Permission management system with external openid-provider (keycloak)

[gterdem]

When we had IdentityServer module, we were able to define permissions for the client which is used during the client_credentials flow.

Since we moved to Keycloak completely, there is no way to assign application permission to an external openid-provider.

We may consider using scoped-based authorization or add UI for permission management to manually add permissions for clients (applications) for these kind of scenarios.