New custom role

kostasandre · August 1, 2025, 11:04am

Hey team,

I’m working on a specific use case where I need to create a read-only user role with a few extended permissions:

The user should not be able to modify provisioned assets.
However, they should be able to delete/unlink assets.
They should also be allowed to create GroupAsset instances, in order to group existing provisioned assets.

To support this, I’ve added a new role called delete_asset in ClientRole.java.

My question is:
**What is the proper way to make this new role appear in the user creation screen and have it correctly provisioned through the Keycloak provider?
In addition i should be able to add the new role without clean setup of keycloak (realms, users, roles)

Thanks,
Kostasandre

RRR · August 1, 2025, 4:46pm

Hi, is that the same you need what i have asked?

kostasandre · August 4, 2025, 10:59am

hello there!
not exactly but as i see you do also need a custom role as the out of the box roles are not suited your needs. So my question is more towards on how to create the new custom role by some standards of open remote