For now, it's just roleName for realm roles and clientId/roleName for client roles. For example with client "foo" and client role "bar" in it, you may have "foo/bar" . The param also needs to be encoded. Note that format may change in the future...

Marek

On 23/11/15 12:17, Pavel Maslov wrote:

Hi everyone,

I am testing my API service (secured with Keycloak) using the Postman's OAuth2.0 workflow. In my Keycloak client's role I have enabled the Scope Param Required setting, but I am not being asked to consent to this role.

What is the format of the scope variable?

Thanks!

Regards,
Pavel Maslov, MS
_______________________________________________
keycloak-user mailing list
keycloak-user@lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user