Page History
...
- A client, specifically for the DCM Maintenance App
- A client for the Maintenance App frontend
- Valid origins
- Here you should list the URLs on which the frontend through the gateway is accessible
- Valid redirect URLs
- Here you should list the URLs that can be used to redirect to after successfully logging in with Keycloak
- Roles
- The roles that are used in the application
- See the Authorization section for more information
- The roles that are used in the application
- RoleMapper
- A mapper that specifies how the roles are translated into the ID token
- The backend expects the roles to present in the 'roles' claim
- A mapper that specifies how the roles are translated into the ID token
- The scope "roles" should be assigned for the client.
- Valid origins
- A client for the Maintenance App frontend
- Users
- Role mappings for the roles available in the client configured above.
The default login page redirects to Keycloak directly instead of the Gateway service. To make sure it uses the Gateway service as URL to redirect to, change the frontend URL in the Realm settings.
Info | ||
---|---|---|
| ||
In Keycloak, you can see the id-tokens via clients → <client> → clients-scopes → evaluate → <user>. This could be helpful for debugging purposes. |
...
Overview
Content Tools