Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Access Token has to be generated from a different client than the authorization one for the ResourceGuard #179

Open
patostickar opened this issue Mar 7, 2024 · 1 comment
Open

Access Token has to be generated from a different client than the authorization one for the ResourceGuard #179

patostickar opened this issue Mar 7, 2024 · 1 comment

Comments

@patostickar
Copy link

patostickar commented Mar 7, 2024
edited
Loading

May not be a library specific bug, but after hours of investigation, I found that if you grant an Access Token from a client, you can't use it to handle the authorization of resources for the same client.

That is the reason why in the example there is a postman client for login, and a nest-api for authorization.

Is this an OpenID specification, or a bug in Keycloak?
@ferrerojosh
Copy link
Owner

Guarding resources is related to Keycloak's authz, I am not sure how it accepts access tokens, maybe it has something to do with the auth server configuration ?

# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@ferrerojosh @patostickar