Hi
I am trying to setup Enterprise Architect OpenID Connect with Keycloak.
I have an issue where I can not get the groups an user belongs to.
As you can see I can get the user info, but not the groups.
Now I found out that to debug the user I can use curl requests and see what info I get from endpoints.
But to make it easier I wish to use impersonation as the master realm admin.
Now through the UI it is easy.
Realms → My Custom realm → Users → Impersonate
But through API calls it seems to much worse.
I know how to auth as master realm.
So the workflow would be something like
- Auth as Admin and get Token
- Use that token to impersonate an user
- Use the impersonation to get data what claims are sent to the user_info and id_token endpoint for groups to work in EA integration.