1852 lines
No EOL
68 KiB
JSON
1852 lines
No EOL
68 KiB
JSON
{
|
|
"id" : "283696f6-780d-4890-8a65-7e192cfa74c5",
|
|
"realm" : "testing",
|
|
"notBefore" : 0,
|
|
"defaultSignatureAlgorithm" : "RS256",
|
|
"revokeRefreshToken" : false,
|
|
"refreshTokenMaxReuse" : 0,
|
|
"accessTokenLifespan" : 300,
|
|
"accessTokenLifespanForImplicitFlow" : 900,
|
|
"ssoSessionIdleTimeout" : 1800,
|
|
"ssoSessionMaxLifespan" : 36000,
|
|
"ssoSessionIdleTimeoutRememberMe" : 0,
|
|
"ssoSessionMaxLifespanRememberMe" : 0,
|
|
"offlineSessionIdleTimeout" : 2592000,
|
|
"offlineSessionMaxLifespanEnabled" : false,
|
|
"offlineSessionMaxLifespan" : 5184000,
|
|
"clientSessionIdleTimeout" : 0,
|
|
"clientSessionMaxLifespan" : 0,
|
|
"clientOfflineSessionIdleTimeout" : 0,
|
|
"clientOfflineSessionMaxLifespan" : 0,
|
|
"accessCodeLifespan" : 60,
|
|
"accessCodeLifespanUserAction" : 300,
|
|
"accessCodeLifespanLogin" : 1800,
|
|
"actionTokenGeneratedByAdminLifespan" : 43200,
|
|
"actionTokenGeneratedByUserLifespan" : 300,
|
|
"oauth2DeviceCodeLifespan" : 600,
|
|
"oauth2DevicePollingInterval" : 5,
|
|
"enabled" : true,
|
|
"sslRequired" : "external",
|
|
"registrationAllowed" : false,
|
|
"registrationEmailAsUsername" : false,
|
|
"rememberMe" : false,
|
|
"verifyEmail" : false,
|
|
"loginWithEmailAllowed" : true,
|
|
"duplicateEmailsAllowed" : false,
|
|
"resetPasswordAllowed" : false,
|
|
"editUsernameAllowed" : false,
|
|
"bruteForceProtected" : false,
|
|
"permanentLockout" : false,
|
|
"maxTemporaryLockouts" : 0,
|
|
"maxFailureWaitSeconds" : 900,
|
|
"minimumQuickLoginWaitSeconds" : 60,
|
|
"waitIncrementSeconds" : 60,
|
|
"quickLoginCheckMilliSeconds" : 1000,
|
|
"maxDeltaTimeSeconds" : 43200,
|
|
"failureFactor" : 30,
|
|
"roles" : {
|
|
"realm" : [ {
|
|
"id" : "d3b184da-eed5-4a08-8a41-62dfc0abd6b0",
|
|
"name" : "default-roles-testing",
|
|
"description" : "${role_default-roles}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"realm" : [ "offline_access", "uma_authorization" ],
|
|
"client" : {
|
|
"account" : [ "view-profile", "manage-account" ]
|
|
}
|
|
},
|
|
"clientRole" : false,
|
|
"containerId" : "283696f6-780d-4890-8a65-7e192cfa74c5",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "0028b58a-28ee-4d59-8b37-781bf9add362",
|
|
"name" : "uma_authorization",
|
|
"description" : "${role_uma_authorization}",
|
|
"composite" : false,
|
|
"clientRole" : false,
|
|
"containerId" : "283696f6-780d-4890-8a65-7e192cfa74c5",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "2c8ae289-2c34-4e28-9cda-b92b1a38429a",
|
|
"name" : "offline_access",
|
|
"description" : "${role_offline-access}",
|
|
"composite" : false,
|
|
"clientRole" : false,
|
|
"containerId" : "283696f6-780d-4890-8a65-7e192cfa74c5",
|
|
"attributes" : { }
|
|
} ],
|
|
"client" : {
|
|
"realm-management" : [ {
|
|
"id" : "be0a44ce-3b1d-46df-85f6-7fbdc7c6d0d3",
|
|
"name" : "manage-events",
|
|
"description" : "${role_manage-events}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b9c36286-10db-4519-b227-390087b36f15",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "8f7500d9-c4d7-4cef-840c-7bd13d6ee374",
|
|
"name" : "impersonation",
|
|
"description" : "${role_impersonation}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b9c36286-10db-4519-b227-390087b36f15",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "f616a8c0-79dd-4548-b4e6-242e7761ece7",
|
|
"name" : "view-realm",
|
|
"description" : "${role_view-realm}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b9c36286-10db-4519-b227-390087b36f15",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "074d656c-4f80-41a0-94df-bd3afdfcfe6a",
|
|
"name" : "realm-admin",
|
|
"description" : "${role_realm-admin}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"realm-management" : [ "manage-events", "impersonation", "view-realm", "view-identity-providers", "view-users", "query-groups", "create-client", "view-events", "manage-realm", "view-authorization", "query-clients", "view-clients", "query-users", "manage-authorization", "manage-identity-providers", "manage-clients", "manage-users", "query-realms" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "b9c36286-10db-4519-b227-390087b36f15",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "2f3bca1f-e1aa-4e0e-8df4-b6f78e2f8809",
|
|
"name" : "view-identity-providers",
|
|
"description" : "${role_view-identity-providers}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b9c36286-10db-4519-b227-390087b36f15",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "fff22e07-bd93-4268-924b-54a2c7e1ab23",
|
|
"name" : "query-groups",
|
|
"description" : "${role_query-groups}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b9c36286-10db-4519-b227-390087b36f15",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "190d5566-b13d-4125-ae01-79341b4c9eeb",
|
|
"name" : "view-users",
|
|
"description" : "${role_view-users}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"realm-management" : [ "query-groups", "query-users" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "b9c36286-10db-4519-b227-390087b36f15",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "73afbdbb-4757-44e1-bc61-113389fd8c44",
|
|
"name" : "create-client",
|
|
"description" : "${role_create-client}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b9c36286-10db-4519-b227-390087b36f15",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "30b062ea-fa57-4268-a0c9-f9e1560920d3",
|
|
"name" : "view-events",
|
|
"description" : "${role_view-events}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b9c36286-10db-4519-b227-390087b36f15",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "607c750a-9292-4e40-a8fe-ba2e22553491",
|
|
"name" : "manage-realm",
|
|
"description" : "${role_manage-realm}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b9c36286-10db-4519-b227-390087b36f15",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "7954ffe3-9a52-4689-9f1e-9671a198b5a2",
|
|
"name" : "view-authorization",
|
|
"description" : "${role_view-authorization}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b9c36286-10db-4519-b227-390087b36f15",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "8dbf12fa-dc07-46e4-9163-521bd5dbd946",
|
|
"name" : "query-clients",
|
|
"description" : "${role_query-clients}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b9c36286-10db-4519-b227-390087b36f15",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "f6dd66d5-b41f-4881-a1f9-6608205ded89",
|
|
"name" : "view-clients",
|
|
"description" : "${role_view-clients}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"realm-management" : [ "query-clients" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "b9c36286-10db-4519-b227-390087b36f15",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "f9b2ba78-b1de-4387-b2fc-7d01a7dee315",
|
|
"name" : "query-users",
|
|
"description" : "${role_query-users}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b9c36286-10db-4519-b227-390087b36f15",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "1822b3fe-b22e-4c64-87d9-a8ce85180d0e",
|
|
"name" : "manage-authorization",
|
|
"description" : "${role_manage-authorization}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b9c36286-10db-4519-b227-390087b36f15",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "bfe50723-5914-4aed-b702-13130558af97",
|
|
"name" : "manage-identity-providers",
|
|
"description" : "${role_manage-identity-providers}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b9c36286-10db-4519-b227-390087b36f15",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "3c54f1f6-eb25-441c-b2b3-bdd365ebe29e",
|
|
"name" : "manage-clients",
|
|
"description" : "${role_manage-clients}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b9c36286-10db-4519-b227-390087b36f15",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "7a3607e4-ed06-4206-a1ee-a4dacf1852b2",
|
|
"name" : "manage-users",
|
|
"description" : "${role_manage-users}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b9c36286-10db-4519-b227-390087b36f15",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "d0f894c3-06ea-4cc3-b64a-fd6b883ca3fe",
|
|
"name" : "query-realms",
|
|
"description" : "${role_query-realms}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b9c36286-10db-4519-b227-390087b36f15",
|
|
"attributes" : { }
|
|
} ],
|
|
"security-admin-console" : [ ],
|
|
"admin-cli" : [ ],
|
|
"account-console" : [ ],
|
|
"hmdooris" : [ ],
|
|
"broker" : [ {
|
|
"id" : "2c1fa729-ee23-45d5-bc8d-5442477880a4",
|
|
"name" : "read-token",
|
|
"description" : "${role_read-token}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "4211a95c-1770-4428-ae98-72d76edbdd9d",
|
|
"attributes" : { }
|
|
} ],
|
|
"account" : [ {
|
|
"id" : "993d010f-7e10-4df6-813c-3c582975f3d9",
|
|
"name" : "view-applications",
|
|
"description" : "${role_view-applications}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "bf250b98-8fdb-4ac9-9891-920814dc6d2d",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "6a03831f-8bc7-470f-9e5b-defebfd92355",
|
|
"name" : "view-profile",
|
|
"description" : "${role_view-profile}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "bf250b98-8fdb-4ac9-9891-920814dc6d2d",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "e3f22b47-fc36-4c60-9444-531b1433d4f1",
|
|
"name" : "manage-account-links",
|
|
"description" : "${role_manage-account-links}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "bf250b98-8fdb-4ac9-9891-920814dc6d2d",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "f48205e5-8d8d-4a99-ba08-fda0c4e64a7c",
|
|
"name" : "manage-consent",
|
|
"description" : "${role_manage-consent}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"account" : [ "view-consent" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "bf250b98-8fdb-4ac9-9891-920814dc6d2d",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "7b90a765-39a2-48c0-b91f-a3bbf55498d5",
|
|
"name" : "manage-account",
|
|
"description" : "${role_manage-account}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"account" : [ "manage-account-links" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "bf250b98-8fdb-4ac9-9891-920814dc6d2d",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "d42a51a9-08cd-462e-9828-18689b935f3e",
|
|
"name" : "view-consent",
|
|
"description" : "${role_view-consent}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "bf250b98-8fdb-4ac9-9891-920814dc6d2d",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "13fda320-2bb9-4cdd-97ce-17a0de17f50f",
|
|
"name" : "delete-account",
|
|
"description" : "${role_delete-account}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "bf250b98-8fdb-4ac9-9891-920814dc6d2d",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "9aa7dc81-6129-43fc-874a-c12f0b459fb8",
|
|
"name" : "view-groups",
|
|
"description" : "${role_view-groups}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "bf250b98-8fdb-4ac9-9891-920814dc6d2d",
|
|
"attributes" : { }
|
|
} ]
|
|
}
|
|
},
|
|
"groups" : [ {
|
|
"id" : "2bae22ec-e550-459b-8072-c6f8042a41e7",
|
|
"name" : "lock",
|
|
"path" : "/lock",
|
|
"subGroups" : [ ],
|
|
"attributes" : { },
|
|
"realmRoles" : [ ],
|
|
"clientRoles" : { }
|
|
} ],
|
|
"defaultRole" : {
|
|
"id" : "d3b184da-eed5-4a08-8a41-62dfc0abd6b0",
|
|
"name" : "default-roles-testing",
|
|
"description" : "${role_default-roles}",
|
|
"composite" : true,
|
|
"clientRole" : false,
|
|
"containerId" : "283696f6-780d-4890-8a65-7e192cfa74c5"
|
|
},
|
|
"requiredCredentials" : [ "password" ],
|
|
"otpPolicyType" : "totp",
|
|
"otpPolicyAlgorithm" : "HmacSHA1",
|
|
"otpPolicyInitialCounter" : 0,
|
|
"otpPolicyDigits" : 6,
|
|
"otpPolicyLookAheadWindow" : 1,
|
|
"otpPolicyPeriod" : 30,
|
|
"otpPolicyCodeReusable" : false,
|
|
"otpSupportedApplications" : [ "totpAppFreeOTPName", "totpAppGoogleName", "totpAppMicrosoftAuthenticatorName" ],
|
|
"localizationTexts" : { },
|
|
"webAuthnPolicyRpEntityName" : "keycloak",
|
|
"webAuthnPolicySignatureAlgorithms" : [ "ES256" ],
|
|
"webAuthnPolicyRpId" : "",
|
|
"webAuthnPolicyAttestationConveyancePreference" : "not specified",
|
|
"webAuthnPolicyAuthenticatorAttachment" : "not specified",
|
|
"webAuthnPolicyRequireResidentKey" : "not specified",
|
|
"webAuthnPolicyUserVerificationRequirement" : "not specified",
|
|
"webAuthnPolicyCreateTimeout" : 0,
|
|
"webAuthnPolicyAvoidSameAuthenticatorRegister" : false,
|
|
"webAuthnPolicyAcceptableAaguids" : [ ],
|
|
"webAuthnPolicyExtraOrigins" : [ ],
|
|
"webAuthnPolicyPasswordlessRpEntityName" : "keycloak",
|
|
"webAuthnPolicyPasswordlessSignatureAlgorithms" : [ "ES256" ],
|
|
"webAuthnPolicyPasswordlessRpId" : "",
|
|
"webAuthnPolicyPasswordlessAttestationConveyancePreference" : "not specified",
|
|
"webAuthnPolicyPasswordlessAuthenticatorAttachment" : "not specified",
|
|
"webAuthnPolicyPasswordlessRequireResidentKey" : "not specified",
|
|
"webAuthnPolicyPasswordlessUserVerificationRequirement" : "not specified",
|
|
"webAuthnPolicyPasswordlessCreateTimeout" : 0,
|
|
"webAuthnPolicyPasswordlessAvoidSameAuthenticatorRegister" : false,
|
|
"webAuthnPolicyPasswordlessAcceptableAaguids" : [ ],
|
|
"webAuthnPolicyPasswordlessExtraOrigins" : [ ],
|
|
"users" : [ {
|
|
"id" : "7bead588-af9b-43fb-8fcd-45fed85b61b4",
|
|
"username" : "tony",
|
|
"firstName" : "tony",
|
|
"lastName" : "tester",
|
|
"email" : "tony@example.com",
|
|
"emailVerified" : false,
|
|
"createdTimestamp" : 1747830640281,
|
|
"enabled" : true,
|
|
"totp" : false,
|
|
"credentials" : [ {
|
|
"id" : "b3f319ce-6045-4fd8-8dcf-d903399be142",
|
|
"type" : "password",
|
|
"userLabel" : "My password",
|
|
"createdDate" : 1747830652713,
|
|
"secretData" : "{\"value\":\"r3z1NMVED9Nh5qvXbmScDHosExHsbNSbjUA/Nole3WLX2y20OlnrYgftskv3g5Uhnm9pyk9M4fxhCmeHUZqxSg==\",\"salt\":\"C27wuLaAurUfpFan6um7gw==\",\"additionalParameters\":{}}",
|
|
"credentialData" : "{\"hashIterations\":210000,\"algorithm\":\"pbkdf2-sha512\",\"additionalParameters\":{}}"
|
|
} ],
|
|
"disableableCredentialTypes" : [ ],
|
|
"requiredActions" : [ ],
|
|
"realmRoles" : [ "default-roles-testing" ],
|
|
"notBefore" : 0,
|
|
"groups" : [ "/lock" ]
|
|
} ],
|
|
"scopeMappings" : [ {
|
|
"clientScope" : "offline_access",
|
|
"roles" : [ "offline_access" ]
|
|
} ],
|
|
"clientScopeMappings" : {
|
|
"account" : [ {
|
|
"client" : "account-console",
|
|
"roles" : [ "manage-account", "view-groups" ]
|
|
} ]
|
|
},
|
|
"clients" : [ {
|
|
"id" : "bf250b98-8fdb-4ac9-9891-920814dc6d2d",
|
|
"clientId" : "account",
|
|
"name" : "${client_account}",
|
|
"rootUrl" : "${authBaseUrl}",
|
|
"baseUrl" : "/realms/testing/account/",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ "/realms/testing/account/*" ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"post.logout.redirect.uris" : "+"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "acr", "roles", "profile", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "f6372ead-45ce-450d-b065-beb0d0fcd68e",
|
|
"clientId" : "account-console",
|
|
"name" : "${client_account-console}",
|
|
"rootUrl" : "${authBaseUrl}",
|
|
"baseUrl" : "/realms/testing/account/",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ "/realms/testing/account/*" ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"post.logout.redirect.uris" : "+",
|
|
"pkce.code.challenge.method" : "S256"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"protocolMappers" : [ {
|
|
"id" : "3c4dbe20-31a0-4e15-99ca-4a7447c5be92",
|
|
"name" : "audience resolve",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-audience-resolve-mapper",
|
|
"consentRequired" : false,
|
|
"config" : { }
|
|
} ],
|
|
"defaultClientScopes" : [ "web-origins", "acr", "roles", "profile", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "46714cfb-c2c3-478f-8108-751f4eb4f4e2",
|
|
"clientId" : "admin-cli",
|
|
"name" : "${client_admin-cli}",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : false,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : true,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : { },
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "acr", "roles", "profile", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "4211a95c-1770-4428-ae98-72d76edbdd9d",
|
|
"clientId" : "broker",
|
|
"name" : "${client_broker}",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : true,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : false,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : { },
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "acr", "roles", "profile", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "446321c5-83f4-489d-b15a-eebf7537415a",
|
|
"clientId" : "hmdooris",
|
|
"name" : "hmdooris",
|
|
"description" : "",
|
|
"rootUrl" : "http://localhost:3000",
|
|
"adminUrl" : "http://localhost:3000",
|
|
"baseUrl" : "",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"secret" : "8p21riiYPDEhpgRh2rgRDNu9uWVZ9KRj",
|
|
"redirectUris" : [ "*" ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : true,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : false,
|
|
"frontchannelLogout" : true,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"oidc.ciba.grant.enabled" : "false",
|
|
"oauth2.device.authorization.grant.enabled" : "false",
|
|
"client.secret.creation.time" : "1747830598",
|
|
"backchannel.logout.session.required" : "true",
|
|
"backchannel.logout.revoke.offline.tokens" : "false"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : true,
|
|
"nodeReRegistrationTimeout" : -1,
|
|
"defaultClientScopes" : [ "web-origins", "acr", "roles", "profile", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "b9c36286-10db-4519-b227-390087b36f15",
|
|
"clientId" : "realm-management",
|
|
"name" : "${client_realm-management}",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : true,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : false,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : { },
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "acr", "roles", "profile", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "bc3978f8-8581-4b48-82b5-90132502fea4",
|
|
"clientId" : "security-admin-console",
|
|
"name" : "${client_security-admin-console}",
|
|
"rootUrl" : "${authAdminUrl}",
|
|
"baseUrl" : "/admin/testing/console/",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ "/admin/testing/console/*" ],
|
|
"webOrigins" : [ "+" ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"post.logout.redirect.uris" : "+",
|
|
"pkce.code.challenge.method" : "S256"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"protocolMappers" : [ {
|
|
"id" : "ed72b12f-51da-4f9b-9a36-54a59105401c",
|
|
"name" : "locale",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "locale",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "locale",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ],
|
|
"defaultClientScopes" : [ "web-origins", "acr", "roles", "profile", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
} ],
|
|
"clientScopes" : [ {
|
|
"id" : "a50e8251-0a9c-46b3-9484-a846b8d57499",
|
|
"name" : "role_list",
|
|
"description" : "SAML role list",
|
|
"protocol" : "saml",
|
|
"attributes" : {
|
|
"consent.screen.text" : "${samlRoleListScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "c4087d28-b038-433d-939d-3d2a9615a746",
|
|
"name" : "role list",
|
|
"protocol" : "saml",
|
|
"protocolMapper" : "saml-role-list-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"single" : "false",
|
|
"attribute.nameformat" : "Basic",
|
|
"attribute.name" : "Role"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "17638c9f-c31c-49fc-9b4f-cbd555c18000",
|
|
"name" : "address",
|
|
"description" : "OpenID Connect built-in scope: address",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "true",
|
|
"consent.screen.text" : "${addressScopeConsentText}"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "55e9c0da-2f9a-4298-9076-f9d1599233dd",
|
|
"name" : "address",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-address-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"user.attribute.formatted" : "formatted",
|
|
"user.attribute.country" : "country",
|
|
"introspection.token.claim" : "true",
|
|
"user.attribute.postal_code" : "postal_code",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute.street" : "street",
|
|
"id.token.claim" : "true",
|
|
"user.attribute.region" : "region",
|
|
"access.token.claim" : "true",
|
|
"user.attribute.locality" : "locality"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "b24a3e58-58a9-461d-b9d2-6ee4405732be",
|
|
"name" : "microprofile-jwt",
|
|
"description" : "Microprofile - JWT built-in scope",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "false"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "2dc814ed-41fe-4177-8c49-04ef549ff68e",
|
|
"name" : "upn",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "username",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "upn",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "097734ec-df19-4872-800a-d5d9ad94dfde",
|
|
"name" : "groups",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-realm-role-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"multivalued" : "true",
|
|
"user.attribute" : "foo",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "groups",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "883e0c72-4ad4-4c38-86e5-5b42bf8d6dca",
|
|
"name" : "roles",
|
|
"description" : "OpenID Connect scope for add user roles to the access token",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "false",
|
|
"display.on.consent.screen" : "true",
|
|
"consent.screen.text" : "${rolesScopeConsentText}"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "b546faee-882a-4354-aa27-b76e1fc838b5",
|
|
"name" : "audience resolve",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-audience-resolve-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true"
|
|
}
|
|
}, {
|
|
"id" : "aae1ed0b-dd0f-496f-a199-e67a8b3a11c6",
|
|
"name" : "realm roles",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-realm-role-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"multivalued" : "true",
|
|
"user.attribute" : "foo",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "realm_access.roles",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "91196313-898d-4da6-9706-2da0ec5a7b2c",
|
|
"name" : "client roles",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-client-role-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"multivalued" : "true",
|
|
"user.attribute" : "foo",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "resource_access.${client_id}.roles",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "6c8f7942-8076-4696-a36a-53c4ae448905",
|
|
"name" : "web-origins",
|
|
"description" : "OpenID Connect scope for add allowed web origins to the access token",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "false",
|
|
"display.on.consent.screen" : "false",
|
|
"consent.screen.text" : ""
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "421f475e-fc63-4750-8782-6e90e1629766",
|
|
"name" : "allowed web origins",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-allowed-origins-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "a0090bb8-8b91-4db9-b86d-1e80131634cc",
|
|
"name" : "phone",
|
|
"description" : "OpenID Connect built-in scope: phone",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "true",
|
|
"consent.screen.text" : "${phoneScopeConsentText}"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "97ee5a22-156d-488e-9639-ad4d2340fd2f",
|
|
"name" : "phone number verified",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "phoneNumberVerified",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "phone_number_verified",
|
|
"jsonType.label" : "boolean"
|
|
}
|
|
}, {
|
|
"id" : "72348642-14f9-4189-aeec-100d53b7842e",
|
|
"name" : "phone number",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "phoneNumber",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "phone_number",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "0ae95094-14b6-4112-959c-ab49d95c0645",
|
|
"name" : "email",
|
|
"description" : "OpenID Connect built-in scope: email",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "true",
|
|
"consent.screen.text" : "${emailScopeConsentText}"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "406a9f13-cf2c-490d-aeff-99d782707628",
|
|
"name" : "email",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "email",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "email",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "c623b989-e0e8-4f4e-ac43-8c2160220ceb",
|
|
"name" : "email verified",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-property-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "emailVerified",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "email_verified",
|
|
"jsonType.label" : "boolean"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "ad90a285-28a7-4d8f-b514-06c3d060f3a2",
|
|
"name" : "profile",
|
|
"description" : "OpenID Connect built-in scope: profile",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "true",
|
|
"consent.screen.text" : "${profileScopeConsentText}"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "3fba9b10-4877-4178-9b23-53cdfa006ab0",
|
|
"name" : "locale",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "locale",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "locale",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "0bef132f-59ec-4edb-971a-e11c790af637",
|
|
"name" : "full name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-full-name-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"id.token.claim" : "true",
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"userinfo.token.claim" : "true"
|
|
}
|
|
}, {
|
|
"id" : "5d4d42dd-a5c2-4260-bc32-f71caa88ebd9",
|
|
"name" : "given name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "firstName",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "given_name",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "f91597bb-b333-45b6-888d-0de05deadacf",
|
|
"name" : "middle name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "middleName",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "middle_name",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "291d2d21-083c-414c-bd0b-7a234622deb1",
|
|
"name" : "birthdate",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "birthdate",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "birthdate",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "a34de18f-da84-4934-9c64-914a18bd2899",
|
|
"name" : "gender",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "gender",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "gender",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "004e060a-a72b-4ee2-b33c-af40256cfa3b",
|
|
"name" : "updated at",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "updatedAt",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "updated_at",
|
|
"jsonType.label" : "long"
|
|
}
|
|
}, {
|
|
"id" : "cb148a74-5654-4c44-b71a-627c66a7f671",
|
|
"name" : "username",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "username",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "preferred_username",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "963d497a-7c9f-4f98-822a-b9cf0f945163",
|
|
"name" : "zoneinfo",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "zoneinfo",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "zoneinfo",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "2cfabed6-a010-45fd-a301-3d9a6decc7eb",
|
|
"name" : "website",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "website",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "website",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "b11f35ab-45de-4792-a75d-0c52e7e8e3ed",
|
|
"name" : "picture",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "picture",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "picture",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "8343c89c-4676-4846-a37c-e71d89db1b4b",
|
|
"name" : "profile",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "profile",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "profile",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "cb47e9e2-14c1-4d3e-9324-ab926ffa92a2",
|
|
"name" : "nickname",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "nickname",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "nickname",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "16f436c3-8527-489e-85ba-f5aba30f1039",
|
|
"name" : "family name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "lastName",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "family_name",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "dec27383-06b8-4d3e-8535-70c84c2cd403",
|
|
"name" : "acr",
|
|
"description" : "OpenID Connect scope for add acr (authentication context class reference) to the token",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "false",
|
|
"display.on.consent.screen" : "false"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "289a49c5-bc8a-46ed-87d7-fa0e7a991c2d",
|
|
"name" : "acr loa level",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-acr-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"id.token.claim" : "true",
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "50e9e2a6-1156-44ef-a45b-e41a6d4eb5f3",
|
|
"name" : "offline_access",
|
|
"description" : "OpenID Connect built-in scope: offline_access",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"consent.screen.text" : "${offlineAccessScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
}
|
|
} ],
|
|
"defaultDefaultClientScopes" : [ "role_list", "profile", "email", "roles", "web-origins", "acr" ],
|
|
"defaultOptionalClientScopes" : [ "offline_access", "address", "phone", "microprofile-jwt" ],
|
|
"browserSecurityHeaders" : {
|
|
"contentSecurityPolicyReportOnly" : "",
|
|
"xContentTypeOptions" : "nosniff",
|
|
"referrerPolicy" : "no-referrer",
|
|
"xRobotsTag" : "none",
|
|
"xFrameOptions" : "SAMEORIGIN",
|
|
"contentSecurityPolicy" : "frame-src 'self'; frame-ancestors 'self'; object-src 'none';",
|
|
"xXSSProtection" : "1; mode=block",
|
|
"strictTransportSecurity" : "max-age=31536000; includeSubDomains"
|
|
},
|
|
"smtpServer" : { },
|
|
"eventsEnabled" : false,
|
|
"eventsListeners" : [ "jboss-logging" ],
|
|
"enabledEventTypes" : [ ],
|
|
"adminEventsEnabled" : false,
|
|
"adminEventsDetailsEnabled" : false,
|
|
"identityProviders" : [ ],
|
|
"identityProviderMappers" : [ ],
|
|
"components" : {
|
|
"org.keycloak.services.clientregistration.policy.ClientRegistrationPolicy" : [ {
|
|
"id" : "9e3e0b8f-807c-4c5a-ada5-7080cd66ac74",
|
|
"name" : "Max Clients Limit",
|
|
"providerId" : "max-clients",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"max-clients" : [ "200" ]
|
|
}
|
|
}, {
|
|
"id" : "e30bfbfa-56c8-437f-ae9f-d56489e433ea",
|
|
"name" : "Consent Required",
|
|
"providerId" : "consent-required",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : { }
|
|
}, {
|
|
"id" : "b3cc910f-0971-4461-9a1c-d8632485119d",
|
|
"name" : "Allowed Protocol Mapper Types",
|
|
"providerId" : "allowed-protocol-mappers",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allowed-protocol-mapper-types" : [ "saml-user-attribute-mapper", "oidc-full-name-mapper", "oidc-usermodel-property-mapper", "oidc-sha256-pairwise-sub-mapper", "saml-role-list-mapper", "saml-user-property-mapper", "oidc-usermodel-attribute-mapper", "oidc-address-mapper" ]
|
|
}
|
|
}, {
|
|
"id" : "b8b89d83-865c-40b5-b40d-111d48ac1921",
|
|
"name" : "Full Scope Disabled",
|
|
"providerId" : "scope",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : { }
|
|
}, {
|
|
"id" : "f62bd168-5014-449c-8b10-0d0a47ae2ef8",
|
|
"name" : "Allowed Protocol Mapper Types",
|
|
"providerId" : "allowed-protocol-mappers",
|
|
"subType" : "authenticated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allowed-protocol-mapper-types" : [ "oidc-usermodel-property-mapper", "saml-role-list-mapper", "oidc-full-name-mapper", "oidc-address-mapper", "oidc-usermodel-attribute-mapper", "oidc-sha256-pairwise-sub-mapper", "saml-user-attribute-mapper", "saml-user-property-mapper" ]
|
|
}
|
|
}, {
|
|
"id" : "88990683-015e-4c8c-8424-7ab6eef4a43f",
|
|
"name" : "Trusted Hosts",
|
|
"providerId" : "trusted-hosts",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"host-sending-registration-request-must-match" : [ "true" ],
|
|
"client-uris-must-match" : [ "true" ]
|
|
}
|
|
}, {
|
|
"id" : "e1d84cba-86ac-4a1e-8478-3df2572fc300",
|
|
"name" : "Allowed Client Scopes",
|
|
"providerId" : "allowed-client-templates",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allow-default-scopes" : [ "true" ]
|
|
}
|
|
}, {
|
|
"id" : "0e06da9a-c9db-4471-a159-9a7ef3de8db2",
|
|
"name" : "Allowed Client Scopes",
|
|
"providerId" : "allowed-client-templates",
|
|
"subType" : "authenticated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allow-default-scopes" : [ "true" ]
|
|
}
|
|
} ],
|
|
"org.keycloak.keys.KeyProvider" : [ {
|
|
"id" : "ea8b7cf1-90da-4160-95a6-6845812a4a8e",
|
|
"name" : "aes-generated",
|
|
"providerId" : "aes-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"kid" : [ "b924f7b2-34dd-4b2c-8642-2b1d6be21007" ],
|
|
"secret" : [ "Zt3vjkoPXyp7qJcEWYuE8A" ],
|
|
"priority" : [ "100" ]
|
|
}
|
|
}, {
|
|
"id" : "a53ac21b-584e-47a6-989d-484a2f2ceef7",
|
|
"name" : "hmac-generated-hs512",
|
|
"providerId" : "hmac-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"kid" : [ "846d5262-8c71-4044-9138-911bf12c608d" ],
|
|
"secret" : [ "S-AA8-X-TJKxaW3PP5AsRreinjGkIXtQgfIPrVCHWuWNT5xs0VE9AnA2Oa802MXxV5w35CUhFVEKVlrkKuj-4n2T1d0nu4yWI0xGqDfuTYX8egJl20KlO6WtqxQKmMVqBuIIDH8WXWJasTTFht9hnEmHI0G6-rjKi91miy2XyhQ" ],
|
|
"priority" : [ "100" ],
|
|
"algorithm" : [ "HS512" ]
|
|
}
|
|
}, {
|
|
"id" : "6739ae6c-38a4-408f-aa27-ee5850835df3",
|
|
"name" : "rsa-generated",
|
|
"providerId" : "rsa-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"privateKey" : [ "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" ],
|
|
"keyUse" : [ "SIG" ],
|
|
"certificate" : [ "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" ],
|
|
"priority" : [ "100" ]
|
|
}
|
|
}, {
|
|
"id" : "8767ddd9-99af-4864-ab00-9b6e50e8b281",
|
|
"name" : "rsa-enc-generated",
|
|
"providerId" : "rsa-enc-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"privateKey" : [ "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" ],
|
|
"keyUse" : [ "ENC" ],
|
|
"certificate" : [ "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" ],
|
|
"priority" : [ "100" ],
|
|
"algorithm" : [ "RSA-OAEP" ]
|
|
}
|
|
} ]
|
|
},
|
|
"internationalizationEnabled" : false,
|
|
"supportedLocales" : [ ],
|
|
"authenticationFlows" : [ {
|
|
"id" : "063482e8-cabc-4966-aa6c-92074f3221be",
|
|
"alias" : "Account verification options",
|
|
"description" : "Method with which to verity the existing account",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "idp-email-verification",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Verify Existing Account by Re-authentication",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "a959c870-99fe-4b56-9ee3-009d461bf07e",
|
|
"alias" : "Browser - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP is required for the authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "auth-otp-form",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "ee754f25-0507-41b4-869e-d1d9141c833d",
|
|
"alias" : "Direct Grant - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP is required for the authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "direct-grant-validate-otp",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "143445c3-85cf-4577-8603-da6a2a91300b",
|
|
"alias" : "First broker login - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP is required for the authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "auth-otp-form",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "59f9bee2-52d0-4966-9d00-eddc4ffc1994",
|
|
"alias" : "Handle Existing Account",
|
|
"description" : "Handle what to do if there is existing account with same email/username like authenticated identity provider",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "idp-confirm-link",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Account verification options",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "de865896-e9a3-4d4e-8df5-5bd999f475dc",
|
|
"alias" : "Reset - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP should be reset or not. Set to REQUIRED to force.",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "reset-otp",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "cdcfbd42-8c51-40b3-8473-2ebaed7916d9",
|
|
"alias" : "User creation or linking",
|
|
"description" : "Flow for the existing/non-existing user alternatives",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticatorConfig" : "create unique user config",
|
|
"authenticator" : "idp-create-user-if-unique",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Handle Existing Account",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "29a951a8-ff8a-42de-93cc-cec45f40bd1d",
|
|
"alias" : "Verify Existing Account by Re-authentication",
|
|
"description" : "Reauthentication of existing account",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "idp-username-password-form",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "First broker login - Conditional OTP",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "0686661d-5e86-4ca7-abdf-bee7ca5de617",
|
|
"alias" : "browser",
|
|
"description" : "browser based authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "auth-cookie",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "auth-spnego",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "DISABLED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "identity-provider-redirector",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 25,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 30,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "forms",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "2df8bc4c-a744-4fa8-87be-b8cbde2297da",
|
|
"alias" : "clients",
|
|
"description" : "Base authentication for clients",
|
|
"providerId" : "client-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "client-secret",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "client-jwt",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "client-secret-jwt",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 30,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "client-x509",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 40,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "6b145a3b-97ff-4ecf-a041-00c8a9913b92",
|
|
"alias" : "direct grant",
|
|
"description" : "OpenID Connect Resource Owner Grant",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "direct-grant-validate-username",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "direct-grant-validate-password",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 30,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Direct Grant - Conditional OTP",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "3fddd4e7-3151-4a08-b85f-b0ac8926341c",
|
|
"alias" : "docker auth",
|
|
"description" : "Used by Docker clients to authenticate against the IDP",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "docker-http-basic-authenticator",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "3947cb9a-ebe6-4808-b826-c8bb41ba5f07",
|
|
"alias" : "first broker login",
|
|
"description" : "Actions taken after first broker login with identity provider account, which is not yet linked to any Keycloak account",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticatorConfig" : "review profile config",
|
|
"authenticator" : "idp-review-profile",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "User creation or linking",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "be78d354-ac08-494a-8ba3-afe25d399176",
|
|
"alias" : "forms",
|
|
"description" : "Username, password, otp and other auth forms.",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "auth-username-password-form",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Browser - Conditional OTP",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "11023dec-63c9-4d9f-b1bf-10ba34d1abd6",
|
|
"alias" : "registration",
|
|
"description" : "registration flow",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "registration-page-form",
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "registration form",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "8c12164a-9a6e-42ad-88f5-fdc3ceeefa73",
|
|
"alias" : "registration form",
|
|
"description" : "registration form",
|
|
"providerId" : "form-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "registration-user-creation",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "registration-password-action",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 50,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "registration-recaptcha-action",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "DISABLED",
|
|
"priority" : 60,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "registration-terms-and-conditions",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "DISABLED",
|
|
"priority" : 70,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "a118d8be-cfe8-4066-8211-e68287a5a667",
|
|
"alias" : "reset credentials",
|
|
"description" : "Reset credentials for a user if they forgot their password or something",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "reset-credentials-choose-user",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "reset-credential-email",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "reset-password",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 30,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 40,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Reset - Conditional OTP",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "e6be3169-3d25-4d36-8bce-ab098ead862f",
|
|
"alias" : "saml ecp",
|
|
"description" : "SAML ECP Profile Authentication Flow",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "http-basic-authenticator",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
} ],
|
|
"authenticatorConfig" : [ {
|
|
"id" : "a415b42b-2e10-4769-9d9c-44213418541a",
|
|
"alias" : "create unique user config",
|
|
"config" : {
|
|
"require.password.update.after.registration" : "false"
|
|
}
|
|
}, {
|
|
"id" : "6fcdfdcc-f4ff-4b81-8b15-588cc00559c9",
|
|
"alias" : "review profile config",
|
|
"config" : {
|
|
"update.profile.on.first.login" : "missing"
|
|
}
|
|
} ],
|
|
"requiredActions" : [ {
|
|
"alias" : "CONFIGURE_TOTP",
|
|
"name" : "Configure OTP",
|
|
"providerId" : "CONFIGURE_TOTP",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 10,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "TERMS_AND_CONDITIONS",
|
|
"name" : "Terms and Conditions",
|
|
"providerId" : "TERMS_AND_CONDITIONS",
|
|
"enabled" : false,
|
|
"defaultAction" : false,
|
|
"priority" : 20,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "UPDATE_PASSWORD",
|
|
"name" : "Update Password",
|
|
"providerId" : "UPDATE_PASSWORD",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 30,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "UPDATE_PROFILE",
|
|
"name" : "Update Profile",
|
|
"providerId" : "UPDATE_PROFILE",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 40,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "VERIFY_EMAIL",
|
|
"name" : "Verify Email",
|
|
"providerId" : "VERIFY_EMAIL",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 50,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "delete_account",
|
|
"name" : "Delete Account",
|
|
"providerId" : "delete_account",
|
|
"enabled" : false,
|
|
"defaultAction" : false,
|
|
"priority" : 60,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "webauthn-register",
|
|
"name" : "Webauthn Register",
|
|
"providerId" : "webauthn-register",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 70,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "webauthn-register-passwordless",
|
|
"name" : "Webauthn Register Passwordless",
|
|
"providerId" : "webauthn-register-passwordless",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 80,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "VERIFY_PROFILE",
|
|
"name" : "Verify Profile",
|
|
"providerId" : "VERIFY_PROFILE",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 90,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "delete_credential",
|
|
"name" : "Delete Credential",
|
|
"providerId" : "delete_credential",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 100,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "update_user_locale",
|
|
"name" : "Update User Locale",
|
|
"providerId" : "update_user_locale",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 1000,
|
|
"config" : { }
|
|
} ],
|
|
"browserFlow" : "browser",
|
|
"registrationFlow" : "registration",
|
|
"directGrantFlow" : "direct grant",
|
|
"resetCredentialsFlow" : "reset credentials",
|
|
"clientAuthenticationFlow" : "clients",
|
|
"dockerAuthenticationFlow" : "docker auth",
|
|
"firstBrokerLoginFlow" : "first broker login",
|
|
"attributes" : {
|
|
"cibaBackchannelTokenDeliveryMode" : "poll",
|
|
"cibaExpiresIn" : "120",
|
|
"cibaAuthRequestedUserHint" : "login_hint",
|
|
"oauth2DeviceCodeLifespan" : "600",
|
|
"oauth2DevicePollingInterval" : "5",
|
|
"parRequestUriLifespan" : "60",
|
|
"cibaInterval" : "5",
|
|
"realmReusableOtpCode" : "false"
|
|
},
|
|
"keycloakVersion" : "24.0.5",
|
|
"userManagedAccessAllowed" : false,
|
|
"clientProfiles" : {
|
|
"profiles" : [ ]
|
|
},
|
|
"clientPolicies" : {
|
|
"policies" : [ ]
|
|
}
|
|
} |