Manage user from other realm with APIs

DorianMaliszewski · September 16, 2020, 3:38pm

Description of the situation

I Have a Realm that store user from an entreprise (call it Realm1)
I have a realm that store users which use a client app (random consumer, call it Realm2).
I need multi tenancy.
I use Quarkus
All data in database are filtered with a claim in the token
Nowaday, I need to keep all users in the same realm and add realm-management roles to allow worker user to manage consumer users.
I create client for API (bearer-only) for the realm.
I create client for user login (public/confidential).
To identify if a consumer user is at the office of a worker user, I need a worker user in this office to confirm it.
Then I put a claim in the user to know with the token where they are.

I want différent Realm to manage this
All I want to know is if : With my APIs is it possible to give them an Master realm client with realm-management roles and make them add the claim in the user when needed ?

I’m open to all of your advice, Thank you

Topic		Replies	Views
Single Realm Multi-Tenancy with Tenant Level Administrators Getting advice	1	564	November 22, 2021
Manage AD authenticated users and token(password) authenticated users in one realm Getting advice authentication	0	324	June 16, 2021
Realms for tenants but with shared clients	0	315	October 22, 2021
Admin of master realm cannot manage users in other realms via admin api	0	328	September 8, 2020
How can I use master realm admin credentials to manage users in another realms	0	318	March 3, 2023