Managing user account (specially credentials) via REST api

mhfathi · May 31, 2021, 12:59pm

Hello guys,

Would sb kindly please help me with this.

I am managing to have the fallowing flow with my Keycloak server. Steps on the order of execution are as below:

OID - Authorization of a client application using grant type “code” (authentication of user via browser flow). done, OK.
Viewing that particular user information via userinfo_endpoint using the access token obtained in step 1. done, OK.
Viewing/Managing only that particular user’s credentials (i.e., deleting user password via rest api path “/…/user_id/credentials/cred_id”). Server returns 403 forbidden error.

Considering that:

I do not want to grant user, admin privileges like manage_users, but it is okay to grant them to the client application.
I do want to acquire access token via user authentication, not for example via grant_type=client_credentials.

Do you have any recommendation on the way I can configure the server for this purpose? Or any hint at all.

Thanks

Topic		Replies	Views
Direct admin REST API access without token Getting advice admin-rest , authentication	11	2590	December 4, 2022
Create a oauth client using rest api Getting advice	5	3394	March 31, 2020
How to configure client and user to allow user management? Configuring the server client-configuration	0	722	April 7, 2020
REST API with client credential grant returns 404/403 Configuring the server	7	3950	October 24, 2021
Client credentials grant: Rest API using client_id admin-cli Getting advice	2	1457	February 20, 2021