jenskeiner opened a new pull request #3308: URL: https://github.com/apache/apisix/pull/3308
### What this PR does / why we need it: Add code to `authz-keycloak` plugin to optionally resolve requests URI to resource(s) and map HTTP method to scope; see #3274. ### Pre-submission checklist: * [x] Did you explain what problem does this PR solve? Or what new features have been added? * [ ] Have you added corresponding test cases? * [x] Have you modified the corresponding document? * [ ] Is this PR backward compatible? **If it is not backward compatible, please discuss on the [mailing list](https://github.com/apache/apisix/tree/master#community) first** Open this PR to get some feedback on the changes. Still need to add tests to cover the new functionality. May still need to polish the JSON schema slightly as well. However, already tested changes in a real deployment to confirm this is actually working. Also, strictly speaking, this plugin is not backwards compatible. E.g. we now require static permissions to be set when not using the new dynamic resource resolution. We also require `client_id` to be set because it will be used in any sensible configuration scenario. This mostly affects corner cases, so I don't think it represents a real problem. In any case, will likely polish everything a bit more, but would appreciate any feedback already. @sshniro You should definitely have a look. ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org
