Is there a way to map roles with their corresponding scopes in a single claim in keycloak OAuth token

prashanth · February 17, 2021, 5:47am

Since a few days, I was trying to see if there is a way to club roles with its corresponding scopes in a single claim in the token. But I didn’t find anything. Now, I’m thinking is it actually possible as I didn’t find anything on it. My present token with roles looks like this

    "scope": "UPDATE DELETE READ",
    "roles": [
        "Asset Admin",
        "Asset Manager"
    ],
    "groups": [
       "Admins",
       "Managers"
    ]

I’m looking for something like

        "roles": [
			    {
				"role": "Asset Admin",
				"scopes": [UPDATE DELETE READ]
			    },
			   {
				"role": "Asset Manager",
				"scopes": [READ]
			   },
            
        ],
        "groups": [
           "Admins",
           "Managers"
        ]

harshith.da · July 15, 2021, 2:25pm

Even i’m looking for the same setup, i saw this post and there are no suggestion or responses. But i have posted an email to KeyCloak Users mailing list.

https://groups.google.com/g/keycloak-user/c/kQ_9Vl22HZU

Hope to get some responses or suggestions for this query. Thanks

Topic		Replies	Views
How to see user client_roles Getting advice	1	254	May 5, 2023
Missing realm roles in access token Getting advice oidc	1	3594	October 19, 2023
Scopes based on user role Getting advice oidc	0	435	October 27, 2020
Attribute mapped as a role Getting advice admin-console	0	374	May 13, 2021
Keycloak - Is it possible to map composite roles and their attributes to the access token? Configuring the server oidc	0	1290	December 29, 2020

Is there a way to map roles with their corresponding scopes in a single claim in keycloak OAuth token

Related Topics