From ca76bc927af1ce042d31a618dca7423d02902c68 Mon Sep 17 00:00:00 2001 From: Masaki Yatsu Date: Mon, 27 Oct 2025 20:28:00 +0900 Subject: [PATCH] fix(lakekeeper): fix aud mapper for `lakekeeper` scope --- lakekeeper/justfile | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/lakekeeper/justfile b/lakekeeper/justfile index 36fe139..13ab458 100644 --- a/lakekeeper/justfile +++ b/lakekeeper/justfile @@ -109,6 +109,10 @@ create-oidc-client: echo "Creating 'lakekeeper' client scope if it doesn't exist..." just keycloak::create-client-scope ${KEYCLOAK_REALM} lakekeeper "Lakekeeper API scope" + # Add audience mapper to lakekeeper scope + echo "Adding audience mapper to 'lakekeeper' client scope..." + just keycloak::add-audience-mapper-to-scope ${KEYCLOAK_REALM} lakekeeper lakekeeper + # Check if client already exists if just keycloak::client-exists ${KEYCLOAK_REALM} lakekeeper &>/dev/null; then echo "Client 'lakekeeper' already exists, skipping creation..." @@ -129,10 +133,6 @@ create-oidc-client: echo "Adding 'lakekeeper' scope to client..." just keycloak::add-scope-to-client ${KEYCLOAK_REALM} lakekeeper lakekeeper - # Add audience mapper to include 'lakekeeper' in JWT audience - echo "Adding audience mapper for JWT token..." - just keycloak::add-audience-mapper lakekeeper lakekeeper - echo "OAuth client configured successfully for PKCE authentication" # Delete OIDC client (for cleanup purposes)