How to create a new Group with realmRoles mapping

w1ll-i-code · August 23, 2024, 9:51am

Hi y’all.

I’m currently trying to automatize the creation of some Groups in over the REST-API. The documentation explicitly links to the GroupRepresentation, that allows for the specification of the realmRoles for the group. This is exactly the feature I need, however when I make the call, the Group is created, as expected, but without the mapping.

The payload for the call is as follows:

{
    "name": "administrators",
    "attributes": {
        "created_by": "automatic-install"
    },
    "realmRoles": [ "admin" ]
}

Is there something I’m missing? Keycloak doesn’t return no error, it seems to just ignore the parameter entirely. I can’t even find a mention of the realmRoles in the trace logs.

xgp · August 23, 2024, 4:16pm

Looking in the code (GroupsResource.addTopLevelGroup and GroupResource.updateGroup), it appears that it ignores everything but the name, id, and attributes.

w1ll-i-code · August 26, 2024, 7:18am

I have solved it by using the Client Role Mapping API.

Topic		Replies	Views
Realm Group Roles in userinfo endpoint (v25.0.0) Getting advice	1	150	June 24, 2024
Failing to map role to group Getting advice admin-console	1	602	March 22, 2022
Creating roles with Keycloak Operator Getting advice	2	903	June 2, 2021
Issue calling admin rest APIs in Latest Keycloak version Configuring the server authentication	0	251	November 1, 2023
Attribute mapped as a role Getting advice admin-console	0	464	May 13, 2021

How to create a new Group with realmRoles mapping

Related Topics