alecberney
commented
2 years ago I also need this possibility, my token given from my school management don't give the allowed_resources.
it produce this error:
KeycloakGuard\Exceptions\ResourceAccessNotAllowedException: [Keycloak Guard] The decoded JWT token has not a validresource_accessallowed by API. Allowed resources by API: in file /var/www/html/vendor/robsontenorio/laravel-keycloak-guard/src/KeycloakGuard.php on line 169
It can be really usefull if you want to manage your roles in the app and be more flexible to change the auth keycloak realm for example.
I also opened an issue related.
close #67
robsontenorio
I'm not using resources on keycloak, that's why I added the possibility to disable the resource validation.