Yeah, for "entitlements" you need to send audience ... otherwise, we don't
know which RS you are trying to obtain permissions from ...
On Tue, Jul 3, 2018 at 9:06 AM, Corentin Dupont <corentin.dupont(a)gmail.com>
wrote:
Thanks,
it worked when specifying also the audience with the client name:
curl -X POST
http://localhost:8080/auth/realms/waziup/protocol/openid-
connect/token -H "Authorization: Bearer $USERTOKEN" -d
"grant_type=urn:ietf:params:oauth:grant-type:uma-ticket&audience=myclient"
On Tue, Jul 3, 2018 at 1:19 PM, Pedro Igor Silva <psilva(a)redhat.com>
wrote:
> Hi,
>
> See
https://www.keycloak.org/docs/latest/authorization_servi
> ces/index.html#_service_obtaining_permissions. Second example.
>
> Just send an authorization request to token endpoint with any "ticket" or
> "permission".
>
> On Mon, Jul 2, 2018 at 12:43 PM, Corentin Dupont <
> corentin.dupont(a)gmail.com> wrote:
>
>> Hi again,
>> with Keycloak 4, is there a way to retrieve all permissions (like with
>> the
>> old entitlement API)?
>> _______________________________________________
>> keycloak-user mailing list
>> keycloak-user(a)lists.jboss.org
>>
https://lists.jboss.org/mailman/listinfo/keycloak-user
>>
>
>