[keycloak-user] Application/Client specific "permission" resolution ability in keycloak

Subhrajyoti Moitra subhrajyotim at gmail.com
Wed Jan 6 12:04:55 EST 2016


Thanks Stian for replying,
Yes, we are implementing something like WIldCardPermissions and managing
permissions at a application level , rather than on Keycloak.
each app maintains its own role to permission mappings.

thanks and regards,
Subhro.


On Wed, Jan 6, 2016 at 7:46 PM, Stian Thorgersen <sthorger at redhat.com>
wrote:

> Currently Keycloak is limited to roles only. We are looking into expanding
> on that in the future though.
>
> On 5 January 2016 at 05:08, Subhrajyoti Moitra <subhrajyotim at gmail.com>
> wrote:
>
>> Hello,
>>
>> Is there an ability in Keycloak to manage application/client
>> "permissions", similar to what Shiro has using WildCardPermissions.
>> http://shiro.apache.org/permissions.html
>>
>> I understand that this is very domain and application specific, but is
>> there some generic way to manage these for specific Keycloak clients?
>>
>> Currently trying to implement permissions for a couple of keycloak
>> clients in custom way; roles are stored in keycloak, the applications
>> manages the permission mapping with the specific roles.
>>
>> Any pointers to the same would be very helpful.
>>
>> Thanks and regards,
>> Subhro.
>>
>> _______________________________________________
>> keycloak-user mailing list
>> keycloak-user at lists.jboss.org
>> https://lists.jboss.org/mailman/listinfo/keycloak-user
>>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20160106/0959dbe9/attachment.html 


More information about the keycloak-user mailing list