Thanks for your effort. It would be nice to make tutorials to show using the api similar to cli e.g. create realm, clients, realm roles,realm users, ..etc
Thank you! So since a Keycloak User is bound to a realm and not a client, am I correct in saying that you would just create this Client with only password credential type in your video for your backend say spring boot microservice in order for it to reach Keycloak's API endpoints , and then you create ANOTHER Keycloak client in the same realm which uses like authorization code grant flow or maybe PKCE enhanced, and that user will still exist under that client used for frontend -> keycloak login page -> redirect uri with auth code -> access token ???
Hi! Great work, nevertheless I'm having issues with a slight newer version of Keycloak, namely the 23.0.4 which has an almost identical UI as your version. In my case when I configure the client on the "Capability config" to have ON the Client Authentication and Authorization (and having only the "Service accounts roles" on by default), what happens is that the service-account-my-bogus-client user is not created (or at least doesn't show up in the user list). When I generate the JWT exists this: "preferred_username": "service-account-my-bogus-client". When I try to create manually that user Keycloak says that the user cannot be created as it exists already. Now I'm very confused as I have no idea how to configure that user to e.g. create a new user through the Keycloak's API. Any ideas? Keep up the excellent work, it's priceless what you've been posting for us!
Go to Clients -> . Click on the Service accounts roles tab and click on Assign role. In the dropdown select 'Filter by clients' and assign the 'manage-users' role to your client
Thank you for watching this video. Please feel free to buy me a coffee www.buymeacoffee.com/Code215
Awesome tutorial man! Every other Keycloak API video completely skips the roleMapping required to even access the API. Thank You!
Glad I could help
Looking forward for upcoming tuts
Thank you so much for your efforts.
More to come!
Thanks for your effort. It would be nice to make tutorials to show using the api similar to cli e.g. create realm, clients, realm roles,realm users, ..etc
Looking forward for keycloak serial
thank you so much this is very helpful
Glad it was helpful!
nice, man!! thank you!!
Thank you! So since a Keycloak User is bound to a realm and not a client, am I correct in saying that you would just create this Client with only password credential type in your video for your backend say spring boot microservice in order for it to reach Keycloak's API endpoints , and then you create ANOTHER Keycloak client in the same realm which uses like authorization code grant flow or maybe PKCE enhanced, and that user will still exist under that client used for frontend -> keycloak login page -> redirect uri with auth code -> access token ???
Hi! Great work, nevertheless I'm having issues with a slight newer version of Keycloak, namely the 23.0.4 which has an almost identical UI as your version.
In my case when I configure the client on the "Capability config" to have ON the Client Authentication and Authorization (and having only the "Service accounts roles" on by default), what happens is that the service-account-my-bogus-client user is not created (or at least doesn't show up in the user list).
When I generate the JWT exists this: "preferred_username": "service-account-my-bogus-client".
When I try to create manually that user Keycloak says that the user cannot be created as it exists already.
Now I'm very confused as I have no idea how to configure that user to e.g. create a new user through the Keycloak's API.
Any ideas?
Keep up the excellent work, it's priceless what you've been posting for us!
Go to Clients -> . Click on the Service accounts roles tab and click on Assign role. In the dropdown select 'Filter by clients' and assign the 'manage-users' role to your client
@@code-215 Thank you so much!
thank you so much ,please i have question how can i give permission to user to give role juste to specific client thanks in advance