terraform-provider-keycloak icon indicating copy to clipboard operation
terraform-provider-keycloak copied to clipboard

Published 20 hours ago verified publisher icon mrparkers

keycloak_openid_client.authorization missing decision_strategy field

Open kajogo777 opened this issue 3 years ago • 3 comments

Openid client resource missing decision_strategy field in authorization stanza

The decision strategy dictates how permissions are evaluated and how a final decision is obtained. 'Affirmative' means that at least one permission must evaluate to a positive decision in order to grant access to a resource and its scopes. 'Unanimous' means that all permissions must evaluate to a positive decision in order for the final decision to be also positive.

kajogo777 avatar Sep 16 '20 18:09 kajogo777

@tomrutsaert do you know if this is covered by any of the authorization policy resources?

mrparkers avatar Sep 21 '20 14:09 mrparkers

I have created the policy ::

image

BUT I had to set : image

Otherwise I got the exception ::

image

Why ?

According to KC console, a decision strategy seems to be related to the resource server and not a policy

image

semangard avatar Oct 29 '20 10:10 semangard

The only case where a decision strategy is available at the policy level is for an aggregate policy ::

image

semangard avatar Oct 29 '20 13:10 semangard