Prifulnath
Reputation: 567
Generate token from Keycloak SPI
I am trying to generate token with client id and client secret from an custom keycloak API, this token will further used by other APIs to communicate with keycloak admin APIs.
So I have two options. One is using keycloak API to generate token. But token generated from keycloak SPI, issuer is localhost:8080 which cannot be used by the API in the other domain.
And the second option is using keycloak functions to generate token. So I gone through the keycloak source code and found some methods like below,
TokenManager tokenManager = new TokenManager();
AccessToken token = tokenManager.createClientAccessToken(session, realm, client, null, null, null);
and
EventBuilder event = new EventBuilder(session.getContext().getRealm(), session,
session.getContext().getConnection());
AccessTokenResponseBuilder responseBuilder = tokenManager
.responseBuilder(realm, client, event, session, this.authResult.getSession(), null)
.generateAccessToken();
responseBuilder.getAccessToken().setAllowedOrigins(this.authResult.getToken().getAllowedOrigins());
AccessTokenResponse atr = responseBuilder.build();
String accessToken = atr.getToken();
But both the code requires user or user session, but I need client based token.
Can anyone suggest me a better option?
Upvotes: 2
Views: 241
Answers (0)
Related Questions
- Logout user via Keycloak REST API doesn't work
- How to obtain an access token within a Keycloak SPI?
- How to get access token for keycloak user SPI
- KeyCloak User validation and getting token
- Keycloak Refresh token not of type Offline
- Change user DB connection at runtime in Keycloak user storage SPI
- Keycloak-6.0.1 Custom Authenticator SPI
- Access Keycloak REST Admin API using a service account (client credential grant)