Snippets Groups Projects

Create Keycloak client for access to enhanced profile data

This client will exist within the community realm, and the base client doesn't need any scopes as it just needs to exist for validation of incoming client requests. The community realm was chosen as it reduces risk by a reasonable amount in case of any sort of leak. The Foundation realm guards access to a specific resource, and in the community realm there is also access control. However, this access control is typically done on both login state and the username/email matching of the authenticated user, so even having access to these API's should be low risk.

Designs

Child items ...

Activity

Martin Lowe added stateblock label 2 years ago

added stateblock label
Martin Lowe assigned to @malowe 2 years ago

assigned to @malowe
Martin Lowe marked this issue as blocked by #2 (closed) 2 years ago

marked this issue as blocked by #2 (closed)
Christopher Guindon @cguindon · 2 years ago

Maintainer

I don't think this will be necessary this year.
Martin Lowe @malowe · 2 years ago

Author Maintainer

I'm going to close this issue for now as there is no current plan to migrate this. We can open a new issue when this comes up in the future
Martin Lowe closed 2 years ago

closed

Please register or sign in to reply

Epic

None

Labels

None

Milestone

None

Iteration

None

Weight

None

Due date

None

Health status

None

Confidentiality

Confidentiality controls have moved to the issue actions menu () at the top of the page.

0 Participants

Copyright © Eclipse Foundation, Inc. All Rights Reserved. Privacy Policy | Terms of Use | Copyright Agent