I’m running Keycloak on foobar.com, and I’ve got open registrations set up.
Now, for all users with a (verified) e-mail address *@foobar.com, I’d like to automatically assign them to a role or a group (something like local
or trusted
). Is this possible?
Obviously, I could do this on the client-side too, but this way I could avoid hard-coding the e-mail domain in the app, as well as the “doubled” if (group == 'local' OR email.endsWith(foobar.com))
check, so I wonder. Thanks in advance!