--- apiVersion: v1 data: k8s-realm.json: | { "id" : "92812b5e-671c-4c4b-ba85-41579ce7fec1", "realm" : "k8s", "notBefore" : 0, "defaultSignatureAlgorithm" : "RS256", "revokeRefreshToken" : false, "refreshTokenMaxReuse" : 0, "accessTokenLifespan" : 300, "accessTokenLifespanForImplicitFlow" : 900, "ssoSessionIdleTimeout" : 1800, "ssoSessionMaxLifespan" : 36000, "ssoSessionIdleTimeoutRememberMe" : 0, "ssoSessionMaxLifespanRememberMe" : 0, "offlineSessionIdleTimeout" : 2592000, "offlineSessionMaxLifespanEnabled" : false, "offlineSessionMaxLifespan" : 5184000, "clientSessionIdleTimeout" : 0, "clientSessionMaxLifespan" : 0, "clientOfflineSessionIdleTimeout" : 0, "clientOfflineSessionMaxLifespan" : 0, "accessCodeLifespan" : 60, "accessCodeLifespanUserAction" : 300, "accessCodeLifespanLogin" : 1800, "actionTokenGeneratedByAdminLifespan" : 43200, "actionTokenGeneratedByUserLifespan" : 300, "oauth2DeviceCodeLifespan" : 600, "oauth2DevicePollingInterval" : 5, "enabled" : true, "sslRequired" : "external", "registrationAllowed" : false, "registrationEmailAsUsername" : false, "rememberMe" : false, "verifyEmail" : false, "loginWithEmailAllowed" : true, "duplicateEmailsAllowed" : false, "resetPasswordAllowed" : false, "editUsernameAllowed" : false, "bruteForceProtected" : false, "permanentLockout" : false, "maxTemporaryLockouts" : 0, "maxFailureWaitSeconds" : 900, "minimumQuickLoginWaitSeconds" : 60, "waitIncrementSeconds" : 60, "quickLoginCheckMilliSeconds" : 1000, "maxDeltaTimeSeconds" : 43200, "failureFactor" : 30, "roles" : { "realm" : [ { "id" : "c23992d2-8e59-4076-af98-749ec188a283", "name" : "offline_access", "description" : "${role_offline-access}", "composite" : false, "clientRole" : false, "containerId" : "92812b5e-671c-4c4b-ba85-41579ce7fec1", "attributes" : { } }, { "id" : "bd47f25f-7078-4a49-8935-cc72e7cb9e9a", "name" : "default-roles-k8s", "description" : "${role_default-roles}", "composite" : true, "composites" : { "realm" : [ "offline_access", "uma_authorization" ], "client" : { "account" : [ "manage-account", "view-profile" ] } }, "clientRole" : false, "containerId" : "92812b5e-671c-4c4b-ba85-41579ce7fec1", "attributes" : { } }, { "id" : "940ce9af-ca34-40f9-8027-0bfc37c3a538", "name" : "uma_authorization", "description" : "${role_uma_authorization}", "composite" : false, "clientRole" : false, "containerId" : "92812b5e-671c-4c4b-ba85-41579ce7fec1", "attributes" : { } } ], "client" : { "gitea" : [ ], "realm-management" : [ { "id" : "be6073c6-1121-4777-8484-d389748c3f3d", "name" : "realm-admin", "description" : "${role_realm-admin}", "composite" : true, "composites" : { "client" : { "realm-management" : [ "query-users", "manage-realm", "view-events", "view-realm", "view-identity-providers", "query-clients", "impersonation", "view-clients", "view-users", "manage-events", "query-realms", "query-groups", "manage-users", "view-authorization", "manage-clients", "manage-authorization", "create-client", "manage-identity-providers" ] } }, "clientRole" : true, "containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1", "attributes" : { } }, { "id" : "c485a8a5-0e38-4e52-9277-4e4a0f054fba", "name" : "query-users", "description" : "${role_query-users}", "composite" : false, "clientRole" : true, "containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1", "attributes" : { } }, { "id" : "d0fcdb5c-6f65-4e56-9739-97cc60e21e8f", "name" : "manage-realm", "description" : "${role_manage-realm}", "composite" : false, "clientRole" : true, "containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1", "attributes" : { } }, { "id" : "1c7d1381-02ac-497e-9f82-90e4f0bc5866", "name" : "view-events", "description" : "${role_view-events}", "composite" : false, "clientRole" : true, "containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1", "attributes" : { } }, { "id" : "9786de6b-181d-4093-80d8-1d673d03006d", "name" : "view-identity-providers", "description" : "${role_view-identity-providers}", "composite" : false, "clientRole" : true, "containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1", "attributes" : { } }, { "id" : "927cd8e5-9577-4d69-bfae-f132ce07bf2a", "name" : "view-realm", "description" : "${role_view-realm}", "composite" : false, "clientRole" : true, "containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1", "attributes" : { } }, { "id" : "c87a925b-dba0-48e3-80eb-1c62889e0c20", "name" : "impersonation", "description" : "${role_impersonation}", "composite" : false, "clientRole" : true, "containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1", "attributes" : { } }, { "id" : "3ebceed5-51a6-4823-97e4-c049f2635107", "name" : "query-clients", "description" : "${role_query-clients}", "composite" : false, "clientRole" : true, "containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1", "attributes" : { } }, { "id" : "2fca6e0e-f255-4dd7-ab4b-2af7264d5e80", "name" : "view-clients", "description" : "${role_view-clients}", "composite" : true, "composites" : { "client" : { "realm-management" : [ "query-clients" ] } }, "clientRole" : true, "containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1", "attributes" : { } }, { "id" : "71ad9c26-2bfb-4bd9-b848-13460d7bd81b", "name" : "view-users", "description" : "${role_view-users}", "composite" : true, "composites" : { "client" : { "realm-management" : [ "query-groups", "query-users" ] } }, "clientRole" : true, "containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1", "attributes" : { } }, { "id" : "bacc0ed4-d7ec-488f-bafc-4d8e85c67d14", "name" : "manage-events", "description" : "${role_manage-events}", "composite" : false, "clientRole" : true, "containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1", "attributes" : { } }, { "id" : "c63bc691-6174-4f2e-ba4e-1103f8c86736", "name" : "query-realms", "description" : "${role_query-realms}", "composite" : false, "clientRole" : true, "containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1", "attributes" : { } }, { "id" : "8a2e9ef6-3980-495c-b2a3-80992c262c17", "name" : "query-groups", "description" : "${role_query-groups}", "composite" : false, "clientRole" : true, "containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1", "attributes" : { } }, { "id" : "79dab2f5-8f76-403a-ba3a-a07f45237ac5", "name" : "manage-users", "description" : "${role_manage-users}", "composite" : false, "clientRole" : true, "containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1", "attributes" : { } }, { "id" : "b1ed3e75-f177-49b2-82a9-17120418143f", "name" : "view-authorization", "description" : "${role_view-authorization}", "composite" : false, "clientRole" : true, "containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1", "attributes" : { } }, { "id" : "ea4f5a71-00a4-4e5d-b687-5e7f30695fe1", "name" : "manage-clients", "description" : "${role_manage-clients}", "composite" : false, "clientRole" : true, "containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1", "attributes" : { } }, { "id" : "b1e4ccfe-58ac-4ec3-a6ad-24af0d4af237", "name" : "manage-authorization", "description" : "${role_manage-authorization}", "composite" : false, "clientRole" : true, "containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1", "attributes" : { } }, { "id" : "8dcd1d51-ba98-4ef3-94c1-226bcec05346", "name" : "create-client", "description" : "${role_create-client}", "composite" : false, "clientRole" : true, "containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1", "attributes" : { } }, { "id" : "70efa7cf-9c05-4794-9dc0-41f5559bca92", "name" : "manage-identity-providers", "description" : "${role_manage-identity-providers}", "composite" : false, "clientRole" : true, "containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1", "attributes" : { } } ], "security-admin-console" : [ ], "admin-cli" : [ ], "account-console" : [ ], "broker" : [ { "id" : "20ab6b61-af95-4edd-8e7a-b4c66894b30b", "name" : "read-token", "description" : "${role_read-token}", "composite" : false, "clientRole" : true, "containerId" : "b37a8d1d-1b49-4357-bc7d-58115d3b1826", "attributes" : { } } ], "account" : [ { "id" : "3619eba3-9d9e-4ec9-92ca-112d851843e8", "name" : "view-groups", "description" : "${role_view-groups}", "composite" : false, "clientRole" : true, "containerId" : "ae39c855-f7e1-4d9d-9a5a-5dc28f319bca", "attributes" : { } }, { "id" : "512cd388-a0f2-4343-83d1-bee0c635677c", "name" : "delete-account", "description" : "${role_delete-account}", "composite" : false, "clientRole" : true, "containerId" : "ae39c855-f7e1-4d9d-9a5a-5dc28f319bca", "attributes" : { } }, { "id" : "52f80a74-c390-4828-9465-fa28ba544c80", "name" : "manage-account", "description" : "${role_manage-account}", "composite" : true, "composites" : { "client" : { "account" : [ "manage-account-links" ] } }, "clientRole" : true, "containerId" : "ae39c855-f7e1-4d9d-9a5a-5dc28f319bca", "attributes" : { } }, { "id" : "16b7edbf-697c-45e7-b084-7750904ac412", "name" : "manage-consent", "description" : "${role_manage-consent}", "composite" : true, "composites" : { "client" : { "account" : [ "view-consent" ] } }, "clientRole" : true, "containerId" : "ae39c855-f7e1-4d9d-9a5a-5dc28f319bca", "attributes" : { } }, { "id" : "db1a7bc3-87b6-494d-a663-d3eb536e82f6", "name" : "manage-account-links", "description" : "${role_manage-account-links}", "composite" : false, "clientRole" : true, "containerId" : "ae39c855-f7e1-4d9d-9a5a-5dc28f319bca", "attributes" : { } }, { "id" : "d6a579c0-50ed-4ab7-aa89-46c44df41f93", "name" : "view-profile", "description" : "${role_view-profile}", "composite" : false, "clientRole" : true, "containerId" : "ae39c855-f7e1-4d9d-9a5a-5dc28f319bca", "attributes" : { } }, { "id" : "cf10bdfc-717f-49c9-910d-33564331e681", "name" : "view-consent", "description" : "${role_view-consent}", "composite" : false, "clientRole" : true, "containerId" : "ae39c855-f7e1-4d9d-9a5a-5dc28f319bca", "attributes" : { } }, { "id" : "49c9f53c-34b1-43e8-ac07-752c04876ebd", "name" : "view-applications", "description" : "${role_view-applications}", "composite" : false, "clientRole" : true, "containerId" : "ae39c855-f7e1-4d9d-9a5a-5dc28f319bca", "attributes" : { } } ] } }, "groups" : [ { "id" : "9f68a05a-46a7-4419-b35f-38811c35d71e", "name" : "gitea-users", "path" : "/gitea-users", "subGroups" : [ ], "attributes" : { }, "realmRoles" : [ ], "clientRoles" : { } } ], "defaultRole" : { "id" : "bd47f25f-7078-4a49-8935-cc72e7cb9e9a", "name" : "default-roles-k8s", "description" : "${role_default-roles}", "composite" : true, "clientRole" : false, "containerId" : "92812b5e-671c-4c4b-ba85-41579ce7fec1" }, "requiredCredentials" : [ "password" ], "otpPolicyType" : "totp", "otpPolicyAlgorithm" : "HmacSHA1", "otpPolicyInitialCounter" : 0, "otpPolicyDigits" : 6, "otpPolicyLookAheadWindow" : 1, "otpPolicyPeriod" : 30, "otpPolicyCodeReusable" : false, "otpSupportedApplications" : [ "totpAppFreeOTPName", "totpAppGoogleName", "totpAppMicrosoftAuthenticatorName" ], "localizationTexts" : { }, "webAuthnPolicyRpEntityName" : "keycloak", "webAuthnPolicySignatureAlgorithms" : [ "ES256", "RS256" ], "webAuthnPolicyRpId" : "", "webAuthnPolicyAttestationConveyancePreference" : "not specified", "webAuthnPolicyAuthenticatorAttachment" : "not specified", "webAuthnPolicyRequireResidentKey" : "not specified", "webAuthnPolicyUserVerificationRequirement" : "not specified", "webAuthnPolicyCreateTimeout" : 0, "webAuthnPolicyAvoidSameAuthenticatorRegister" : false, "webAuthnPolicyAcceptableAaguids" : [ ], "webAuthnPolicyExtraOrigins" : [ ], "webAuthnPolicyPasswordlessRpEntityName" : "keycloak", "webAuthnPolicyPasswordlessSignatureAlgorithms" : [ "ES256", "RS256" ], "webAuthnPolicyPasswordlessRpId" : "", "webAuthnPolicyPasswordlessAttestationConveyancePreference" : "not specified", "webAuthnPolicyPasswordlessAuthenticatorAttachment" : "not specified", "webAuthnPolicyPasswordlessRequireResidentKey" : "not specified", "webAuthnPolicyPasswordlessUserVerificationRequirement" : "not specified", "webAuthnPolicyPasswordlessCreateTimeout" : 0, "webAuthnPolicyPasswordlessAvoidSameAuthenticatorRegister" : false, "webAuthnPolicyPasswordlessAcceptableAaguids" : [ ], "webAuthnPolicyPasswordlessExtraOrigins" : [ ], "users" : [ { "id" : "9c239ec7-c252-479f-abc0-7e3abc142eb2", "username" : "devuser@aiplatform.combient.com", "firstName" : "Dev Env", "lastName" : "User", "email" : "devuser@aiplatform.combient.com", "emailVerified" : true, "createdTimestamp" : 1756295789081, "enabled" : true, "totp" : false, "credentials" : [ { "id" : "cb04323c-2e26-434f-847f-6236e74b0c28", "type" : "password", "userLabel" : "My password", "createdDate" : 1756295836615, "secretData" : "{\"value\":\"b9beRs6cvVsXjLR6/5OLO8Ck/HDRfBwQunaBKO9+3NE=\",\"salt\":\"kxDm0NosogI1TiA3iMgVtg==\",\"additionalParameters\":{}}", "credentialData" : "{\"hashIterations\":5,\"algorithm\":\"argon2\",\"additionalParameters\":{\"hashLength\":[\"32\"],\"memory\":[\"7168\"],\"type\":[\"id\"],\"version\":[\"1.3\"],\"parallelism\":[\"1\"]}}" } ], "disableableCredentialTypes" : [ ], "requiredActions" : [ ], "realmRoles" : [ "default-roles-k8s" ], "notBefore" : 0, "groups" : [ "/gitea-users" ] } ], "scopeMappings" : [ { "clientScope" : "offline_access", "roles" : [ "offline_access" ] } ], "clientScopeMappings" : { "account" : [ { "client" : "account-console", "roles" : [ "manage-account", "view-groups" ] } ] }, "clients" : [ { "id" : "ae39c855-f7e1-4d9d-9a5a-5dc28f319bca", "clientId" : "account", "name" : "${client_account}", "rootUrl" : "${authBaseUrl}", "baseUrl" : "/realms/k8s/account/", "surrogateAuthRequired" : false, "enabled" : true, "alwaysDisplayInConsole" : false, "clientAuthenticatorType" : "client-secret", "redirectUris" : [ "/realms/k8s/account/*" ], "webOrigins" : [ ], "notBefore" : 0, "bearerOnly" : false, "consentRequired" : false, "standardFlowEnabled" : true, "implicitFlowEnabled" : false, "directAccessGrantsEnabled" : false, "serviceAccountsEnabled" : false, "publicClient" : true, "frontchannelLogout" : false, "protocol" : "openid-connect", "attributes" : { "realm_client" : "false", "post.logout.redirect.uris" : "+" }, "authenticationFlowBindingOverrides" : { }, "fullScopeAllowed" : false, "nodeReRegistrationTimeout" : 0, "defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ], "optionalClientScopes" : [ "address", "phone", "organization", "offline_access", "microprofile-jwt" ] }, { "id" : "23f2128c-1378-496b-bdb8-5fd0cd20adcd", "clientId" : "account-console", "name" : "${client_account-console}", "rootUrl" : "${authBaseUrl}", "baseUrl" : "/realms/k8s/account/", "surrogateAuthRequired" : false, "enabled" : true, "alwaysDisplayInConsole" : false, "clientAuthenticatorType" : "client-secret", "redirectUris" : [ "/realms/k8s/account/*" ], "webOrigins" : [ ], "notBefore" : 0, "bearerOnly" : false, "consentRequired" : false, "standardFlowEnabled" : true, "implicitFlowEnabled" : false, "directAccessGrantsEnabled" : false, "serviceAccountsEnabled" : false, "publicClient" : true, "frontchannelLogout" : false, "protocol" : "openid-connect", "attributes" : { "realm_client" : "false", "post.logout.redirect.uris" : "+", "pkce.code.challenge.method" : "S256" }, "authenticationFlowBindingOverrides" : { }, "fullScopeAllowed" : false, "nodeReRegistrationTimeout" : 0, "protocolMappers" : [ { "id" : "65f7741d-4991-4422-877f-7db6eda6f41a", "name" : "audience resolve", "protocol" : "openid-connect", "protocolMapper" : "oidc-audience-resolve-mapper", "consentRequired" : false, "config" : { } } ], "defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ], "optionalClientScopes" : [ "address", "phone", "organization", "offline_access", "microprofile-jwt" ] }, { "id" : "c8459f2d-590e-489a-b978-7b0f7a96cc2c", "clientId" : "admin-cli", "name" : "${client_admin-cli}", "surrogateAuthRequired" : false, "enabled" : true, "alwaysDisplayInConsole" : false, "clientAuthenticatorType" : "client-secret", "redirectUris" : [ ], "webOrigins" : [ ], "notBefore" : 0, "bearerOnly" : false, "consentRequired" : false, "standardFlowEnabled" : false, "implicitFlowEnabled" : false, "directAccessGrantsEnabled" : true, "serviceAccountsEnabled" : false, "publicClient" : true, "frontchannelLogout" : false, "protocol" : "openid-connect", "attributes" : { "realm_client" : "false", "client.use.lightweight.access.token.enabled" : "true" }, "authenticationFlowBindingOverrides" : { }, "fullScopeAllowed" : true, "nodeReRegistrationTimeout" : 0, "defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ], "optionalClientScopes" : [ "address", "phone", "organization", "offline_access", "microprofile-jwt" ] }, { "id" : "b37a8d1d-1b49-4357-bc7d-58115d3b1826", "clientId" : "broker", "name" : "${client_broker}", "surrogateAuthRequired" : false, "enabled" : true, "alwaysDisplayInConsole" : false, "clientAuthenticatorType" : "client-secret", "redirectUris" : [ ], "webOrigins" : [ ], "notBefore" : 0, "bearerOnly" : true, "consentRequired" : false, "standardFlowEnabled" : true, "implicitFlowEnabled" : false, "directAccessGrantsEnabled" : false, "serviceAccountsEnabled" : false, "publicClient" : false, "frontchannelLogout" : false, "protocol" : "openid-connect", "attributes" : { "realm_client" : "true" }, "authenticationFlowBindingOverrides" : { }, "fullScopeAllowed" : false, "nodeReRegistrationTimeout" : 0, "defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ], "optionalClientScopes" : [ "address", "phone", "organization", "offline_access", "microprofile-jwt" ] }, { "id" : "7f772b0f-44fa-4b92-905f-272c438a074b", "clientId" : "gitea", "name" : "gitea", "description" : "", "rootUrl" : "", "adminUrl" : "", "baseUrl" : "", "surrogateAuthRequired" : false, "enabled" : true, "alwaysDisplayInConsole" : false, "clientAuthenticatorType" : "client-secret", "secret": "__K8S_GITEA_CLIENT_SECRET__", "redirectUris" : [ "https://aiplatform.combient.com/*", "https://gitea.aiplatform.combient.com/*" ], "webOrigins" : [ "https://aiplatform.combient.com", "https://gitea.aiplatform.combient.com" ], "notBefore" : 0, "bearerOnly" : false, "consentRequired" : false, "standardFlowEnabled" : true, "implicitFlowEnabled" : true, "directAccessGrantsEnabled" : true, "serviceAccountsEnabled" : false, "publicClient" : false, "frontchannelLogout" : true, "protocol" : "openid-connect", "attributes" : { "realm_client" : "false", "oidc.ciba.grant.enabled" : "false", "client.secret.creation.time" : "1756295397", "backchannel.logout.session.required" : "true", "oauth2.device.authorization.grant.enabled" : "false", "backchannel.logout.revoke.offline.tokens" : "false" }, "authenticationFlowBindingOverrides" : { }, "fullScopeAllowed" : true, "nodeReRegistrationTimeout" : -1, "defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "groups", "basic", "email" ], "optionalClientScopes" : [ "address", "phone", "organization", "offline_access", "microprofile-jwt" ] }, { "id" : "38e7b447-5f50-44c1-811d-94c64308c2f1", "clientId" : "realm-management", "name" : "${client_realm-management}", "surrogateAuthRequired" : false, "enabled" : true, "alwaysDisplayInConsole" : false, "clientAuthenticatorType" : "client-secret", "redirectUris" : [ ], "webOrigins" : [ ], "notBefore" : 0, "bearerOnly" : true, "consentRequired" : false, "standardFlowEnabled" : true, "implicitFlowEnabled" : false, "directAccessGrantsEnabled" : false, "serviceAccountsEnabled" : false, "publicClient" : false, "frontchannelLogout" : false, "protocol" : "openid-connect", "attributes" : { "realm_client" : "true" }, "authenticationFlowBindingOverrides" : { }, "fullScopeAllowed" : false, "nodeReRegistrationTimeout" : 0, "defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ], "optionalClientScopes" : [ "address", "phone", "organization", "offline_access", "microprofile-jwt" ] }, { "id" : "3b66c758-4029-4bb2-94d4-275fec8c3165", "clientId" : "security-admin-console", "name" : "${client_security-admin-console}", "rootUrl" : "${authAdminUrl}", "baseUrl" : "/admin/k8s/console/", "surrogateAuthRequired" : false, "enabled" : true, "alwaysDisplayInConsole" : false, "clientAuthenticatorType" : "client-secret", "redirectUris" : [ "/admin/k8s/console/*" ], "webOrigins" : [ "+" ], "notBefore" : 0, "bearerOnly" : false, "consentRequired" : false, "standardFlowEnabled" : true, "implicitFlowEnabled" : false, "directAccessGrantsEnabled" : false, "serviceAccountsEnabled" : false, "publicClient" : true, "frontchannelLogout" : false, "protocol" : "openid-connect", "attributes" : { "realm_client" : "false", "client.use.lightweight.access.token.enabled" : "true", "post.logout.redirect.uris" : "+", "pkce.code.challenge.method" : "S256" }, "authenticationFlowBindingOverrides" : { }, "fullScopeAllowed" : true, "nodeReRegistrationTimeout" : 0, "protocolMappers" : [ { "id" : "6e1a4588-27e2-433e-ab7e-91e423840ea9", "name" : "locale", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "locale", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "locale", "jsonType.label" : "String" } } ], "defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ], "optionalClientScopes" : [ "address", "phone", "organization", "offline_access", "microprofile-jwt" ] } ], "clientScopes" : [ { "id" : "6e9fd9f5-a25a-4f89-ac50-666e795be042", "name" : "profile", "description" : "OpenID Connect built-in scope: profile", "protocol" : "openid-connect", "attributes" : { "include.in.token.scope" : "true", "consent.screen.text" : "${profileScopeConsentText}", "display.on.consent.screen" : "true" }, "protocolMappers" : [ { "id" : "410606c6-9850-4339-bc60-1672b3a4e342", "name" : "family name", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "lastName", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "family_name", "jsonType.label" : "String" } }, { "id" : "10851ee9-e53a-4546-a4d7-797448a942c5", "name" : "website", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "website", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "website", "jsonType.label" : "String" } }, { "id" : "413a2464-1837-4afd-9672-a2b0fb4357a2", "name" : "profile", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "profile", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "profile", "jsonType.label" : "String" } }, { "id" : "77e0f477-aa31-4954-b2b5-1bfaf927b0b4", "name" : "birthdate", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "birthdate", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "birthdate", "jsonType.label" : "String" } }, { "id" : "056e9f71-3453-4210-aea8-54026d7b5635", "name" : "locale", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "locale", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "locale", "jsonType.label" : "String" } }, { "id" : "e76a34f5-b558-4c66-b3e8-102a4e6f8ebe", "name" : "full name", "protocol" : "openid-connect", "protocolMapper" : "oidc-full-name-mapper", "consentRequired" : false, "config" : { "id.token.claim" : "true", "introspection.token.claim" : "true", "access.token.claim" : "true", "userinfo.token.claim" : "true" } }, { "id" : "cb4d17de-cee8-4d5a-9312-a824dac6a753", "name" : "nickname", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "nickname", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "nickname", "jsonType.label" : "String" } }, { "id" : "47c04c43-c672-463d-b1c1-e40f4dafbea9", "name" : "gender", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "gender", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "gender", "jsonType.label" : "String" } }, { "id" : "d23ce263-292d-4879-8516-61b9442bf3bc", "name" : "picture", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "picture", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "picture", "jsonType.label" : "String" } }, { "id" : "88375e4c-b347-4a1c-be8d-dc873040706e", "name" : "zoneinfo", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "zoneinfo", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "zoneinfo", "jsonType.label" : "String" } }, { "id" : "2eefa004-973e-4924-a37d-a6ef18f2a720", "name" : "updated at", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "updatedAt", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "updated_at", "jsonType.label" : "long" } }, { "id" : "62ee80e1-60e5-4583-bf17-2bcd55f6b852", "name" : "given name", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "firstName", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "given_name", "jsonType.label" : "String" } }, { "id" : "daca234d-f243-4d97-8a80-11f9ce6f6bb5", "name" : "middle name", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "middleName", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "middle_name", "jsonType.label" : "String" } }, { "id" : "856134c1-a959-4ca1-b062-4e0659c6ab82", "name" : "username", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "username", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "preferred_username", "jsonType.label" : "String" } } ] }, { "id" : "e1c7feaf-d3c8-4bbe-a1ad-8f6a3be0d9de", "name" : "organization", "description" : "Additional claims about the organization a subject belongs to", "protocol" : "openid-connect", "attributes" : { "include.in.token.scope" : "true", "consent.screen.text" : "${organizationScopeConsentText}", "display.on.consent.screen" : "true" }, "protocolMappers" : [ { "id" : "675759b4-2ded-4ff0-9935-04891dfa43b1", "name" : "organization", "protocol" : "openid-connect", "protocolMapper" : "oidc-organization-membership-mapper", "consentRequired" : false, "config" : { "id.token.claim" : "true", "introspection.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "organization", "jsonType.label" : "String", "multivalued" : "true" } } ] }, { "id" : "c2eaea44-ef26-40d6-82dd-9476e3a33d18", "name" : "role_list", "description" : "SAML role list", "protocol" : "saml", "attributes" : { "consent.screen.text" : "${samlRoleListScopeConsentText}", "display.on.consent.screen" : "true" }, "protocolMappers" : [ { "id" : "7892da50-7eb7-4fea-b2ec-beea8b62f639", "name" : "role list", "protocol" : "saml", "protocolMapper" : "saml-role-list-mapper", "consentRequired" : false, "config" : { "single" : "false", "attribute.nameformat" : "Basic", "attribute.name" : "Role" } } ] }, { "id" : "875a1c5b-6aa9-44dd-848d-680b84b2f0e4", "name" : "roles", "description" : "OpenID Connect scope for add user roles to the access token", "protocol" : "openid-connect", "attributes" : { "include.in.token.scope" : "false", "consent.screen.text" : "${rolesScopeConsentText}", "display.on.consent.screen" : "true" }, "protocolMappers" : [ { "id" : "e26cddc2-0174-4bb0-aabd-b36e829c574b", "name" : "audience resolve", "protocol" : "openid-connect", "protocolMapper" : "oidc-audience-resolve-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "access.token.claim" : "true" } }, { "id" : "b3e85942-93f4-4bbd-ba76-8b92de30e281", "name" : "client roles", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-client-role-mapper", "consentRequired" : false, "config" : { "user.attribute" : "foo", "introspection.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "resource_access.${client_id}.roles", "jsonType.label" : "String", "multivalued" : "true" } }, { "id" : "b7dd77e6-bb91-4547-99e5-cb0f0570efc3", "name" : "realm roles", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-realm-role-mapper", "consentRequired" : false, "config" : { "user.attribute" : "foo", "introspection.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "realm_access.roles", "jsonType.label" : "String", "multivalued" : "true" } } ] }, { "id" : "726e975f-f975-401d-b10f-f960615243d8", "name" : "basic", "description" : "OpenID Connect scope for add all basic claims to the token", "protocol" : "openid-connect", "attributes" : { "include.in.token.scope" : "false", "display.on.consent.screen" : "false" }, "protocolMappers" : [ { "id" : "b6360eb2-8a7c-4bc4-82f4-e2913f073622", "name" : "sub", "protocol" : "openid-connect", "protocolMapper" : "oidc-sub-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "access.token.claim" : "true" } }, { "id" : "c0adcf17-4688-49d4-bc6c-c8136b2eb8d2", "name" : "auth_time", "protocol" : "openid-connect", "protocolMapper" : "oidc-usersessionmodel-note-mapper", "consentRequired" : false, "config" : { "user.session.note" : "AUTH_TIME", "id.token.claim" : "true", "introspection.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "auth_time", "jsonType.label" : "long" } } ] }, { "id" : "4851e353-0690-44d1-8357-dcac8edf06eb", "name" : "microprofile-jwt", "description" : "Microprofile - JWT built-in scope", "protocol" : "openid-connect", "attributes" : { "include.in.token.scope" : "true", "display.on.consent.screen" : "false" }, "protocolMappers" : [ { "id" : "487711c2-e37d-456c-a70e-d6f0557a34c8", "name" : "upn", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "username", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "upn", "jsonType.label" : "String" } }, { "id" : "d64813bb-611f-4b93-8394-253d87f4f68b", "name" : "groups", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-realm-role-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "multivalued" : "true", "user.attribute" : "foo", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "groups", "jsonType.label" : "String" } } ] }, { "id" : "b42c2f50-c94b-494a-a776-987ed80b1fa6", "name" : "address", "description" : "OpenID Connect built-in scope: address", "protocol" : "openid-connect", "attributes" : { "include.in.token.scope" : "true", "consent.screen.text" : "${addressScopeConsentText}", "display.on.consent.screen" : "true" }, "protocolMappers" : [ { "id" : "b136e161-2169-413d-b6ae-da95a5565adc", "name" : "address", "protocol" : "openid-connect", "protocolMapper" : "oidc-address-mapper", "consentRequired" : false, "config" : { "user.attribute.formatted" : "formatted", "user.attribute.country" : "country", "introspection.token.claim" : "true", "user.attribute.postal_code" : "postal_code", "userinfo.token.claim" : "true", "user.attribute.street" : "street", "id.token.claim" : "true", "user.attribute.region" : "region", "access.token.claim" : "true", "user.attribute.locality" : "locality" } } ] }, { "id" : "975f9233-7446-4b2b-adf7-ced1a0fbe7ad", "name" : "phone", "description" : "OpenID Connect built-in scope: phone", "protocol" : "openid-connect", "attributes" : { "include.in.token.scope" : "true", "consent.screen.text" : "${phoneScopeConsentText}", "display.on.consent.screen" : "true" }, "protocolMappers" : [ { "id" : "c1e7b68e-cfa8-423d-adb6-cb353c562867", "name" : "phone number", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "phoneNumber", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "phone_number", "jsonType.label" : "String" } }, { "id" : "9ddd2280-a42c-4eb5-9ca2-ef1be9952fe2", "name" : "phone number verified", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "phoneNumberVerified", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "phone_number_verified", "jsonType.label" : "boolean" } } ] }, { "id" : "b3056455-5a72-4038-a81a-739059190244", "name" : "web-origins", "description" : "OpenID Connect scope for add allowed web origins to the access token", "protocol" : "openid-connect", "attributes" : { "include.in.token.scope" : "false", "consent.screen.text" : "", "display.on.consent.screen" : "false" }, "protocolMappers" : [ { "id" : "aa518b2e-e3d9-48e7-897d-bee914df9654", "name" : "allowed web origins", "protocol" : "openid-connect", "protocolMapper" : "oidc-allowed-origins-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "access.token.claim" : "true" } } ] }, { "id" : "2e1c3cd2-cfa3-492c-a90f-5e3e5bb7abac", "name" : "saml_organization", "description" : "Organization Membership", "protocol" : "saml", "attributes" : { "display.on.consent.screen" : "false" }, "protocolMappers" : [ { "id" : "960d7203-c17a-4473-a02c-7cc5a2cd1e91", "name" : "organization", "protocol" : "saml", "protocolMapper" : "saml-organization-membership-mapper", "consentRequired" : false, "config" : { } } ] }, { "id" : "da927c39-eccd-445c-aa9b-37bd0e82562a", "name" : "email", "description" : "OpenID Connect built-in scope: email", "protocol" : "openid-connect", "attributes" : { "include.in.token.scope" : "true", "consent.screen.text" : "${emailScopeConsentText}", "display.on.consent.screen" : "true" }, "protocolMappers" : [ { "id" : "c592742a-c89a-41c8-9c38-c6bc9abec3bc", "name" : "email", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "email", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "email", "jsonType.label" : "String" } }, { "id" : "a83d5a96-1f57-43b2-904b-5dac2554c3d5", "name" : "email verified", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-property-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "emailVerified", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "email_verified", "jsonType.label" : "boolean" } } ] }, { "id" : "fd9c0ebc-7b81-4988-8c65-ddbebce2f17b", "name" : "groups", "description" : "", "protocol" : "openid-connect", "attributes" : { "include.in.token.scope" : "true", "display.on.consent.screen" : "true", "gui.order" : "", "consent.screen.text" : "" }, "protocolMappers" : [ { "id" : "6b9340e5-25ed-4a73-8d9b-d3ffe66f5000", "name" : "groupmapper", "protocol" : "openid-connect", "protocolMapper" : "oidc-group-membership-mapper", "consentRequired" : false, "config" : { "full.path" : "true", "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "id.token.claim" : "true", "lightweight.claim" : "false", "access.token.claim" : "true", "claim.name" : "groups" } } ] }, { "id" : "65eba79c-befa-433b-b64c-fa154f3922f1", "name" : "offline_access", "description" : "OpenID Connect built-in scope: offline_access", "protocol" : "openid-connect", "attributes" : { "consent.screen.text" : "${offlineAccessScopeConsentText}", "display.on.consent.screen" : "true" } }, { "id" : "8839c43c-5c12-46ed-92d2-b2f7a166b5f4", "name" : "acr", "description" : "OpenID Connect scope for add acr (authentication context class reference) to the token", "protocol" : "openid-connect", "attributes" : { "include.in.token.scope" : "false", "display.on.consent.screen" : "false" }, "protocolMappers" : [ { "id" : "2740e699-4968-456b-aec2-8433e83350be", "name" : "acr loa level", "protocol" : "openid-connect", "protocolMapper" : "oidc-acr-mapper", "consentRequired" : false, "config" : { "id.token.claim" : "true", "introspection.token.claim" : "true", "access.token.claim" : "true" } } ] } ], "defaultDefaultClientScopes" : [ "role_list", "saml_organization", "profile", "email", "roles", "web-origins", "acr", "basic", "groups" ], "defaultOptionalClientScopes" : [ "offline_access", "address", "phone", "microprofile-jwt", "organization" ], "browserSecurityHeaders" : { "contentSecurityPolicyReportOnly" : "", "xContentTypeOptions" : "nosniff", "referrerPolicy" : "no-referrer", "xRobotsTag" : "none", "xFrameOptions" : "SAMEORIGIN", "contentSecurityPolicy" : "frame-src 'self'; frame-ancestors 'self'; object-src 'none';", "xXSSProtection" : "1; mode=block", "strictTransportSecurity" : "max-age=31536000; includeSubDomains" }, "smtpServer" : { }, "eventsEnabled" : false, "eventsListeners" : [ "jboss-logging" ], "enabledEventTypes" : [ ], "adminEventsEnabled" : false, "adminEventsDetailsEnabled" : false, "identityProviders" : [ ], "identityProviderMappers" : [ ], "components" : { "org.keycloak.services.clientregistration.policy.ClientRegistrationPolicy" : [ { "id" : "f7b56bb7-ee46-4912-bf79-76f874f92095", "name" : "Trusted Hosts", "providerId" : "trusted-hosts", "subType" : "anonymous", "subComponents" : { }, "config" : { "host-sending-registration-request-must-match" : [ "true" ], "client-uris-must-match" : [ "true" ] } }, { "id" : "0375f1bc-6c6a-4b27-b864-537d647c66b4", "name" : "Allowed Protocol Mapper Types", "providerId" : "allowed-protocol-mappers", "subType" : "authenticated", "subComponents" : { }, "config" : { "allowed-protocol-mapper-types" : [ "oidc-address-mapper", "oidc-usermodel-attribute-mapper", "oidc-usermodel-property-mapper", "oidc-full-name-mapper", "oidc-sha256-pairwise-sub-mapper", "saml-role-list-mapper", "saml-user-attribute-mapper", "saml-user-property-mapper" ] } }, { "id" : "c7f82732-8fd7-44aa-b7a5-ec84ee2652d0", "name" : "Allowed Client Scopes", "providerId" : "allowed-client-templates", "subType" : "authenticated", "subComponents" : { }, "config" : { "allow-default-scopes" : [ "true" ] } }, { "id" : "e5122d1c-694d-417a-a4a6-12781700b5e8", "name" : "Full Scope Disabled", "providerId" : "scope", "subType" : "anonymous", "subComponents" : { }, "config" : { } }, { "id" : "79e50df5-e7e1-4ba0-91bd-e7ce626ab835", "name" : "Consent Required", "providerId" : "consent-required", "subType" : "anonymous", "subComponents" : { }, "config" : { } }, { "id" : "0c3824b8-4161-4c15-8d23-62ce2f06bd85", "name" : "Allowed Client Scopes", "providerId" : "allowed-client-templates", "subType" : "anonymous", "subComponents" : { }, "config" : { "allow-default-scopes" : [ "true" ] } }, { "id" : "aeecefcd-bc06-4121-a079-6741dca2ab34", "name" : "Allowed Protocol Mapper Types", "providerId" : "allowed-protocol-mappers", "subType" : "anonymous", "subComponents" : { }, "config" : { "allowed-protocol-mapper-types" : [ "saml-role-list-mapper", "saml-user-property-mapper", "oidc-usermodel-property-mapper", "saml-user-attribute-mapper", "oidc-address-mapper", "oidc-sha256-pairwise-sub-mapper", "oidc-usermodel-attribute-mapper", "oidc-full-name-mapper" ] } }, { "id" : "7317ac11-224e-43c6-9c80-ef8f9d803083", "name" : "Max Clients Limit", "providerId" : "max-clients", "subType" : "anonymous", "subComponents" : { }, "config" : { "max-clients" : [ "200" ] } } ], "org.keycloak.keys.KeyProvider" : [ { "id" : "7eb41893-2498-407b-b213-24a7bc0035dc", "name" : "rsa-enc-generated", "providerId" : "rsa-enc-generated", "subComponents" : { }, "config" : { "privateKey" : [ "MIIEpAIBAAKCAQEAr/ruUmWO80WCJZ1cPhkgmM+wuNsApSXwBVQbDXjbNknzVSJyZZ4tvnXAx3Ud9RzgqW99e1U0Wt4McjwqTckV9XMFOAQ/6ozF4jTMAeObViTdgSjFfmuIlQeG6HlVthHfvweEvcZbopKnOacI4HGW1wxWpuWhMaHBp/aW9mp5eY0BFI7xq04uioqZF7o/AFyRSkGks+4quRNu5Y7qz62+m4Yb/5DziLUX905q7yxlXUoyrz4kCGkRCknV2LtJoWoF/mKSSqpslIRTes1DkLWK2vPfTFtmlWZ1QXrcfThBypxA4IMTqs4TziTMrnnks3LmhH06ZxtntUVpvwmOsUIB3wIDAQABAoIBAAYG5Yeb48/wFvt7zq9vw96H6mkCUxzU1koQbdbBx1wuHy/QvLM/PhjSRpZuK+b7pLQY1ebV7bOY/DsjVV2Rn/dmh4y6FIhPZu2O2lfMOEM0gwOL5mukeiqEdfnbQfS42v1bYA/xzaydMi32ywaIzV4zFXqkzab5/7xlZRkuX1eqzo8tEcr5d0tUwcz3NlHotYxLLq7nfbub/EX9h7a1sSaGC+9OGspuoKRvTfWbvtsGVDmiwE9a+E+PLGkZDL1Mo5kWzvj2BkNA+J2Qil+lnHd394IqtKQu082FDd3IJNQ6rl12dhkwosgm1x2bAgM8OWnQhNhiCBADJDSWJCkGmGkCgYEA1e8jBb4A00XrB27JnFcl7VZe2ybwZyAJ2MtveQR2BVwdCDgwYW19xhtQNhy8p4hHag1eJa0LBTX5pH/GgHrlbR/SeVBtVCn7lp5exB0adXEb5625Byq6sDiWN1E1CpCpQbM7gFvjFTJHDE2IIc37BP3ddiUDZ7zrRO4VLEESBRcCgYEA0pVL4A9gJSvd//v4wgNB/nTM8rcdg19bYNcjEi/iI92y0dBiGXy+aUp2fbbPuWj6bdjo9AXLAiGWoEso7ZvWyV/bT5RxiS+2FxNjnMy+JKGCxQU0KK6m+x1wjHC7AVle4jCp/9Db1AhvJKP+3UXRrv6P85pUoI6Kl9D43JLjdnkCgYAeXWDlMcDAPA5N8cWf8Saq9zVjebVpjbyYDtf1n1J5FEfyoLcNPRM7CSlrZMzKIqewP9F7G4KS7MRQOuqb1dW2lWu0WFwMNCFHkZb10wOsY6+IRLoccE4rMPzxQQ98PmgnsR7i6yfiHE7FSkPmOGxGmxnR6RMAqGnkUL6kl1/NZQKBgQDIfzlUxY7nFVMzbPa10mA9I3wXA93nvRzFoVBU+p43Q9gECIG+fpTUrv8ORsaUY608dS+nVvSovM4rJCR9xsjDxq6KoG1RDsoyQlWvbwkC23wklgXJTjDSGn+UV6jVaf/7IBZb6MHEqZsYqcP5bYZtNRZd++zjSZQPY/nuGTTVEQKBgQCpM7asFhHO/K9NsC+f3WLICvaY9X/wb09axIsFZZXTq+OWEBLYHX3nuCZ28HxCVQiao7qVB6EDO+eHj00FR7GvptWZ75Pd27v2k4uV340XpvVF936ebrFDDZEaP5qtpFuPw/twkD0b6c6gsAusiAvE0B96Qs/gkLTHdYi9LO0M3g==" ], "keyUse" : [ "ENC" ], "certificate" : [ "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" ], "priority" : [ "100" ], "algorithm" : [ "RSA-OAEP" ] } }, { "id" : "9bc6ed4c-8ff9-410a-9f53-c4fc26845d95", "name" : "hmac-generated-hs512", "providerId" : "hmac-generated", "subComponents" : { }, "config" : { "kid" : [ "c8209cbf-fd4d-4643-a809-aefd5bac28b1" ], "secret" : [ "S9p7HtJQdlwwPTO6TZ5wKIhREz6WfxkWYGqKbpNa3yIF6NfG6aq32HVewlyH81IeFZ2bsueMB_HERyrkrC3m-wHqRD9I7ne4klH6FtbN6WaqL5zPoZ_wsQ8WeokIM9XcNTDI8irqK9mD9PiR93YlPyzKU1dMkntYV19bp8p1dl0" ], "priority" : [ "100" ], "algorithm" : [ "HS512" ] } }, { "id" : "83817f35-13d6-4a16-8573-34b8705fdd78", "name" : "aes-generated", "providerId" : "aes-generated", "subComponents" : { }, "config" : { "kid" : [ "2f3a43c8-1e98-4346-a96f-18e49d474065" ], "secret" : [ "MMu204mWf4xAzlk1M0utDw" ], "priority" : [ "100" ] } }, { "id" : "4cc1f31c-f485-4099-a6c8-290b82c7d352", "name" : "rsa-generated", "providerId" : "rsa-generated", "subComponents" : { }, "config" : { "privateKey" : [ "MIIEowIBAAKCAQEAuuJDq1qkvCMluTgdHPTJwJvB+3ejTBF3Fj9OfXmhhyIXoz3kZKq4+dF2ADkMHvuwyYtKCW5E0ihUOn5ZUhBwlEJExP/tEFcl3n/IWiq6BrWIB9e8wx9vatm+v2tj+dEVAK8TYRx/T6RXy4fliLCG2YfUY4lxagcmTEKukvSbHd4hvJPy8WeXOJ1umEtGnkbg8YRpbmn5NRw+YYorubykBAdsd481OXB4W5zjQiEBK2xUgHbYDlnNI9dvRTRqTb9HhkbNre/9FdXNO5mx5KwRP/nxUkykExdPZxV4ks6pb1+PMlB1obMaW8esBPipQFWyTRKmPwyFwYzVr10kc6t9vQIDAQABAoIBADfxlMU+aLMDKH9GO3zYEG8ukUa4XTNfxRDtWY85Mm/z9jSBShYSfzYVjGfrq+O4f4cNwdeJ4WMx/GjYOt/UmQbgwZphbHNoSydMhErtoGtyuypx3AljJyTK0w2VVcPKYamnPztiXwAV18xPPZiKE4wZ26wCUGenhUDt8zl9rNOnEOZqZ+5F/g4uvexENDim/UbNaeUVsCgxl60PuQyASo2o7jBhfiIFt76F/Dgdk+ZH4Gil4q1reCUX6Yk28f+0VGu5vG2qdsobzsHzjDkNjdNo0tL7IXRGPs+VfM8W8F8y07n+ZgBBytap8RL8IU8EXzmSeED+lSENpdqCflwLzGcCgYEA3WWz0mX6UMymmd6F5xb7/DOmvcKadnMj/K+0LiuKf/ek2wvOJb9Yk9ZNmutH/o5LBBl6q0AD8/MhA6q8U9MfwQMDtAXLBt5Qy9p+ezEu2Cy41MbmyJuyOz3g8dTpxTb/Mw10s7dYh4xdN2TG1+qY0FwKDKLk9CB//PkqQBq3whcCgYEA2BemSIfaOqs9sRHFa0LmhbI1802aWKuEDsufMleF5P8nVaIeu1tgznVautXoVgEy18IfDpmuW7lmLk+e7NMuijLGPwsQIuU4BMFvleyZwYcyzo3CpHQT64JiUPxczg+2oj67l4zVwQEBKtd3lHJguLUs+4/kBq68IJA/f7oRB0sCgYAcn559EDQpqBvN/uf+9YjElYT0OamwsLgxXiIEahqw6rqEm2UemjuAeY90/QBE1+646/ZhF5irPH7DM5q/l6ceVB5xcuJJ1ApMIMaDdNtilX2b/M8vlnmXkSt4+Jb0qWSbHB0/cu/eLnaKx9uxZKI3Jf8inRjOuzjw4uHkgc/KJwKBgEGMqvxFeYVifIxB/8jRumvD62mqmK9dF+oFCn2S3yLf42aujvP2fB8kqikSyi+MnYelcxZSt/lK/BwAOw1L4ko5rLli+bocHioTI24vH1T9VgQiLHEGZSSDoJ9AbkZzrcr5jJ4kMpMhYuFECxoUuBJPox2MQHdmedrG5vwvzQqRAoGBAMkZDcJ6GRmczF6LqQ5OlUAYMdUP6FM2TWk+i6Rl6PomVD7skq+IEV5EO6U+6IqWGD/eNteDVEMWzUDyoAneCb/rTK0ie2gveVuP0GtU4U/dRPKSM+o3zhCYPpq34sxnEl4kr5aVwH/Se5y9hgzL48uzcs4gaBU+UlIpGNg6mS72" ], "keyUse" : [ "SIG" ], "certificate" : [ "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" ], "priority" : [ "100" ] } } ] }, "internationalizationEnabled" : false, "supportedLocales" : [ ], "authenticationFlows" : [ { "id" : "16b39c4c-5cc7-46e9-a350-c2039b058ed4", "alias" : "Account verification options", "description" : "Method with which to verity the existing account", "providerId" : "basic-flow", "topLevel" : false, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "idp-email-verification", "authenticatorFlow" : false, "requirement" : "ALTERNATIVE", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticatorFlow" : true, "requirement" : "ALTERNATIVE", "priority" : 20, "autheticatorFlow" : true, "flowAlias" : "Verify Existing Account by Re-authentication", "userSetupAllowed" : false } ] }, { "id" : "e4af4a9e-a79a-4ee5-9e0b-e537492e6726", "alias" : "Browser - Conditional OTP", "description" : "Flow to determine if the OTP is required for the authentication", "providerId" : "basic-flow", "topLevel" : false, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "conditional-user-configured", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "auth-otp-form", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 20, "autheticatorFlow" : false, "userSetupAllowed" : false } ] }, { "id" : "289228c9-fe98-4454-baed-a386dea0e9ae", "alias" : "Browser - Conditional Organization", "description" : "Flow to determine if the organization identity-first login is to be used", "providerId" : "basic-flow", "topLevel" : false, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "conditional-user-configured", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "organization", "authenticatorFlow" : false, "requirement" : "ALTERNATIVE", "priority" : 20, "autheticatorFlow" : false, "userSetupAllowed" : false } ] }, { "id" : "0e90518c-1a07-4044-a5e2-92c15721f492", "alias" : "Direct Grant - Conditional OTP", "description" : "Flow to determine if the OTP is required for the authentication", "providerId" : "basic-flow", "topLevel" : false, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "conditional-user-configured", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "direct-grant-validate-otp", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 20, "autheticatorFlow" : false, "userSetupAllowed" : false } ] }, { "id" : "166a5be4-24a7-4036-82a4-ff72d36f2311", "alias" : "First Broker Login - Conditional Organization", "description" : "Flow to determine if the authenticator that adds organization members is to be used", "providerId" : "basic-flow", "topLevel" : false, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "conditional-user-configured", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "idp-add-organization-member", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 20, "autheticatorFlow" : false, "userSetupAllowed" : false } ] }, { "id" : "f5fdd2d6-944b-42e5-82f1-12e5096bbea3", "alias" : "First broker login - Conditional OTP", "description" : "Flow to determine if the OTP is required for the authentication", "providerId" : "basic-flow", "topLevel" : false, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "conditional-user-configured", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "auth-otp-form", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 20, "autheticatorFlow" : false, "userSetupAllowed" : false } ] }, { "id" : "65478517-f009-4471-bc96-9af7bb908031", "alias" : "Handle Existing Account", "description" : "Handle what to do if there is existing account with same email/username like authenticated identity provider", "providerId" : "basic-flow", "topLevel" : false, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "idp-confirm-link", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticatorFlow" : true, "requirement" : "REQUIRED", "priority" : 20, "autheticatorFlow" : true, "flowAlias" : "Account verification options", "userSetupAllowed" : false } ] }, { "id" : "0858c6da-d1d4-4306-b317-39f4d8904b99", "alias" : "Organization", "providerId" : "basic-flow", "topLevel" : false, "builtIn" : true, "authenticationExecutions" : [ { "authenticatorFlow" : true, "requirement" : "CONDITIONAL", "priority" : 10, "autheticatorFlow" : true, "flowAlias" : "Browser - Conditional Organization", "userSetupAllowed" : false } ] }, { "id" : "d1f65ebb-4f9d-40ee-86d3-14709f72f247", "alias" : "Reset - Conditional OTP", "description" : "Flow to determine if the OTP should be reset or not. Set to REQUIRED to force.", "providerId" : "basic-flow", "topLevel" : false, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "conditional-user-configured", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "reset-otp", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 20, "autheticatorFlow" : false, "userSetupAllowed" : false } ] }, { "id" : "0550e96a-7cbf-4de6-abf7-34921cdefc62", "alias" : "User creation or linking", "description" : "Flow for the existing/non-existing user alternatives", "providerId" : "basic-flow", "topLevel" : false, "builtIn" : true, "authenticationExecutions" : [ { "authenticatorConfig" : "create unique user config", "authenticator" : "idp-create-user-if-unique", "authenticatorFlow" : false, "requirement" : "ALTERNATIVE", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticatorFlow" : true, "requirement" : "ALTERNATIVE", "priority" : 20, "autheticatorFlow" : true, "flowAlias" : "Handle Existing Account", "userSetupAllowed" : false } ] }, { "id" : "877d7227-5ba7-4f50-863c-f1e238bc3cee", "alias" : "Verify Existing Account by Re-authentication", "description" : "Reauthentication of existing account", "providerId" : "basic-flow", "topLevel" : false, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "idp-username-password-form", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticatorFlow" : true, "requirement" : "CONDITIONAL", "priority" : 20, "autheticatorFlow" : true, "flowAlias" : "First broker login - Conditional OTP", "userSetupAllowed" : false } ] }, { "id" : "3cccfd69-cc1c-4de7-be1a-0bf7ace223be", "alias" : "browser", "description" : "Browser based authentication", "providerId" : "basic-flow", "topLevel" : true, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "auth-cookie", "authenticatorFlow" : false, "requirement" : "ALTERNATIVE", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "auth-spnego", "authenticatorFlow" : false, "requirement" : "DISABLED", "priority" : 20, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "identity-provider-redirector", "authenticatorFlow" : false, "requirement" : "ALTERNATIVE", "priority" : 25, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticatorFlow" : true, "requirement" : "ALTERNATIVE", "priority" : 26, "autheticatorFlow" : true, "flowAlias" : "Organization", "userSetupAllowed" : false }, { "authenticatorFlow" : true, "requirement" : "ALTERNATIVE", "priority" : 30, "autheticatorFlow" : true, "flowAlias" : "forms", "userSetupAllowed" : false } ] }, { "id" : "83c13889-a6d7-4206-a263-877d5105a085", "alias" : "clients", "description" : "Base authentication for clients", "providerId" : "client-flow", "topLevel" : true, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "client-secret", "authenticatorFlow" : false, "requirement" : "ALTERNATIVE", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "client-jwt", "authenticatorFlow" : false, "requirement" : "ALTERNATIVE", "priority" : 20, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "client-secret-jwt", "authenticatorFlow" : false, "requirement" : "ALTERNATIVE", "priority" : 30, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "client-x509", "authenticatorFlow" : false, "requirement" : "ALTERNATIVE", "priority" : 40, "autheticatorFlow" : false, "userSetupAllowed" : false } ] }, { "id" : "c2ed90ff-98ca-46af-9183-10ff2e2639fc", "alias" : "direct grant", "description" : "OpenID Connect Resource Owner Grant", "providerId" : "basic-flow", "topLevel" : true, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "direct-grant-validate-username", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "direct-grant-validate-password", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 20, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticatorFlow" : true, "requirement" : "CONDITIONAL", "priority" : 30, "autheticatorFlow" : true, "flowAlias" : "Direct Grant - Conditional OTP", "userSetupAllowed" : false } ] }, { "id" : "182c4f5b-2fa8-4382-a2a1-0b2baecf65e9", "alias" : "docker auth", "description" : "Used by Docker clients to authenticate against the IDP", "providerId" : "basic-flow", "topLevel" : true, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "docker-http-basic-authenticator", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false } ] }, { "id" : "7884b9b8-86c2-4cf4-86aa-45036a448cdb", "alias" : "first broker login", "description" : "Actions taken after first broker login with identity provider account, which is not yet linked to any Keycloak account", "providerId" : "basic-flow", "topLevel" : true, "builtIn" : true, "authenticationExecutions" : [ { "authenticatorConfig" : "review profile config", "authenticator" : "idp-review-profile", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticatorFlow" : true, "requirement" : "REQUIRED", "priority" : 20, "autheticatorFlow" : true, "flowAlias" : "User creation or linking", "userSetupAllowed" : false }, { "authenticatorFlow" : true, "requirement" : "CONDITIONAL", "priority" : 50, "autheticatorFlow" : true, "flowAlias" : "First Broker Login - Conditional Organization", "userSetupAllowed" : false } ] }, { "id" : "14c02315-bc83-438d-9e8f-8dc80f5b2bd4", "alias" : "forms", "description" : "Username, password, otp and other auth forms.", "providerId" : "basic-flow", "topLevel" : false, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "auth-username-password-form", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticatorFlow" : true, "requirement" : "CONDITIONAL", "priority" : 20, "autheticatorFlow" : true, "flowAlias" : "Browser - Conditional OTP", "userSetupAllowed" : false } ] }, { "id" : "ea67a192-a99b-4385-bbb3-899253e0f163", "alias" : "registration", "description" : "Registration flow", "providerId" : "basic-flow", "topLevel" : true, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "registration-page-form", "authenticatorFlow" : true, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : true, "flowAlias" : "registration form", "userSetupAllowed" : false } ] }, { "id" : "91c7b962-377d-4e8a-8c28-15014e76fa0f", "alias" : "registration form", "description" : "Registration form", "providerId" : "form-flow", "topLevel" : false, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "registration-user-creation", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 20, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "registration-password-action", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 50, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "registration-recaptcha-action", "authenticatorFlow" : false, "requirement" : "DISABLED", "priority" : 60, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "registration-terms-and-conditions", "authenticatorFlow" : false, "requirement" : "DISABLED", "priority" : 70, "autheticatorFlow" : false, "userSetupAllowed" : false } ] }, { "id" : "ce5805b6-ef6f-4f13-9188-78c730fb8cf6", "alias" : "reset credentials", "description" : "Reset credentials for a user if they forgot their password or something", "providerId" : "basic-flow", "topLevel" : true, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "reset-credentials-choose-user", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "reset-credential-email", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 20, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "reset-password", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 30, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticatorFlow" : true, "requirement" : "CONDITIONAL", "priority" : 40, "autheticatorFlow" : true, "flowAlias" : "Reset - Conditional OTP", "userSetupAllowed" : false } ] }, { "id" : "043d9c95-0903-484c-90ea-ebb9cc45a6a1", "alias" : "saml ecp", "description" : "SAML ECP Profile Authentication Flow", "providerId" : "basic-flow", "topLevel" : true, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "http-basic-authenticator", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false } ] } ], "authenticatorConfig" : [ { "id" : "772e3653-9093-4276-8deb-fcb6107757a6", "alias" : "create unique user config", "config" : { "require.password.update.after.registration" : "false" } }, { "id" : "29d17f4e-2251-431e-b0f7-82bd25e4fad7", "alias" : "review profile config", "config" : { "update.profile.on.first.login" : "missing" } } ], "requiredActions" : [ { "alias" : "CONFIGURE_TOTP", "name" : "Configure OTP", "providerId" : "CONFIGURE_TOTP", "enabled" : true, "defaultAction" : false, "priority" : 10, "config" : { } }, { "alias" : "TERMS_AND_CONDITIONS", "name" : "Terms and Conditions", "providerId" : "TERMS_AND_CONDITIONS", "enabled" : false, "defaultAction" : false, "priority" : 20, "config" : { } }, { "alias" : "UPDATE_PASSWORD", "name" : "Update Password", "providerId" : "UPDATE_PASSWORD", "enabled" : true, "defaultAction" : false, "priority" : 30, "config" : { } }, { "alias" : "UPDATE_PROFILE", "name" : "Update Profile", "providerId" : "UPDATE_PROFILE", "enabled" : true, "defaultAction" : false, "priority" : 40, "config" : { } }, { "alias" : "VERIFY_EMAIL", "name" : "Verify Email", "providerId" : "VERIFY_EMAIL", "enabled" : true, "defaultAction" : false, "priority" : 50, "config" : { } }, { "alias" : "delete_account", "name" : "Delete Account", "providerId" : "delete_account", "enabled" : false, "defaultAction" : false, "priority" : 60, "config" : { } }, { "alias" : "webauthn-register", "name" : "Webauthn Register", "providerId" : "webauthn-register", "enabled" : true, "defaultAction" : false, "priority" : 70, "config" : { } }, { "alias" : "webauthn-register-passwordless", "name" : "Webauthn Register Passwordless", "providerId" : "webauthn-register-passwordless", "enabled" : true, "defaultAction" : false, "priority" : 80, "config" : { } }, { "alias" : "VERIFY_PROFILE", "name" : "Verify Profile", "providerId" : "VERIFY_PROFILE", "enabled" : true, "defaultAction" : false, "priority" : 90, "config" : { } }, { "alias" : "delete_credential", "name" : "Delete Credential", "providerId" : "delete_credential", "enabled" : true, "defaultAction" : false, "priority" : 100, "config" : { } }, { "alias" : "update_user_locale", "name" : "Update User Locale", "providerId" : "update_user_locale", "enabled" : true, "defaultAction" : false, "priority" : 1000, "config" : { } } ], "browserFlow" : "browser", "registrationFlow" : "registration", "directGrantFlow" : "direct grant", "resetCredentialsFlow" : "reset credentials", "clientAuthenticationFlow" : "clients", "dockerAuthenticationFlow" : "docker auth", "firstBrokerLoginFlow" : "first broker login", "attributes" : { "cibaBackchannelTokenDeliveryMode" : "poll", "cibaExpiresIn" : "120", "cibaAuthRequestedUserHint" : "login_hint", "oauth2DeviceCodeLifespan" : "600", "oauth2DevicePollingInterval" : "5", "parRequestUriLifespan" : "60", "cibaInterval" : "5", "realmReusableOtpCode" : "false" }, "keycloakVersion" : "26.0.0", "userManagedAccessAllowed" : false, "organizationsEnabled" : false, "clientProfiles" : { "profiles" : [ ] }, "clientPolicies" : { "policies" : [ ] } } kind: ConfigMap metadata: name: keycloak-realm-templates-k8s namespace: keycloak