Limit users to login clients

[Oliver Werner]

Hi community,

i tried to limit users to login my clients by roles but my tests failed. I hope you can help me to find out my issue.

Keycloak-Version: 17.0.0

My Setup:

• create a client called test-auth
• setup test-auth with Authorization Enabled to ON
• setup test-auth with Access Type to confidential
• i created a user with default setup (no specific client role)
• a role in test-auth itself called access was created
• under Authorization in test-auth also configure policy and permission to access with the role access

Current behavior:
When i use the evaluation it returns my user is deny (what i expected). In the application itself i can login.

What i expect:
When using my application i expect that i don't can login and got Deny-Message from keycloak.


kind regards
Oliver

[Edwin T]

How did you configure the adapter?

What I can suggest is to check also the quick examples from keycloak github, there you have a lot of examples of configuration. 

--
You received this message because you are subscribed to the Google Groups "Keycloak User" group.
To unsubscribe from this group and stop receiving emails from it, send an email to keycloak-use...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/keycloak-user/1a3a1984-b436-4482-839a-39e2aeb6c6e8n%40googlegroups.com.

[Oliver Werner]

i can't setup the limitation on application site by roles. I need a mechanism in keycloak to prevent login.

[Thomas Darimont]

Hello Oliver,

take a look at this: https://github.com/sventorben/keycloak-restrict-client-auth

Cheers,

Thomas