3:17 p.m.
Hi all,So, Keycloak has a lot of items around Authentication approaches, but I haven't
seen anything specific around authorization - is that a different project?
My actual question is this - if you have java apps that
have <security-role><role-name>role1</role-name></security-role>
or are using @DeclareRoles, is there a mechanism where the application/SP can *register*
with the PDP with those roles, rather than copy-pasting into those different IAM/PDP
solutions?
thanky!-D
9:49 a.m.
On 10/05/16 15:17, Darren Hartford wrote:
Hi all,
So, Keycloak has a lot of items around Authentication approaches, but
I haven't seen anything specific around authorization - is that a
different project?
We plan to add support for authorization. The prototype and
instructions
to try it are here [1] .
My actual question is this - if you have java apps that have
<security-role><role-name>role1</role-name></security-role> or
are
using @DeclareRoles, is there a mechanism where the application/SP can
*register* with the PDP with those roles, rather than copy-pasting
into those different IAM/PDP solutions?
We have client registration documented here
[2] , but not sure if it has
support for register client roles into Keycloak based on roles declared
in web.xml. Probably not (and not sure if it's even realistic to add that).
[1] https://github.com/pedroigor/keycloak/blob/KEYCLOAK-2753/authz/README.md
[2]
http://keycloak.github.io/docs/userguide/keycloak-server/html/client-regi...
Marek
thanky!
-D
_______________________________________________
keycloak-user mailing list
keycloak-user(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user
11:31 a.m.
Hi Marek,
On 05/11/2016 09:49 AM, Marek Posolda wrote:
We plan to add support for authorization. The prototype and
instructions
to try it are here [1] .
Do you know if this work is still targeting 2.0.0RC1? I've not seen
activity in the pull request [1] or issue [2]
[1] https://github.com/keycloak/keycloak/pull/2617
[2] https://issues.jboss.org/browse/KEYCLOAK-2753
Thanks,
--
Iván
12:05 p.m.
Hi Ivan,
the PR and issue is inactive just because we are mainly focused on
polishing/testing of 1.9.x instead of new features for 2.0.x. I guess it
will be merged within few months (or even earlier) and hopefully
available in 2.0.0.CR1.
Marek
On 11/05/16 11:31, Iván Perdomo wrote:
Hi Marek,
On 05/11/2016 09:49 AM, Marek Posolda wrote:
> We plan to add support for authorization. The prototype and instructions
> to try it are here [1] .
Do you know if this work is still targeting 2.0.0RC1? I've not seen
activity in the pull request [1] or issue [2]
[1] https://github.com/keycloak/keycloak/pull/2617
[2] https://issues.jboss.org/browse/KEYCLOAK-2753
Thanks,
6:59 a.m.
The PR will be merged in a week or so and will be included in 2.0.0.CR1 due
to be released in June.
On 11 May 2016 at 12:05, Marek Posolda <mposolda(a)redhat.com> wrote:
Hi Ivan,
the PR and issue is inactive just because we are mainly focused on
polishing/testing of 1.9.x instead of new features for 2.0.x. I guess it
will be merged within few months (or even earlier) and hopefully
available in 2.0.0.CR1.
Marek
On 11/05/16 11:31, Iván Perdomo wrote:
> Hi Marek,
>
> On 05/11/2016 09:49 AM, Marek Posolda wrote:
>> We plan to add support for authorization. The prototype and instructions
>> to try it are here [1] .
> Do you know if this work is still targeting 2.0.0RC1? I've not seen
> activity in the pull request [1] or issue [2]
>
> [1] https://github.com/keycloak/keycloak/pull/2617
> [2] https://issues.jboss.org/browse/KEYCLOAK-2753
>
> Thanks,
>
_______________________________________________
keycloak-user mailing list
keycloak-user(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user
2:23 p.m.
Hi Iván,
Can you share what you are looking for around authorization ?
Regards.
Pedro Igor
----- Original Message -----
From: "Iván Perdomo" <ivan(a)akvo.org>
To: "Marek Posolda" <mposolda(a)redhat.com>, keycloak-user(a)lists.jboss.org
Sent: Wednesday, May 11, 2016 6:31:30 AM
Subject: Re: [keycloak-user] Authorization question (maybe not keycloak?)
Hi Marek,
On 05/11/2016 09:49 AM, Marek Posolda wrote:
We plan to add support for authorization. The prototype and
instructions
to try it are here [1] .
Do you know if this work is still targeting 2.0.0RC1? I've not seen
activity in the pull request [1] or issue [2]
[1] https://github.com/keycloak/keycloak/pull/2617
[2] https://issues.jboss.org/browse/KEYCLOAK-2753
Thanks,
--
Iván
_______________________________________________
keycloak-user mailing list
keycloak-user(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user
3172
days inactive
3181
days old
5 comments
5 participants
participants (5)
-
Darren Hartford -
Iván Perdomo -
Marek Posolda -
Pedro Igor Silva -
Stian Thorgersen