Add manual for token stuff

Author: Daenges

realms/README.md

@@ -0,0 +1,27 @@
+# How to setup a new Keycloak instance
+*summary of [this Tutorial](https://medium.com/@nishada/keycloak-spring-boot-rbac-e8732a91909a)*
+
+1. Create Realm
+2. Ressource file: `sb-backend.json` (may take a minute or two)
+3. Users → Add User → **fill all fields** (Username, Email, First name, Last name) otherwise there will be an error → Create
+4. Users → Click on User → Credentials → Set password → **NOT TEMPORARY**
+5. Users → Click on User → Role mapping → Add Admin / Student role
+
+# How to request a JWT Token using Postman
+1. Create Post Request to `http://localhost:7070/realms/study-buddies/protocol/openid-connect/token`
+2. Set `Body` → `x-www-form-urlencoded`:
+
+|Key|Value|
+|:-:|:-:|
+|client_id|sb-backend|
+|client_secret|Keycloak → Clients → sb-backend → Credentials|
+|grant_type|password|
+|username|User created above|
+|password|Password of user created above|
+
+3. *Optional:* View content of `access_token` [here](https://jwt.io/).
+
+# How to use a restricted endpoint using Postman
+1. Create Request
+2. Authorization &rarrr; Auth Type: Bearer Token → paste full content of `access_token` from JWT request above into `Token` field.
+