Scribd
Upload
458 views4 pages

KeyCloak - Restrict Access To Group

KeyCloak allows restricting access to clients by group. To do so, create a new client with authorization enabled. Then add restrictions under the authorization tab to limit access to specific groups. Users can be evaluated against these restrictions to check if access conditions are met.

Uploaded by

risc
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
458 views4 pages

KeyCloak - Restrict Access To Group

KeyCloak allows restricting access to clients by group. To do so, create a new client with authorization enabled. Then add restrictions under the authorization tab to limit access to specific groups. Users can be evaluated against these restrictions to check if access conditions are met.

Uploaded by

risc
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
You are on page 1/ 4

KeyCloak –

Restrict Access to
Group
Create Client
• In an existing realm, creat a new client (Open ID Connect or SAML)
• Important: Activate option „Authorization Enabled“
Restrict Access to Group
• You already have a set of default „access-all“ settings
inside new tab „Authorization“.
• Add your restriction
Check / Evaluate Restriction
• In register „Authorization / Evaluate“, first select User to check
• Important: Select a combination of resource (and optional scope) -
and press „Add“ Button
• Your selection will be added to list
• Then you can check if your condition is met

You might also like