Hello, I’m a relatively new KeyCloak user. We are currently using KeyCloak in all of my teams environments, but there is 1 environment where we are having the following issue with a client:
Using our admin credentials for KeyCloak, we are unable to update only a single client (Ex: adding description text, adding valid redirect URI). All the other clients in the realm can be edited successfully.
As a secondary issue with this client we can’t edit, when you export this client - you are unable to import that client back into the realm. I can however export and re-import other clients into the realm just fine. The error looks just like the image above, except with the text ‘Could not import client:’
I definitely believe this to be some sort of permission issue, but I have compared our admin accounts role mappings for this environment, to the role mappings we have to our admin account in other environments, and they’re all the same. I have checked the admin events log, but nothing is posted there whenever the above 2 errors occur. I have also enabled DEBUG level logging to no avail.
I do get a 403 HTTP response when trying to make the above client edit or import. I can create other clients from scratch, or import other clients that I’ve exported - as long as its not the client we’re having the issue with.
Here are the Role Mappings for our admin user in the realm we are having this issue:
manage-clients
create-client
manage-users
view-events
query-users
query-clients
query-groups
view-users
manage-identity-providers
view-client
manage-realm
query-realms
view-identity-providers
manage-events
manage-authorization
view-realm
view-authorization
If anyone has any insight on these issues, please let me know!