Transporting Groups during External IDP authentication
Issue
How is it possible to retrieve at SP level the user groups when a user is authenticating against the IDP ?
Note:
The groups are known from the IDP user.
Environment
- Red Hat Single Sign-On (RH-SSO)
- 7.x
- Keycloak External Identity Provider (IDP)
- keycloak Broker - Service provider (SP)
- OpenID
- IDP User Group
- Keycloak Advanced claim Group.
- Access Token
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.