Details

    • Docs QE Status:
      NEW
    • QE Status:
      NEW

      Description

      I'm trying to use Enforcer to protect an API endpoint.
      I have set Authorization - Resource - Scope - Policy and Permission in my client (same as the one define in my keycloak.json)

      In token.js:
      https://github.com/keycloak/keycloak-nodejs-connect/blob/master/middleware/auth-utils/token.js#L161

      I always end up with content.authorization not existing.
      Is there something special to enable authorization to be load with my token?

      In my server.js :

      app.use(keycloak.middleware({logout: '/logout', admin: '/', protected: '/*'}));
      app.get('/api/zones/*', keycloak.enforcer('zone:view'));
      

      The fact that my client is 'confidential' has something to do with this?

        Gliffy Diagrams

          Attachments

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                funkybreizh Julien Deruere
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: