[keycloak-user] Multiple clients, same realm, cross-client REST calls
Karol Buler
K.Buler at adbglobal.com
Mon Apr 9 07:16:02 EDT 2018
Hi Pieter,
I had similar problem... check which roles you use on both clients. I
recommend to use "Realm's roles" instead of "Client's roles" in this case :)
Karol
On 09.04.2018 13:03, Pieter Lukasse wrote:
> Basically I need a single session to be valid at 2 different client
> applications that are connected to the same realm. Not possible?
>
> Pieter Lukasse
>
>
> E. pieter at thehyve.nl
>
> T. +31(0)30 700 9713
>
> W. www.thehyve.nl
>
>
> We empower scientists by building on open source software
>
> 2018-04-04 10:40 GMT+02:00 Pieter Lukasse <pieter at thehyve.nl>:
>
>> Hi,
>>
>> I have a use case for the following scenario:
>>
>>
>> - 2 clients connected to the same Keycloak realm (via SAML)
>> - user logs in to 1st client and opens a webpage that makes REST API
>> calls to both 1st and 2nd client apps
>>
>> Currently the calls to the REST API of the 2nd client app fail with 401
>> error (not authorized). Any hints on how to get this working? Except for
>> this specific use case, SSO is working across both apps (i.e. when the user
>> is logged in to client 1 and then browses to client 2, he does not need to
>> fill in user name and password again).
>>
>> Thanks,
>>
>> Pieter Lukasse
>>
>>
>> E. pieter at thehyve.nl
>>
>> T. +31(0)30 700 9713
>>
>> W. www.thehyve.nl
>>
>>
>> We empower scientists by building on open source software
>>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
[https://www.adbglobal.com/wp-content/uploads/adb.png]
adbglobal.com<https://www.adbglobal.com>
More information about the keycloak-user
mailing list