Created
April 27, 2019 13:13
-
-
Save RawSanj/322157eeecd2a8909b9b78e0cce34a61 to your computer and use it in GitHub Desktop.
Jhipser KeyCloak Config
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
{ | |
"id": "jhipster", | |
"realm": "jhipster", | |
"notBefore": 0, | |
"revokeRefreshToken": false, | |
"refreshTokenMaxReuse": 0, | |
"accessTokenLifespan": 300, | |
"accessTokenLifespanForImplicitFlow": 900, | |
"ssoSessionIdleTimeout": 1800, | |
"ssoSessionMaxLifespan": 36000, | |
"offlineSessionIdleTimeout": 2592000, | |
"offlineSessionMaxLifespanEnabled": false, | |
"offlineSessionMaxLifespan": 5184000, | |
"accessCodeLifespan": 60, | |
"accessCodeLifespanUserAction": 300, | |
"accessCodeLifespanLogin": 1800, | |
"actionTokenGeneratedByAdminLifespan": 43200, | |
"actionTokenGeneratedByUserLifespan": 300, | |
"enabled": true, | |
"sslRequired": "external", | |
"registrationAllowed": false, | |
"registrationEmailAsUsername": false, | |
"rememberMe": false, | |
"verifyEmail": false, | |
"loginWithEmailAllowed": true, | |
"duplicateEmailsAllowed": false, | |
"resetPasswordAllowed": false, | |
"editUsernameAllowed": false, | |
"bruteForceProtected": false, | |
"permanentLockout": false, | |
"maxFailureWaitSeconds": 900, | |
"minimumQuickLoginWaitSeconds": 60, | |
"waitIncrementSeconds": 60, | |
"quickLoginCheckMilliSeconds": 1000, | |
"maxDeltaTimeSeconds": 43200, | |
"failureFactor": 30, | |
"roles": { | |
"realm": [ | |
{ | |
"id": "a2350d85-938e-440c-847c-35086fe0f1d8", | |
"name": "ROLE_ADMIN", | |
"description": "Jhipster administrator role", | |
"composite": false, | |
"clientRole": false, | |
"containerId": "jhipster" | |
}, | |
{ | |
"id": "932ca70d-a311-42f9-9042-431cef835b9e", | |
"name": "offline_access", | |
"description": "${role_offline-access}", | |
"composite": false, | |
"clientRole": false, | |
"containerId": "jhipster" | |
}, | |
{ | |
"id": "8b1a0e78-24be-49ed-bc74-6471bd8d0f8f", | |
"name": "ROLE_USER", | |
"description": "Jhipster user role", | |
"composite": false, | |
"clientRole": false, | |
"containerId": "jhipster" | |
}, | |
{ | |
"id": "96c0124c-0f00-4769-8cd3-f7dfd74a0af3", | |
"name": "uma_authorization", | |
"description": "${role_uma_authorization}", | |
"composite": false, | |
"clientRole": false, | |
"containerId": "jhipster" | |
} | |
], | |
"client": { | |
"realm-management": [ | |
{ | |
"id": "2f58d746-0582-47fe-9b67-30809d5ad461", | |
"name": "query-users", | |
"description": "${role_query-users}", | |
"composite": false, | |
"clientRole": true, | |
"containerId": "48fb7988-d909-445a-81db-fe825dca0db2" | |
}, | |
{ | |
"id": "4873b8a8-8035-4b5e-bdd9-99ac74a4a43b", | |
"name": "query-clients", | |
"description": "${role_query-clients}", | |
"composite": false, | |
"clientRole": true, | |
"containerId": "48fb7988-d909-445a-81db-fe825dca0db2" | |
}, | |
{ | |
"id": "5aa18f9b-2fb1-4edb-bdde-fb79273eee38", | |
"name": "view-events", | |
"description": "${role_view-events}", | |
"composite": false, | |
"clientRole": true, | |
"containerId": "48fb7988-d909-445a-81db-fe825dca0db2" | |
}, | |
{ | |
"id": "84752518-6f2f-451f-ab59-de3ce6674ba1", | |
"name": "view-users", | |
"description": "${role_view-users}", | |
"composite": true, | |
"composites": { | |
"client": { | |
"realm-management": [ | |
"query-users", | |
"query-groups" | |
] | |
} | |
}, | |
"clientRole": true, | |
"containerId": "48fb7988-d909-445a-81db-fe825dca0db2" | |
}, | |
{ | |
"id": "c9fb6965-e734-46b4-a174-fa9d1fb7e1cc", | |
"name": "manage-events", | |
"description": "${role_manage-events}", | |
"composite": false, | |
"clientRole": true, | |
"containerId": "48fb7988-d909-445a-81db-fe825dca0db2" | |
}, | |
{ | |
"id": "42abef51-b33b-4eb3-8515-3c6b16ca3849", | |
"name": "manage-identity-providers", | |
"description": "${role_manage-identity-providers}", | |
"composite": false, | |
"clientRole": true, | |
"containerId": "48fb7988-d909-445a-81db-fe825dca0db2" | |
}, | |
{ | |
"id": "a3f9ba91-6ed5-47ff-a1cc-384c00cc203d", | |
"name": "impersonation", | |
"description": "${role_impersonation}", | |
"composite": false, | |
"clientRole": true, | |
"containerId": "48fb7988-d909-445a-81db-fe825dca0db2" | |
}, | |
{ | |
"id": "24493c26-5ea3-4e53-b949-ca27a06ff098", | |
"name": "manage-users", | |
"description": "${role_manage-users}", | |
"composite": false, | |
"clientRole": true, | |
"containerId": "48fb7988-d909-445a-81db-fe825dca0db2" | |
}, | |
{ | |
"id": "24ba1589-1141-4836-91bb-ad1b10db4944", | |
"name": "create-client", | |
"description": "${role_create-client}", | |
"composite": false, | |
"clientRole": true, | |
"containerId": "48fb7988-d909-445a-81db-fe825dca0db2" | |
}, | |
{ | |
"id": "38cbec3e-9ca1-4292-a513-09e86fdcf6b1", | |
"name": "view-identity-providers", | |
"description": "${role_view-identity-providers}", | |
"composite": false, | |
"clientRole": true, | |
"containerId": "48fb7988-d909-445a-81db-fe825dca0db2" | |
}, | |
{ | |
"id": "2d8a0ec8-111b-41a2-bf49-7f1ae086c5b1", | |
"name": "manage-realm", | |
"description": "${role_manage-realm}", | |
"composite": false, | |
"clientRole": true, | |
"containerId": "48fb7988-d909-445a-81db-fe825dca0db2" | |
}, | |
{ | |
"id": "4ee94804-bc06-4d02-8541-410768b88a49", | |
"name": "manage-authorization", | |
"description": "${role_manage-authorization}", | |
"composite": false, | |
"clientRole": true, | |
"containerId": "48fb7988-d909-445a-81db-fe825dca0db2" | |
}, | |
{ | |
"id": "3774414f-db0d-4928-b080-f22599622e97", | |
"name": "manage-clients", | |
"description": "${role_manage-clients}", | |
"composite": false, | |
"clientRole": true, | |
"containerId": "48fb7988-d909-445a-81db-fe825dca0db2" | |
}, | |
{ | |
"id": "2a54d26e-7a55-4fc9-92cb-45e613084562", | |
"name": "view-realm", | |
"description": "${role_view-realm}", | |
"composite": false, | |
"clientRole": true, | |
"containerId": "48fb7988-d909-445a-81db-fe825dca0db2" | |
}, | |
{ | |
"id": "8fdff21b-f46c-407c-b566-ce4fcc4c51d4", | |
"name": "view-authorization", | |
"description": "${role_view-authorization}", | |
"composite": false, | |
"clientRole": true, | |
"containerId": "48fb7988-d909-445a-81db-fe825dca0db2" | |
}, | |
{ | |
"id": "083a848a-49cb-457f-9615-120be8c74d9e", | |
"name": "realm-admin", | |
"description": "${role_realm-admin}", | |
"composite": true, | |
"composites": { | |
"client": { | |
"realm-management": [ | |
"query-users", | |
"query-clients", | |
"view-events", | |
"view-users", | |
"manage-events", | |
"manage-identity-providers", | |
"impersonation", | |
"manage-users", | |
"create-client", | |
"view-identity-providers", | |
"manage-realm", | |
"manage-authorization", | |
"manage-clients", | |
"view-realm", | |
"view-authorization", | |
"view-clients", | |
"query-realms", | |
"query-groups" | |
] | |
} | |
}, | |
"clientRole": true, | |
"containerId": "48fb7988-d909-445a-81db-fe825dca0db2" | |
}, | |
{ | |
"id": "11bc32e5-55a6-431d-b6c7-32bd9504d070", | |
"name": "view-clients", | |
"description": "${role_view-clients}", | |
"composite": true, | |
"composites": { | |
"client": { | |
"realm-management": [ | |
"query-clients" | |
] | |
} | |
}, | |
"clientRole": true, | |
"containerId": "48fb7988-d909-445a-81db-fe825dca0db2" | |
}, | |
{ | |
"id": "5ea73aac-d0cf-4303-87a4-c9d7f5852734", | |
"name": "query-realms", | |
"description": "${role_query-realms}", | |
"composite": false, | |
"clientRole": true, | |
"containerId": "48fb7988-d909-445a-81db-fe825dca0db2" | |
}, | |
{ | |
"id": "8018bd1e-0b43-4b0c-8e5a-fbf31f8ee6db", | |
"name": "query-groups", | |
"description": "${role_query-groups}", | |
"composite": false, | |
"clientRole": true, | |
"containerId": "48fb7988-d909-445a-81db-fe825dca0db2" | |
} | |
], | |
"internal": [ | |
{ | |
"id": "6ceaaca5-30a4-444b-9078-723b7cc13591", | |
"name": "uma_protection", | |
"composite": false, | |
"clientRole": true, | |
"containerId": "98ae8603-4547-4218-8fb9-ebc550a0e10b" | |
} | |
], | |
"security-admin-console": [], | |
"web_app": [], | |
"admin-cli": [], | |
"jhipster-registry": [], | |
"broker": [ | |
{ | |
"id": "225066d4-4a07-4550-a851-3d9359cbbac2", | |
"name": "read-token", | |
"description": "${role_read-token}", | |
"composite": false, | |
"clientRole": true, | |
"containerId": "274afcdb-7742-4a3a-acc5-17db61a4d200" | |
} | |
], | |
"account": [ | |
{ | |
"id": "354b3a09-47a6-4051-957c-c6a3ee28a190", | |
"name": "view-profile", | |
"description": "${role_view-profile}", | |
"composite": false, | |
"clientRole": true, | |
"containerId": "e07da50b-cddc-4524-b630-436a5a6ba8ab" | |
}, | |
{ | |
"id": "8d650dc2-d0e7-4ad7-8193-3ce1b7361b02", | |
"name": "manage-account-links", | |
"description": "${role_manage-account-links}", | |
"composite": false, | |
"clientRole": true, | |
"containerId": "e07da50b-cddc-4524-b630-436a5a6ba8ab" | |
}, | |
{ | |
"id": "21b65e52-b4e3-453e-b0f0-10a44a4a887d", | |
"name": "manage-account", | |
"description": "${role_manage-account}", | |
"composite": true, | |
"composites": { | |
"client": { | |
"account": [ | |
"manage-account-links" | |
] | |
} | |
}, | |
"clientRole": true, | |
"containerId": "e07da50b-cddc-4524-b630-436a5a6ba8ab" | |
} | |
] | |
} | |
}, | |
"groups": [ | |
{ | |
"id": "c4255caa-6cf7-40fb-8d5a-1b8799a438b8", | |
"name": "Admins", | |
"path": "/Admins", | |
"attributes": {}, | |
"realmRoles": [ | |
"ROLE_ADMIN" | |
], | |
"clientRoles": {}, | |
"subGroups": [] | |
}, | |
{ | |
"id": "ab0947d8-3b91-42a0-81e7-953a3c207316", | |
"name": "Users", | |
"path": "/Users", | |
"attributes": {}, | |
"realmRoles": [ | |
"ROLE_USER" | |
], | |
"clientRoles": {}, | |
"subGroups": [] | |
} | |
], | |
"defaultRoles": [ | |
"offline_access", | |
"uma_authorization" | |
], | |
"requiredCredentials": [ | |
"password" | |
], | |
"otpPolicyType": "totp", | |
"otpPolicyAlgorithm": "HmacSHA1", | |
"otpPolicyInitialCounter": 0, | |
"otpPolicyDigits": 6, | |
"otpPolicyLookAheadWindow": 1, | |
"otpPolicyPeriod": 30, | |
"otpSupportedApplications": [ | |
"FreeOTP", | |
"Google Authenticator" | |
], | |
"scopeMappings": [ | |
{ | |
"clientScope": "offline_access", | |
"roles": [ | |
"offline_access" | |
] | |
} | |
], | |
"clients": [ | |
{ | |
"id": "0aa176c1-8d28-4a8b-8e97-7e4b49a289ff", | |
"clientId": "security-admin-console", | |
"name": "${client_security-admin-console}", | |
"baseUrl": "/auth/admin/jhipster/console/index.html", | |
"surrogateAuthRequired": false, | |
"enabled": true, | |
"clientAuthenticatorType": "client-secret", | |
"secret": "**********", | |
"redirectUris": [ | |
"/auth/admin/jhipster/console/*" | |
], | |
"webOrigins": [], | |
"notBefore": 0, | |
"bearerOnly": false, | |
"consentRequired": false, | |
"standardFlowEnabled": true, | |
"implicitFlowEnabled": false, | |
"directAccessGrantsEnabled": false, | |
"serviceAccountsEnabled": false, | |
"publicClient": true, | |
"frontchannelLogout": false, | |
"protocol": "openid-connect", | |
"attributes": {}, | |
"authenticationFlowBindingOverrides": {}, | |
"fullScopeAllowed": false, | |
"nodeReRegistrationTimeout": 0, | |
"protocolMappers": [ | |
{ | |
"id": "abfaa4cd-4bc1-4223-be5d-c56c641369f2", | |
"name": "locale", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-usermodel-attribute-mapper", | |
"consentRequired": false, | |
"config": { | |
"userinfo.token.claim": "true", | |
"user.attribute": "locale", | |
"id.token.claim": "true", | |
"access.token.claim": "true", | |
"claim.name": "locale", | |
"jsonType.label": "String" | |
} | |
} | |
], | |
"defaultClientScopes": [ | |
"role_list", | |
"profile", | |
"email" | |
], | |
"optionalClientScopes": [ | |
"address", | |
"phone", | |
"offline_access" | |
] | |
}, | |
{ | |
"id": "48fb7988-d909-445a-81db-fe825dca0db2", | |
"clientId": "realm-management", | |
"name": "${client_realm-management}", | |
"surrogateAuthRequired": false, | |
"enabled": true, | |
"clientAuthenticatorType": "client-secret", | |
"secret": "**********", | |
"redirectUris": [], | |
"webOrigins": [], | |
"notBefore": 0, | |
"bearerOnly": true, | |
"consentRequired": false, | |
"standardFlowEnabled": true, | |
"implicitFlowEnabled": false, | |
"directAccessGrantsEnabled": false, | |
"serviceAccountsEnabled": false, | |
"publicClient": false, | |
"frontchannelLogout": false, | |
"protocol": "openid-connect", | |
"attributes": {}, | |
"authenticationFlowBindingOverrides": {}, | |
"fullScopeAllowed": false, | |
"nodeReRegistrationTimeout": 0, | |
"defaultClientScopes": [ | |
"role_list", | |
"profile", | |
"email" | |
], | |
"optionalClientScopes": [ | |
"address", | |
"phone", | |
"offline_access" | |
] | |
}, | |
{ | |
"id": "e07da50b-cddc-4524-b630-436a5a6ba8ab", | |
"clientId": "account", | |
"name": "${client_account}", | |
"baseUrl": "/auth/realms/jhipster/account", | |
"surrogateAuthRequired": false, | |
"enabled": true, | |
"clientAuthenticatorType": "client-secret", | |
"secret": "**********", | |
"defaultRoles": [ | |
"view-profile", | |
"manage-account" | |
], | |
"redirectUris": [ | |
"/auth/realms/jhipster/account/*" | |
], | |
"webOrigins": [], | |
"notBefore": 0, | |
"bearerOnly": false, | |
"consentRequired": false, | |
"standardFlowEnabled": true, | |
"implicitFlowEnabled": false, | |
"directAccessGrantsEnabled": false, | |
"serviceAccountsEnabled": false, | |
"publicClient": false, | |
"frontchannelLogout": false, | |
"protocol": "openid-connect", | |
"attributes": {}, | |
"authenticationFlowBindingOverrides": {}, | |
"fullScopeAllowed": false, | |
"nodeReRegistrationTimeout": 0, | |
"defaultClientScopes": [ | |
"role_list", | |
"profile", | |
"email" | |
], | |
"optionalClientScopes": [ | |
"address", | |
"phone", | |
"offline_access" | |
] | |
}, | |
{ | |
"id": "274afcdb-7742-4a3a-acc5-17db61a4d200", | |
"clientId": "broker", | |
"name": "${client_broker}", | |
"surrogateAuthRequired": false, | |
"enabled": true, | |
"clientAuthenticatorType": "client-secret", | |
"secret": "**********", | |
"redirectUris": [], | |
"webOrigins": [], | |
"notBefore": 0, | |
"bearerOnly": false, | |
"consentRequired": false, | |
"standardFlowEnabled": true, | |
"implicitFlowEnabled": false, | |
"directAccessGrantsEnabled": false, | |
"serviceAccountsEnabled": false, | |
"publicClient": false, | |
"frontchannelLogout": false, | |
"protocol": "openid-connect", | |
"attributes": {}, | |
"authenticationFlowBindingOverrides": {}, | |
"fullScopeAllowed": false, | |
"nodeReRegistrationTimeout": 0, | |
"defaultClientScopes": [ | |
"role_list", | |
"profile", | |
"email" | |
], | |
"optionalClientScopes": [ | |
"address", | |
"phone", | |
"offline_access" | |
] | |
}, | |
{ | |
"id": "98ae8603-4547-4218-8fb9-ebc550a0e10b", | |
"clientId": "internal", | |
"surrogateAuthRequired": false, | |
"enabled": true, | |
"clientAuthenticatorType": "client-secret", | |
"secret": "internal", | |
"redirectUris": [], | |
"webOrigins": [], | |
"notBefore": 0, | |
"bearerOnly": false, | |
"consentRequired": false, | |
"standardFlowEnabled": false, | |
"implicitFlowEnabled": false, | |
"directAccessGrantsEnabled": false, | |
"serviceAccountsEnabled": true, | |
"authorizationServicesEnabled": true, | |
"publicClient": false, | |
"frontchannelLogout": false, | |
"protocol": "openid-connect", | |
"attributes": { | |
"saml.assertion.signature": "false", | |
"saml.multivalued.roles": "false", | |
"saml.force.post.binding": "false", | |
"saml.encrypt": "false", | |
"saml.server.signature": "false", | |
"saml.server.signature.keyinfo.ext": "false", | |
"exclude.session.state.from.auth.response": "false", | |
"saml_force_name_id_format": "false", | |
"saml.client.signature": "false", | |
"tls.client.certificate.bound.access.tokens": "false", | |
"saml.authnstatement": "false", | |
"display.on.consent.screen": "false", | |
"saml.onetimeuse.condition": "false" | |
}, | |
"authenticationFlowBindingOverrides": {}, | |
"fullScopeAllowed": true, | |
"nodeReRegistrationTimeout": -1, | |
"protocolMappers": [ | |
{ | |
"id": "46513189-074c-4ba5-bfa7-29bae63faaaf", | |
"name": "Client IP Address", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-usersessionmodel-note-mapper", | |
"consentRequired": false, | |
"config": { | |
"user.session.note": "clientAddress", | |
"id.token.claim": "true", | |
"access.token.claim": "true", | |
"claim.name": "clientAddress", | |
"jsonType.label": "String" | |
} | |
}, | |
{ | |
"id": "974887a2-e14a-4afd-84fc-a848009079ae", | |
"name": "Client ID", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-usersessionmodel-note-mapper", | |
"consentRequired": false, | |
"config": { | |
"user.session.note": "clientId", | |
"id.token.claim": "true", | |
"access.token.claim": "true", | |
"claim.name": "clientId", | |
"jsonType.label": "String" | |
} | |
}, | |
{ | |
"id": "1b1a1f44-66df-4670-badb-46a3d361ec7c", | |
"name": "Client Host", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-usersessionmodel-note-mapper", | |
"consentRequired": false, | |
"config": { | |
"user.session.note": "clientHost", | |
"id.token.claim": "true", | |
"access.token.claim": "true", | |
"claim.name": "clientHost", | |
"jsonType.label": "String" | |
} | |
} | |
], | |
"defaultClientScopes": [ | |
"role_list", | |
"profile", | |
"email" | |
], | |
"optionalClientScopes": [ | |
"address", | |
"phone", | |
"offline_access" | |
], | |
"authorizationSettings": { | |
"allowRemoteResourceManagement": false, | |
"policyEnforcementMode": "ENFORCING", | |
"resources": [ | |
{ | |
"name": "Default Resource", | |
"type": "urn:internal:resources:default", | |
"ownerManagedAccess": false, | |
"attributes": {}, | |
"_id": "9e347a4d-ab6b-4075-9d24-23d20dfd30bc", | |
"uris": [ | |
"/*" | |
] | |
} | |
], | |
"policies": [ | |
{ | |
"id": "ff09b194-0615-4cfd-9851-74adf540dabd", | |
"name": "Default Policy", | |
"description": "A policy that grants access only for users within this realm", | |
"type": "js", | |
"logic": "POSITIVE", | |
"decisionStrategy": "AFFIRMATIVE", | |
"config": { | |
"code": "// by default, grants any permission associated with this policy\n$evaluation.grant();\n" | |
} | |
}, | |
{ | |
"id": "4b5c72cc-b8b8-4bfc-95ac-61815669f985", | |
"name": "Default Permission", | |
"description": "A permission that applies to the default resource type", | |
"type": "resource", | |
"logic": "POSITIVE", | |
"decisionStrategy": "UNANIMOUS", | |
"config": { | |
"defaultResourceType": "urn:internal:resources:default", | |
"applyPolicies": "[\"Default Policy\"]" | |
} | |
} | |
], | |
"scopes": [] | |
} | |
}, | |
{ | |
"id": "dfaed4f5-716b-4f9c-a81e-e87f5f0db795", | |
"clientId": "jhipster-registry", | |
"rootUrl": "http://localhost:8761", | |
"adminUrl": "http://localhost:8761", | |
"surrogateAuthRequired": false, | |
"enabled": true, | |
"clientAuthenticatorType": "client-secret", | |
"secret": "jhipster-registry", | |
"redirectUris": [ | |
"http://127.0.0.1:8761/*", | |
"http://localhost:8761/*" | |
], | |
"webOrigins": [ | |
"http://127.0.0.1:8761/*", | |
"http://localhost:8761" | |
], | |
"notBefore": 0, | |
"bearerOnly": false, | |
"consentRequired": false, | |
"standardFlowEnabled": true, | |
"implicitFlowEnabled": false, | |
"directAccessGrantsEnabled": true, | |
"serviceAccountsEnabled": false, | |
"publicClient": true, | |
"frontchannelLogout": false, | |
"protocol": "openid-connect", | |
"attributes": { | |
"saml.assertion.signature": "false", | |
"saml.multivalued.roles": "false", | |
"saml.force.post.binding": "false", | |
"saml.encrypt": "false", | |
"saml.server.signature": "false", | |
"saml.server.signature.keyinfo.ext": "false", | |
"exclude.session.state.from.auth.response": "false", | |
"saml_force_name_id_format": "false", | |
"saml.client.signature": "false", | |
"tls.client.certificate.bound.access.tokens": "false", | |
"saml.authnstatement": "false", | |
"display.on.consent.screen": "false", | |
"saml.onetimeuse.condition": "false" | |
}, | |
"authenticationFlowBindingOverrides": {}, | |
"fullScopeAllowed": true, | |
"nodeReRegistrationTimeout": -1, | |
"defaultClientScopes": [ | |
"jhipster", | |
"role_list", | |
"profile", | |
"email" | |
], | |
"optionalClientScopes": [ | |
"address", | |
"phone", | |
"offline_access" | |
] | |
}, | |
{ | |
"id": "1eabef67-6473-4ba8-b07c-14bdbae4aaed", | |
"clientId": "web_app", | |
"rootUrl": "http://localhost:8080", | |
"adminUrl": "http://localhost:8080", | |
"surrogateAuthRequired": false, | |
"enabled": true, | |
"clientAuthenticatorType": "client-secret", | |
"secret": "web_app", | |
"redirectUris": [ | |
"http://localhost:8080/*", | |
"http://localhost:8100/*", | |
"http://127.0.0.1:8761/*", | |
"http://localhost:9000/*" | |
], | |
"webOrigins": [ | |
"http://localhost:8080/*", | |
"http://localhost:8100/*", | |
"http://127.0.0.1:8761/*", | |
"http://localhost:9000/*" | |
], | |
"notBefore": 0, | |
"bearerOnly": false, | |
"consentRequired": false, | |
"standardFlowEnabled": true, | |
"implicitFlowEnabled": true, | |
"directAccessGrantsEnabled": false, | |
"serviceAccountsEnabled": false, | |
"publicClient": true, | |
"frontchannelLogout": false, | |
"protocol": "openid-connect", | |
"attributes": { | |
"saml.assertion.signature": "false", | |
"saml.multivalued.roles": "false", | |
"saml.force.post.binding": "false", | |
"saml.encrypt": "false", | |
"saml.server.signature": "false", | |
"saml.server.signature.keyinfo.ext": "false", | |
"exclude.session.state.from.auth.response": "false", | |
"saml_force_name_id_format": "false", | |
"saml.client.signature": "false", | |
"tls.client.certificate.bound.access.tokens": "false", | |
"saml.authnstatement": "false", | |
"display.on.consent.screen": "false", | |
"saml.onetimeuse.condition": "false" | |
}, | |
"authenticationFlowBindingOverrides": {}, | |
"fullScopeAllowed": true, | |
"nodeReRegistrationTimeout": -1, | |
"defaultClientScopes": [ | |
"jhipster", | |
"role_list", | |
"profile", | |
"email" | |
], | |
"optionalClientScopes": [ | |
"address", | |
"phone", | |
"offline_access" | |
] | |
}, | |
{ | |
"id": "5a9610bf-6a47-46a1-9442-9e43eacd98e8", | |
"clientId": "admin-cli", | |
"name": "${client_admin-cli}", | |
"surrogateAuthRequired": false, | |
"enabled": true, | |
"clientAuthenticatorType": "client-secret", | |
"secret": "**********", | |
"redirectUris": [], | |
"webOrigins": [], | |
"notBefore": 0, | |
"bearerOnly": false, | |
"consentRequired": false, | |
"standardFlowEnabled": false, | |
"implicitFlowEnabled": false, | |
"directAccessGrantsEnabled": true, | |
"serviceAccountsEnabled": false, | |
"publicClient": true, | |
"frontchannelLogout": false, | |
"protocol": "openid-connect", | |
"attributes": {}, | |
"authenticationFlowBindingOverrides": {}, | |
"fullScopeAllowed": false, | |
"nodeReRegistrationTimeout": 0, | |
"defaultClientScopes": [ | |
"role_list", | |
"profile", | |
"email" | |
], | |
"optionalClientScopes": [ | |
"address", | |
"phone", | |
"offline_access" | |
] | |
} | |
], | |
"clientScopes": [ | |
{ | |
"id": "5253d2be-3116-4510-ac05-99619ce2494c", | |
"name": "offline_access", | |
"description": "OpenID Connect built-in scope: offline_access", | |
"protocol": "openid-connect", | |
"attributes": { | |
"consent.screen.text": "${offlineAccessScopeConsentText}", | |
"display.on.consent.screen": "true" | |
} | |
}, | |
{ | |
"id": "391f1641-cb22-41a3-a0ed-752d9264aaf5", | |
"name": "role_list", | |
"description": "SAML role list", | |
"protocol": "saml", | |
"attributes": { | |
"consent.screen.text": "${samlRoleListScopeConsentText}", | |
"display.on.consent.screen": "true" | |
}, | |
"protocolMappers": [ | |
{ | |
"id": "7cbb4477-af0c-4394-a754-b72a1b4638e0", | |
"name": "role list", | |
"protocol": "saml", | |
"protocolMapper": "saml-role-list-mapper", | |
"consentRequired": false, | |
"config": { | |
"single": "false", | |
"attribute.nameformat": "Basic", | |
"attribute.name": "Role" | |
} | |
} | |
] | |
}, | |
{ | |
"id": "d5de6a8a-8894-4e72-b6ef-f9bf3a7a6541", | |
"name": "profile", | |
"description": "OpenID Connect built-in scope: profile", | |
"protocol": "openid-connect", | |
"attributes": { | |
"consent.screen.text": "${profileScopeConsentText}", | |
"display.on.consent.screen": "true" | |
}, | |
"protocolMappers": [ | |
{ | |
"id": "ecb34ff7-d27d-4696-b536-0512044b21a9", | |
"name": "website", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-usermodel-attribute-mapper", | |
"consentRequired": false, | |
"config": { | |
"userinfo.token.claim": "true", | |
"user.attribute": "website", | |
"id.token.claim": "true", | |
"access.token.claim": "true", | |
"claim.name": "website", | |
"jsonType.label": "String" | |
} | |
}, | |
{ | |
"id": "f3cf3c8b-891a-48a1-97b3-1d10d55ddecd", | |
"name": "locale", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-usermodel-attribute-mapper", | |
"consentRequired": false, | |
"config": { | |
"userinfo.token.claim": "true", | |
"user.attribute": "locale", | |
"id.token.claim": "true", | |
"access.token.claim": "true", | |
"claim.name": "locale", | |
"jsonType.label": "String" | |
} | |
}, | |
{ | |
"id": "fa3b86c8-abaf-4261-b48d-41cd3cf2dc6a", | |
"name": "full name", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-full-name-mapper", | |
"consentRequired": false, | |
"config": { | |
"id.token.claim": "true", | |
"access.token.claim": "true", | |
"userinfo.token.claim": "true" | |
} | |
}, | |
{ | |
"id": "219532f1-3c5c-4b30-a018-ae99adb6fc87", | |
"name": "birthdate", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-usermodel-attribute-mapper", | |
"consentRequired": false, | |
"config": { | |
"userinfo.token.claim": "true", | |
"user.attribute": "birthdate", | |
"id.token.claim": "true", | |
"access.token.claim": "true", | |
"claim.name": "birthdate", | |
"jsonType.label": "String" | |
} | |
}, | |
{ | |
"id": "c443f4cd-1174-49a7-a2b3-65d5ccde5efa", | |
"name": "nickname", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-usermodel-attribute-mapper", | |
"consentRequired": false, | |
"config": { | |
"userinfo.token.claim": "true", | |
"user.attribute": "nickname", | |
"id.token.claim": "true", | |
"access.token.claim": "true", | |
"claim.name": "nickname", | |
"jsonType.label": "String" | |
} | |
}, | |
{ | |
"id": "14631b9c-83eb-48ab-a224-29f047015e52", | |
"name": "username", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-usermodel-property-mapper", | |
"consentRequired": false, | |
"config": { | |
"userinfo.token.claim": "true", | |
"user.attribute": "username", | |
"id.token.claim": "true", | |
"access.token.claim": "true", | |
"claim.name": "preferred_username", | |
"jsonType.label": "String" | |
} | |
}, | |
{ | |
"id": "cedd1f1b-951a-4332-9fa1-2edf1a266283", | |
"name": "middle name", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-usermodel-attribute-mapper", | |
"consentRequired": false, | |
"config": { | |
"userinfo.token.claim": "true", | |
"user.attribute": "middleName", | |
"id.token.claim": "true", | |
"access.token.claim": "true", | |
"claim.name": "middle_name", | |
"jsonType.label": "String" | |
} | |
}, | |
{ | |
"id": "5a33d5e4-e124-412e-be4d-b6b28b41382a", | |
"name": "family name", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-usermodel-property-mapper", | |
"consentRequired": false, | |
"config": { | |
"userinfo.token.claim": "true", | |
"user.attribute": "lastName", | |
"id.token.claim": "true", | |
"access.token.claim": "true", | |
"claim.name": "family_name", | |
"jsonType.label": "String" | |
} | |
}, | |
{ | |
"id": "c4122959-6738-4883-b50a-acd0033a477a", | |
"name": "profile", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-usermodel-attribute-mapper", | |
"consentRequired": false, | |
"config": { | |
"userinfo.token.claim": "true", | |
"user.attribute": "profile", | |
"id.token.claim": "true", | |
"access.token.claim": "true", | |
"claim.name": "profile", | |
"jsonType.label": "String" | |
} | |
}, | |
{ | |
"id": "d7db1b88-2c3c-419a-91cf-19ad13355a56", | |
"name": "zoneinfo", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-usermodel-attribute-mapper", | |
"consentRequired": false, | |
"config": { | |
"userinfo.token.claim": "true", | |
"user.attribute": "zoneinfo", | |
"id.token.claim": "true", | |
"access.token.claim": "true", | |
"claim.name": "zoneinfo", | |
"jsonType.label": "String" | |
} | |
}, | |
{ | |
"id": "dfd19868-5c87-4a51-80e0-2a82dfabb16c", | |
"name": "updated at", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-usermodel-attribute-mapper", | |
"consentRequired": false, | |
"config": { | |
"userinfo.token.claim": "true", | |
"user.attribute": "updatedAt", | |
"id.token.claim": "true", | |
"access.token.claim": "true", | |
"claim.name": "updated_at", | |
"jsonType.label": "String" | |
} | |
}, | |
{ | |
"id": "19551b04-fc0c-44c4-b2bf-966da87ba3c3", | |
"name": "given name", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-usermodel-property-mapper", | |
"consentRequired": false, | |
"config": { | |
"userinfo.token.claim": "true", | |
"user.attribute": "firstName", | |
"id.token.claim": "true", | |
"access.token.claim": "true", | |
"claim.name": "given_name", | |
"jsonType.label": "String" | |
} | |
}, | |
{ | |
"id": "c422b63f-e809-41c2-854c-e801e8e25485", | |
"name": "gender", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-usermodel-attribute-mapper", | |
"consentRequired": false, | |
"config": { | |
"userinfo.token.claim": "true", | |
"user.attribute": "gender", | |
"id.token.claim": "true", | |
"access.token.claim": "true", | |
"claim.name": "gender", | |
"jsonType.label": "String" | |
} | |
}, | |
{ | |
"id": "2ccf435c-c255-4715-8dcd-15091f97c5a5", | |
"name": "picture", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-usermodel-attribute-mapper", | |
"consentRequired": false, | |
"config": { | |
"userinfo.token.claim": "true", | |
"user.attribute": "picture", | |
"id.token.claim": "true", | |
"access.token.claim": "true", | |
"claim.name": "picture", | |
"jsonType.label": "String" | |
} | |
} | |
] | |
}, | |
{ | |
"id": "39e1693b-a924-4fbb-b98c-520869771f83", | |
"name": "email", | |
"description": "OpenID Connect built-in scope: email", | |
"protocol": "openid-connect", | |
"attributes": { | |
"consent.screen.text": "${emailScopeConsentText}", | |
"display.on.consent.screen": "true" | |
}, | |
"protocolMappers": [ | |
{ | |
"id": "76f898bc-70e4-4e0a-a259-ae4cb58260f9", | |
"name": "email verified", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-usermodel-property-mapper", | |
"consentRequired": false, | |
"config": { | |
"userinfo.token.claim": "true", | |
"user.attribute": "emailVerified", | |
"id.token.claim": "true", | |
"access.token.claim": "true", | |
"claim.name": "email_verified", | |
"jsonType.label": "boolean" | |
} | |
}, | |
{ | |
"id": "e348c7f8-e835-4539-a80b-b588510a82a9", | |
"name": "email", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-usermodel-property-mapper", | |
"consentRequired": false, | |
"config": { | |
"userinfo.token.claim": "true", | |
"user.attribute": "email", | |
"id.token.claim": "true", | |
"access.token.claim": "true", | |
"claim.name": "email", | |
"jsonType.label": "String" | |
} | |
} | |
] | |
}, | |
{ | |
"id": "1dc1e050-891a-4f5b-ac9d-5ea0c2e3c05e", | |
"name": "address", | |
"description": "OpenID Connect built-in scope: address", | |
"protocol": "openid-connect", | |
"attributes": { | |
"consent.screen.text": "${addressScopeConsentText}", | |
"display.on.consent.screen": "true" | |
}, | |
"protocolMappers": [ | |
{ | |
"id": "b9a92105-8ca5-45d1-8a99-626255ac174f", | |
"name": "address", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-address-mapper", | |
"consentRequired": false, | |
"config": { | |
"user.attribute.formatted": "formatted", | |
"user.attribute.country": "country", | |
"user.attribute.postal_code": "postal_code", | |
"userinfo.token.claim": "true", | |
"user.attribute.street": "street", | |
"id.token.claim": "true", | |
"user.attribute.region": "region", | |
"access.token.claim": "true", | |
"user.attribute.locality": "locality" | |
} | |
} | |
] | |
}, | |
{ | |
"id": "0d3b55db-e68b-4c83-91d4-7370a6810a24", | |
"name": "phone", | |
"description": "OpenID Connect built-in scope: phone", | |
"protocol": "openid-connect", | |
"attributes": { | |
"consent.screen.text": "${phoneScopeConsentText}", | |
"display.on.consent.screen": "true" | |
}, | |
"protocolMappers": [ | |
{ | |
"id": "bbc582f4-4749-42b8-9c65-71f4edfd3979", | |
"name": "phone number", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-usermodel-attribute-mapper", | |
"consentRequired": false, | |
"config": { | |
"userinfo.token.claim": "true", | |
"user.attribute": "phoneNumber", | |
"id.token.claim": "true", | |
"access.token.claim": "true", | |
"claim.name": "phone_number", | |
"jsonType.label": "String" | |
} | |
}, | |
{ | |
"id": "74840763-9b35-4c9a-8789-4008fedc26c2", | |
"name": "phone number verified", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-usermodel-attribute-mapper", | |
"consentRequired": false, | |
"config": { | |
"userinfo.token.claim": "true", | |
"user.attribute": "phoneNumberVerified", | |
"id.token.claim": "true", | |
"access.token.claim": "true", | |
"claim.name": "phone_number_verified", | |
"jsonType.label": "boolean" | |
} | |
} | |
] | |
}, | |
{ | |
"id": "3880d5d9-fced-4446-97fe-0434f2bb76ea", | |
"name": "jhipster", | |
"description": "Jhipster specific claims", | |
"protocol": "openid-connect", | |
"attributes": { | |
"display.on.consent.screen": "false" | |
}, | |
"protocolMappers": [ | |
{ | |
"id": "e7c536ca-1711-4ed5-9f21-20a25435f475", | |
"name": "login", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-usermodel-attribute-mapper", | |
"consentRequired": false, | |
"config": { | |
"user.attribute": "preferred_username", | |
"claim.name": "login", | |
"jsonType.label": "String", | |
"userinfo.token.claim": "true" | |
} | |
}, | |
{ | |
"id": "646e3a98-5f0c-4192-91f0-9719c295b278", | |
"name": "langKey", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-usermodel-attribute-mapper", | |
"consentRequired": false, | |
"config": { | |
"user.attribute": "langKey", | |
"claim.name": "langKey", | |
"jsonType.label": "String", | |
"userinfo.token.claim": "true" | |
} | |
}, | |
{ | |
"id": "70b3e85f-e7b4-4c30-9d10-e0b589776951", | |
"name": "roles", | |
"protocol": "openid-connect", | |
"protocolMapper": "oidc-usermodel-realm-role-mapper", | |
"consentRequired": false, | |
"config": { | |
"claim.name": "roles", | |
"jsonType.label": "String", | |
"multivalued": "true", | |
"userinfo.token.claim": "true" | |
} | |
} | |
] | |
} | |
], | |
"defaultDefaultClientScopes": [ | |
"role_list", | |
"profile", | |
"email" | |
], | |
"defaultOptionalClientScopes": [ | |
"offline_access", | |
"address", | |
"phone" | |
], | |
"browserSecurityHeaders": { | |
"xContentTypeOptions": "nosniff", | |
"xRobotsTag": "none", | |
"xFrameOptions": "SAMEORIGIN", | |
"xXSSProtection": "1; mode=block", | |
"contentSecurityPolicy": "frame-src 'self'; frame-ancestors 'self'; object-src 'none';", | |
"strictTransportSecurity": "max-age=31536000; includeSubDomains" | |
}, | |
"smtpServer": {}, | |
"eventsEnabled": false, | |
"eventsListeners": [ | |
"jboss-logging" | |
], | |
"enabledEventTypes": [], | |
"adminEventsEnabled": false, | |
"adminEventsDetailsEnabled": false, | |
"components": { | |
"org.keycloak.services.clientregistration.policy.ClientRegistrationPolicy": [ | |
{ | |
"id": "96bb5289-e057-4a3d-a273-89372bbc8cc0", | |
"name": "Allowed Client Scopes", | |
"providerId": "allowed-client-templates", | |
"subType": "authenticated", | |
"subComponents": {}, | |
"config": { | |
"allow-default-scopes": [ | |
"true" | |
] | |
} | |
}, | |
{ | |
"id": "5782d02c-2ba5-47d1-9732-dfaaf0e5cfdf", | |
"name": "Allowed Protocol Mapper Types", | |
"providerId": "allowed-protocol-mappers", | |
"subType": "authenticated", | |
"subComponents": {}, | |
"config": { | |
"allowed-protocol-mapper-types": [ | |
"oidc-sha256-pairwise-sub-mapper", | |
"oidc-full-name-mapper", | |
"saml-user-property-mapper", | |
"oidc-usermodel-property-mapper", | |
"oidc-address-mapper", | |
"saml-user-attribute-mapper", | |
"saml-role-list-mapper", | |
"oidc-usermodel-attribute-mapper" | |
] | |
} | |
}, | |
{ | |
"id": "c8d395e2-dd81-4118-b838-7095be5cc1c8", | |
"name": "Allowed Protocol Mapper Types", | |
"providerId": "allowed-protocol-mappers", | |
"subType": "anonymous", | |
"subComponents": {}, | |
"config": { | |
"allowed-protocol-mapper-types": [ | |
"oidc-full-name-mapper", | |
"oidc-address-mapper", | |
"oidc-sha256-pairwise-sub-mapper", | |
"saml-user-property-mapper", | |
"saml-role-list-mapper", | |
"saml-user-attribute-mapper", | |
"oidc-usermodel-attribute-mapper", | |
"oidc-usermodel-property-mapper" | |
] | |
} | |
}, | |
{ | |
"id": "1175c6f8-2d58-437f-bb21-4660c8c1a62c", | |
"name": "Full Scope Disabled", | |
"providerId": "scope", | |
"subType": "anonymous", | |
"subComponents": {}, | |
"config": {} | |
}, | |
{ | |
"id": "4bd2778a-908f-4ac3-873f-61e674eecc2f", | |
"name": "Consent Required", | |
"providerId": "consent-required", | |
"subType": "anonymous", | |
"subComponents": {}, | |
"config": {} | |
}, | |
{ | |
"id": "65809493-b60f-4b44-b1dc-28a22772c321", | |
"name": "Allowed Client Scopes", | |
"providerId": "allowed-client-templates", | |
"subType": "anonymous", | |
"subComponents": {}, | |
"config": { | |
"allow-default-scopes": [ | |
"true" | |
] | |
} | |
}, | |
{ | |
"id": "950acf43-614d-47a3-a7c9-d5072433c4b8", | |
"name": "Max Clients Limit", | |
"providerId": "max-clients", | |
"subType": "anonymous", | |
"subComponents": {}, | |
"config": { | |
"max-clients": [ | |
"200" | |
] | |
} | |
}, | |
{ | |
"id": "e2a65f9f-5ad8-4634-ab3a-810409a3e067", | |
"name": "Trusted Hosts", | |
"providerId": "trusted-hosts", | |
"subType": "anonymous", | |
"subComponents": {}, | |
"config": { | |
"host-sending-registration-request-must-match": [ | |
"true" | |
], | |
"client-uris-must-match": [ | |
"true" | |
] | |
} | |
} | |
], | |
"org.keycloak.keys.KeyProvider": [ | |
{ | |
"id": "8ab3be1d-3e01-4eb6-8ff2-d116b02ffc48", | |
"name": "aes-generated", | |
"providerId": "aes-generated", | |
"subComponents": {}, | |
"config": { | |
"priority": [ | |
"100" | |
] | |
} | |
}, | |
{ | |
"id": "2a3661d8-3594-4872-881a-9f2d394b675d", | |
"name": "rsa-generated", | |
"providerId": "rsa-generated", | |
"subComponents": {}, | |
"config": { | |
"priority": [ | |
"100" | |
] | |
} | |
}, | |
{ | |
"id": "1d291cea-3d41-41cb-9ab6-ef1513fe3fe8", | |
"name": "hmac-generated", | |
"providerId": "hmac-generated", | |
"subComponents": {}, | |
"config": { | |
"priority": [ | |
"100" | |
] | |
} | |
} | |
] | |
}, | |
"internationalizationEnabled": false, | |
"supportedLocales": [], | |
"authenticationFlows": [ | |
{ | |
"id": "a567fb90-1dbf-4e74-b86d-418db5bc97ee", | |
"alias": "Handle Existing Account", | |
"description": "Handle what to do if there is existing account with same email/username like authenticated identity provider", | |
"providerId": "basic-flow", | |
"topLevel": false, | |
"builtIn": true, | |
"authenticationExecutions": [ | |
{ | |
"authenticator": "idp-confirm-link", | |
"requirement": "REQUIRED", | |
"priority": 10, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
}, | |
{ | |
"authenticator": "idp-email-verification", | |
"requirement": "ALTERNATIVE", | |
"priority": 20, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
}, | |
{ | |
"requirement": "ALTERNATIVE", | |
"priority": 30, | |
"flowAlias": "Verify Existing Account by Re-authentication", | |
"userSetupAllowed": false, | |
"autheticatorFlow": true | |
} | |
] | |
}, | |
{ | |
"id": "9ea9ffd3-7fb5-4584-8777-5468f32b7842", | |
"alias": "Verify Existing Account by Re-authentication", | |
"description": "Reauthentication of existing account", | |
"providerId": "basic-flow", | |
"topLevel": false, | |
"builtIn": true, | |
"authenticationExecutions": [ | |
{ | |
"authenticator": "idp-username-password-form", | |
"requirement": "REQUIRED", | |
"priority": 10, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
}, | |
{ | |
"authenticator": "auth-otp-form", | |
"requirement": "OPTIONAL", | |
"priority": 20, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
} | |
] | |
}, | |
{ | |
"id": "3c175e99-e08a-4a3c-9b88-c31076473471", | |
"alias": "browser", | |
"description": "browser based authentication", | |
"providerId": "basic-flow", | |
"topLevel": true, | |
"builtIn": true, | |
"authenticationExecutions": [ | |
{ | |
"authenticator": "auth-cookie", | |
"requirement": "ALTERNATIVE", | |
"priority": 10, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
}, | |
{ | |
"authenticator": "auth-spnego", | |
"requirement": "DISABLED", | |
"priority": 20, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
}, | |
{ | |
"authenticator": "identity-provider-redirector", | |
"requirement": "ALTERNATIVE", | |
"priority": 25, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
}, | |
{ | |
"requirement": "ALTERNATIVE", | |
"priority": 30, | |
"flowAlias": "forms", | |
"userSetupAllowed": false, | |
"autheticatorFlow": true | |
} | |
] | |
}, | |
{ | |
"id": "23dfb395-520f-42a2-bd89-3580a1ff49a8", | |
"alias": "clients", | |
"description": "Base authentication for clients", | |
"providerId": "client-flow", | |
"topLevel": true, | |
"builtIn": true, | |
"authenticationExecutions": [ | |
{ | |
"authenticator": "client-secret", | |
"requirement": "ALTERNATIVE", | |
"priority": 10, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
}, | |
{ | |
"authenticator": "client-jwt", | |
"requirement": "ALTERNATIVE", | |
"priority": 20, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
}, | |
{ | |
"authenticator": "client-secret-jwt", | |
"requirement": "ALTERNATIVE", | |
"priority": 30, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
}, | |
{ | |
"authenticator": "client-x509", | |
"requirement": "ALTERNATIVE", | |
"priority": 40, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
} | |
] | |
}, | |
{ | |
"id": "cf36352c-a972-4a2b-ab42-49c8bf044cb4", | |
"alias": "direct grant", | |
"description": "OpenID Connect Resource Owner Grant", | |
"providerId": "basic-flow", | |
"topLevel": true, | |
"builtIn": true, | |
"authenticationExecutions": [ | |
{ | |
"authenticator": "direct-grant-validate-username", | |
"requirement": "REQUIRED", | |
"priority": 10, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
}, | |
{ | |
"authenticator": "direct-grant-validate-password", | |
"requirement": "REQUIRED", | |
"priority": 20, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
}, | |
{ | |
"authenticator": "direct-grant-validate-otp", | |
"requirement": "OPTIONAL", | |
"priority": 30, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
} | |
] | |
}, | |
{ | |
"id": "8e82f636-5d4e-4411-b3a4-75e757f096fe", | |
"alias": "docker auth", | |
"description": "Used by Docker clients to authenticate against the IDP", | |
"providerId": "basic-flow", | |
"topLevel": true, | |
"builtIn": true, | |
"authenticationExecutions": [ | |
{ | |
"authenticator": "docker-http-basic-authenticator", | |
"requirement": "REQUIRED", | |
"priority": 10, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
} | |
] | |
}, | |
{ | |
"id": "178a868a-5f29-4d17-adbc-00572bbb6bf9", | |
"alias": "first broker login", | |
"description": "Actions taken after first broker login with identity provider account, which is not yet linked to any Keycloak account", | |
"providerId": "basic-flow", | |
"topLevel": true, | |
"builtIn": true, | |
"authenticationExecutions": [ | |
{ | |
"authenticatorConfig": "review profile config", | |
"authenticator": "idp-review-profile", | |
"requirement": "REQUIRED", | |
"priority": 10, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
}, | |
{ | |
"authenticatorConfig": "create unique user config", | |
"authenticator": "idp-create-user-if-unique", | |
"requirement": "ALTERNATIVE", | |
"priority": 20, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
}, | |
{ | |
"requirement": "ALTERNATIVE", | |
"priority": 30, | |
"flowAlias": "Handle Existing Account", | |
"userSetupAllowed": false, | |
"autheticatorFlow": true | |
} | |
] | |
}, | |
{ | |
"id": "4068f611-65f0-4f0b-8fbc-c6f1fde2a53d", | |
"alias": "forms", | |
"description": "Username, password, otp and other auth forms.", | |
"providerId": "basic-flow", | |
"topLevel": false, | |
"builtIn": true, | |
"authenticationExecutions": [ | |
{ | |
"authenticator": "auth-username-password-form", | |
"requirement": "REQUIRED", | |
"priority": 10, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
}, | |
{ | |
"authenticator": "auth-otp-form", | |
"requirement": "OPTIONAL", | |
"priority": 20, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
} | |
] | |
}, | |
{ | |
"id": "a2ce0635-f6a4-46f3-aa2b-bb2346c117f3", | |
"alias": "registration", | |
"description": "registration flow", | |
"providerId": "basic-flow", | |
"topLevel": true, | |
"builtIn": true, | |
"authenticationExecutions": [ | |
{ | |
"authenticator": "registration-page-form", | |
"requirement": "REQUIRED", | |
"priority": 10, | |
"flowAlias": "registration form", | |
"userSetupAllowed": false, | |
"autheticatorFlow": true | |
} | |
] | |
}, | |
{ | |
"id": "921b18f5-739d-4359-be1d-c91f2bb4befa", | |
"alias": "registration form", | |
"description": "registration form", | |
"providerId": "form-flow", | |
"topLevel": false, | |
"builtIn": true, | |
"authenticationExecutions": [ | |
{ | |
"authenticator": "registration-user-creation", | |
"requirement": "REQUIRED", | |
"priority": 20, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
}, | |
{ | |
"authenticator": "registration-profile-action", | |
"requirement": "REQUIRED", | |
"priority": 40, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
}, | |
{ | |
"authenticator": "registration-password-action", | |
"requirement": "REQUIRED", | |
"priority": 50, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
}, | |
{ | |
"authenticator": "registration-recaptcha-action", | |
"requirement": "DISABLED", | |
"priority": 60, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
} | |
] | |
}, | |
{ | |
"id": "1c09dcc2-e7a7-481b-83f4-2c55c0904830", | |
"alias": "reset credentials", | |
"description": "Reset credentials for a user if they forgot their password or something", | |
"providerId": "basic-flow", | |
"topLevel": true, | |
"builtIn": true, | |
"authenticationExecutions": [ | |
{ | |
"authenticator": "reset-credentials-choose-user", | |
"requirement": "REQUIRED", | |
"priority": 10, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
}, | |
{ | |
"authenticator": "reset-credential-email", | |
"requirement": "REQUIRED", | |
"priority": 20, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
}, | |
{ | |
"authenticator": "reset-password", | |
"requirement": "REQUIRED", | |
"priority": 30, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
}, | |
{ | |
"authenticator": "reset-otp", | |
"requirement": "OPTIONAL", | |
"priority": 40, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
} | |
] | |
}, | |
{ | |
"id": "3f578367-5b39-40fc-b9b7-619ab7186c02", | |
"alias": "saml ecp", | |
"description": "SAML ECP Profile Authentication Flow", | |
"providerId": "basic-flow", | |
"topLevel": true, | |
"builtIn": true, | |
"authenticationExecutions": [ | |
{ | |
"authenticator": "http-basic-authenticator", | |
"requirement": "REQUIRED", | |
"priority": 10, | |
"userSetupAllowed": false, | |
"autheticatorFlow": false | |
} | |
] | |
} | |
], | |
"authenticatorConfig": [ | |
{ | |
"id": "8ee8bb2f-d9e0-4949-b7b9-56832145203c", | |
"alias": "create unique user config", | |
"config": { | |
"require.password.update.after.registration": "false" | |
} | |
}, | |
{ | |
"id": "e17f8826-713f-46f2-a715-e25cd9a6570e", | |
"alias": "review profile config", | |
"config": { | |
"update.profile.on.first.login": "missing" | |
} | |
} | |
], | |
"requiredActions": [ | |
{ | |
"alias": "CONFIGURE_TOTP", | |
"name": "Configure OTP", | |
"providerId": "CONFIGURE_TOTP", | |
"enabled": true, | |
"defaultAction": false, | |
"priority": 0, | |
"config": {} | |
}, | |
{ | |
"alias": "UPDATE_PASSWORD", | |
"name": "Update Password", | |
"providerId": "UPDATE_PASSWORD", | |
"enabled": true, | |
"defaultAction": false, | |
"priority": 0, | |
"config": {} | |
}, | |
{ | |
"alias": "UPDATE_PROFILE", | |
"name": "Update Profile", | |
"providerId": "UPDATE_PROFILE", | |
"enabled": true, | |
"defaultAction": false, | |
"priority": 0, | |
"config": {} | |
}, | |
{ | |
"alias": "VERIFY_EMAIL", | |
"name": "Verify Email", | |
"providerId": "VERIFY_EMAIL", | |
"enabled": true, | |
"defaultAction": false, | |
"priority": 0, | |
"config": {} | |
}, | |
{ | |
"alias": "terms_and_conditions", | |
"name": "Terms and Conditions", | |
"providerId": "terms_and_conditions", | |
"enabled": false, | |
"defaultAction": false, | |
"priority": 0, | |
"config": {} | |
} | |
], | |
"browserFlow": "browser", | |
"registrationFlow": "registration", | |
"directGrantFlow": "direct grant", | |
"resetCredentialsFlow": "reset credentials", | |
"clientAuthenticationFlow": "clients", | |
"dockerAuthenticationFlow": "docker auth", | |
"attributes": { | |
"_browser_header.xXSSProtection": "1; mode=block", | |
"_browser_header.xFrameOptions": "SAMEORIGIN", | |
"_browser_header.strictTransportSecurity": "max-age=31536000; includeSubDomains", | |
"permanentLockout": "false", | |
"quickLoginCheckMilliSeconds": "1000", | |
"_browser_header.xRobotsTag": "none", | |
"maxFailureWaitSeconds": "900", | |
"minimumQuickLoginWaitSeconds": "60", | |
"failureFactor": "30", | |
"actionTokenGeneratedByUserLifespan": "300", | |
"maxDeltaTimeSeconds": "43200", | |
"_browser_header.xContentTypeOptions": "nosniff", | |
"offlineSessionMaxLifespan": "5184000", | |
"actionTokenGeneratedByAdminLifespan": "43200", | |
"bruteForceProtected": "false", | |
"_browser_header.contentSecurityPolicy": "frame-src 'self'; frame-ancestors 'self'; object-src 'none';", | |
"waitIncrementSeconds": "60", | |
"offlineSessionMaxLifespanEnabled": "false" | |
}, | |
"keycloakVersion": "4.3.0.Final", | |
"userManagedAccessAllowed": false | |
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
{ | |
"realm" : "jhipster", | |
"users" : [ { | |
"id" : "4c973896-5761-41fc-8217-07c5d13a004b", | |
"createdTimestamp" : 1505479415590, | |
"username" : "admin", | |
"enabled" : true, | |
"totp" : false, | |
"emailVerified" : true, | |
"firstName" : "Admin", | |
"lastName" : "Administrator", | |
"email" : "admin@localhost", | |
"credentials" : [ { | |
"type" : "password", | |
"hashedSaltedValue" : "4pf9K2jWSCcHC+CwsZP/qidN5pSmDUe6AX6wBerSGdBVKkExay8MWKx+EKmaaObZW6FVsD8vdW/ZsyUFD9gJ1Q==", | |
"salt" : "1/qNkZ5kr77jOMOBPBogGw==", | |
"hashIterations" : 27500, | |
"counter" : 0, | |
"algorithm" : "pbkdf2-sha256", | |
"digits" : 0, | |
"period" : 0, | |
"createdDate" : 1505479429154, | |
"config" : { } | |
} ], | |
"disableableCredentialTypes" : [ "password" ], | |
"requiredActions" : [ ], | |
"realmRoles" : [ "offline_access", "uma_authorization" ], | |
"clientRoles" : { | |
"account" : [ "view-profile", "manage-account" ] | |
}, | |
"notBefore" : 0, | |
"groups" : [ "/Users", "/Admins" ] | |
}, { | |
"id" : "c4af4e2f-b432-4c3b-8405-cca86cd5b97b", | |
"createdTimestamp" : 1505479373742, | |
"username" : "user", | |
"enabled" : true, | |
"totp" : false, | |
"emailVerified" : true, | |
"firstName" : "", | |
"lastName" : "User", | |
"email" : "user@localhost", | |
"credentials" : [ { | |
"type" : "password", | |
"hashedSaltedValue" : "MbKsMgWPnZyImih8s4SaoCSCq+XIY/c6S9F93sXEidHF1TjPWxCqMkec0+o3860CMLXHt3az61cIJOWI0FW9aw==", | |
"salt" : "fmpBI1r8R1u75hDLMUlwBw==", | |
"hashIterations" : 27500, | |
"counter" : 0, | |
"algorithm" : "pbkdf2-sha256", | |
"digits" : 0, | |
"period" : 0, | |
"createdDate" : 1505479392766, | |
"config" : { } | |
} ], | |
"disableableCredentialTypes" : [ "password" ], | |
"requiredActions" : [ ], | |
"realmRoles" : [ "offline_access", "uma_authorization" ], | |
"clientRoles" : { | |
"account" : [ "view-profile", "manage-account" ] | |
}, | |
"notBefore" : 0, | |
"groups" : [ "/Users" ] | |
} ] | |
} |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment