Add view-realm admin role check to SCIM discovery endpoints

Closes #46859 Signed-off-by: vramik <vramik@redhat.com>
2026-05-26 13:50:48 +00:00 · 2026-03-17 13:31:40 +01:00
parent 71385f2df3
commit a4796fe801
9 changed files with 72 additions and 15 deletions
@@ -69,6 +69,8 @@ import org.keycloak.representations.idm.authorization.ScopeRepresentation;

 public class AdminPermissionsSchema extends AuthorizationSchema {

+    public static final String REALMS_RESOURCE_TYPE = "Realms";
+
    public static final String CLIENTS_RESOURCE_TYPE = "Clients";
    public static final String GROUPS_RESOURCE_TYPE = "Groups";
    public static final String ROLES_RESOURCE_TYPE = "Roles";