[keycloak-user] User cannot assign client Role to user with just
robrecht anrijs
robrecht.anrijs at gmail.com
Wed Sep 11 07:43:07 EDT 2019
Hi keycloak users,
We recently upgraded from keycloak 3.4.3 to 6.0.1, and noticed that a user
with the roles 'manage-users' and 'view-users' on the client
'realm-management' cannot see the list of client roles any more. Because of
that, the user cannot assing a specific client role to a group or a user.
Screenshot:
I[image: image.png]
Is this a bug? Or is expected behaviour?
As a workaround I added the role 'view-clients' to that user, but now the
users sees to much. I only want to configure that user, so he can manage
the roles for users & groups. Do I need to enahble the fine-grained
permissions for that (
https://www.keycloak.org/docs/6.0/server_admin/#_fine_grain_permissions)
Thx for the answers,
Kind regards,
Robrecht
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image.png
Type: image/png
Size: 25344 bytes
Desc: not available
Url : http://lists.jboss.org/pipermail/keycloak-user/attachments/20190911/dfd556ec/attachment-0001.png
More information about the keycloak-user
mailing list