[keycloak-user] User roles deleted after SSO idle session expires
MEHDi CHAABOUNi
mehdi.chaabouni at gmail.com
Tue Mar 19 08:01:09 EDT 2019
Hi,
This is our Keycloak setup:
- Keycloak docker container 4.4.0.Final
- Azure Active Directory (mapping groups to roles)
- Keycloak client protocol: openid-connect
- 3 optional client scopes
We noticed lately that users using the front-end application (angular) are
losing all roles after the SSO idle session expires.
This behaviour is also seen in the 4.8.3.Final version.
It seems that the Identity Provider Mappers are not triggered for some
reason and I can't dig any deeper nothing much is logged in the method
IdentityBrokerService.authenticated(BrokeredIdentityContext context).
Any ideas?
How can I run Keycloak form source?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: UserPresent_RolesDeleted.log
Type: text/x-log
Size: 21175 bytes
Desc: not available
Url : http://lists.jboss.org/pipermail/keycloak-user/attachments/20190319/0cec3da5/attachment-0001.bin
More information about the keycloak-user
mailing list