I want to configure Keycloak to do person impersonation from a client-credential. I describe behind the flow I want to do.
1 - I get an access-token from client credentials grant on “StartClient” Client Id
2 - I want to request keycloak with the previous access-token to get a specific user access-token from “TargetClient” Client Id
I have done a lot of test with a lot of configuration (token exchange configuration, impersonation configuration …) but no one work.
I will be heppy if someone can give me the full flow on how to configure Keycloak to do this.
If it can be done from another keycloak configuration I’m also interested.