API Token param - keycloak-user - Jboss List Archives

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

API Token param

Social login Issue

JDBC Connection is closed early...

Harry Trinta

Thursday, 7 July 2016 Thu, 7 Jul '16

8:46 a.m.

Hi, When authenticate through the API token ("*/openid-connect/token"), is possible to send a parameter (key/value) and this parameter be added to access_token? Regards, Harry

Attachments:

attachment.html (text/html — 293 bytes)

Reply

Show replies by date

Bruno Oliveira

Thursday, 7 July Thu, 7 Jul

3:27 p.m.

I don't think that's possible. What exactly would you like to do? On 2016-07-07, Harry Trinta wrote:

Hi, When authenticate through the API token ("*/openid-connect/token"), is possible to send a parameter (key/value) and this parameter be added to access_token? Regards, Harry

_______________________________________________ keycloak-user mailing list keycloak-user(a)lists.jboss.org https://lists.jboss.org/mailman/listinfo/keycloak-user

-- abstractj PGP: 0x84DC9914

Reply

Harry Trinta

Monday, 11 July Mon, 11 Jul

11:45 a.m.

I would like to save some notes about the app and/or the user in the token. For example, if the token is from a session that is being impersonated. 2016-07-07 17:27 GMT-03:00 Bruno Oliveira <bruno(a)abstractj.org>:

I don't think that's possible. What exactly would you like to do? On 2016-07-07, Harry Trinta wrote: > Hi, > > When authenticate through the API token ("*/openid-connect/token"), is > possible to send a parameter (key/value) and this parameter be added to > access_token? > > Regards, > > Harry > _______________________________________________ > keycloak-user mailing list > keycloak-user(a)lists.jboss.org > https://lists.jboss.org/mailman/listinfo/keycloak-user -- abstractj PGP: 0x84DC9914

Reply

Marek Posolda

2:52 p.m.

You can set some additional parameters to Authentication Request (the initial request from your app to the Keycloak) and every additional parameter will be then saved to the clientSession note like "client_request_param_foo" in case that name of your parameter is "foo" . Then you can create ProtocolMapper implementation, which will read the clientSession note and put the info as claim to the token. You can take a look at org.keycloak.protocol.oidc.mappers.UserSessionNoteMapper for inspiration - the only difference is, that you will need to call clientSession.getNote instead of userSession.getNote. Marek On 11/07/16 18:45, Harry Trinta wrote:

I would like to save some notes about the app and/or the user in the token. For example, if the token is from a session that is being impersonated. 2016-07-07 17:27 GMT-03:00 Bruno Oliveira <bruno(a)abstractj.org <mailto:bruno@abstractj.org>>: I don't think that's possible. What exactly would you like to do? On 2016-07-07, Harry Trinta wrote: > Hi, > > When authenticate through the API token ("*/openid-connect/token"), is > possible to send a parameter (key/value) and this parameter be added to > access_token? > > Regards, > > Harry > _______________________________________________ > keycloak-user mailing list > keycloak-user(a)lists.jboss.org <mailto:keycloak-user@lists.jboss.org> > https://lists.jboss.org/mailman/listinfo/keycloak-user -- abstractj PGP: 0x84DC9914 _______________________________________________ keycloak-user mailing list keycloak-user(a)lists.jboss.org https://lists.jboss.org/mailman/listinfo/keycloak-user

Reply

3085

days inactive

3089

days old

keycloak-user@lists.jboss.org

Manage subscription

3 comments

3 participants

tags (0)

participants (3)

Bruno Oliveira
Harry Trinta
Marek Posolda