Client roles are not reflected in access token received from RH-SSO

Solution Verified - Updated -

Issue

  • We are deploying new RH-SSO 7.6 installation and also have a working instance of RH-SSO 7.4. We have created a new client and client roles in RH-SSO 7.6 similar to already running RH-SSO 7.4 instance. In generated access token using client_credentials grant we see no client roles in RH-SSO 7.6, while the client roles are present in access token generated through RH-SSO 7.4. Why is the client role not available in access token?

  • We are using KeycloakClient CR to create a client and client roles. Why does the access token generated from this client not have the client roles included?

Environment

  • Red Hat Single Sign on (RH-SSO)
    • 7.4
    • 7.5
    • 7.6
  • Red Hat Single Sign-On as Operator

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content