Keycloak, openId-connect userInfo

openid-connect keycloak userinfo
Dominik Koszkul picture Dominik Koszkul · Sep 30, 2016 · Viewed 12k times · Source

I'm trying to get info about user roles using openId-connect endpoints of Keycloak. I'm using /auth/realms/moje/protocol/openid-connect/userinfo endpoint to get info about authenticated user. I'm able to get info about name, username, email etc. but I'm not able to force Keyclak to give me info about user roles.

I've read openID documentation and I didn't find any info about got to get roles... I think that there must be a way to find out user roles... Maybe there is another endpoint... I can't find any info...

So finally my question is : Is there any way to get info about user roles using openID connect endpoints ?

Answer

Aman Jaiswal picture Aman Jaiswal · Oct 4, 2016

if you have Client Secret key, then You can get the user role info by passing that secret key.

Related questions

Login to Keycloak using API

I have 2 different applications: say Application1 and Application2. I have integrated Application2 with keycloak and I am able to login to this application using Keycloak's login page. Now what I want is, if I login to my Application1 (without keycloak), …

Read More
Keycloak User federation using existing MySQL database for users authentication

I am trying to setup Keycloak server for our organisation. I have couple of questions. How can we use our existing user database to authenticate users - User Federation. Keycloak only has LADP/Kerberos options. Is there any custom plugin …

Read More
Keycloak Client Credentials Flow Clarification

I am using Keycloak server to implement SSO. I am able to get access token for a specific client using client_credentials flow. However, my observation is that the access token is granted for internal service account of the client. …

Read More