[
https://issues.apache.org/jira/browse/AIRAVATA-2371?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15983560#comment-15983560
]
Marcus Christie commented on AIRAVATA-2371:
-------------------------------------------
For the accord integration we just used the Keycloak master admin username and
password to administrative purposes. I think we should use a separate
privileged user account created in that realm, like what we did for the WSO2IS
integration.
So how to do that? We need to create a user in the realm and then give that
user the {{realm-admin}} role of the {{realm-management}} client. Here's what
it says in the manual:
{quote}
The account that logs in needs to have proper permissions in order to be able
to invoke Admin REST API operations. Specifically - realm-admin role of
realm-management client is required for user to administer the realm within
which the user is defined.
{quote}
http://www.keycloak.org/docs/3.0/server_admin/topics/admin-cli.html
> Deploy Keycloak integration testing environment on Jetstream
> ------------------------------------------------------------
>
> Key: AIRAVATA-2371
> URL: https://issues.apache.org/jira/browse/AIRAVATA-2371
> Project: Airavata
> Issue Type: Bug
> Reporter: Marcus Christie
> Assignee: Marcus Christie
>
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)
