...
- First, create an initial Keycloak realm. Then create a user with the YUUVS_SYSTEM_INTEGRATOR role within this realm.
- Users calling endpoints of the system controller need the YUUVIS_SYSTEM_INTEGRATOR role.
- Users calling endpoints of the admin controller need the YUUVIS_TENANT_ADMIN role and must be a member of the Keycloak realm that is created when creating a yuuvis® Momentum tenant.
- Before creating the first tenant, the profile has to be saved via POST /tenant-management/api/system/profile by a user with the YUUVS_SYSTEM_INTEGRATOR role.
- As of 2023 Summer, a redirect URI can be configured in the application-oauth2.yml configuration file for a successful log-out process.
Working with any Identity Provider via OAuth2
...