Currently the Authenticator "Keycloak" pkg has a keycloak-specific implementation detail that requires roles be read from realm_access.roles. If instead it might be useful to add an argument that specifies a JSON path in a Bearer token to read roles from.
Currently the
Authenticator "Keycloak"pkg has a keycloak-specific implementation detail that requires roles be read fromrealm_access.roles. If instead it might be useful to add an argument that specifies a JSON path in a Bearer token to read roles from.