[keycloak-user] RPT vs regular access tokens

Pedro Igor Silva psilva at redhat.com
Mon Jun 4 07:59:38 EDT 2018


No, there isn't.

If it helps, if you are using our adapters you are not forced any longer to
send RPTs to your backend in order to enforce access to your resources. Now
you can just send regular access tokens and PEP will take care of
exchanging a RPT and enforce access decisions based on the permissions
granted by the server.

Could you elaborate more what you are trying to achieve?

On Mon, Jun 4, 2018 at 5:14 AM, Juan José Vázquez Delgado <
juanjo.vazquez.delgado at tecsisa.com> wrote:

> Hello everyone!. According to the documentation, an RPT is just a jwt token
> with permission claims. In order to disambiguate between RPT and regular
> access tokens, is there any way to do this apart from checking the
> existence of these permission claims?. Thanks!.
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>


More information about the keycloak-user mailing list