Open
Description
Description
The REST API has endpoints for listing client permissions
Discussion
No response
Motivation
No response
Details
For example:
import java.util.List;
import org.keycloak.admin.client.Keycloak;
import org.keycloak.admin.client.resource.ClientResource;
import org.keycloak.admin.client.resource.ResourcePermissionsResource;
import org.keycloak.representations.idm.authorization.ScopePermissionRepresentation;
public class Example {
public static void main(String[] args) {
try (Keycloak kc = Keycloak.getInstance(
"http://example",
"master",
"admin",
"admin",
"admin-cli")) {
ClientResource clientResource = kc.realm("my-realm").clients().get("my-client");
List<ResourcePermissionsResource> resourced = clientResource.authorization().permissions().resource().list();
List<ScopePermissionRepresentation> scoped = clientResource.authorization().permissions().scope().list();
}
}
}
The REST endpoints already exist:
GET /admin/realms/{realm}/clients/{client-uuid}/authz/resource-server/permissions/scope
GET /admin/realms/{realm}/clients/{client-uuid}/authz/resource-server/permissions/resource