Hey team,
I’m working on a specific use case where I need to create a read-only user role with a few extended permissions:
- The user should not be able to modify provisioned assets.
- However, they should be able to delete/unlink assets.
- They should also be allowed to create
GroupAsset
instances, in order to group existing provisioned assets.
To support this, I’ve added a new role called delete_asset
in ClientRole.java
.
My question is:
**What is the proper way to make this new role appear in the user creation screen and have it correctly provisioned through the Keycloak provider?
In addition i should be able to add the new role without clean setup of keycloak (realms, users, roles)
Thanks,
Kostasandre