Scopes for my frontend and external client

adropofliquid · October 21, 2022, 11:19pm

Hi,

I have a scenario
I want external public clients to be able to authenticate with keycloak and get access tokens
The tokens have scopes in them e.g scope"openid email read:inventory"
I have created a resource server with certain authorities like hasAuthority(“SCOPE_read:inventory”)

It all works fine.

If I want to also authenticate with keycloak from my own internal front-end client,
do I also have to include these scopes in the access token for my front-end client or is there a way to just give the user all the scopes anytime they are authenticating from my front-end client.

weltonrodrigo · October 22, 2022, 12:49pm

I’m not sure there is a way to tell Keycloak to just include ALL available scopes as default for a client. You’ll need to specify.

adropofliquid · October 22, 2022, 1:05pm

Thank you for your response

Topic		Replies	Views
Keycloak JS client and confidential clients Securing applications	9	8309	May 20, 2023
Keycloak Authorization Issue with JS and Python Securing applications oidc	1	511	April 12, 2023
Requesting permissions on Keycloak Getting advice	0	442	March 1, 2022
Basic Keycloak Auth System with React + NodeJS Securing applications authentication , identity-brokering , oidc	0	1164	February 19, 2021
Use authorization with public access-type client	2	1050	July 21, 2020

Scopes for my frontend and external client

Related Topics