3:54 a.m.
Hi Keycloak peoples!
I'm slowly introduce keycloak in production environnement, but I still
do not Know how to restric permissions to users or groups.
To picture my words,
I have 3 Applications A,B and C
All company people can access to the application A
For the application B I want prohibit access to non-admin group member.
So when a non-admin clic on OIDC button to login in app an redirect to
keycloak, I wan't a message like "you don't have permissions".
And for the application C all people can access except Bob because he
have broken twice this application :-)
It's posisble to do it?
3:13 p.m.
Hello Lyderic, sorry for late reply,
The similar problem has surfaced on the ML several times recently. There are different
ways to solve it; let's start by finding out whether your apps A, B and C are Java EE
apps using Keycloak adapter.
In this case, you should be able to use Keycloak authorization services. Otherwise, the
problem could be solved with the help of script authenticator.
Let me know if this is still topical for you,
Dmitry Telegin
CTO, Acutus s.r.o.
Keycloak Consulting and Training
Pod lipami street 339/52, 130 00 Prague 3, Czech Republic
+42 (022) 888-30-71
E-mail: info(a)acutus.pro
On Tue, 2018-11-06 at 10:54 +0100, Lyderic Dubut wrote:
Hi Keycloak peoples!
I'm slowly introduce keycloak in production environnement, but I still
do not Know how to restric permissions to users or groups.
To picture my words,
I have 3 Applications A,B and C
All company people can access to the application A
For the application B I want prohibit access to non-admin group member.
So when a non-admin clic on OIDC button to login in app an redirect to
keycloak, I wan't a message like "you don't have permissions".
And for the application C all people can access except Bob because he
have broken twice this application :-)
It's posisble to do it?
_______________________________________________
keycloak-user mailing list
keycloak-user(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user
2241
days inactive
2254
days old
1 comments
2 participants
participants (2)
-
Dmitry Telegin -
Lyderic Dubut