'Keycloak Rest API get all available resources

i am trying to list all resources client have access to. I am unable to figure out how to to make the call. I have used this curl

curl -X GET \
  http://$URL/auth/realms/$RELM/authz/resource-server/resource \
  -H 'Authorization: Bearer$TOKEN' \
  -H 'cache-control: no-cache'

so far but i am getting this response : {"error":"RESTEASY003210: Could not find resource for full path: http://localhost:8070/auth/realms/argo/authz/resource-server/resource"}

Can someone help me to figure out how i can list all resources and if resource is not in the list to create new one ?

SOLUTION that is implementd:

    $ch = curl_init();
    
    curl_setopt($ch, CURLOPT_URL, $this->keyCloakURL . '/realms/' . $this->relmName . '/protocol/openid-connect/token');
    curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
    curl_setopt($ch, CURLOPT_POST, 1);
    curl_setopt($ch, CURLOPT_POSTFIELDS,
        "audience=" . KEYCLOAK_CLIENT_NAME . "&grant_type=urn:ietf:params:oauth:grant-type:uma-ticket&response_include_resource_name=true");
    $authorization = "Authorization: Bearer " . $user_token['access_token'];
    curl_setopt($ch, CURLOPT_HTTPHEADER, array (
            'Content-Type: application/x-www-form-urlencoded',
            $authorization
    ));
    $result = curl_exec($ch);
    if(curl_errno($ch))
    {
        echo 'curl error';
        return false;
    }
    
    $result = json_decode($result, true);
    curl_close($ch);
    if(isset($result['access_token']) && !empty($result['access_token']))
    {
        $parts = explode('.', $result['access_token']);
        if(!isset($parts[1]))
        {
            return false;
        }
        $info = $this->base64UrlDecode($parts[1]);
        $info = json_decode($info, true);
        
        $return = array ();
        if(isset($info['authorization']['permissions']))
        {
            $permissions = $info['authorization']['permissions'];
            foreach($permissions as $ecahPermission)
            {
                if(isset($ecahPermission['scopes']))
                {
                    //                      $scopes = array_map('strtolower', $ecahPermission['scopes']);
                    $return[$ecahPermission['rsname']] = $ecahPermission['scopes'];
                }
            }
        }
        
        return $return;
    }
    
    return false;
restcurlkeycloakopenid


Sources

This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.

Source: Stack Overflow

Solution Source

Related Questions

What are the default Lifetime values for openiddict tokens

User Auth/Identity Service that takes care of social logins?

Swagger/Swashbuckle Authorize. Scopes checked by default

OpenIDConnect provider's HTTPS certificate doesn't match configured thumbprint

How to manage the Strategy user info in NestJS and pass it to the client side in Angular?

Node express with OpenID connect

How can I see SSO (OpenID/OAuth) authorization token from the client side?

Single Tenant Application needs to support SSO from a multi-tenant provider dynamically with OpenId Owin

Solving sslv3 alert handshake failure when trying to use a client certificate

How to upload github asset file using CURL

Prestashop cUrl Login

For what reason might the camera return the error "Invalid session in request data!"?

Warning file_get_contents () failed to open stream: HTTP request failed! HTTP/1.0 402 Payment Required

How avoid Moved Permanently The document has moved here

How to solve cURL error 60: SSL certificate in Laravel 5 while Facebook authentication