Details

    • Type: Feature Request
    • Status: Triage (View Workflow)
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: 9.0.2
    • Fix Version/s: None
    • Component/s: Admin - REST API
    • Labels:
      None
    • Docs QE Status:
      NEW
    • QE Status:
      NEW

      Description

      The admin API does not provide and endpoint such as /users where users can be queried from all realms under the master realm.

      This would be very useful in multi-tenant situations where users need to be redirected to the right login url without having to remember the realm name. One example of this is the Office365 login page. The API should be able to resolve the realm a user belongs to, to achieve this (using the master realm credentials for example).

      In the current situation, this would require the following:

      1. List all realms
      2. For each realm, test if user exist
      3. Return matching realm

      This could become very slow with a large number of realms and users.

      The desired situation would be:

      1. Query Keycloak with username/email on /users
      2. Keycloak returns the realm the user is in

      If there is interest in this, I would be willing to work on this.

        Gliffy Diagrams

          Attachments

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                bartmentech Bart Monhemius
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated: