keycloak-scim

History

Thomas Darimont cd51ff3474 KEYCLOAK-13186 Remove role information from RefreshTokens We now no longer expose role assignment information into the RefreshToken. Previously RefreshTokens contained information about the realm and client specific roles which are assigned to a user. Since the role information is usually either taken from the AccessToken, IDToken or the User-Info endpoint and the RefreshToken is an internal format which is opaque to the client, it would be a waste of space to keep that information in the RefreshToken. See: https://lists.jboss.org/pipermail/keycloak-dev/2019-April/011936.html	2020-03-11 06:28:22 +01:00
..
src	KEYCLOAK-13186 Remove role information from RefreshTokens	2020-03-11 06:28:22 +01:00
pom.xml	Set version to 9.0.1-SNAPSHOT	2020-02-17 20:38:54 +01:00

Thomas Darimont cd51ff3474 KEYCLOAK-13186 Remove role information from RefreshTokens

We now no longer expose role assignment information into the RefreshToken.

Previously RefreshTokens contained information about the realm and
client specific roles which are assigned to a user. Since the role
information is usually either taken from the AccessToken, IDToken or
the User-Info endpoint and the RefreshToken is an internal format which
is opaque to the client, it would be a waste of space to keep that
information in the RefreshToken.

See:
https://lists.jboss.org/pipermail/keycloak-dev/2019-April/011936.html

2020-03-11 06:28:22 +01:00

src

KEYCLOAK-13186 Remove role information from RefreshTokens

2020-03-11 06:28:22 +01:00

pom.xml

Set version to 9.0.1-SNAPSHOT

2020-02-17 20:38:54 +01:00