[keycloak-user] public rest services

Marek Posolda mposolda at redhat.com
Fri Jun 26 03:33:49 EDT 2015

IMO the easiest option is to create security-constraints in web.xml just 
for the REST endpoints, which are supposed to be secured . Then the 
public endpoints, which won't be mapped in web.xml can be accessed by 
anonymous user.


On 26.6.2015 01:14, Juan Diego wrote:
> I have some services that should be public, I am allowing anonymous 
> users in my page.  They should be able to  access some minor features 
> of my site.
> Should I create another security-constrain for public users, is there 
> a way to create a public role and get a token for that.
> Or that is more like creating a role for an app, maybe I understood 
> that part wrong.
> Thanks.
> Juan Diego
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20150626/1f4fc3e2/attachment-0001.html 

More information about the keycloak-user mailing list