堆栈内存溢出
  简体   繁体   English

使用 keycloak 管理客户端以编程方式为具有访问类型 public 的客户端创建用户

[英]create user programmatically using keycloak admin client for a client that has acces-type public

 原文  2019-12-03 15:28:23       java/ keycloak

问题描述

I have just started using keycloak and seems to have hit a hurdle.我刚刚开始使用 keycloak,似乎遇到了障碍。 I am not able to create a user programmatically using the keycloak-admin-client for java.我无法使用 java 的 keycloak-admin-client 以编程方式创建用户。 My keycloak server version is 8.0.0 and the library/jar version is also same.我的 keycloak 服务器版本是 8.0.0,库/jar 版本也相同。 When I try to create a user my program just sits there keep waiting where as in logs i can see login error当我尝试创建用户时,我的程序只是坐在那里等待,在日志中我可以看到登录错误

2019-12-03 20:10:19,842 WARN  [org.keycloak.events] (default task-26) type=LOGIN_ERROR, realmId=root-admin, clientId=demo-app, userId=null, ipAddress=192.x.x.x, error=not_allowed, auth_method=oauth_credentials, grant_type=password, client_auth_method=client-secret


Keycloak keycloak = KeycloakBuilder.builder() //
                .serverUrl("http://192.x.x.x:8080/auth") //
                .realm("root-admin") //
                .grantType(OAuth2Constants.PASSWORD) //
                .clientId("demo-app")
                .clientSecret("")////
                .username("genghis khan") //
                .password("1234") //
                .build();
        CredentialRepresentation credential = new CredentialRepresentation();
        credential.setType(CredentialRepresentation.PASSWORD);
        credential.setValue("12345678");
        UserRepresentation user = new UserRepresentation();
        user.setEnabled(true);
        user.setUsername("michaeljackson");
        user.setFirstName("michael");
        user.setLastName("jackson");
        user.setCredentials(Arrays.asList(credential));

        Response resp=keycloak.realm("root-admin").users().create(user);
        System.out.println(resp.getStatus());

My client is a public facing app so it has access type set as public and therefore no client secret is generated for it, also genghis khan user has role as admin and root-admin realm has been created by me.我的客户端是一个面向公众的应用程序,因此它的访问类型设置为公开,因此没有为其生成客户端机密,而且成吉思汗用户的角色为管理员,root-admin 领域已由我创建。 Need help as to how to make this work需要有关如何进行这项工作的帮助

1 个解决方案

解决方案1
 0  2019-12-05 01:23:31

Try enabling "Direct Access Grants Enabled" of demo-app client on the admin console.尝试在管理控制台上启用demo-app客户端的“启用直接访问授权”。

.grantType(OAuth2Constants.PASSWORD) //

This line means you're using "Resource Owner Password Credentials Grant", and it needs to be enabled.此行表示您正在使用“资源所有者密码凭据授予”,并且需要启用它。

See also: https://www.keycloak.org/docs/8.0/server_admin/index.html#oidc-clients另见: https : //www.keycloak.org/docs/8.0/server_admin/index.html#oidc-clients

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 在 Keycloak 中以编程方式创建客户端 - Create Client programmatically in Keycloak 通过keycloak管理客户端在keycloak中创建用户返回400 - Create user in keycloak through keycloak admin client returns 400 通过keycloak管理客户端在keycloak中创建用户返回IllegalArgumentException - Create user in keycloak through keycloak admin client returns IllegalArgumentException 无法使用keycloak-admin-client在Keycloak中创建用户 - Cannot create user in Keycloak with keycloak-admin-client 如何以编程方式创建keycloak客户端角色并分配给用户 - How to create keycloak client role programmatically and assign to user 使用 keycloak Admin Client 显示用户电子邮件不起作用(UnrecognizedPropertyException) - Displaying a User Email using keycloak Admin Client not working(UnrecognizedPropertyException) 在使用 keycloak-admin-client 创建用户期间出现 403 - 403 during user creation using keycloak-admin-client Keycloak 公共客户端和授权 - Keycloak public client and authorization Quarkus Keycloak 管理客户端 - Quarkus Keycloak Admin client 以编程方式创建 keycloak 客户端并从其他客户端分配角色 - Create keycloak client and assign role from other client programmatically
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM