mirror of
https://github.com/aljazceru/nutshell.git
synced 2025-12-28 14:04:41 +01:00
a0ef44dba0
* auth server * cleaning up * auth ledger class * class variables -> instance variables * annotations * add models and api route * custom amount and api prefix * add auth db * blind auth token working * jwt working * clean up * JWT works * using openid connect server * use oauth server with password flow * new realm * add keycloak docker * hopefully not garbage * auth works * auth kinda working * fix cli * auth works for send and receive * pass auth_db to Wallet * auth in info * refactor * fix supported * cache mint info * fix settings and endpoints * add description to .env.example * track changes for openid connect client * store mint in db * store credentials * clean up v1_api.py * load mint info into auth wallet * fix first login * authenticate if refresh token fails * clear auth also middleware * use regex * add cli command * pw works * persist keyset amounts * add errors.py * do not start auth server if disabled in config * upadte poetry * disvoery url * fix test * support device code flow * adopt latest spec changes * fix code flow * mint max bat dynamic * mypy ignore * fix test * do not serialize amount in authproof * all auth flows working * fix tests * submodule * refactor * test * dont sleep * test * add wallet auth tests * test differently * test only keycloak for now * fix creds * daemon * fix test * install everything * install jinja * delete wallet for every test * auth: use global rate limiter * test auth rate limit * keycloak hostname * move keycloak test data * reactivate all tests * add readme * load proofs * remove unused code * remove unused code * implement change suggestions by ok300 * add error codes * test errors
2022 lines
75 KiB
JSON
2022 lines
75 KiB
JSON
{
|
|
"id" : "8956870d-d9bc-4ffd-bdec-3685db703215",
|
|
"realm" : "master",
|
|
"displayName" : "Keycloak",
|
|
"displayNameHtml" : "<div class=\"kc-logo-text\"><span>Keycloak</span></div>",
|
|
"notBefore" : 0,
|
|
"defaultSignatureAlgorithm" : "RS256",
|
|
"revokeRefreshToken" : false,
|
|
"refreshTokenMaxReuse" : 0,
|
|
"accessTokenLifespan" : 60,
|
|
"accessTokenLifespanForImplicitFlow" : 900,
|
|
"ssoSessionIdleTimeout" : 1800,
|
|
"ssoSessionMaxLifespan" : 36000,
|
|
"ssoSessionIdleTimeoutRememberMe" : 0,
|
|
"ssoSessionMaxLifespanRememberMe" : 0,
|
|
"offlineSessionIdleTimeout" : 2592000,
|
|
"offlineSessionMaxLifespanEnabled" : false,
|
|
"offlineSessionMaxLifespan" : 5184000,
|
|
"clientSessionIdleTimeout" : 0,
|
|
"clientSessionMaxLifespan" : 0,
|
|
"clientOfflineSessionIdleTimeout" : 0,
|
|
"clientOfflineSessionMaxLifespan" : 0,
|
|
"accessCodeLifespan" : 60,
|
|
"accessCodeLifespanUserAction" : 300,
|
|
"accessCodeLifespanLogin" : 1800,
|
|
"actionTokenGeneratedByAdminLifespan" : 43200,
|
|
"actionTokenGeneratedByUserLifespan" : 300,
|
|
"oauth2DeviceCodeLifespan" : 600,
|
|
"oauth2DevicePollingInterval" : 5,
|
|
"enabled" : true,
|
|
"sslRequired" : "external",
|
|
"registrationAllowed" : false,
|
|
"registrationEmailAsUsername" : false,
|
|
"rememberMe" : false,
|
|
"verifyEmail" : false,
|
|
"loginWithEmailAllowed" : true,
|
|
"duplicateEmailsAllowed" : false,
|
|
"resetPasswordAllowed" : false,
|
|
"editUsernameAllowed" : false,
|
|
"bruteForceProtected" : false,
|
|
"permanentLockout" : false,
|
|
"maxTemporaryLockouts" : 0,
|
|
"maxFailureWaitSeconds" : 900,
|
|
"minimumQuickLoginWaitSeconds" : 60,
|
|
"waitIncrementSeconds" : 60,
|
|
"quickLoginCheckMilliSeconds" : 1000,
|
|
"maxDeltaTimeSeconds" : 43200,
|
|
"failureFactor" : 30,
|
|
"roles" : {
|
|
"realm" : [ {
|
|
"id" : "c3b4c96f-6388-46e3-8eb7-9392c7652612",
|
|
"name" : "default-roles-master",
|
|
"description" : "${role_default-roles}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"realm" : [ "offline_access", "uma_authorization" ],
|
|
"client" : {
|
|
"account" : [ "view-profile", "manage-account" ]
|
|
}
|
|
},
|
|
"clientRole" : false,
|
|
"containerId" : "8956870d-d9bc-4ffd-bdec-3685db703215",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "81f3c313-ffe4-4b9a-b95f-62210ef4cebb",
|
|
"name" : "admin",
|
|
"description" : "${role_admin}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"realm" : [ "create-realm" ],
|
|
"client" : {
|
|
"nutshell-realm" : [ "query-realms", "query-users", "view-realm", "view-authorization", "manage-realm", "manage-identity-providers", "manage-authorization", "view-identity-providers", "query-clients", "manage-clients", "create-client", "impersonation", "view-events", "manage-events", "manage-users", "view-users", "view-clients", "query-groups" ],
|
|
"master-realm" : [ "query-clients", "manage-users", "manage-identity-providers", "manage-authorization", "manage-realm", "view-identity-providers", "create-client", "view-realm", "view-authorization", "manage-events", "query-realms", "query-users", "query-groups", "manage-clients", "view-clients", "impersonation", "view-users", "view-events" ]
|
|
}
|
|
},
|
|
"clientRole" : false,
|
|
"containerId" : "8956870d-d9bc-4ffd-bdec-3685db703215",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "9a56b7c9-cd40-4660-8bcc-1e45636f7ef4",
|
|
"name" : "create-realm",
|
|
"description" : "${role_create-realm}",
|
|
"composite" : false,
|
|
"clientRole" : false,
|
|
"containerId" : "8956870d-d9bc-4ffd-bdec-3685db703215",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "60e9bbf2-d65e-4e6e-adff-56abaa59bf94",
|
|
"name" : "offline_access",
|
|
"description" : "${role_offline-access}",
|
|
"composite" : false,
|
|
"clientRole" : false,
|
|
"containerId" : "8956870d-d9bc-4ffd-bdec-3685db703215",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "c8484e33-5729-4a6a-8ae3-05673d7a68e7",
|
|
"name" : "uma_authorization",
|
|
"description" : "${role_uma_authorization}",
|
|
"composite" : false,
|
|
"clientRole" : false,
|
|
"containerId" : "8956870d-d9bc-4ffd-bdec-3685db703215",
|
|
"attributes" : { }
|
|
} ],
|
|
"client" : {
|
|
"security-admin-console" : [ ],
|
|
"admin-cli" : [ ],
|
|
"nutshell-realm" : [ {
|
|
"id" : "8b1a1634-cbf0-49ba-bd9c-9090fb581ee5",
|
|
"name" : "query-realms",
|
|
"description" : "${role_query-realms}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6626bbfa-68fc-46ed-8ec0-fb786ab3f2ee",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "2dc5dfc5-c542-450d-9909-b1182734af42",
|
|
"name" : "query-users",
|
|
"description" : "${role_query-users}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6626bbfa-68fc-46ed-8ec0-fb786ab3f2ee",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "7922cd7f-584d-4058-954f-13162c968b9e",
|
|
"name" : "manage-identity-providers",
|
|
"description" : "${role_manage-identity-providers}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6626bbfa-68fc-46ed-8ec0-fb786ab3f2ee",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "ade669fc-632d-4df1-8bfb-90393c7f72d6",
|
|
"name" : "manage-authorization",
|
|
"description" : "${role_manage-authorization}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6626bbfa-68fc-46ed-8ec0-fb786ab3f2ee",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "084b2d03-a9bc-496f-8e1b-a36937b37f96",
|
|
"name" : "view-identity-providers",
|
|
"description" : "${role_view-identity-providers}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6626bbfa-68fc-46ed-8ec0-fb786ab3f2ee",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "62f050e7-bf89-4c29-a67f-8b5dd348314b",
|
|
"name" : "view-realm",
|
|
"description" : "${role_view-realm}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6626bbfa-68fc-46ed-8ec0-fb786ab3f2ee",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "0f1c9007-80b3-4586-9f31-78cbde902ccf",
|
|
"name" : "query-clients",
|
|
"description" : "${role_query-clients}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6626bbfa-68fc-46ed-8ec0-fb786ab3f2ee",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "dfafec9f-15be-493a-bd50-12f98608d2a3",
|
|
"name" : "view-authorization",
|
|
"description" : "${role_view-authorization}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6626bbfa-68fc-46ed-8ec0-fb786ab3f2ee",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "2f76e0d4-2ff8-49e8-a299-926bccc34621",
|
|
"name" : "manage-clients",
|
|
"description" : "${role_manage-clients}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6626bbfa-68fc-46ed-8ec0-fb786ab3f2ee",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "e991ba94-d7ed-4461-891e-388cb6b77979",
|
|
"name" : "create-client",
|
|
"description" : "${role_create-client}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6626bbfa-68fc-46ed-8ec0-fb786ab3f2ee",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "a7437db1-b38c-4270-b999-2e06f78b0748",
|
|
"name" : "impersonation",
|
|
"description" : "${role_impersonation}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6626bbfa-68fc-46ed-8ec0-fb786ab3f2ee",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "43d4abb1-e359-4f30-9b77-2b3998abf0ce",
|
|
"name" : "manage-events",
|
|
"description" : "${role_manage-events}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6626bbfa-68fc-46ed-8ec0-fb786ab3f2ee",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "70cdddbc-61d6-4485-a308-0a01b76c69e2",
|
|
"name" : "view-events",
|
|
"description" : "${role_view-events}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6626bbfa-68fc-46ed-8ec0-fb786ab3f2ee",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "da263533-0421-453d-97d2-1c41d5759376",
|
|
"name" : "manage-realm",
|
|
"description" : "${role_manage-realm}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6626bbfa-68fc-46ed-8ec0-fb786ab3f2ee",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "07549481-3edd-40ec-b0ca-e97304cff3be",
|
|
"name" : "manage-users",
|
|
"description" : "${role_manage-users}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6626bbfa-68fc-46ed-8ec0-fb786ab3f2ee",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "22759f97-5a71-437b-a315-711164eb0cdb",
|
|
"name" : "query-groups",
|
|
"description" : "${role_query-groups}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6626bbfa-68fc-46ed-8ec0-fb786ab3f2ee",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "e3ae21ca-062e-4aee-b82a-9a04f6b6413d",
|
|
"name" : "view-clients",
|
|
"description" : "${role_view-clients}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"nutshell-realm" : [ "query-clients" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "6626bbfa-68fc-46ed-8ec0-fb786ab3f2ee",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "12453bfd-7b41-4366-a463-57be800b65b5",
|
|
"name" : "view-users",
|
|
"description" : "${role_view-users}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"nutshell-realm" : [ "query-users", "query-groups" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "6626bbfa-68fc-46ed-8ec0-fb786ab3f2ee",
|
|
"attributes" : { }
|
|
} ],
|
|
"account-console" : [ ],
|
|
"broker" : [ {
|
|
"id" : "d288fe63-2c42-47e1-901e-6b36d660061f",
|
|
"name" : "read-token",
|
|
"description" : "${role_read-token}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "52f64ef5-8732-4065-858e-2f2580b7ed9c",
|
|
"attributes" : { }
|
|
} ],
|
|
"master-realm" : [ {
|
|
"id" : "f117f84c-45e2-4b68-a652-617da6aa749e",
|
|
"name" : "create-client",
|
|
"description" : "${role_create-client}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "357078bd-0421-4b14-a0b9-40c25dde5557",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "a7974424-c166-4653-a486-5cae0713b57c",
|
|
"name" : "view-realm",
|
|
"description" : "${role_view-realm}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "357078bd-0421-4b14-a0b9-40c25dde5557",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "a8bbbc66-c86f-413e-a0d9-e3035d9bd317",
|
|
"name" : "view-authorization",
|
|
"description" : "${role_view-authorization}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "357078bd-0421-4b14-a0b9-40c25dde5557",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "252481be-b124-4cea-875d-b2431eb73429",
|
|
"name" : "manage-events",
|
|
"description" : "${role_manage-events}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "357078bd-0421-4b14-a0b9-40c25dde5557",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "35d31078-8b0a-482b-b3f9-f8929aa56630",
|
|
"name" : "query-clients",
|
|
"description" : "${role_query-clients}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "357078bd-0421-4b14-a0b9-40c25dde5557",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "c95b6025-b1a9-47bb-9b53-f0e6a625be5f",
|
|
"name" : "query-realms",
|
|
"description" : "${role_query-realms}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "357078bd-0421-4b14-a0b9-40c25dde5557",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "1214b780-d1bf-40c8-b239-50abb734ca51",
|
|
"name" : "manage-users",
|
|
"description" : "${role_manage-users}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "357078bd-0421-4b14-a0b9-40c25dde5557",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "5d1999eb-3a8a-4b83-946d-2eb08cd474b4",
|
|
"name" : "query-users",
|
|
"description" : "${role_query-users}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "357078bd-0421-4b14-a0b9-40c25dde5557",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "4280b1a4-da20-4ec8-a0ec-dd271970a537",
|
|
"name" : "query-groups",
|
|
"description" : "${role_query-groups}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "357078bd-0421-4b14-a0b9-40c25dde5557",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "77580d97-d2a0-47c7-9862-9df69a237c68",
|
|
"name" : "manage-clients",
|
|
"description" : "${role_manage-clients}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "357078bd-0421-4b14-a0b9-40c25dde5557",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "4944013c-27f2-42b7-8d82-fe39089bf23c",
|
|
"name" : "view-clients",
|
|
"description" : "${role_view-clients}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"master-realm" : [ "query-clients" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "357078bd-0421-4b14-a0b9-40c25dde5557",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "31c9f5d6-93ae-4b60-836b-e19a02d342a4",
|
|
"name" : "manage-identity-providers",
|
|
"description" : "${role_manage-identity-providers}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "357078bd-0421-4b14-a0b9-40c25dde5557",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "1f9a5fe6-f029-4ea2-89ca-e3c3c595aa51",
|
|
"name" : "manage-authorization",
|
|
"description" : "${role_manage-authorization}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "357078bd-0421-4b14-a0b9-40c25dde5557",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "9352ff2b-b75b-4cd8-94c2-329847a27126",
|
|
"name" : "manage-realm",
|
|
"description" : "${role_manage-realm}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "357078bd-0421-4b14-a0b9-40c25dde5557",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "70f6059a-d671-4f01-ad9a-255864d1e8e2",
|
|
"name" : "impersonation",
|
|
"description" : "${role_impersonation}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "357078bd-0421-4b14-a0b9-40c25dde5557",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "0050f16d-b26a-4cca-85b3-b62ff386f36e",
|
|
"name" : "view-events",
|
|
"description" : "${role_view-events}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "357078bd-0421-4b14-a0b9-40c25dde5557",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "42bcb56c-8798-4f27-848e-cbe2c14cc5c9",
|
|
"name" : "view-users",
|
|
"description" : "${role_view-users}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"master-realm" : [ "query-users", "query-groups" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "357078bd-0421-4b14-a0b9-40c25dde5557",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "8f366846-0bf9-440d-9eab-5fad3ce0200e",
|
|
"name" : "view-identity-providers",
|
|
"description" : "${role_view-identity-providers}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "357078bd-0421-4b14-a0b9-40c25dde5557",
|
|
"attributes" : { }
|
|
} ],
|
|
"account" : [ {
|
|
"id" : "dffdfbeb-a943-4e2b-ad60-017484109595",
|
|
"name" : "view-groups",
|
|
"description" : "${role_view-groups}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "fd11a567-b5be-4665-9444-4de133068420",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "0c86baf9-e9dd-411f-b084-433d9746bcd4",
|
|
"name" : "manage-account-links",
|
|
"description" : "${role_manage-account-links}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "fd11a567-b5be-4665-9444-4de133068420",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "88c3c74e-4628-4373-8282-68959e5ed34a",
|
|
"name" : "view-consent",
|
|
"description" : "${role_view-consent}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "fd11a567-b5be-4665-9444-4de133068420",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "1efff5e8-7324-434d-b010-4fe402400c46",
|
|
"name" : "view-applications",
|
|
"description" : "${role_view-applications}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "fd11a567-b5be-4665-9444-4de133068420",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "ddc53580-ac83-49c2-b174-717485c6123f",
|
|
"name" : "view-profile",
|
|
"description" : "${role_view-profile}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "fd11a567-b5be-4665-9444-4de133068420",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "837af15c-5688-4a67-afcc-704b08e83230",
|
|
"name" : "delete-account",
|
|
"description" : "${role_delete-account}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "fd11a567-b5be-4665-9444-4de133068420",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "ce92fd21-5930-4019-893f-07cee7a32202",
|
|
"name" : "manage-account",
|
|
"description" : "${role_manage-account}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"account" : [ "manage-account-links" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "fd11a567-b5be-4665-9444-4de133068420",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "4ef61025-a2bb-46c7-a773-45479f94c7ea",
|
|
"name" : "manage-consent",
|
|
"description" : "${role_manage-consent}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"account" : [ "view-consent" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "fd11a567-b5be-4665-9444-4de133068420",
|
|
"attributes" : { }
|
|
} ]
|
|
}
|
|
},
|
|
"groups" : [ ],
|
|
"defaultRole" : {
|
|
"id" : "c3b4c96f-6388-46e3-8eb7-9392c7652612",
|
|
"name" : "default-roles-master",
|
|
"description" : "${role_default-roles}",
|
|
"composite" : true,
|
|
"clientRole" : false,
|
|
"containerId" : "8956870d-d9bc-4ffd-bdec-3685db703215"
|
|
},
|
|
"requiredCredentials" : [ "password" ],
|
|
"otpPolicyType" : "totp",
|
|
"otpPolicyAlgorithm" : "HmacSHA1",
|
|
"otpPolicyInitialCounter" : 0,
|
|
"otpPolicyDigits" : 6,
|
|
"otpPolicyLookAheadWindow" : 1,
|
|
"otpPolicyPeriod" : 30,
|
|
"otpPolicyCodeReusable" : false,
|
|
"otpSupportedApplications" : [ "totpAppFreeOTPName", "totpAppGoogleName", "totpAppMicrosoftAuthenticatorName" ],
|
|
"localizationTexts" : { },
|
|
"webAuthnPolicyRpEntityName" : "keycloak",
|
|
"webAuthnPolicySignatureAlgorithms" : [ "ES256" ],
|
|
"webAuthnPolicyRpId" : "",
|
|
"webAuthnPolicyAttestationConveyancePreference" : "not specified",
|
|
"webAuthnPolicyAuthenticatorAttachment" : "not specified",
|
|
"webAuthnPolicyRequireResidentKey" : "not specified",
|
|
"webAuthnPolicyUserVerificationRequirement" : "not specified",
|
|
"webAuthnPolicyCreateTimeout" : 0,
|
|
"webAuthnPolicyAvoidSameAuthenticatorRegister" : false,
|
|
"webAuthnPolicyAcceptableAaguids" : [ ],
|
|
"webAuthnPolicyExtraOrigins" : [ ],
|
|
"webAuthnPolicyPasswordlessRpEntityName" : "keycloak",
|
|
"webAuthnPolicyPasswordlessSignatureAlgorithms" : [ "ES256" ],
|
|
"webAuthnPolicyPasswordlessRpId" : "",
|
|
"webAuthnPolicyPasswordlessAttestationConveyancePreference" : "not specified",
|
|
"webAuthnPolicyPasswordlessAuthenticatorAttachment" : "not specified",
|
|
"webAuthnPolicyPasswordlessRequireResidentKey" : "not specified",
|
|
"webAuthnPolicyPasswordlessUserVerificationRequirement" : "not specified",
|
|
"webAuthnPolicyPasswordlessCreateTimeout" : 0,
|
|
"webAuthnPolicyPasswordlessAvoidSameAuthenticatorRegister" : false,
|
|
"webAuthnPolicyPasswordlessAcceptableAaguids" : [ ],
|
|
"webAuthnPolicyPasswordlessExtraOrigins" : [ ],
|
|
"scopeMappings" : [ {
|
|
"clientScope" : "offline_access",
|
|
"roles" : [ "offline_access" ]
|
|
} ],
|
|
"clientScopeMappings" : {
|
|
"account" : [ {
|
|
"client" : "account-console",
|
|
"roles" : [ "manage-account", "view-groups" ]
|
|
} ]
|
|
},
|
|
"clients" : [ {
|
|
"id" : "fd11a567-b5be-4665-9444-4de133068420",
|
|
"clientId" : "account",
|
|
"name" : "${client_account}",
|
|
"rootUrl" : "${authBaseUrl}",
|
|
"baseUrl" : "/realms/master/account/",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ "/realms/master/account/*" ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"post.logout.redirect.uris" : "+"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "acr", "roles", "profile", "basic", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "c38fcb7e-0879-4fe0-9818-01eb6dcc0f17",
|
|
"clientId" : "account-console",
|
|
"name" : "${client_account-console}",
|
|
"rootUrl" : "${authBaseUrl}",
|
|
"baseUrl" : "/realms/master/account/",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ "/realms/master/account/*" ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"post.logout.redirect.uris" : "+",
|
|
"pkce.code.challenge.method" : "S256"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"protocolMappers" : [ {
|
|
"id" : "1a3217d2-aab7-4749-923c-2b1017709c22",
|
|
"name" : "audience resolve",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-audience-resolve-mapper",
|
|
"consentRequired" : false,
|
|
"config" : { }
|
|
} ],
|
|
"defaultClientScopes" : [ "web-origins", "acr", "roles", "profile", "basic", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "92bb82ef-68c9-41f9-ad5e-57e975a4d6ba",
|
|
"clientId" : "admin-cli",
|
|
"name" : "${client_admin-cli}",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : false,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : true,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : { },
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "acr", "roles", "profile", "basic", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "52f64ef5-8732-4065-858e-2f2580b7ed9c",
|
|
"clientId" : "broker",
|
|
"name" : "${client_broker}",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : true,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : false,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : { },
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "acr", "roles", "profile", "basic", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "357078bd-0421-4b14-a0b9-40c25dde5557",
|
|
"clientId" : "master-realm",
|
|
"name" : "master Realm",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : true,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : false,
|
|
"frontchannelLogout" : false,
|
|
"attributes" : { },
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "acr", "roles", "profile", "basic", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "6626bbfa-68fc-46ed-8ec0-fb786ab3f2ee",
|
|
"clientId" : "nutshell-realm",
|
|
"name" : "nutshell Realm",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : true,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : false,
|
|
"frontchannelLogout" : false,
|
|
"attributes" : { },
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ ],
|
|
"optionalClientScopes" : [ ]
|
|
}, {
|
|
"id" : "61609810-bd2b-42ac-8168-ab89416b489a",
|
|
"clientId" : "security-admin-console",
|
|
"name" : "${client_security-admin-console}",
|
|
"rootUrl" : "${authAdminUrl}",
|
|
"baseUrl" : "/admin/master/console/",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ "/admin/master/console/*" ],
|
|
"webOrigins" : [ "+" ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"post.logout.redirect.uris" : "+",
|
|
"pkce.code.challenge.method" : "S256"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"protocolMappers" : [ {
|
|
"id" : "79920355-25fa-423c-a9ec-2f5ca84da358",
|
|
"name" : "locale",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "locale",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "locale",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ],
|
|
"defaultClientScopes" : [ "web-origins", "acr", "roles", "profile", "basic", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
} ],
|
|
"clientScopes" : [ {
|
|
"id" : "43f68d3e-e543-4684-b324-7d5feda4faec",
|
|
"name" : "acr",
|
|
"description" : "OpenID Connect scope for add acr (authentication context class reference) to the token",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "false",
|
|
"display.on.consent.screen" : "false"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "d5a92ece-cd72-48dd-b00d-fff7f57a8203",
|
|
"name" : "acr loa level",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-acr-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"id.token.claim" : "true",
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "ba7df914-fb24-40aa-abf7-478c373b5b30",
|
|
"name" : "roles",
|
|
"description" : "OpenID Connect scope for add user roles to the access token",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "false",
|
|
"consent.screen.text" : "${rolesScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "2bd2c43e-9dfc-43a9-8132-7476e4f0f88d",
|
|
"name" : "audience resolve",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-audience-resolve-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true"
|
|
}
|
|
}, {
|
|
"id" : "39809465-371a-4b96-9ad9-35248d647a01",
|
|
"name" : "client roles",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-client-role-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"user.attribute" : "foo",
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "resource_access.${client_id}.roles",
|
|
"jsonType.label" : "String",
|
|
"multivalued" : "true"
|
|
}
|
|
}, {
|
|
"id" : "4468ec06-a16a-44a5-b989-7854bfd53781",
|
|
"name" : "realm roles",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-realm-role-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"user.attribute" : "foo",
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "realm_access.roles",
|
|
"jsonType.label" : "String",
|
|
"multivalued" : "true"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "6adb47f8-94c7-4d0c-a50b-623c79a5acbc",
|
|
"name" : "web-origins",
|
|
"description" : "OpenID Connect scope for add allowed web origins to the access token",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "false",
|
|
"consent.screen.text" : "",
|
|
"display.on.consent.screen" : "false"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "7edaec4b-7cb1-4889-82da-4608f8a1d893",
|
|
"name" : "allowed web origins",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-allowed-origins-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "fe0b07cd-c0fb-4714-a5e0-950e04e082d7",
|
|
"name" : "role_list",
|
|
"description" : "SAML role list",
|
|
"protocol" : "saml",
|
|
"attributes" : {
|
|
"consent.screen.text" : "${samlRoleListScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "6224866e-e0df-48ef-8ba4-a813df0b7fff",
|
|
"name" : "role list",
|
|
"protocol" : "saml",
|
|
"protocolMapper" : "saml-role-list-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"single" : "false",
|
|
"attribute.nameformat" : "Basic",
|
|
"attribute.name" : "Role"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "66043f0a-23d0-4e6e-b0c0-88b127d0e83b",
|
|
"name" : "profile",
|
|
"description" : "OpenID Connect built-in scope: profile",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"consent.screen.text" : "${profileScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "b7410ccb-433b-4383-8c84-9f73934aa40b",
|
|
"name" : "family name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "lastName",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "family_name",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "ce4046db-294e-452f-83d7-57c94bf508a1",
|
|
"name" : "nickname",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "nickname",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "nickname",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "c1c8c377-46fc-4b80-88c3-1c715c522a54",
|
|
"name" : "zoneinfo",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "zoneinfo",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "zoneinfo",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "f81dc329-9643-47df-a67f-6838aa42c29a",
|
|
"name" : "website",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "website",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "website",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "78d13844-37f0-47f2-96f7-fc6b04b4c7c6",
|
|
"name" : "locale",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "locale",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "locale",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "1195910f-7036-4f39-b9aa-4bba3be3ee01",
|
|
"name" : "given name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "firstName",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "given_name",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "19f96415-ee38-4186-b7f4-d7b8fcb24a33",
|
|
"name" : "profile",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "profile",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "profile",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "26a001b8-0bd6-4631-9174-2522c30c5c88",
|
|
"name" : "middle name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "middleName",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "middle_name",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "bd5859a9-6581-455f-a284-d35f447eff21",
|
|
"name" : "updated at",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "updatedAt",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "updated_at",
|
|
"jsonType.label" : "long"
|
|
}
|
|
}, {
|
|
"id" : "62e692ce-d578-41f0-bf86-061039fcc555",
|
|
"name" : "username",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "username",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "preferred_username",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "0916a7a3-e8a6-48a7-85eb-be34b9555ac1",
|
|
"name" : "full name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-full-name-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"id.token.claim" : "true",
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"userinfo.token.claim" : "true"
|
|
}
|
|
}, {
|
|
"id" : "cd8c2a23-1d0f-4ab1-ba60-88ea8b1396dc",
|
|
"name" : "gender",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "gender",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "gender",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "6304ea5b-0bd7-439a-974b-aa86ec49d24e",
|
|
"name" : "birthdate",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "birthdate",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "birthdate",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "85506c77-9b66-40d0-ba4b-a8933a66bd4d",
|
|
"name" : "picture",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "picture",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "picture",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "01b5238a-8ebf-47ed-a72e-fd28ee8a2025",
|
|
"name" : "address",
|
|
"description" : "OpenID Connect built-in scope: address",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"consent.screen.text" : "${addressScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "a94b76c9-3abe-4c95-9e91-e4a3729e96f0",
|
|
"name" : "address",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-address-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"user.attribute.formatted" : "formatted",
|
|
"user.attribute.country" : "country",
|
|
"introspection.token.claim" : "true",
|
|
"user.attribute.postal_code" : "postal_code",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute.street" : "street",
|
|
"id.token.claim" : "true",
|
|
"user.attribute.region" : "region",
|
|
"access.token.claim" : "true",
|
|
"user.attribute.locality" : "locality"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "3fa619bd-d3d3-45b4-8898-6657cd1d7801",
|
|
"name" : "phone",
|
|
"description" : "OpenID Connect built-in scope: phone",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"consent.screen.text" : "${phoneScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "c1f359ff-216c-4d77-8dfb-f997faeee2ad",
|
|
"name" : "phone number verified",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "phoneNumberVerified",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "phone_number_verified",
|
|
"jsonType.label" : "boolean"
|
|
}
|
|
}, {
|
|
"id" : "763142bf-b12e-47f0-ad0b-2d87409b7332",
|
|
"name" : "phone number",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "phoneNumber",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "phone_number",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "2c1e962f-4e58-4a42-8e3e-62d392f091b2",
|
|
"name" : "email",
|
|
"description" : "OpenID Connect built-in scope: email",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"consent.screen.text" : "${emailScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "e9a326c5-8a1e-4658-b21a-d98bcfa67177",
|
|
"name" : "email",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "email",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "email",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "cad78fa0-43ef-498a-b2d2-3c0204aa9792",
|
|
"name" : "email verified",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-property-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "emailVerified",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "email_verified",
|
|
"jsonType.label" : "boolean"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "c9bfad33-ba6a-4803-8734-9f5ae8e97f2d",
|
|
"name" : "microprofile-jwt",
|
|
"description" : "Microprofile - JWT built-in scope",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "false"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "527dfec5-7b13-4d2a-b9d6-1d2a1fbcd4e2",
|
|
"name" : "groups",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-realm-role-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"multivalued" : "true",
|
|
"user.attribute" : "foo",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "groups",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "a7a2b0c1-9540-473d-b9d2-9c7420b69e51",
|
|
"name" : "upn",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "username",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "upn",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "4476c340-2396-4f85-97c5-1421c5c3d033",
|
|
"name" : "basic",
|
|
"description" : "OpenID Connect scope for add all basic claims to the token",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "false",
|
|
"display.on.consent.screen" : "false"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "72838032-fffc-4869-aaec-6a10e571b9f5",
|
|
"name" : "auth_time",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usersessionmodel-note-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"user.session.note" : "AUTH_TIME",
|
|
"id.token.claim" : "true",
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "auth_time",
|
|
"jsonType.label" : "long"
|
|
}
|
|
}, {
|
|
"id" : "faa805a5-17f7-4852-b12a-3e270c2a3a36",
|
|
"name" : "sub",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-sub-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "a557e5d5-341a-4ea0-9d6e-b620e55f8ebc",
|
|
"name" : "offline_access",
|
|
"description" : "OpenID Connect built-in scope: offline_access",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"consent.screen.text" : "${offlineAccessScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
}
|
|
} ],
|
|
"defaultDefaultClientScopes" : [ "role_list", "profile", "email", "roles", "web-origins", "acr", "basic" ],
|
|
"defaultOptionalClientScopes" : [ "offline_access", "address", "phone", "microprofile-jwt" ],
|
|
"browserSecurityHeaders" : {
|
|
"contentSecurityPolicyReportOnly" : "",
|
|
"xContentTypeOptions" : "nosniff",
|
|
"referrerPolicy" : "no-referrer",
|
|
"xRobotsTag" : "none",
|
|
"xFrameOptions" : "SAMEORIGIN",
|
|
"contentSecurityPolicy" : "frame-src 'self'; frame-ancestors 'self'; object-src 'none';",
|
|
"xXSSProtection" : "1; mode=block",
|
|
"strictTransportSecurity" : "max-age=31536000; includeSubDomains"
|
|
},
|
|
"smtpServer" : { },
|
|
"eventsEnabled" : false,
|
|
"eventsListeners" : [ "jboss-logging" ],
|
|
"enabledEventTypes" : [ ],
|
|
"adminEventsEnabled" : false,
|
|
"adminEventsDetailsEnabled" : false,
|
|
"identityProviders" : [ ],
|
|
"identityProviderMappers" : [ ],
|
|
"components" : {
|
|
"org.keycloak.services.clientregistration.policy.ClientRegistrationPolicy" : [ {
|
|
"id" : "66e4f611-e6cc-4b78-ab85-f03a0be1c760",
|
|
"name" : "Max Clients Limit",
|
|
"providerId" : "max-clients",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"max-clients" : [ "200" ]
|
|
}
|
|
}, {
|
|
"id" : "12a23404-e173-44c3-99b2-aa744961d0b7",
|
|
"name" : "Allowed Protocol Mapper Types",
|
|
"providerId" : "allowed-protocol-mappers",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allowed-protocol-mapper-types" : [ "saml-user-attribute-mapper", "oidc-address-mapper", "saml-user-property-mapper", "oidc-usermodel-attribute-mapper", "oidc-sha256-pairwise-sub-mapper", "oidc-usermodel-property-mapper", "oidc-full-name-mapper", "saml-role-list-mapper" ]
|
|
}
|
|
}, {
|
|
"id" : "0fe538ad-c9f3-4fea-83ec-d1ec834dd030",
|
|
"name" : "Consent Required",
|
|
"providerId" : "consent-required",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : { }
|
|
}, {
|
|
"id" : "a30be1e3-9b74-40b7-b535-ed8daf324ee4",
|
|
"name" : "Trusted Hosts",
|
|
"providerId" : "trusted-hosts",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"host-sending-registration-request-must-match" : [ "true" ],
|
|
"client-uris-must-match" : [ "true" ]
|
|
}
|
|
}, {
|
|
"id" : "0d41044d-ca32-43ce-8bf9-fdbe2b98fdc6",
|
|
"name" : "Allowed Protocol Mapper Types",
|
|
"providerId" : "allowed-protocol-mappers",
|
|
"subType" : "authenticated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allowed-protocol-mapper-types" : [ "saml-user-attribute-mapper", "saml-user-property-mapper", "oidc-usermodel-attribute-mapper", "oidc-usermodel-property-mapper", "oidc-address-mapper", "saml-role-list-mapper", "oidc-full-name-mapper", "oidc-sha256-pairwise-sub-mapper" ]
|
|
}
|
|
}, {
|
|
"id" : "fe5cbf0b-daf0-48e6-98e4-b54fd7a7dd23",
|
|
"name" : "Allowed Client Scopes",
|
|
"providerId" : "allowed-client-templates",
|
|
"subType" : "authenticated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allow-default-scopes" : [ "true" ]
|
|
}
|
|
}, {
|
|
"id" : "c19b8aad-971c-4ea0-8ba1-718db2c5b0b2",
|
|
"name" : "Full Scope Disabled",
|
|
"providerId" : "scope",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : { }
|
|
}, {
|
|
"id" : "1d7eddfb-39c1-4aad-b1b2-acc5c645c097",
|
|
"name" : "Allowed Client Scopes",
|
|
"providerId" : "allowed-client-templates",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allow-default-scopes" : [ "true" ]
|
|
}
|
|
} ],
|
|
"org.keycloak.userprofile.UserProfileProvider" : [ {
|
|
"id" : "86baaf71-87fd-4294-9317-651a6a9527dc",
|
|
"providerId" : "declarative-user-profile",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"kc.user.profile.config" : [ "{\"attributes\":[{\"name\":\"username\",\"displayName\":\"${username}\",\"validations\":{\"length\":{\"min\":3,\"max\":255},\"username-prohibited-characters\":{},\"up-username-not-idn-homograph\":{}},\"permissions\":{\"view\":[\"admin\",\"user\"],\"edit\":[\"admin\",\"user\"]},\"multivalued\":false},{\"name\":\"email\",\"displayName\":\"${email}\",\"validations\":{\"email\":{},\"length\":{\"max\":255}},\"permissions\":{\"view\":[\"admin\",\"user\"],\"edit\":[\"admin\",\"user\"]},\"multivalued\":false},{\"name\":\"firstName\",\"displayName\":\"${firstName}\",\"validations\":{\"length\":{\"max\":255},\"person-name-prohibited-characters\":{}},\"permissions\":{\"view\":[\"admin\",\"user\"],\"edit\":[\"admin\",\"user\"]},\"multivalued\":false},{\"name\":\"lastName\",\"displayName\":\"${lastName}\",\"validations\":{\"length\":{\"max\":255},\"person-name-prohibited-characters\":{}},\"permissions\":{\"view\":[\"admin\",\"user\"],\"edit\":[\"admin\",\"user\"]},\"multivalued\":false}],\"groups\":[{\"name\":\"user-metadata\",\"displayHeader\":\"User metadata\",\"displayDescription\":\"Attributes, which refer to user metadata\"}]}" ]
|
|
}
|
|
} ],
|
|
"org.keycloak.keys.KeyProvider" : [ {
|
|
"id" : "5cadce2d-b2da-4b4f-81f7-a950bd0ce156",
|
|
"name" : "rsa-generated",
|
|
"providerId" : "rsa-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"privateKey" : [ "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" ],
|
|
"keyUse" : [ "SIG" ],
|
|
"certificate" : [ "MIICmzCCAYMCBgGSIN8+lTANBgkqhkiG9w0BAQsFADARMQ8wDQYDVQQDDAZtYXN0ZXIwHhcNMjQwOTIzMjE1MDU0WhcNMzQwOTIzMjE1MjM0WjARMQ8wDQYDVQQDDAZtYXN0ZXIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSpAOsvdd/7/iKjm4oR+QhPjCnH2IjCozmgjeMlybapuGW8WUOxG/oEbWzizIm8O0ReNdHgYR5jwuGbUMBbTSTlpjN2+brcVpXbPD5dtPESJogTEWVhYeZlPC+bwOfN8ZlKu+vRRJwpmRELnb+ppj/J7a3G/lhIWy68aY9WE7z6lTNfgFokiOgEwNXrXSiOlx7LvGWi9XvlmlQcZBAXGF54V5Oi524fgLBgnu04/xxppTZ2epEc9SSdhbETrVMZ8P2tbWqNgD2Yw9iqXL4sBkUjHjjAWmiKxmUP5ne5+w96gB04iTmr5G3WxMbHL8H5ZYpxHHG62pGNvDY+VSQF/vZAgMBAAEwDQYJKoZIhvcNAQELBQADggEBAKW3btD4M04m+qMkD9LGxbHITdft4jbupYudyD+QfYVMusQvnZmSx+A/HFlRI9vS5e5XD4orpS6B7LPOXQ674/uzqG3t008BsWdtiH1uF1kNXZ++34nUlOl3taGzGUAucPripxXl3mOHEia/nb6JyUQ6Nl0aS3aC5iaEKKDPVllbbU+ZeHmIbda35RmGrM9PFvrMYQaZEHn9Bou2DDwo8s2SDQFkBwF3HrBnujwb7gZX/BEybxVMt6JPkqjrMKkBGK/8iMm+ezdk+oaRVI44rnkErxF7YQT+Pji9ENVgxhbnNZ4Jjk1eh9OljuBgMdmWpZCP1UQPBHi8MQ2ADYo8fcI=" ],
|
|
"priority" : [ "100" ]
|
|
}
|
|
}, {
|
|
"id" : "0d64cac0-4a44-4eb7-becf-d73c4518f49e",
|
|
"name" : "hmac-generated-hs512",
|
|
"providerId" : "hmac-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"kid" : [ "14061cf3-4756-41b2-b5e5-736210176ad5" ],
|
|
"secret" : [ "VG8zu3mIi_W-bbxshUZv4iVhjJF67x3NhA7V7Bs3l-IrF2N1onG35kCVeARF89HxOQsiOp09e3cGbfJ2hKhCFPqR-YJ3nBEY-uoUoNskLsr_OjbytC0n1NOMRRsQQfZ1KCiobvFvv6GMbKQrJUhzKoFpsV-W6O5ElhC6053LTf0" ],
|
|
"priority" : [ "100" ],
|
|
"algorithm" : [ "HS512" ]
|
|
}
|
|
}, {
|
|
"id" : "a999fc53-cb0c-47c0-b0a4-246cf394b1d7",
|
|
"name" : "rsa-enc-generated",
|
|
"providerId" : "rsa-enc-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"privateKey" : [ "MIIEowIBAAKCAQEAgrItfQbra6avo1hWyiATXPvFJLOwiqmJEtieHdfr4/oRj/kqzALEj8P0zmk7jtNNwJIkJ+/BDh4kSmjmGaMQMxwUnS1UrX9CkB6gpTcZgqjYAQYLZMWYqi6w7PCd4wZc3c5ffS0fyipryK/yvBhNjV3FfdgbHpH7tlglAHzaEQiQKx+boAWidb+84ncN9jov0FyYaPerkFPeamiAIhxHQkHBJi+gNZ33jKFfvlAMQcsxT+zB7WeUt/jq9e+Vhci666BLpZJBFrSmTcBiShf3vJT4rIkJAXMDf7vx84EsttzN7KU6NgYKkclhTXof6Uhoe8HBz1YHFtiGQU2TEHnZpwIDAQABAoIBABTzDJmS51+dG2A6g8bod1IbRVGJwA2p+T/dGxM7jiM/7Vq/nN2QwAMvbOk9Mv/E3Ry2EDealb52lGidAe0wFyOqJ5++KWmaEYhacHOrLlqkR+N6HY9soPj+fPut4hEG7xHax7Gf7w2P2TEVCvqdhqjXVBXE8yvmSIvE+0Flweqi0x0U4kizG3IYVF7srNBf4l05/46ieSUafUnr/LwmQzPilF5vfMd42rgSMLjQ1A5UcTs6m0cgvE/mNe/s50PHLoguDmo89KV+F3Ce0B+cUAbcDTpC+qD/6yZHu+afMB7M54KTEeMqL5ef24wn/z0wcp9BMi9iPnoRTG7iztC2PDkCgYEAt6G4PaIdJvkjD55iBVMSUQBriNdvJkPLytXAqbM75VOoHmAhBmLFXsSPRy2GIt25LQVW53RZBofaH7cveSZXW7Hoikmo1Tl9L19GaVJNUiEH1239NXJBHp4nsKyDg4BM9BfY1US6NhDTVldgC15jqOGf0R1QI1TMg7E0jIIogVMCgYEAtjPeD7QI/M9Z93CnD63JwyZ+I+bGyi1SxWsM59qWzYshOH+iFDUcupVotayz3Ez6/5iYeRM3ju2OC0KUjuRkIcHUpJJYCWBtd/yICjYLbfGfNbT558lTqpW4Xa7siR51xKSCM+fdDY6Y02xaYZ5GWi8hlpy2t5GbKvA6nSVVV90CgYAZMIfzfG9/TyGuHM3ZaSHUFripltPabeZgtp2tKbcHqEghkpI1LAtjCpeU7fu+gKfMMzVOnrkvmicjvp82gTnujCMYBS6xwScY/nrMK8wLfhhzRtU7JaclKhDLvX505X6o5TSLXNgmXnx/FZFJPfNx0TF5IApELne3gPFybNBdnQKBgQCUdFJcjR49jl0JZXpZJgqcvQJOEjyqgp9MR1ruloYE13Wr6SKQQG42AIKedCbgOsDP/O9Oxz+fbyMrPYZ5ntGPR7UQmkSs7yqCdvoJB9vsKtDEG777AmjvNqpPerUzS+Q84qVL0YGlCCixKznBDAradEhzxSCDFVpOdAnt/Hs66QKBgD2R3x/5FGrkRWKyxpofIYojgDJA2dVwET87D59LznBOMm4QCE/PNaK9RzcDD6SIYRP2iSBdjE7NIEKOdVlunzqmTFNpr/2FNVcY7hZFsQP7YwDvqESUCFteVVjIPOYN/e4SMbd39ns9tUAiCTvImyD/3lys5kWxJzKfD+kyKl8x" ],
|
|
"keyUse" : [ "ENC" ],
|
|
"certificate" : [ "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" ],
|
|
"priority" : [ "100" ],
|
|
"algorithm" : [ "RSA-OAEP" ]
|
|
}
|
|
}, {
|
|
"id" : "41b42694-9f19-473b-a662-25b2de3e6904",
|
|
"name" : "aes-generated",
|
|
"providerId" : "aes-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"kid" : [ "5e2674c9-8bb8-4499-a7bc-6b3ed715cf81" ],
|
|
"secret" : [ "MYLTsXNl0Bq10linwSJVyg" ],
|
|
"priority" : [ "100" ]
|
|
}
|
|
} ]
|
|
},
|
|
"internationalizationEnabled" : false,
|
|
"supportedLocales" : [ ],
|
|
"authenticationFlows" : [ {
|
|
"id" : "66aa2193-9c24-40c2-8afc-19fc1a96e76a",
|
|
"alias" : "Account verification options",
|
|
"description" : "Method with which to verity the existing account",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "idp-email-verification",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Verify Existing Account by Re-authentication",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "8d881e24-d189-4c49-8b93-aa83057bf39e",
|
|
"alias" : "Browser - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP is required for the authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "auth-otp-form",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "1ccd8e11-4916-4a8b-bd3d-91eee6ec6de4",
|
|
"alias" : "Direct Grant - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP is required for the authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "direct-grant-validate-otp",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "bb2e7d7b-3c08-49c9-ada6-5848243e2766",
|
|
"alias" : "First broker login - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP is required for the authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "auth-otp-form",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "eb418e73-6109-4967-b651-184a95fc81db",
|
|
"alias" : "Handle Existing Account",
|
|
"description" : "Handle what to do if there is existing account with same email/username like authenticated identity provider",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "idp-confirm-link",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Account verification options",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "714b575a-da59-4664-9055-7292c4b51d35",
|
|
"alias" : "Reset - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP should be reset or not. Set to REQUIRED to force.",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "reset-otp",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "ae0a9437-b908-4554-803f-4de41b6cffb2",
|
|
"alias" : "User creation or linking",
|
|
"description" : "Flow for the existing/non-existing user alternatives",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticatorConfig" : "create unique user config",
|
|
"authenticator" : "idp-create-user-if-unique",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Handle Existing Account",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "edb3710b-a6ce-4a5e-a565-554810ab17b8",
|
|
"alias" : "Verify Existing Account by Re-authentication",
|
|
"description" : "Reauthentication of existing account",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "idp-username-password-form",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "First broker login - Conditional OTP",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "506e2c7e-5c64-41b0-a691-fd41a179ec36",
|
|
"alias" : "browser",
|
|
"description" : "browser based authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "auth-cookie",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "auth-spnego",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "DISABLED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "identity-provider-redirector",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 25,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 30,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "forms",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "0840c55c-bfa1-48ee-9f7c-80fc2c21260b",
|
|
"alias" : "clients",
|
|
"description" : "Base authentication for clients",
|
|
"providerId" : "client-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "client-secret",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "client-jwt",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "client-secret-jwt",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 30,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "client-x509",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 40,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "02e2c0c0-2183-41fb-889d-45b289371216",
|
|
"alias" : "direct grant",
|
|
"description" : "OpenID Connect Resource Owner Grant",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "direct-grant-validate-username",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "direct-grant-validate-password",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 30,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Direct Grant - Conditional OTP",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "c74e947e-333d-4a99-b011-4d4291e4413e",
|
|
"alias" : "docker auth",
|
|
"description" : "Used by Docker clients to authenticate against the IDP",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "docker-http-basic-authenticator",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "7ad8c824-b6c2-45ca-97bc-740366e8e6fa",
|
|
"alias" : "first broker login",
|
|
"description" : "Actions taken after first broker login with identity provider account, which is not yet linked to any Keycloak account",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticatorConfig" : "review profile config",
|
|
"authenticator" : "idp-review-profile",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "User creation or linking",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "29ea962d-32f3-49cf-a009-76116f0a82e1",
|
|
"alias" : "forms",
|
|
"description" : "Username, password, otp and other auth forms.",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "auth-username-password-form",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Browser - Conditional OTP",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "2b8859c2-7ed8-4797-997e-a09dd3aac773",
|
|
"alias" : "registration",
|
|
"description" : "registration flow",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "registration-page-form",
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "registration form",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "7dfe64c5-813f-4288-b685-f3ec7845dc22",
|
|
"alias" : "registration form",
|
|
"description" : "registration form",
|
|
"providerId" : "form-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "registration-user-creation",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "registration-password-action",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 50,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "registration-recaptcha-action",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "DISABLED",
|
|
"priority" : 60,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "registration-terms-and-conditions",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "DISABLED",
|
|
"priority" : 70,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "909ce2fa-c6eb-4c87-8812-ef0d6333af28",
|
|
"alias" : "reset credentials",
|
|
"description" : "Reset credentials for a user if they forgot their password or something",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "reset-credentials-choose-user",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "reset-credential-email",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "reset-password",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 30,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 40,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Reset - Conditional OTP",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "d70fe04b-e680-41a8-ba18-6680b48d30a4",
|
|
"alias" : "saml ecp",
|
|
"description" : "SAML ECP Profile Authentication Flow",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "http-basic-authenticator",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
} ],
|
|
"authenticatorConfig" : [ {
|
|
"id" : "98f7f28a-a395-44d6-a2cc-786090c0c607",
|
|
"alias" : "create unique user config",
|
|
"config" : {
|
|
"require.password.update.after.registration" : "false"
|
|
}
|
|
}, {
|
|
"id" : "07c6a291-51b4-4984-ac2c-57b5ccc954df",
|
|
"alias" : "review profile config",
|
|
"config" : {
|
|
"update.profile.on.first.login" : "missing"
|
|
}
|
|
} ],
|
|
"requiredActions" : [ {
|
|
"alias" : "CONFIGURE_TOTP",
|
|
"name" : "Configure OTP",
|
|
"providerId" : "CONFIGURE_TOTP",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 10,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "TERMS_AND_CONDITIONS",
|
|
"name" : "Terms and Conditions",
|
|
"providerId" : "TERMS_AND_CONDITIONS",
|
|
"enabled" : false,
|
|
"defaultAction" : false,
|
|
"priority" : 20,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "UPDATE_PASSWORD",
|
|
"name" : "Update Password",
|
|
"providerId" : "UPDATE_PASSWORD",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 30,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "UPDATE_PROFILE",
|
|
"name" : "Update Profile",
|
|
"providerId" : "UPDATE_PROFILE",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 40,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "VERIFY_EMAIL",
|
|
"name" : "Verify Email",
|
|
"providerId" : "VERIFY_EMAIL",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 50,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "delete_account",
|
|
"name" : "Delete Account",
|
|
"providerId" : "delete_account",
|
|
"enabled" : false,
|
|
"defaultAction" : false,
|
|
"priority" : 60,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "webauthn-register",
|
|
"name" : "Webauthn Register",
|
|
"providerId" : "webauthn-register",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 70,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "webauthn-register-passwordless",
|
|
"name" : "Webauthn Register Passwordless",
|
|
"providerId" : "webauthn-register-passwordless",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 80,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "VERIFY_PROFILE",
|
|
"name" : "Verify Profile",
|
|
"providerId" : "VERIFY_PROFILE",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 90,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "delete_credential",
|
|
"name" : "Delete Credential",
|
|
"providerId" : "delete_credential",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 100,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "update_user_locale",
|
|
"name" : "Update User Locale",
|
|
"providerId" : "update_user_locale",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 1000,
|
|
"config" : { }
|
|
} ],
|
|
"browserFlow" : "browser",
|
|
"registrationFlow" : "registration",
|
|
"directGrantFlow" : "direct grant",
|
|
"resetCredentialsFlow" : "reset credentials",
|
|
"clientAuthenticationFlow" : "clients",
|
|
"dockerAuthenticationFlow" : "docker auth",
|
|
"firstBrokerLoginFlow" : "first broker login",
|
|
"attributes" : {
|
|
"cibaBackchannelTokenDeliveryMode" : "poll",
|
|
"cibaAuthRequestedUserHint" : "login_hint",
|
|
"oauth2DevicePollingInterval" : "5",
|
|
"clientOfflineSessionMaxLifespan" : "0",
|
|
"clientSessionIdleTimeout" : "0",
|
|
"clientOfflineSessionIdleTimeout" : "0",
|
|
"cibaInterval" : "5",
|
|
"realmReusableOtpCode" : "false",
|
|
"cibaExpiresIn" : "120",
|
|
"oauth2DeviceCodeLifespan" : "600",
|
|
"parRequestUriLifespan" : "60",
|
|
"clientSessionMaxLifespan" : "0",
|
|
"organizationsEnabled" : "false"
|
|
},
|
|
"keycloakVersion" : "25.0.6",
|
|
"userManagedAccessAllowed" : false,
|
|
"organizationsEnabled" : false,
|
|
"clientProfiles" : {
|
|
"profiles" : [ ]
|
|
},
|
|
"clientPolicies" : {
|
|
"policies" : [ ]
|
|
}
|
|
}
|