[
https://issues.apache.org/jira/browse/AIRAVATA-2405?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16063634#comment-16063634
]
Marcus Christie commented on AIRAVATA-2405:
-------------------------------------------
For now I've implemented it such that the code gets up to 1000 users from
Keycloak and then loops over them and checks each one to see if they have the
given role. This is limited in at least two ways:
* if a gateway grows beyond 1000 users there will be no way to find those users
beyond the first 1000 by role
* a Keycloak call must be made for each user to retrieve that user's roles, so
this won't scale with a large number of users
As noted above, there are open issues regarding this in Keycloak so hopefully
we'll have a better way to search for users by role and can update the
implementation. For now I think the approach I've taken will be good enough in
the short term.
> Keycloak: search for users with a given role
> --------------------------------------------
>
> Key: AIRAVATA-2405
> URL: https://issues.apache.org/jira/browse/AIRAVATA-2405
> Project: Airavata
> Issue Type: Bug
> Components: PGA PHP Web Gateway
> Reporter: Marcus Christie
> Assignee: Marcus Christie
> Fix For: 0.18
>
>
> In PGA, admins can search for users that have a selected role.
> It would be good to implement this in IamAdminServices in the backend and
> then call that from PGA.
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
