Thank you, Arthur, you saved my day! God bless you 🧡

Very thankful to you for this easy explaining....😍

Excellent tutorial! Thank you for taking the time to explain this in such a simple way.

Awesome, simply awesome! thanks for tutorial, Arthur. God bless!

Thank You so much . Easy to understand hands on tutorial

Thank you!! Excellent work!! This saved lot of time in understanding the constructs!!

Great tutorial! Stay blessed brother

Thanks for doing this. Really clear explanation.

Thanks, very useful. God bless

Very useful video. Thank you!

thank you for your video, it helps me a lot in understanding much more about authorization in keycloak

Excellent video!! Now how I could achieve this with the resources with same uri for http method scope? and Is it possible to achieve in spring boot 3?

Which version of keycloak you have used @Arthur D. Mugume

Great tutorial! Thank you

Thank you!

I need one use case on authorization. There are 2 groups. Users of both group have an aceess of role incident-user. I want to design a policy for an incident resource. User of each group can view and update a ticket for their groups only. How to achieve it

Thanks. Go on

Hi, i follow all the steps, but i added a new route(controller) in my API which not have resorce yet but anyway allow the access. you know why?

How can i restrict when user login based on time??

Excellent video on such a complicated topic. Kudos and thankyou for sharing. I have a question, is there any resource/video on how can a backend API to consume and enforce role, permission, policy and resources as defined in keycloak ? I would highly applreate any help/links/resources on this topic, preferrably with javascript backend apis if possible. Have a great day

Thanks for the great video. It's a really clear explanation. Although I can now evaluate if a user has certain permission from within Keyclaok, how would I do the same from an external source, such as an API? The concept is that the user has logged into keycloak from a VueJS application. The GUI then makes a request to the API and sends the JWT token to the API as a Bearer token, how does the API use that token to know if the user has a specific permission? The only thing I see in the token is the client roles that are assigned to the user.

hi. thanks for great tutorial. I have enabled remember-me and login with remember-me checkbox selected. It has successfully logged in and worked normally. but when i close browser and open again it returns 502 from keycloak auth url, although it is supposed to relogin and sustain session. It seems when browser restart it deletes AUTH_SESSION_ID and AUTH_SESSION_ID_LEGACY from cookies. it works when i manually add these parameters to auth url.

Thanks Bro

What version keycloak do you use?

The Authorization tab is not appearing in my clients. How to make it appear ?

thanks man

Why scopes here are verbs instead of nouns, most scope parameters I came across are like email, profile, ....etc

Saviour :)

FUCKING THANK YOU.

Yes beautiful many thanks but.. Unauthorized :D

Already totally outdated unfortunately

Thanks for doing this. Really clear explanation.

Great tutorial, Thank you!