I am using Keycloak with two React frontends and a backend. The two frontends use two separate clients. The scopes are currently assigned to the clients. This has the drawback that the user for frontend A is able to log in into frontend B, receiving the scopes of client B.
Is there a way to configure scopes based on the users role?
Is there a recommended way to fix the above situation?
Life saver. This is exactly what I expected. Keycloak client authorization explains well how to set scopes for users if they have certain roles, but it wasn’t at all obvious how to do it without authorization. Thank you.