Evaluate permission error

fonlin · February 20, 2021, 1:22am

I have some resources and permissions like this, but when i evaluate permission, I didn’t get what I expected.

resource: menu1 type=menu
permission1: need role(super_admin)
permission2: need role(editor)
user: 004566 has role(super_admin) and no role(editor)

Now the role(super_admin) is PERMIT and role(editor) is DENY，but the Result is DENY even if I set the Decision Strategy to Affirmative. This situation does not conform to the keycloak doc in my understanding. I think it should be PERMIT. WHY?

fonlin · February 20, 2021, 1:23am

This is the result I evaluated.

fonlin · February 20, 2021, 7:30am

Can someone help me?

Topic		Replies	Views
Incorrect evaluation results with Keycloak Authorization Getting advice admin-console , oidc	6	346	March 14, 2023
Understanding the keycloak authorization over a Resource Getting advice	2	826	March 6, 2023
How can I evaluate user permission over REST API?	1	1559	August 20, 2021
Unexpected error while evaluating permissions	1	1319	May 8, 2023
Checking permissions Getting advice	0	538	October 29, 2020

Evaluate permission error

Related Topics