Direct Naked Impersonation flow

sginer · April 28, 2022, 10:38am

Hello,

I want to configure Keycloak to do person impersonation from a client-credential. I describe behind the flow I want to do.

1 - I get an access-token from client credentials grant on “StartClient” Client Id
2 - I want to request keycloak with the previous access-token to get a specific user access-token from “TargetClient” Client Id

I have done a lot of test with a lot of configuration (token exchange configuration, impersonation configuration …) but no one work.

I will be heppy if someone can give me the full flow on how to configure Keycloak to do this.

If it can be done from another keycloak configuration I’m also interested.

Regards

Stéphane GINER

joerijansen · May 10, 2022, 1:47pm

We have this feature running in production.
We used this blog for inspiration: Impersonation in Keycloak – Tomasz Okraska – Everyday not obvious adveantures with coding

sginer · May 10, 2022, 2:19pm

Thank for your answer

Finally I found my pb and I have set the correction in this post

Regards

Stéphane GINER

Topic		Replies	Views
Direct Naked Impersonation Getting advice authentication , oidc	3	4493	February 3, 2022
Implementing User-level Impersonation	0	52	March 26, 2024
Passing session token generated by impersonate API Getting advice	0	357	September 8, 2020
How to understand if a token has been released via token-exchange grant type Getting advice authentication , oidc	2	307	April 11, 2023
Standard flow and access type Configuring the server authentication	7	2512	February 27, 2024

Direct Naked Impersonation flow

Related Topics