dcb-service returning 401 with a newly configured keycloak

Owned by Ian Ibbotson (Use this one)
Last updated: Oct 19, 2023 by Jag Goraya
1 min read

 

By default keycloak maps roles to the JWT Claim path realm_access.roles. Micronauts oauth implementation expects roles to appear at "roles". To synchronize the two you should update the oauth client in the dcb_hub realm by clicking on "Client Scopes", "Roles", "Mappers", "Realm Roles" then in "Token Claim Name" change "realm_access.roles" to "roles"

This step will enable the admin scripts to work with the keycloak main realm

 

Operated as a Community Resource by the Open Library Foundation