REST API /role-mappings/realm not returning associated roles for LDAP federation user

benhus · September 11, 2024, 6:04am

Hi,

I have setup a user federation via OpenLDAP, configured a role-ldap-mapper and setup associated roles adding the relevant Keycloak roles to the LDAP roles. I can login with an user from the LDAP and the JWT token contains all roles (LDAP + Associated Keycloak roles). However if I query this particular user and try to get his roles via REST API /admin/realms/{realm}/users/{ldap-user-id}/role-mappings/realm I get only the LDAP roles returned and not the associated Keycloak roles.

Any idea if there is something missing here or is this a bug?

Thank you in advance
Kind regards,
Ben

benhus · September 11, 2024, 6:13am

Hi,

I figured it out. Missed that there is a /role-mappings/realm/composite call to get the recursive composites.

Cheers,
Ben

Topic		Replies	Views
Get all users in specific role admin-rest	1	2040	April 15, 2024
Keycloak - Is it possible to map composite roles and their attributes to the access token? Configuring the server oidc	0	1540	December 29, 2020
Mapped user-group information not appearing in REST API responses, access tokens Getting advice ldap	1	715	March 22, 2022
Role mapping for grafana Getting advice admin-console , user-federation , ldap , saml	0	63	December 2, 2024
Map ldap groups to springboot roles Securing applications user-federation	0	713	May 4, 2021

REST API /role-mappings/realm not returning associated roles for LDAP federation user

Related topics