Keycloak SAML Application Users Mapping

Shrikanth · November 16, 2021, 4:12pm

Hi,

I’m using Keycloak as my SAML IDP, in my realm I have two applications, Now I’m struggling to map only selected users to my first application, and a few other users to the second application, How can I map specific users to an application ?.

Steps

Created Realm (TestRealm)
In TestRealm created Application1 and in an application created Role1
Created Application2 and in an application created Role2
Created User1 and mapped to the Application1 and Role1
Created User2 and mapped to the Application2 and Role2

Now the issue is I’m able to access Application1 with User2 and Application2 with User1, so How can I restrict the User1 accessing the Application2 and User2 accessing the Application1 ?

mbonn · November 18, 2021, 6:57am

Hi,

Recently, there was a discusstion related to this:

Here you might find some hints. In short: Try to do the authorization/restrictions in the client application whenever possible.

bye, Matthias

Topic		Replies	Views
Restrict login to specific group for one client Getting advice	4	661	January 19, 2024
Realm with multiple client different user access	7	3731	May 27, 2022
SSO and users question Getting advice	1	346	July 28, 2021
Allow users only for specific clients in a given realm Getting advice	11	20439	February 19, 2024
Restrict SAML App via Groups	0	316	June 23, 2021

Keycloak SAML Application Users Mapping

Related topics