Hello, I’m new to keycloak.
I’have configured my realm and my client with some users that have a role with some permissions coupled.
I need, after user authentication (that I do correctly), to retrive via rest api the list of permissions associated to this user (via it’s role) to be able to develop the user interface of my webapp. (to show some menu functionality or not)
I’m reading the api documentation but I’have not found the right service yet.
Yes, you have to consume this service: “…/protocol/openid-connect/token/introspect” that accept in input your authorization token. It’s return all the information you need.
More information in “Robinyo” response.
@martinor@Robinyo
I’m having some doubts, I did what @martinor said, called the introspect api but there is still not a list of permissions. I’m only having roles.
Btw, this user is assigned to two roles, those roles are related to two scopes which are related with 2 policies and 2 permissions.
But I’m not able to retrieve it.
I expect that permission to be related to client, resource and then permission…
Am I wrong??