REST API extension - rwth-acis/keycloak-extensions GitHub Wiki
All endpoints use the base path /auth/realms/{realm}/userClientAdministration
e.g. the base path for local Keycloak instance for the realm company:
http://localhost:8080/auth/realms/company/userClientAdministration/
| Name | Schema |
|---|---|
| adminToken | string |
| clientRep | ClientRepresentation |
GET /clients
| Type | Name | Description | Schema |
|---|---|---|---|
| Cookie |
KEYCLOAK_IDENTITY (required) |
Keycloak Identity Cookie for authentication | string |
| HTTP Code | Description | Schema |
|---|---|---|
| default | success | List<ClientRepresentation> |
| forbidden | no Identity Cookie was send | - |
application/json
GET /client/{clientId}
| Type | Name | Description | Schema |
|---|---|---|---|
| Cookie |
KEYCLOAK_IDENTITY (required) |
Keycloak Identity Cookie for authentication | string |
| Path |
clientId (required) |
Client id of the requested client | string |
| HTTP Code | Description | Schema |
|---|---|---|
| default | success | ClientResponse |
| forbidden | no Identity Cookie was send or user not authorized to request the client (user not linked to that client) |
- |
application/json
POST /create
| Type | Name | Description | Schema |
|---|---|---|---|
| Cookie |
KEYCLOAK_IDENTITY (required) |
Keycloak Identity Cookie for authentication | string |
| Body |
clientRep (required) |
Representation of the new client with at least the client id given | ClientRepresentation |
| HTTP Code | Description | Schema |
|---|---|---|
| default | success | - |
| forbidden | no Identity Cookie was send | - |
| conflict | the client ID is already in use | { "errorMessage": string } |
application/json
POST /client/{intClientId}
| Type | Name | Description | Schema |
|---|---|---|---|
| Cookie |
KEYCLOAK_IDENTITY (required) |
Keycloak Identity Cookie for authentication | string |
| Path |
intClientId (required) |
internal id (not client id!) of the client | string |
| Body |
clientRep (required) |
settings of the client that should be changed | ClientRepresentation |
| HTTP Code | Description | Schema |
|---|---|---|
| default | success | ClientResponse |
| forbidden | no Identity Cookie was send or user not authorized to change the client (user not linked to that client) |
- |
application/json
application/json
DELETE /client/{intClientId}
| Type | Name | Description | Schema |
|---|---|---|---|
| Cookie |
KEYCLOAK_IDENTITY (required) |
Keycloak Identity Cookie for authentication | string |
| Path |
clientId (required) |
client id of the client that should be deleted | string |
| HTTP Code | Description | Schema |
|---|---|---|
| default | success | - |
| forbidden | no Identity Cookie was send or user not authorized to delete client (user not linked to that client) |
- |
POST /access
| Type | Name | Description | Schema |
|---|---|---|---|
| Cookie |
KEYCLOAK_IDENTITY (required) |
Keycloak Identity Cookie for authentication | string |
| Body |
adminTokenInfo (required) |
administration token granting access to the client | { "adminToken": string } |
| HTTP Code | Description | Schema |
|---|---|---|
| default | success | - |
| forbidden | no Identity Cookie was send | - |
| conflict | invalid administration token | { "errorMessage": string } |
application/json
DELETE /access/{clientId}
| Type | Name | Description | Schema |
|---|---|---|---|
| Cookie |
KEYCLOAK_IDENTITY (required) |
Keycloak Identity Cookie for authentication | string |
| Path |
clientId (required) |
client id of the client that link should be deleted | string |
| HTTP Code | Description | Schema |
|---|---|---|
| default | success | - |
| forbidden | no Identity Cookie was send or user not authorized to delete linkage (user not linked to that client) |
- |