[ https://issues.apache.org/jira/browse/AIRAVATA-2371?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15983560#comment-15983560 ]
Marcus Christie commented on AIRAVATA-2371: ------------------------------------------- For the accord integration we just used the Keycloak master admin username and password to administrative purposes. I think we should use a separate privileged user account created in that realm, like what we did for the WSO2IS integration. So how to do that? We need to create a user in the realm and then give that user the {{realm-admin}} role of the {{realm-management}} client. Here's what it says in the manual: {quote} The account that logs in needs to have proper permissions in order to be able to invoke Admin REST API operations. Specifically - realm-admin role of realm-management client is required for user to administer the realm within which the user is defined. {quote} http://www.keycloak.org/docs/3.0/server_admin/topics/admin-cli.html > Deploy Keycloak integration testing environment on Jetstream > ------------------------------------------------------------ > > Key: AIRAVATA-2371 > URL: https://issues.apache.org/jira/browse/AIRAVATA-2371 > Project: Airavata > Issue Type: Bug > Reporter: Marcus Christie > Assignee: Marcus Christie > -- This message was sent by Atlassian JIRA (v6.3.15#6346)