Keycloak - restrict access to certain applications - eviltoast

Hi, I have successfully set up Keycloak and use it for a few of the applications that I’m running (unfortunately not every app supports oauth2/oidc yet).

However there’s one issue I haven’t been able to resolve yet: I want to restrict access to certain applications (like portainer) to specific users (me).

I’ve already tried going to the portainer client > Authorization, added a role based policy and added the policy to the default permission, but other users that don’t have this role can still log in. If I go to “Evaluate” it gives me the expected correct result for the different users

  • Scott@lemmy.world
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 year ago

    I use specific groups within KeyCloak to define what applications I want a user to see. However, I am using Cloudflare Zero Trust and passing the group claim.