How to get id (not clientId) of client in keycloak?
When creating a new client in Keycloak service through sending the post request to /{realm}/clients, both clientId and id are optional fields in post body.
If I didn't specify them, keycloak will generate it automatically. Then I found when I request to get client-secret, I need to put the id into url to indicate the client-secret of which client I need to get ?
I try to figure out how can I get the id of client from Keycloak API docs but didn't get the answer.
Anyone has idea?
Update: The /auth path was removed starting with Keycloak 17 Quarkus distribution. So you might need to remove the /auth from following endpoint calls.
I try to figure out how can I get the id of client from Keycloak API docs but didn't get the answer.
To get the id you can call the endpoint /{realm}/clients with the parameter clientID for instance using curl:
curl -k -X GET $KEYCLOAK_HOST/auth/admin/realms/$REALM_NAME/clients?clientId=$CLIENT_ID \
-H "Content-Type: application/json" \
-H "Authorization: Bearer $ACCESS_TOKEN"
The $ACCESS_TOKEN is the access token from a token omitted on behalf of a user with the proper privileges (e.g., admin).
From the response .json you extract id (e.g., jq -r .[0].id). In my personal Git repo you can find a script to extract the client secret.
Assigning the proper user permissions
For those that do not want to get an access token from the master admin user, you can get it from another user but that user needs the permission view-clients from the realm-management client. For that you can:
(OLD Keycloak UI)
- Go to Users, and then the user in question
- Go to the tab
Role Mappings - In
client rolesselectrealm-management - Select the role
view-clientsand click onAdd selected
(New Keycloak UI)
- Go to Users, and then the user in question
- Go to the tab
Role Mappings - Click on
Assign role - In
Search by role nametypeview-clients - Select the role and assign it
- Android app client can't connect to my server
- Encryption with public key in Jose-JWT
- Mocking RestClient using Mockito
- How to determine NTP communication status
- Unable to authenticate users using procore
- Error Telegram id and hash "Incorrect app name&#33"
- Error : Unsupported Server Component type: undefined in next js 14
- Sending axios request to Whisper endpoint with file input in client-side JS
- Python fastcgi client
- Client communicate with the server using localhost:PORT
- Socket.io calling http://undefined/.... in the URL
- How to reconnect a client automatically on ratchetphp?
- is there any secure websocket (wss protocol) client browser plugin available?
- Error: pg_config executable not found i try to pip3 psycopg2 with python3.7
- python - discord.py sends to many messages
- C# UdpCLient.Receive doesn't receive any data on different machine
- How can I connect a C# SSLStream client to an OpenSSL server?
- How to read input from a socket using threads JAVA
- start() is Deprecated in GRPC services
- How to wait until multiprocessing.connection.Client is available in python?
- Is there a WebSocket client implemented for .NET?
- How to get a user's client IP address in ASP.NET?
- golang redis client connection status
- Good Postgres graphical client for Windows
- Node JS Server to Server Connection
- Using select(..) on client
- Link two computers with Socket in Java
- Block a client without blocking others in Select
- C# Socket double connect?
- How do I pass 2 variables through each other?