Export users and roles from Keycloak
I created users and roles in Keycloak which I want to export.
When I tried to export them using the realm's "Export" button in UI I got a JSON file downloaded.
But I couldn't find any users or roles in the exported file realm.json
How can I export a realm JSON including users and roles from Keycloak?
Update: The /auth path was removed starting with Keycloak 17 Quarkus distribution. So you might need to remove the /auth from the endpoint calls presented on this answer.
You will not be able to do that using the export functionality. However, you can get that information using the Keycloak Admin REST API; to call that API, you need an access token from a user with the proper permissions. For now, I will be using the admin user from the master realm, but later I will explain how you can use another user:
curl https://$KEYCLOAK_HOST/auth/realms/master/protocol/openid-connect/token \
-d "client_id=admin-cli" \
-d "username=$ADMIN_NAME" \
-d "password=$ADMIN_PASSWORD" \
-d "grant_type=password"
You will get a JSON response with the admin's token. Extract the value of property access_token from that response. Let us save it in the variable $ACCESS_TOKEN for later reference.
To get the list of users from your realm $REALM_NAME:
curl -X GET https://$KEYCLOAK_HOST/auth/admin/realms/$REALM_NAME/users \
-H "Content-Type: application/json" \
-H "Authorization: bearer $ACCESS_TOKEN"
curl -X GET https://$KEYCLOAK_HOST/auth/admin/realms/$REALM_NAME/roles \
-H "Content-Type: application/json" \
-H "Authorization: bearer $ACCESS_TOKEN"
Now you just need to save the JSON responses from those endpoints into JSON files.
Assigning the proper user permissions
For those that do not want to get an access token from the master admin user, you can get it from another user but that user needs the permission view-users from the realm-management client. For that you can:
(OLD Keycloak UI)
- Go to Users, and then the user in question
- Go to the tab
Role Mappings - In
client rolesselectrealm-management - Select the role
view-usersand click onAdd selected
(New Keycloak UI)
- Go to Users, and then the user in question
- Go to the tab
Role Mappings - Click on
Assign role - In
Search by role nametypeview-users - Select the role and assign it
- Export specific rows from a PostgreSQL table as INSERT SQL script
- Exporting an array in bash script
- Export Google Doc without comments
- Export data from Azure SQL Server stored procedure or table to Excel using Azure Resources
- How to export and import js files?
- codeigniter export to excel works well on localhost, errors on server
- Importing MICE object to Stata for analysis
- Export users and roles from Keycloak
- How to export a package to zip file in IntelliJ IDEA
- Export statsmodels summary() to .png
- Python DataFram Export to Excel Overwriting Previous Line
- The requested module '' does not provide an export named 'default'
- Export a GraphQL collection in Postman
- Issue with an REST API- suggestions to my problem
- How to export all rows from Datatables using Ajax?
- How to export RStudio console output directly to a pdf file
- NodeJS, JS how to export Promise value in a module, not the function?
- Why do I get a "Failed to export the report" error when I try to export a Crystal Report to an HTML file?
- jQuery datatables exporting data to Excel
- Export/Import VS extensions list?
- Can I export Datadog dashboards via Datadog REST API?
- Automatically maximize a figure
- Send contents of Google Sheet when one cell is not empty
- Excel download - Laravel 5.1
- Export able to export to csv using Highcharts Vue
- Export interactive Bokeh plots with widgets to standalone HTML
- Export DataGridView to HTML Page
- export to excel using datatable
- export Data in localStorage for later re-import
- PrestaShop: tax calculation wrong because of wrong country id