cd51ff3474
We now no longer expose role assignment information into the RefreshToken. Previously RefreshTokens contained information about the realm and client specific roles which are assigned to a user. Since the role information is usually either taken from the AccessToken, IDToken or the User-Info endpoint and the RefreshToken is an internal format which is opaque to the client, it would be a waste of space to keep that information in the RefreshToken. See: https://lists.jboss.org/pipermail/keycloak-dev/2019-April/011936.html |
||
---|---|---|
.. | ||
base | ||
other | ||
pom.xml |