Questions tagged [keycloak-rest-api]

This tag should be used for questions related to the Keycloak Admin Rest API. For instance, "is there an endpoint where I can request X information about the users?"

The Keycloak features provided by the Admin Console can be triggered via the Keycloak's Admin Rest API.

472 questions
5
votes
2 answers

Keycloak 17.0.1 Import Realm on Docker / Docker-Compose Startup

I am trying to find a way to import a realm in Keycloak version 17.0.1 that can be done at starting up a docker container (with docker-compose). I want to be able to do this in "start" mode and not "start-dev" mode as in my experience so far…
IfTrue
  • 489
  • 8
  • 25
5
votes
2 answers

How can I get userId after call create user api in keycloak?

I implemented keycloak in my node.js project and call following API for add user in keycloak: {{keycloak_url}}/admin/realms/{{realm}}/users This API works and I can add user in keycloak but I need userId in response to this API how can I get this,…
Dhaval
  • 868
  • 12
  • 22
5
votes
3 answers

How to configure custom themes for keycloak on kubernetes

I want to configure a custom theme for login, register and forgot password pages in keycloak on kubernetes. I am using the following url and configuration for keycloak on kubernetes. https://www.keycloak.org/getting-started/getting-started-kube …
5
votes
1 answer

Keycloak: Generate access token for a user with keycloak-admin

I have to move a legacy authentication system to Keycloak and I cannot change the actual workflow on the client. As such, I need to provide with my api (in node.js) a user creation and login system that in turns create and get access tokens from…
Marco Ottolini
  • 445
  • 2
  • 6
  • 15
5
votes
1 answer

Keycloak - request user to verify email address through api

Desired result: User should be able to register and then he should be able to login thrugh a mobile app (event if the email address isn't verified), the app shows a warning that email isn't verified and some app functionality a disabled What i…
zooofeex
  • 106
  • 1
  • 6
5
votes
1 answer

Keycloak access token expires too soon

I have access token that should be valid for 10 hours, but it expires after 30 minutes. I use it to call Keycloak rest api and it works for half an hour, but after that I get 401 - Unauthorized. I decoded it on jwt.io and exp claim is 10 hours after…
andrija
  • 1,057
  • 11
  • 21
5
votes
2 answers

Keycloak - Manage realm with user from different realm

Is possible to have user in one realm to manage another realm in keycloak? My goal is to have 2 realms - adminRealm & userRalm. In adminRealm should be users, which will be able to log in to our admin app and there they could create via Keycloak…
Dominik Zatloukal
  • 193
  • 1
  • 3
  • 12
4
votes
1 answer

Keycloak OTP based Login

I want to enable login in my application using following call flow: Step 1: User visits the Application website and enters the Mobile Number or Username. Step 2: Application requests Keycloak to generate the OTP for the user associated with the…
Safvan Kothawala
  • 375
  • 1
  • 5
  • 13
4
votes
4 answers

How to terminate/stop quarkus keycloak server version 17.x.x?

Recently I downloaded the new version Keycloak 17.0.0 Quarkus distribution, unzipped and started the Keycloak server by running bin/kc.sh start-dev from my local $KEYCLOAK_HOME directory in a CygWin Bash window. The server is up and running and I…
4
votes
1 answer

Keycloak Step Up from Client

The Keycloak documentation here says you need to add ACR with claims in the request in order to do authentication step up to a higher level. But how is this accomplished from either the keycloak.js client library, or the keycloak-js npm client…
4
votes
2 answers

Missing parameter code_challenge_method

I'am learning oauth 2.0 and used keycloak as authorization server.whenever I'am sending following request:- http://localhost:7070/auth/realms/developer/protocol/openid-connect/auth?client_id=tcs&response_type=code&scope=openid…
utkarsh sharma
  • 73
  • 1
  • 2
  • 8
4
votes
0 answers

Keycloak authentication using google id Token / access Token

I'm currently developing a Flutter application with Keycloak as authenticating server using Open_id flutter package. I have implemented email & password signin using Keycloak restApi for username & password sign in I need to add google signIn in my…
Bharath
  • 1,036
  • 10
  • 13
4
votes
0 answers

Keycloak not sending verification email when REST API is used to create user. How to achieve this?

There is a similar question around (Keycloak - Verify user's email using Rest API) which does not answer my question. When setting Verify email to true in the realm settings and registering a user through Keycloak an email is sent to the user. The…
Moritz Schmitz v. Hülst
  • 3,229
  • 4
  • 36
  • 63
4
votes
1 answer

Keycloak set password policy via Rest API

I would like to update/add password policy through Keycloak RestAPI. I went through the docs, but it looks like that I may only retrieve the list of password policy through APIs. Any other possible way so that I can handle the password policy…
Haizad Annuar
  • 149
  • 1
  • 3
  • 14
4
votes
1 answer

How to use client to post the realm role in Keycloak?

I have created a client in keycloak and configure it access type to "confidential". I can use REST API protocol/openid-connect/token with clientId and client secret to get the access token for this this client. In my design, there is a use case that…
bubu0321
  • 497
  • 1
  • 6
  • 18
1
2
3
31 32