Add service account roles using Keycloak SPI

prifulnath · June 12, 2024, 5:11am

I am trying to create a client using keycloak SPI. The code I used to create the client and add other client information is as below. My requirement is to add all the possible relam-management roles have to added to this user.

ClientModel privateClientModel = realmModel.addClient(privateClientName);
privateClientModel.setProtocol(CLIENT_PROTOCOL);
privateClientModel.setClientId(privateClientName);
privateClientModel.addWebOrigin("*");
privateClientModel.addRedirectUri("*");
// privateClientModel setSecret "XXXXXXXXXXXXXXX"

// Capability config
privateClientModel.setEnabled(true);
privateClientModel.setClientAuthenticatorType(KeycloakModelUtils.AUTH_TYPE_CLIENT_SECRET);
privateClientModel.setStandardFlowEnabled(true);
privateClientModel.setDirectAccessGrantsEnabled(true);
privateClientModel.setServiceAccountsEnabled(true);
privateClientModel.setImplicitFlowEnabled(false);

// Set the consent required setting
privateClientModel.setConsentRequired(false);

// client scope settings
privateClientModel.setFullScopeAllowed(true);

Can anyone suggest an option to add these roles? I found a similar solution with keycloak client (Solution). But I don’t want to use the keycloak client dependancy inside keycloak SPI. And I don’t want to use keycloak admin API as well.

The following image is how I wanted my client, after adding service account roles,

Topic		Replies	Views
Enable authorization in Keycloak client using ClientModel	0	14	July 15, 2024
How to add user with client roles using rest api Getting advice account-rest , admin-rest	2	2846	December 11, 2021
Scripting Client Credential Roles Configuring the server	2	862	April 26, 2022
Keycloak REST API - Service Account Roles missing Configuring the server admin-rest	3	1952	July 9, 2024
Save used client as user property in Register flow Getting advice	1	822	March 12, 2020

Add service account roles using Keycloak SPI

Related Topics