[keycloak-user] Limiting the admin REST API

Stian Thorgersen sthorger at redhat.com
Fri Nov 27 06:03:41 EST 2015


In that case I'd say you should rather not deploy the admin endpoints at
all and instead add your own custom endpoints.

On 27 November 2015 at 11:08, Bystrik Horvath <bystrik.horvath at gmail.com>
wrote:

> Hello everyone,
>
> I would like to limit the functionality of the admin REST API to the
> calling user/application.
> The motivation is not to expose the "internals" of keycloak and put some
> logic between the calling app and admin REST API.
> My idea was to create a simple web application deployed at keycloak server
> that belongs to the same realm as calling application and realm management
> application.
> Would you recommend that approach? Or is there anything more suitable
> (e.g.: implement it as a keycloak valve... etc.)?
>
> Thank you for your opinions.
>
> Best regards,
> Bystrik
>
>
>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20151127/e9d8a7ef/attachment.html 


More information about the keycloak-user mailing list