[keycloak-dev] Granularity of roles in account endpoint
Stian Thorgersen
sthorger at redhat.com
Wed Nov 20 02:40:27 EST 2019
We want them and there's no big problem supporting them as we already have
the code to require one of a list of roles, for example get profile is
permitted for view-profile or manage-account.
On Tue, 19 Nov 2019 at 23:37, Douglas Palmer <dpalmer at redhat.com> wrote:
> In the commit 0ce10a3249db69592cb7fee70cefd4a2eec66423, three new
> AccountRoles were added:
>
> view-applications
> view-consent
> manage-consent
>
> Do we need/want such fine grain access control? Or should we stick with
> just using manage-account and view-profile?
>
> Regards
> Doug
>
>
> _______________________________________________
> keycloak-dev mailing list
> keycloak-dev at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-dev
>
>
More information about the keycloak-dev
mailing list