2048 lines
84 KiB
YAML
2048 lines
84 KiB
YAML
---
|
|
apiVersion: v1
|
|
data:
|
|
k8s-realm.json: |
|
|
{
|
|
"id" : "92812b5e-671c-4c4b-ba85-41579ce7fec1",
|
|
"realm" : "k8s",
|
|
"notBefore" : 0,
|
|
"defaultSignatureAlgorithm" : "RS256",
|
|
"revokeRefreshToken" : false,
|
|
"refreshTokenMaxReuse" : 0,
|
|
"accessTokenLifespan" : 300,
|
|
"accessTokenLifespanForImplicitFlow" : 900,
|
|
"ssoSessionIdleTimeout" : 1800,
|
|
"ssoSessionMaxLifespan" : 36000,
|
|
"ssoSessionIdleTimeoutRememberMe" : 0,
|
|
"ssoSessionMaxLifespanRememberMe" : 0,
|
|
"offlineSessionIdleTimeout" : 2592000,
|
|
"offlineSessionMaxLifespanEnabled" : false,
|
|
"offlineSessionMaxLifespan" : 5184000,
|
|
"clientSessionIdleTimeout" : 0,
|
|
"clientSessionMaxLifespan" : 0,
|
|
"clientOfflineSessionIdleTimeout" : 0,
|
|
"clientOfflineSessionMaxLifespan" : 0,
|
|
"accessCodeLifespan" : 60,
|
|
"accessCodeLifespanUserAction" : 300,
|
|
"accessCodeLifespanLogin" : 1800,
|
|
"actionTokenGeneratedByAdminLifespan" : 43200,
|
|
"actionTokenGeneratedByUserLifespan" : 300,
|
|
"oauth2DeviceCodeLifespan" : 600,
|
|
"oauth2DevicePollingInterval" : 5,
|
|
"enabled" : true,
|
|
"sslRequired" : "external",
|
|
"registrationAllowed" : false,
|
|
"registrationEmailAsUsername" : false,
|
|
"rememberMe" : false,
|
|
"verifyEmail" : false,
|
|
"loginWithEmailAllowed" : true,
|
|
"duplicateEmailsAllowed" : false,
|
|
"resetPasswordAllowed" : false,
|
|
"editUsernameAllowed" : false,
|
|
"bruteForceProtected" : false,
|
|
"permanentLockout" : false,
|
|
"maxTemporaryLockouts" : 0,
|
|
"maxFailureWaitSeconds" : 900,
|
|
"minimumQuickLoginWaitSeconds" : 60,
|
|
"waitIncrementSeconds" : 60,
|
|
"quickLoginCheckMilliSeconds" : 1000,
|
|
"maxDeltaTimeSeconds" : 43200,
|
|
"failureFactor" : 30,
|
|
"roles" : {
|
|
"realm" : [ {
|
|
"id" : "c23992d2-8e59-4076-af98-749ec188a283",
|
|
"name" : "offline_access",
|
|
"description" : "${role_offline-access}",
|
|
"composite" : false,
|
|
"clientRole" : false,
|
|
"containerId" : "92812b5e-671c-4c4b-ba85-41579ce7fec1",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "bd47f25f-7078-4a49-8935-cc72e7cb9e9a",
|
|
"name" : "default-roles-k8s",
|
|
"description" : "${role_default-roles}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"realm" : [ "offline_access", "uma_authorization" ],
|
|
"client" : {
|
|
"account" : [ "manage-account", "view-profile" ]
|
|
}
|
|
},
|
|
"clientRole" : false,
|
|
"containerId" : "92812b5e-671c-4c4b-ba85-41579ce7fec1",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "940ce9af-ca34-40f9-8027-0bfc37c3a538",
|
|
"name" : "uma_authorization",
|
|
"description" : "${role_uma_authorization}",
|
|
"composite" : false,
|
|
"clientRole" : false,
|
|
"containerId" : "92812b5e-671c-4c4b-ba85-41579ce7fec1",
|
|
"attributes" : { }
|
|
} ],
|
|
"client" : {
|
|
"gitea" : [ ],
|
|
"realm-management" : [ {
|
|
"id" : "be6073c6-1121-4777-8484-d389748c3f3d",
|
|
"name" : "realm-admin",
|
|
"description" : "${role_realm-admin}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"realm-management" : [ "query-users", "manage-realm", "view-events", "view-realm", "view-identity-providers", "query-clients", "impersonation", "view-clients", "view-users", "manage-events", "query-realms", "query-groups", "manage-users", "view-authorization", "manage-clients", "manage-authorization", "create-client", "manage-identity-providers" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "c485a8a5-0e38-4e52-9277-4e4a0f054fba",
|
|
"name" : "query-users",
|
|
"description" : "${role_query-users}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "d0fcdb5c-6f65-4e56-9739-97cc60e21e8f",
|
|
"name" : "manage-realm",
|
|
"description" : "${role_manage-realm}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "1c7d1381-02ac-497e-9f82-90e4f0bc5866",
|
|
"name" : "view-events",
|
|
"description" : "${role_view-events}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "9786de6b-181d-4093-80d8-1d673d03006d",
|
|
"name" : "view-identity-providers",
|
|
"description" : "${role_view-identity-providers}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "927cd8e5-9577-4d69-bfae-f132ce07bf2a",
|
|
"name" : "view-realm",
|
|
"description" : "${role_view-realm}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "c87a925b-dba0-48e3-80eb-1c62889e0c20",
|
|
"name" : "impersonation",
|
|
"description" : "${role_impersonation}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "3ebceed5-51a6-4823-97e4-c049f2635107",
|
|
"name" : "query-clients",
|
|
"description" : "${role_query-clients}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "2fca6e0e-f255-4dd7-ab4b-2af7264d5e80",
|
|
"name" : "view-clients",
|
|
"description" : "${role_view-clients}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"realm-management" : [ "query-clients" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "71ad9c26-2bfb-4bd9-b848-13460d7bd81b",
|
|
"name" : "view-users",
|
|
"description" : "${role_view-users}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"realm-management" : [ "query-groups", "query-users" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "bacc0ed4-d7ec-488f-bafc-4d8e85c67d14",
|
|
"name" : "manage-events",
|
|
"description" : "${role_manage-events}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "c63bc691-6174-4f2e-ba4e-1103f8c86736",
|
|
"name" : "query-realms",
|
|
"description" : "${role_query-realms}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "8a2e9ef6-3980-495c-b2a3-80992c262c17",
|
|
"name" : "query-groups",
|
|
"description" : "${role_query-groups}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "79dab2f5-8f76-403a-ba3a-a07f45237ac5",
|
|
"name" : "manage-users",
|
|
"description" : "${role_manage-users}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "b1ed3e75-f177-49b2-82a9-17120418143f",
|
|
"name" : "view-authorization",
|
|
"description" : "${role_view-authorization}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "ea4f5a71-00a4-4e5d-b687-5e7f30695fe1",
|
|
"name" : "manage-clients",
|
|
"description" : "${role_manage-clients}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "b1e4ccfe-58ac-4ec3-a6ad-24af0d4af237",
|
|
"name" : "manage-authorization",
|
|
"description" : "${role_manage-authorization}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "8dcd1d51-ba98-4ef3-94c1-226bcec05346",
|
|
"name" : "create-client",
|
|
"description" : "${role_create-client}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "70efa7cf-9c05-4794-9dc0-41f5559bca92",
|
|
"name" : "manage-identity-providers",
|
|
"description" : "${role_manage-identity-providers}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "38e7b447-5f50-44c1-811d-94c64308c2f1",
|
|
"attributes" : { }
|
|
} ],
|
|
"security-admin-console" : [ ],
|
|
"admin-cli" : [ ],
|
|
"account-console" : [ ],
|
|
"broker" : [ {
|
|
"id" : "20ab6b61-af95-4edd-8e7a-b4c66894b30b",
|
|
"name" : "read-token",
|
|
"description" : "${role_read-token}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b37a8d1d-1b49-4357-bc7d-58115d3b1826",
|
|
"attributes" : { }
|
|
} ],
|
|
"account" : [ {
|
|
"id" : "3619eba3-9d9e-4ec9-92ca-112d851843e8",
|
|
"name" : "view-groups",
|
|
"description" : "${role_view-groups}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "ae39c855-f7e1-4d9d-9a5a-5dc28f319bca",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "512cd388-a0f2-4343-83d1-bee0c635677c",
|
|
"name" : "delete-account",
|
|
"description" : "${role_delete-account}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "ae39c855-f7e1-4d9d-9a5a-5dc28f319bca",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "52f80a74-c390-4828-9465-fa28ba544c80",
|
|
"name" : "manage-account",
|
|
"description" : "${role_manage-account}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"account" : [ "manage-account-links" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "ae39c855-f7e1-4d9d-9a5a-5dc28f319bca",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "16b7edbf-697c-45e7-b084-7750904ac412",
|
|
"name" : "manage-consent",
|
|
"description" : "${role_manage-consent}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"account" : [ "view-consent" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "ae39c855-f7e1-4d9d-9a5a-5dc28f319bca",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "db1a7bc3-87b6-494d-a663-d3eb536e82f6",
|
|
"name" : "manage-account-links",
|
|
"description" : "${role_manage-account-links}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "ae39c855-f7e1-4d9d-9a5a-5dc28f319bca",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "d6a579c0-50ed-4ab7-aa89-46c44df41f93",
|
|
"name" : "view-profile",
|
|
"description" : "${role_view-profile}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "ae39c855-f7e1-4d9d-9a5a-5dc28f319bca",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "cf10bdfc-717f-49c9-910d-33564331e681",
|
|
"name" : "view-consent",
|
|
"description" : "${role_view-consent}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "ae39c855-f7e1-4d9d-9a5a-5dc28f319bca",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "49c9f53c-34b1-43e8-ac07-752c04876ebd",
|
|
"name" : "view-applications",
|
|
"description" : "${role_view-applications}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "ae39c855-f7e1-4d9d-9a5a-5dc28f319bca",
|
|
"attributes" : { }
|
|
} ]
|
|
}
|
|
},
|
|
"groups" : [ {
|
|
"id" : "9f68a05a-46a7-4419-b35f-38811c35d71e",
|
|
"name" : "gitea-users",
|
|
"path" : "/gitea-users",
|
|
"subGroups" : [ ],
|
|
"attributes" : { },
|
|
"realmRoles" : [ ],
|
|
"clientRoles" : { }
|
|
} ],
|
|
"defaultRole" : {
|
|
"id" : "bd47f25f-7078-4a49-8935-cc72e7cb9e9a",
|
|
"name" : "default-roles-k8s",
|
|
"description" : "${role_default-roles}",
|
|
"composite" : true,
|
|
"clientRole" : false,
|
|
"containerId" : "92812b5e-671c-4c4b-ba85-41579ce7fec1"
|
|
},
|
|
"requiredCredentials" : [ "password" ],
|
|
"otpPolicyType" : "totp",
|
|
"otpPolicyAlgorithm" : "HmacSHA1",
|
|
"otpPolicyInitialCounter" : 0,
|
|
"otpPolicyDigits" : 6,
|
|
"otpPolicyLookAheadWindow" : 1,
|
|
"otpPolicyPeriod" : 30,
|
|
"otpPolicyCodeReusable" : false,
|
|
"otpSupportedApplications" : [ "totpAppFreeOTPName", "totpAppGoogleName", "totpAppMicrosoftAuthenticatorName" ],
|
|
"localizationTexts" : { },
|
|
"webAuthnPolicyRpEntityName" : "keycloak",
|
|
"webAuthnPolicySignatureAlgorithms" : [ "ES256", "RS256" ],
|
|
"webAuthnPolicyRpId" : "",
|
|
"webAuthnPolicyAttestationConveyancePreference" : "not specified",
|
|
"webAuthnPolicyAuthenticatorAttachment" : "not specified",
|
|
"webAuthnPolicyRequireResidentKey" : "not specified",
|
|
"webAuthnPolicyUserVerificationRequirement" : "not specified",
|
|
"webAuthnPolicyCreateTimeout" : 0,
|
|
"webAuthnPolicyAvoidSameAuthenticatorRegister" : false,
|
|
"webAuthnPolicyAcceptableAaguids" : [ ],
|
|
"webAuthnPolicyExtraOrigins" : [ ],
|
|
"webAuthnPolicyPasswordlessRpEntityName" : "keycloak",
|
|
"webAuthnPolicyPasswordlessSignatureAlgorithms" : [ "ES256", "RS256" ],
|
|
"webAuthnPolicyPasswordlessRpId" : "",
|
|
"webAuthnPolicyPasswordlessAttestationConveyancePreference" : "not specified",
|
|
"webAuthnPolicyPasswordlessAuthenticatorAttachment" : "not specified",
|
|
"webAuthnPolicyPasswordlessRequireResidentKey" : "not specified",
|
|
"webAuthnPolicyPasswordlessUserVerificationRequirement" : "not specified",
|
|
"webAuthnPolicyPasswordlessCreateTimeout" : 0,
|
|
"webAuthnPolicyPasswordlessAvoidSameAuthenticatorRegister" : false,
|
|
"webAuthnPolicyPasswordlessAcceptableAaguids" : [ ],
|
|
"webAuthnPolicyPasswordlessExtraOrigins" : [ ],
|
|
"users" : [ {
|
|
"id" : "9c239ec7-c252-479f-abc0-7e3abc142eb2",
|
|
"username" : "devuser@aiplatform.combient.com",
|
|
"firstName" : "Dev Env",
|
|
"lastName" : "User",
|
|
"email" : "devuser@aiplatform.combient.com",
|
|
"emailVerified" : true,
|
|
"createdTimestamp" : 1756295789081,
|
|
"enabled" : true,
|
|
"totp" : false,
|
|
"credentials" : [ {
|
|
"id" : "cb04323c-2e26-434f-847f-6236e74b0c28",
|
|
"type" : "password",
|
|
"userLabel" : "My password",
|
|
"createdDate" : 1756295836615,
|
|
"secretData" : "{\"value\":\"b9beRs6cvVsXjLR6/5OLO8Ck/HDRfBwQunaBKO9+3NE=\",\"salt\":\"kxDm0NosogI1TiA3iMgVtg==\",\"additionalParameters\":{}}",
|
|
"credentialData" : "{\"hashIterations\":5,\"algorithm\":\"argon2\",\"additionalParameters\":{\"hashLength\":[\"32\"],\"memory\":[\"7168\"],\"type\":[\"id\"],\"version\":[\"1.3\"],\"parallelism\":[\"1\"]}}"
|
|
} ],
|
|
"disableableCredentialTypes" : [ ],
|
|
"requiredActions" : [ ],
|
|
"realmRoles" : [ "default-roles-k8s" ],
|
|
"notBefore" : 0,
|
|
"groups" : [ "/gitea-users" ]
|
|
} ],
|
|
"scopeMappings" : [ {
|
|
"clientScope" : "offline_access",
|
|
"roles" : [ "offline_access" ]
|
|
} ],
|
|
"clientScopeMappings" : {
|
|
"account" : [ {
|
|
"client" : "account-console",
|
|
"roles" : [ "manage-account", "view-groups" ]
|
|
} ]
|
|
},
|
|
"clients" : [ {
|
|
"id" : "ae39c855-f7e1-4d9d-9a5a-5dc28f319bca",
|
|
"clientId" : "account",
|
|
"name" : "${client_account}",
|
|
"rootUrl" : "${authBaseUrl}",
|
|
"baseUrl" : "/realms/k8s/account/",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ "/realms/k8s/account/*" ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"realm_client" : "false",
|
|
"post.logout.redirect.uris" : "+"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "organization", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "23f2128c-1378-496b-bdb8-5fd0cd20adcd",
|
|
"clientId" : "account-console",
|
|
"name" : "${client_account-console}",
|
|
"rootUrl" : "${authBaseUrl}",
|
|
"baseUrl" : "/realms/k8s/account/",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ "/realms/k8s/account/*" ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"realm_client" : "false",
|
|
"post.logout.redirect.uris" : "+",
|
|
"pkce.code.challenge.method" : "S256"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"protocolMappers" : [ {
|
|
"id" : "65f7741d-4991-4422-877f-7db6eda6f41a",
|
|
"name" : "audience resolve",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-audience-resolve-mapper",
|
|
"consentRequired" : false,
|
|
"config" : { }
|
|
} ],
|
|
"defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "organization", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "c8459f2d-590e-489a-b978-7b0f7a96cc2c",
|
|
"clientId" : "admin-cli",
|
|
"name" : "${client_admin-cli}",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : false,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : true,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"realm_client" : "false",
|
|
"client.use.lightweight.access.token.enabled" : "true"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : true,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "organization", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "b37a8d1d-1b49-4357-bc7d-58115d3b1826",
|
|
"clientId" : "broker",
|
|
"name" : "${client_broker}",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : true,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : false,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"realm_client" : "true"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "organization", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "7f772b0f-44fa-4b92-905f-272c438a074b",
|
|
"clientId" : "gitea",
|
|
"name" : "gitea",
|
|
"description" : "",
|
|
"rootUrl" : "",
|
|
"adminUrl" : "",
|
|
"baseUrl" : "",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"secret": "__K8S_GITEA_CLIENT_SECRET__",
|
|
"redirectUris" : [ "https://aiplatform.combient.com/*", "https://gitea.aiplatform.combient.com/*" ],
|
|
"webOrigins" : [ "https://aiplatform.combient.com", "https://gitea.aiplatform.combient.com" ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : true,
|
|
"directAccessGrantsEnabled" : true,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : false,
|
|
"frontchannelLogout" : true,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"realm_client" : "false",
|
|
"oidc.ciba.grant.enabled" : "false",
|
|
"client.secret.creation.time" : "1756295397",
|
|
"backchannel.logout.session.required" : "true",
|
|
"oauth2.device.authorization.grant.enabled" : "false",
|
|
"backchannel.logout.revoke.offline.tokens" : "false"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : true,
|
|
"nodeReRegistrationTimeout" : -1,
|
|
"defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "groups", "basic", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "organization", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "38e7b447-5f50-44c1-811d-94c64308c2f1",
|
|
"clientId" : "realm-management",
|
|
"name" : "${client_realm-management}",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : true,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : false,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"realm_client" : "true"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "organization", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "3b66c758-4029-4bb2-94d4-275fec8c3165",
|
|
"clientId" : "security-admin-console",
|
|
"name" : "${client_security-admin-console}",
|
|
"rootUrl" : "${authAdminUrl}",
|
|
"baseUrl" : "/admin/k8s/console/",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ "/admin/k8s/console/*" ],
|
|
"webOrigins" : [ "+" ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"realm_client" : "false",
|
|
"client.use.lightweight.access.token.enabled" : "true",
|
|
"post.logout.redirect.uris" : "+",
|
|
"pkce.code.challenge.method" : "S256"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : true,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"protocolMappers" : [ {
|
|
"id" : "6e1a4588-27e2-433e-ab7e-91e423840ea9",
|
|
"name" : "locale",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "locale",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "locale",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ],
|
|
"defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "organization", "offline_access", "microprofile-jwt" ]
|
|
} ],
|
|
"clientScopes" : [ {
|
|
"id" : "6e9fd9f5-a25a-4f89-ac50-666e795be042",
|
|
"name" : "profile",
|
|
"description" : "OpenID Connect built-in scope: profile",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"consent.screen.text" : "${profileScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "410606c6-9850-4339-bc60-1672b3a4e342",
|
|
"name" : "family name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "lastName",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "family_name",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "10851ee9-e53a-4546-a4d7-797448a942c5",
|
|
"name" : "website",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "website",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "website",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "413a2464-1837-4afd-9672-a2b0fb4357a2",
|
|
"name" : "profile",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "profile",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "profile",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "77e0f477-aa31-4954-b2b5-1bfaf927b0b4",
|
|
"name" : "birthdate",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "birthdate",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "birthdate",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "056e9f71-3453-4210-aea8-54026d7b5635",
|
|
"name" : "locale",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "locale",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "locale",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "e76a34f5-b558-4c66-b3e8-102a4e6f8ebe",
|
|
"name" : "full name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-full-name-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"id.token.claim" : "true",
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"userinfo.token.claim" : "true"
|
|
}
|
|
}, {
|
|
"id" : "cb4d17de-cee8-4d5a-9312-a824dac6a753",
|
|
"name" : "nickname",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "nickname",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "nickname",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "47c04c43-c672-463d-b1c1-e40f4dafbea9",
|
|
"name" : "gender",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "gender",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "gender",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "d23ce263-292d-4879-8516-61b9442bf3bc",
|
|
"name" : "picture",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "picture",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "picture",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "88375e4c-b347-4a1c-be8d-dc873040706e",
|
|
"name" : "zoneinfo",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "zoneinfo",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "zoneinfo",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "2eefa004-973e-4924-a37d-a6ef18f2a720",
|
|
"name" : "updated at",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "updatedAt",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "updated_at",
|
|
"jsonType.label" : "long"
|
|
}
|
|
}, {
|
|
"id" : "62ee80e1-60e5-4583-bf17-2bcd55f6b852",
|
|
"name" : "given name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "firstName",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "given_name",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "daca234d-f243-4d97-8a80-11f9ce6f6bb5",
|
|
"name" : "middle name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "middleName",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "middle_name",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "856134c1-a959-4ca1-b062-4e0659c6ab82",
|
|
"name" : "username",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "username",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "preferred_username",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "e1c7feaf-d3c8-4bbe-a1ad-8f6a3be0d9de",
|
|
"name" : "organization",
|
|
"description" : "Additional claims about the organization a subject belongs to",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"consent.screen.text" : "${organizationScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "675759b4-2ded-4ff0-9935-04891dfa43b1",
|
|
"name" : "organization",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-organization-membership-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"id.token.claim" : "true",
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "organization",
|
|
"jsonType.label" : "String",
|
|
"multivalued" : "true"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "c2eaea44-ef26-40d6-82dd-9476e3a33d18",
|
|
"name" : "role_list",
|
|
"description" : "SAML role list",
|
|
"protocol" : "saml",
|
|
"attributes" : {
|
|
"consent.screen.text" : "${samlRoleListScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "7892da50-7eb7-4fea-b2ec-beea8b62f639",
|
|
"name" : "role list",
|
|
"protocol" : "saml",
|
|
"protocolMapper" : "saml-role-list-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"single" : "false",
|
|
"attribute.nameformat" : "Basic",
|
|
"attribute.name" : "Role"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "875a1c5b-6aa9-44dd-848d-680b84b2f0e4",
|
|
"name" : "roles",
|
|
"description" : "OpenID Connect scope for add user roles to the access token",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "false",
|
|
"consent.screen.text" : "${rolesScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "e26cddc2-0174-4bb0-aabd-b36e829c574b",
|
|
"name" : "audience resolve",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-audience-resolve-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true"
|
|
}
|
|
}, {
|
|
"id" : "b3e85942-93f4-4bbd-ba76-8b92de30e281",
|
|
"name" : "client roles",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-client-role-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"user.attribute" : "foo",
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "resource_access.${client_id}.roles",
|
|
"jsonType.label" : "String",
|
|
"multivalued" : "true"
|
|
}
|
|
}, {
|
|
"id" : "b7dd77e6-bb91-4547-99e5-cb0f0570efc3",
|
|
"name" : "realm roles",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-realm-role-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"user.attribute" : "foo",
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "realm_access.roles",
|
|
"jsonType.label" : "String",
|
|
"multivalued" : "true"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "726e975f-f975-401d-b10f-f960615243d8",
|
|
"name" : "basic",
|
|
"description" : "OpenID Connect scope for add all basic claims to the token",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "false",
|
|
"display.on.consent.screen" : "false"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "b6360eb2-8a7c-4bc4-82f4-e2913f073622",
|
|
"name" : "sub",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-sub-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true"
|
|
}
|
|
}, {
|
|
"id" : "c0adcf17-4688-49d4-bc6c-c8136b2eb8d2",
|
|
"name" : "auth_time",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usersessionmodel-note-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"user.session.note" : "AUTH_TIME",
|
|
"id.token.claim" : "true",
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "auth_time",
|
|
"jsonType.label" : "long"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "4851e353-0690-44d1-8357-dcac8edf06eb",
|
|
"name" : "microprofile-jwt",
|
|
"description" : "Microprofile - JWT built-in scope",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "false"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "487711c2-e37d-456c-a70e-d6f0557a34c8",
|
|
"name" : "upn",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "username",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "upn",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "d64813bb-611f-4b93-8394-253d87f4f68b",
|
|
"name" : "groups",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-realm-role-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"multivalued" : "true",
|
|
"user.attribute" : "foo",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "groups",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "b42c2f50-c94b-494a-a776-987ed80b1fa6",
|
|
"name" : "address",
|
|
"description" : "OpenID Connect built-in scope: address",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"consent.screen.text" : "${addressScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "b136e161-2169-413d-b6ae-da95a5565adc",
|
|
"name" : "address",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-address-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"user.attribute.formatted" : "formatted",
|
|
"user.attribute.country" : "country",
|
|
"introspection.token.claim" : "true",
|
|
"user.attribute.postal_code" : "postal_code",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute.street" : "street",
|
|
"id.token.claim" : "true",
|
|
"user.attribute.region" : "region",
|
|
"access.token.claim" : "true",
|
|
"user.attribute.locality" : "locality"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "975f9233-7446-4b2b-adf7-ced1a0fbe7ad",
|
|
"name" : "phone",
|
|
"description" : "OpenID Connect built-in scope: phone",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"consent.screen.text" : "${phoneScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "c1e7b68e-cfa8-423d-adb6-cb353c562867",
|
|
"name" : "phone number",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "phoneNumber",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "phone_number",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "9ddd2280-a42c-4eb5-9ca2-ef1be9952fe2",
|
|
"name" : "phone number verified",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "phoneNumberVerified",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "phone_number_verified",
|
|
"jsonType.label" : "boolean"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "b3056455-5a72-4038-a81a-739059190244",
|
|
"name" : "web-origins",
|
|
"description" : "OpenID Connect scope for add allowed web origins to the access token",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "false",
|
|
"consent.screen.text" : "",
|
|
"display.on.consent.screen" : "false"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "aa518b2e-e3d9-48e7-897d-bee914df9654",
|
|
"name" : "allowed web origins",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-allowed-origins-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "2e1c3cd2-cfa3-492c-a90f-5e3e5bb7abac",
|
|
"name" : "saml_organization",
|
|
"description" : "Organization Membership",
|
|
"protocol" : "saml",
|
|
"attributes" : {
|
|
"display.on.consent.screen" : "false"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "960d7203-c17a-4473-a02c-7cc5a2cd1e91",
|
|
"name" : "organization",
|
|
"protocol" : "saml",
|
|
"protocolMapper" : "saml-organization-membership-mapper",
|
|
"consentRequired" : false,
|
|
"config" : { }
|
|
} ]
|
|
}, {
|
|
"id" : "da927c39-eccd-445c-aa9b-37bd0e82562a",
|
|
"name" : "email",
|
|
"description" : "OpenID Connect built-in scope: email",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"consent.screen.text" : "${emailScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "c592742a-c89a-41c8-9c38-c6bc9abec3bc",
|
|
"name" : "email",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "email",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "email",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "a83d5a96-1f57-43b2-904b-5dac2554c3d5",
|
|
"name" : "email verified",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-property-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "emailVerified",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "email_verified",
|
|
"jsonType.label" : "boolean"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "fd9c0ebc-7b81-4988-8c65-ddbebce2f17b",
|
|
"name" : "groups",
|
|
"description" : "",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "true",
|
|
"gui.order" : "",
|
|
"consent.screen.text" : ""
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "6b9340e5-25ed-4a73-8d9b-d3ffe66f5000",
|
|
"name" : "groupmapper",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-group-membership-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"full.path" : "true",
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"id.token.claim" : "true",
|
|
"lightweight.claim" : "false",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "groups"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "65eba79c-befa-433b-b64c-fa154f3922f1",
|
|
"name" : "offline_access",
|
|
"description" : "OpenID Connect built-in scope: offline_access",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"consent.screen.text" : "${offlineAccessScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
}
|
|
}, {
|
|
"id" : "8839c43c-5c12-46ed-92d2-b2f7a166b5f4",
|
|
"name" : "acr",
|
|
"description" : "OpenID Connect scope for add acr (authentication context class reference) to the token",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "false",
|
|
"display.on.consent.screen" : "false"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "2740e699-4968-456b-aec2-8433e83350be",
|
|
"name" : "acr loa level",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-acr-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"id.token.claim" : "true",
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true"
|
|
}
|
|
} ]
|
|
} ],
|
|
"defaultDefaultClientScopes" : [ "role_list", "saml_organization", "profile", "email", "roles", "web-origins", "acr", "basic", "groups" ],
|
|
"defaultOptionalClientScopes" : [ "offline_access", "address", "phone", "microprofile-jwt", "organization" ],
|
|
"browserSecurityHeaders" : {
|
|
"contentSecurityPolicyReportOnly" : "",
|
|
"xContentTypeOptions" : "nosniff",
|
|
"referrerPolicy" : "no-referrer",
|
|
"xRobotsTag" : "none",
|
|
"xFrameOptions" : "SAMEORIGIN",
|
|
"contentSecurityPolicy" : "frame-src 'self'; frame-ancestors 'self'; object-src 'none';",
|
|
"xXSSProtection" : "1; mode=block",
|
|
"strictTransportSecurity" : "max-age=31536000; includeSubDomains"
|
|
},
|
|
"smtpServer" : { },
|
|
"eventsEnabled" : false,
|
|
"eventsListeners" : [ "jboss-logging" ],
|
|
"enabledEventTypes" : [ ],
|
|
"adminEventsEnabled" : false,
|
|
"adminEventsDetailsEnabled" : false,
|
|
"identityProviders" : [ ],
|
|
"identityProviderMappers" : [ ],
|
|
"components" : {
|
|
"org.keycloak.services.clientregistration.policy.ClientRegistrationPolicy" : [ {
|
|
"id" : "f7b56bb7-ee46-4912-bf79-76f874f92095",
|
|
"name" : "Trusted Hosts",
|
|
"providerId" : "trusted-hosts",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"host-sending-registration-request-must-match" : [ "true" ],
|
|
"client-uris-must-match" : [ "true" ]
|
|
}
|
|
}, {
|
|
"id" : "0375f1bc-6c6a-4b27-b864-537d647c66b4",
|
|
"name" : "Allowed Protocol Mapper Types",
|
|
"providerId" : "allowed-protocol-mappers",
|
|
"subType" : "authenticated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allowed-protocol-mapper-types" : [ "oidc-address-mapper", "oidc-usermodel-attribute-mapper", "oidc-usermodel-property-mapper", "oidc-full-name-mapper", "oidc-sha256-pairwise-sub-mapper", "saml-role-list-mapper", "saml-user-attribute-mapper", "saml-user-property-mapper" ]
|
|
}
|
|
}, {
|
|
"id" : "c7f82732-8fd7-44aa-b7a5-ec84ee2652d0",
|
|
"name" : "Allowed Client Scopes",
|
|
"providerId" : "allowed-client-templates",
|
|
"subType" : "authenticated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allow-default-scopes" : [ "true" ]
|
|
}
|
|
}, {
|
|
"id" : "e5122d1c-694d-417a-a4a6-12781700b5e8",
|
|
"name" : "Full Scope Disabled",
|
|
"providerId" : "scope",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : { }
|
|
}, {
|
|
"id" : "79e50df5-e7e1-4ba0-91bd-e7ce626ab835",
|
|
"name" : "Consent Required",
|
|
"providerId" : "consent-required",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : { }
|
|
}, {
|
|
"id" : "0c3824b8-4161-4c15-8d23-62ce2f06bd85",
|
|
"name" : "Allowed Client Scopes",
|
|
"providerId" : "allowed-client-templates",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allow-default-scopes" : [ "true" ]
|
|
}
|
|
}, {
|
|
"id" : "aeecefcd-bc06-4121-a079-6741dca2ab34",
|
|
"name" : "Allowed Protocol Mapper Types",
|
|
"providerId" : "allowed-protocol-mappers",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allowed-protocol-mapper-types" : [ "saml-role-list-mapper", "saml-user-property-mapper", "oidc-usermodel-property-mapper", "saml-user-attribute-mapper", "oidc-address-mapper", "oidc-sha256-pairwise-sub-mapper", "oidc-usermodel-attribute-mapper", "oidc-full-name-mapper" ]
|
|
}
|
|
}, {
|
|
"id" : "7317ac11-224e-43c6-9c80-ef8f9d803083",
|
|
"name" : "Max Clients Limit",
|
|
"providerId" : "max-clients",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"max-clients" : [ "200" ]
|
|
}
|
|
} ],
|
|
"org.keycloak.keys.KeyProvider" : [ {
|
|
"id" : "7eb41893-2498-407b-b213-24a7bc0035dc",
|
|
"name" : "rsa-enc-generated",
|
|
"providerId" : "rsa-enc-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"privateKey" : [ "MIIEpAIBAAKCAQEAr/ruUmWO80WCJZ1cPhkgmM+wuNsApSXwBVQbDXjbNknzVSJyZZ4tvnXAx3Ud9RzgqW99e1U0Wt4McjwqTckV9XMFOAQ/6ozF4jTMAeObViTdgSjFfmuIlQeG6HlVthHfvweEvcZbopKnOacI4HGW1wxWpuWhMaHBp/aW9mp5eY0BFI7xq04uioqZF7o/AFyRSkGks+4quRNu5Y7qz62+m4Yb/5DziLUX905q7yxlXUoyrz4kCGkRCknV2LtJoWoF/mKSSqpslIRTes1DkLWK2vPfTFtmlWZ1QXrcfThBypxA4IMTqs4TziTMrnnks3LmhH06ZxtntUVpvwmOsUIB3wIDAQABAoIBAAYG5Yeb48/wFvt7zq9vw96H6mkCUxzU1koQbdbBx1wuHy/QvLM/PhjSRpZuK+b7pLQY1ebV7bOY/DsjVV2Rn/dmh4y6FIhPZu2O2lfMOEM0gwOL5mukeiqEdfnbQfS42v1bYA/xzaydMi32ywaIzV4zFXqkzab5/7xlZRkuX1eqzo8tEcr5d0tUwcz3NlHotYxLLq7nfbub/EX9h7a1sSaGC+9OGspuoKRvTfWbvtsGVDmiwE9a+E+PLGkZDL1Mo5kWzvj2BkNA+J2Qil+lnHd394IqtKQu082FDd3IJNQ6rl12dhkwosgm1x2bAgM8OWnQhNhiCBADJDSWJCkGmGkCgYEA1e8jBb4A00XrB27JnFcl7VZe2ybwZyAJ2MtveQR2BVwdCDgwYW19xhtQNhy8p4hHag1eJa0LBTX5pH/GgHrlbR/SeVBtVCn7lp5exB0adXEb5625Byq6sDiWN1E1CpCpQbM7gFvjFTJHDE2IIc37BP3ddiUDZ7zrRO4VLEESBRcCgYEA0pVL4A9gJSvd//v4wgNB/nTM8rcdg19bYNcjEi/iI92y0dBiGXy+aUp2fbbPuWj6bdjo9AXLAiGWoEso7ZvWyV/bT5RxiS+2FxNjnMy+JKGCxQU0KK6m+x1wjHC7AVle4jCp/9Db1AhvJKP+3UXRrv6P85pUoI6Kl9D43JLjdnkCgYAeXWDlMcDAPA5N8cWf8Saq9zVjebVpjbyYDtf1n1J5FEfyoLcNPRM7CSlrZMzKIqewP9F7G4KS7MRQOuqb1dW2lWu0WFwMNCFHkZb10wOsY6+IRLoccE4rMPzxQQ98PmgnsR7i6yfiHE7FSkPmOGxGmxnR6RMAqGnkUL6kl1/NZQKBgQDIfzlUxY7nFVMzbPa10mA9I3wXA93nvRzFoVBU+p43Q9gECIG+fpTUrv8ORsaUY608dS+nVvSovM4rJCR9xsjDxq6KoG1RDsoyQlWvbwkC23wklgXJTjDSGn+UV6jVaf/7IBZb6MHEqZsYqcP5bYZtNRZd++zjSZQPY/nuGTTVEQKBgQCpM7asFhHO/K9NsC+f3WLICvaY9X/wb09axIsFZZXTq+OWEBLYHX3nuCZ28HxCVQiao7qVB6EDO+eHj00FR7GvptWZ75Pd27v2k4uV340XpvVF936ebrFDDZEaP5qtpFuPw/twkD0b6c6gsAusiAvE0B96Qs/gkLTHdYi9LO0M3g==" ],
|
|
"keyUse" : [ "ENC" ],
|
|
"certificate" : [ "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" ],
|
|
"priority" : [ "100" ],
|
|
"algorithm" : [ "RSA-OAEP" ]
|
|
}
|
|
}, {
|
|
"id" : "9bc6ed4c-8ff9-410a-9f53-c4fc26845d95",
|
|
"name" : "hmac-generated-hs512",
|
|
"providerId" : "hmac-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"kid" : [ "c8209cbf-fd4d-4643-a809-aefd5bac28b1" ],
|
|
"secret" : [ "S9p7HtJQdlwwPTO6TZ5wKIhREz6WfxkWYGqKbpNa3yIF6NfG6aq32HVewlyH81IeFZ2bsueMB_HERyrkrC3m-wHqRD9I7ne4klH6FtbN6WaqL5zPoZ_wsQ8WeokIM9XcNTDI8irqK9mD9PiR93YlPyzKU1dMkntYV19bp8p1dl0" ],
|
|
"priority" : [ "100" ],
|
|
"algorithm" : [ "HS512" ]
|
|
}
|
|
}, {
|
|
"id" : "83817f35-13d6-4a16-8573-34b8705fdd78",
|
|
"name" : "aes-generated",
|
|
"providerId" : "aes-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"kid" : [ "2f3a43c8-1e98-4346-a96f-18e49d474065" ],
|
|
"secret" : [ "MMu204mWf4xAzlk1M0utDw" ],
|
|
"priority" : [ "100" ]
|
|
}
|
|
}, {
|
|
"id" : "4cc1f31c-f485-4099-a6c8-290b82c7d352",
|
|
"name" : "rsa-generated",
|
|
"providerId" : "rsa-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"privateKey" : [ "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" ],
|
|
"keyUse" : [ "SIG" ],
|
|
"certificate" : [ "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" ],
|
|
"priority" : [ "100" ]
|
|
}
|
|
} ]
|
|
},
|
|
"internationalizationEnabled" : false,
|
|
"supportedLocales" : [ ],
|
|
"authenticationFlows" : [ {
|
|
"id" : "16b39c4c-5cc7-46e9-a350-c2039b058ed4",
|
|
"alias" : "Account verification options",
|
|
"description" : "Method with which to verity the existing account",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "idp-email-verification",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Verify Existing Account by Re-authentication",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "e4af4a9e-a79a-4ee5-9e0b-e537492e6726",
|
|
"alias" : "Browser - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP is required for the authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "auth-otp-form",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "289228c9-fe98-4454-baed-a386dea0e9ae",
|
|
"alias" : "Browser - Conditional Organization",
|
|
"description" : "Flow to determine if the organization identity-first login is to be used",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "organization",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "0e90518c-1a07-4044-a5e2-92c15721f492",
|
|
"alias" : "Direct Grant - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP is required for the authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "direct-grant-validate-otp",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "166a5be4-24a7-4036-82a4-ff72d36f2311",
|
|
"alias" : "First Broker Login - Conditional Organization",
|
|
"description" : "Flow to determine if the authenticator that adds organization members is to be used",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "idp-add-organization-member",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "f5fdd2d6-944b-42e5-82f1-12e5096bbea3",
|
|
"alias" : "First broker login - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP is required for the authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "auth-otp-form",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "65478517-f009-4471-bc96-9af7bb908031",
|
|
"alias" : "Handle Existing Account",
|
|
"description" : "Handle what to do if there is existing account with same email/username like authenticated identity provider",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "idp-confirm-link",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Account verification options",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "0858c6da-d1d4-4306-b317-39f4d8904b99",
|
|
"alias" : "Organization",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Browser - Conditional Organization",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "d1f65ebb-4f9d-40ee-86d3-14709f72f247",
|
|
"alias" : "Reset - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP should be reset or not. Set to REQUIRED to force.",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "reset-otp",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "0550e96a-7cbf-4de6-abf7-34921cdefc62",
|
|
"alias" : "User creation or linking",
|
|
"description" : "Flow for the existing/non-existing user alternatives",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticatorConfig" : "create unique user config",
|
|
"authenticator" : "idp-create-user-if-unique",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Handle Existing Account",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "877d7227-5ba7-4f50-863c-f1e238bc3cee",
|
|
"alias" : "Verify Existing Account by Re-authentication",
|
|
"description" : "Reauthentication of existing account",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "idp-username-password-form",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "First broker login - Conditional OTP",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "3cccfd69-cc1c-4de7-be1a-0bf7ace223be",
|
|
"alias" : "browser",
|
|
"description" : "Browser based authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "auth-cookie",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "auth-spnego",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "DISABLED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "identity-provider-redirector",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 25,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 26,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Organization",
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 30,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "forms",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "83c13889-a6d7-4206-a263-877d5105a085",
|
|
"alias" : "clients",
|
|
"description" : "Base authentication for clients",
|
|
"providerId" : "client-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "client-secret",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "client-jwt",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "client-secret-jwt",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 30,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "client-x509",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 40,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "c2ed90ff-98ca-46af-9183-10ff2e2639fc",
|
|
"alias" : "direct grant",
|
|
"description" : "OpenID Connect Resource Owner Grant",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "direct-grant-validate-username",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "direct-grant-validate-password",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 30,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Direct Grant - Conditional OTP",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "182c4f5b-2fa8-4382-a2a1-0b2baecf65e9",
|
|
"alias" : "docker auth",
|
|
"description" : "Used by Docker clients to authenticate against the IDP",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "docker-http-basic-authenticator",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "7884b9b8-86c2-4cf4-86aa-45036a448cdb",
|
|
"alias" : "first broker login",
|
|
"description" : "Actions taken after first broker login with identity provider account, which is not yet linked to any Keycloak account",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticatorConfig" : "review profile config",
|
|
"authenticator" : "idp-review-profile",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "User creation or linking",
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 50,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "First Broker Login - Conditional Organization",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "14c02315-bc83-438d-9e8f-8dc80f5b2bd4",
|
|
"alias" : "forms",
|
|
"description" : "Username, password, otp and other auth forms.",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "auth-username-password-form",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Browser - Conditional OTP",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "ea67a192-a99b-4385-bbb3-899253e0f163",
|
|
"alias" : "registration",
|
|
"description" : "Registration flow",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "registration-page-form",
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "registration form",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "91c7b962-377d-4e8a-8c28-15014e76fa0f",
|
|
"alias" : "registration form",
|
|
"description" : "Registration form",
|
|
"providerId" : "form-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "registration-user-creation",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "registration-password-action",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 50,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "registration-recaptcha-action",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "DISABLED",
|
|
"priority" : 60,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "registration-terms-and-conditions",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "DISABLED",
|
|
"priority" : 70,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "ce5805b6-ef6f-4f13-9188-78c730fb8cf6",
|
|
"alias" : "reset credentials",
|
|
"description" : "Reset credentials for a user if they forgot their password or something",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "reset-credentials-choose-user",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "reset-credential-email",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "reset-password",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 30,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 40,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Reset - Conditional OTP",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "043d9c95-0903-484c-90ea-ebb9cc45a6a1",
|
|
"alias" : "saml ecp",
|
|
"description" : "SAML ECP Profile Authentication Flow",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "http-basic-authenticator",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
} ],
|
|
"authenticatorConfig" : [ {
|
|
"id" : "772e3653-9093-4276-8deb-fcb6107757a6",
|
|
"alias" : "create unique user config",
|
|
"config" : {
|
|
"require.password.update.after.registration" : "false"
|
|
}
|
|
}, {
|
|
"id" : "29d17f4e-2251-431e-b0f7-82bd25e4fad7",
|
|
"alias" : "review profile config",
|
|
"config" : {
|
|
"update.profile.on.first.login" : "missing"
|
|
}
|
|
} ],
|
|
"requiredActions" : [ {
|
|
"alias" : "CONFIGURE_TOTP",
|
|
"name" : "Configure OTP",
|
|
"providerId" : "CONFIGURE_TOTP",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 10,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "TERMS_AND_CONDITIONS",
|
|
"name" : "Terms and Conditions",
|
|
"providerId" : "TERMS_AND_CONDITIONS",
|
|
"enabled" : false,
|
|
"defaultAction" : false,
|
|
"priority" : 20,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "UPDATE_PASSWORD",
|
|
"name" : "Update Password",
|
|
"providerId" : "UPDATE_PASSWORD",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 30,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "UPDATE_PROFILE",
|
|
"name" : "Update Profile",
|
|
"providerId" : "UPDATE_PROFILE",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 40,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "VERIFY_EMAIL",
|
|
"name" : "Verify Email",
|
|
"providerId" : "VERIFY_EMAIL",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 50,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "delete_account",
|
|
"name" : "Delete Account",
|
|
"providerId" : "delete_account",
|
|
"enabled" : false,
|
|
"defaultAction" : false,
|
|
"priority" : 60,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "webauthn-register",
|
|
"name" : "Webauthn Register",
|
|
"providerId" : "webauthn-register",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 70,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "webauthn-register-passwordless",
|
|
"name" : "Webauthn Register Passwordless",
|
|
"providerId" : "webauthn-register-passwordless",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 80,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "VERIFY_PROFILE",
|
|
"name" : "Verify Profile",
|
|
"providerId" : "VERIFY_PROFILE",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 90,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "delete_credential",
|
|
"name" : "Delete Credential",
|
|
"providerId" : "delete_credential",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 100,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "update_user_locale",
|
|
"name" : "Update User Locale",
|
|
"providerId" : "update_user_locale",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 1000,
|
|
"config" : { }
|
|
} ],
|
|
"browserFlow" : "browser",
|
|
"registrationFlow" : "registration",
|
|
"directGrantFlow" : "direct grant",
|
|
"resetCredentialsFlow" : "reset credentials",
|
|
"clientAuthenticationFlow" : "clients",
|
|
"dockerAuthenticationFlow" : "docker auth",
|
|
"firstBrokerLoginFlow" : "first broker login",
|
|
"attributes" : {
|
|
"cibaBackchannelTokenDeliveryMode" : "poll",
|
|
"cibaExpiresIn" : "120",
|
|
"cibaAuthRequestedUserHint" : "login_hint",
|
|
"oauth2DeviceCodeLifespan" : "600",
|
|
"oauth2DevicePollingInterval" : "5",
|
|
"parRequestUriLifespan" : "60",
|
|
"cibaInterval" : "5",
|
|
"realmReusableOtpCode" : "false"
|
|
},
|
|
"keycloakVersion" : "26.0.0",
|
|
"userManagedAccessAllowed" : false,
|
|
"organizationsEnabled" : false,
|
|
"clientProfiles" : {
|
|
"profiles" : [ ]
|
|
},
|
|
"clientPolicies" : {
|
|
"policies" : [ ]
|
|
}
|
|
}
|
|
kind: ConfigMap
|
|
metadata:
|
|
name: keycloak-realm-templates-k8s
|
|
namespace: keycloak
|