We have set up keycloak and we have a combination of service-account clients (which never log in any end users) and regular users. Now when a user goes to the User Account Console (at realms/xxxx/account), there is a tab applications that show all clients with “Full Access” in the Granted Permissions column.
As far as I can see, I haven’t given this user any permissions for this clients. How can I put restrictions so that not all users can see all applications and their roles?