mirror/keycloak
1
0
Fork 0
mirror of https://github.com/keycloak/keycloak.git synced 2026-04-29 03:21:02 -05:00
Code Issues Packages Projects Releases Wiki Activity

Add a note to release notes about admin roles mapping

Browse Source 
Fixes #39956

Signed-off-by: vramik <vramik@redhat.com>
This commit is contained in:
vramik
2025-06-05 10:59:54 +02:00
committed by Pedro Igor
parent 1d9ecb2d7a
commit aafb140529
1 changed files with 4 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
docs/documentation/release_notes/topics/26_3_0.adoc
+4
View File
@@ -53,3 +53,7 @@ the `Trust email` setting is enabled. If this claim is set to `true`, the federa
user account will have their email marked as unverified.
The `email_verified` claim is a standard claim as defined by the https://openid.net/specs/openid-connect-core-1_0.html#StandardClaims[OpenID Connect Core Specification].
= Restrict admin role mappings to server administrators
To enhance security, only users with the `admin` role in the `master` realm (server admins) can assign admin roles. This ensures that critical permissions cannot be delegated by realm-level administrators.