cheers, Marek