Keycloak授权:CRUD授权策略,通过API的权限 [英] Keycloak authorization: CRUD Authorization Policies, Permissions via API
问题描述
在Keycloak中,我看到有一个CRUD API可以创建资源(和作用域):
In Keycloak I see there is a CRUD API to create a resource (and scopes):
http://$ {host}:$ {port}/auth/realms/$ {realm_name}/authz/protection/resource_set
Create resource set description: POST /resource_set
Read resource set description: GET /resource_set/{_id}
Update resource set description: PUT /resource_set/{_id}
Delete resource set description: DELETE /resource_set/{_id}
但是我看不到CRUD授权策略,权限的API.
But I don't see an API to CRUD Authorization Policies, Permissions.
我试图通过protection/resource_set端点创建策略,但失败了:
I tried to create policies via the protection/resource_set endpoint but failed:
POST:政策":[{...}] =>无法识别的字段政策"
POST: "policies":[ {...} ] => Unrecognized field "policies"
是否可以通过API来获得CRUD授权策略/权限?
(我没有使用Java客户端-我想通过邮递员完成此操作)
(I'm not using a java client - I want to do this with postman)
任何帮助将不胜感激
推荐答案
确定发现了一些东西...
Ok found something ...
当请求这样的API端点时,您可以访问策略/权限:
When requesting API endpoints like this you get the access to policies/permissions:
But I still can't find something in the official documentation about this ...
这篇关于Keycloak授权:CRUD授权策略,通过API的权限的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!