Last active
May 10, 2019 07:28
-
-
Save lurodrig/9ed0a7023639a0ebb29f055236ba2d0a to your computer and use it in GitHub Desktop.
keycloak-saml-client & ldap conf
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
{ | |
"id": "cfb54d2f-3f83-4dec-9eb1-0422ab814932", | |
"clientId": "http://localhost:8082/web-module-1/", | |
"name": "http://localhost:8082/web-module-1/", | |
"baseUrl": "http://localhost:8082/web-module-1", | |
"surrogateAuthRequired": false, | |
"enabled": true, | |
"clientAuthenticatorType": "client-secret", | |
"secret": "**********", | |
"redirectUris": [ | |
"http://localhost:8082/web-module-1/*" | |
], | |
"webOrigins": [ | |
"http://localhost:8082" | |
], | |
"notBefore": 0, | |
"bearerOnly": false, | |
"consentRequired": false, | |
"standardFlowEnabled": true, | |
"implicitFlowEnabled": false, | |
"directAccessGrantsEnabled": false, | |
"serviceAccountsEnabled": false, | |
"publicClient": false, | |
"frontchannelLogout": false, | |
"protocol": "saml", | |
"attributes": { | |
"saml.signing.certificate": "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", | |
"saml_single_logout_service_url_redirect": "http://localhost:8082/web-module-1/saml2slo/saml", | |
"saml_assertion_consumer_url_redirect": "http://localhost:8082/web-module-1/saml", | |
"saml.signature.algorithm": "RSA_SHA256", | |
"saml_single_logout_service_url_post": "http://localhost:8082/web-module-1/saml2slo/saml", | |
"saml.client.signature": "true", | |
"saml.authnstatement": "true", | |
"saml_assertion_consumer_url_post": "http://localhost:8082/web-module-1/saml", | |
"saml.server.signature": "true" | |
}, | |
"authenticationFlowBindingOverrides": {}, | |
"fullScopeAllowed": true, | |
"nodeReRegistrationTimeout": -1, | |
"protocolMappers": [ | |
{ | |
"id": "f1a23952-900e-473a-b8c7-cd9c3655c90e", | |
"name": "PreferredLanguageMapper", | |
"protocol": "saml", | |
"protocolMapper": "saml-user-attribute-mapper", | |
"consentRequired": false, | |
"config": { | |
"attribute.nameformat": "Unspecified", | |
"user.attribute": "http://schemas.xmlsoap.org/claims/PreferredLanguage", | |
"friendly.name": "PreferredLanguage", | |
"attribute.name": "http://schemas.xmlsoap.org/claims/PreferredLanguage" | |
} | |
}, | |
{ | |
"id": "202135fa-e768-43c0-beb5-706b49527d8d", | |
"name": "HrIdMapper", | |
"protocol": "saml", | |
"protocolMapper": "saml-user-attribute-mapper", | |
"consentRequired": false, | |
"config": { | |
"attribute.nameformat": "Unspecified", | |
"user.attribute": "http://schemas.xmlsoap.org/claims/PersonID", | |
"friendly.name": "PersonID", | |
"attribute.name": "http://schemas.xmlsoap.org/claims/PersonID" | |
} | |
}, | |
{ | |
"id": "fcf7dd94-2a7b-40b1-9d16-77fe7b6ad93f", | |
"name": "IdentityClassMapper", | |
"protocol": "saml", | |
"protocolMapper": "saml-user-attribute-mapper", | |
"consentRequired": false, | |
"config": { | |
"attribute.nameformat": "Unspecified", | |
"user.attribute": "http://schemas.xmlsoap.org/claims/IdentityClass", | |
"friendly.name": "IdentityClass", | |
"attribute.name": "http://schemas.xmlsoap.org/claims/IdentityClass" | |
} | |
}, | |
{ | |
"id": "cf488ac8-5ac8-4411-ac6e-33a4df61e096", | |
"name": "GroupMapper", | |
"protocol": "saml", | |
"protocolMapper": "saml-group-membership-mapper", | |
"consentRequired": false, | |
"config": { | |
"single": "true", | |
"attribute.nameformat": "Unspecified", | |
"full.path": "false", | |
"friendly.name": "Groups", | |
"attribute.name": "http://schemas.xmlsoap.org/claims/Group" | |
} | |
} | |
], | |
"defaultClientScopes": [ | |
"web-origins", | |
"role_list", | |
"roles", | |
"profile", | |
"email" | |
], | |
"optionalClientScopes": [ | |
"address", | |
"phone", | |
"offline_access" | |
] | |
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
{ | |
"id": "3f3af65a-ad6d-491f-834b-095063383b48", | |
"name": "ldap", | |
"providerId": "ldap", | |
"subComponents": { | |
"org.keycloak.storage.ldap.mappers.LDAPStorageMapper": [ | |
{ | |
"id": "67669f1a-e639-48cd-8319-44bfc0e6e727", | |
"name": "creation date", | |
"providerId": "user-attribute-ldap-mapper", | |
"subComponents": {}, | |
"config": { | |
"ldap.attribute": [ | |
"whenCreated" | |
], | |
"is.mandatory.in.ldap": [ | |
"false" | |
], | |
"read.only": [ | |
"true" | |
], | |
"always.read.value.from.ldap": [ | |
"true" | |
], | |
"user.model.attribute": [ | |
"createTimestamp" | |
] | |
} | |
}, | |
{ | |
"id": "566c643c-e350-4785-85c2-7e57e2b6bf97", | |
"name": "username", | |
"providerId": "user-attribute-ldap-mapper", | |
"subComponents": {}, | |
"config": { | |
"ldap.attribute": [ | |
"cn" | |
], | |
"is.mandatory.in.ldap": [ | |
"true" | |
], | |
"always.read.value.from.ldap": [ | |
"false" | |
], | |
"read.only": [ | |
"true" | |
], | |
"user.model.attribute": [ | |
"username" | |
] | |
} | |
}, | |
{ | |
"id": "16782429-85f4-4623-99f1-1de18b178eaa", | |
"name": "modify date", | |
"providerId": "user-attribute-ldap-mapper", | |
"subComponents": {}, | |
"config": { | |
"ldap.attribute": [ | |
"whenChanged" | |
], | |
"is.mandatory.in.ldap": [ | |
"false" | |
], | |
"read.only": [ | |
"true" | |
], | |
"always.read.value.from.ldap": [ | |
"true" | |
], | |
"user.model.attribute": [ | |
"modifyTimestamp" | |
] | |
} | |
}, | |
{ | |
"id": "6905b213-0524-4f51-82bd-a3af192fb537", | |
"name": "last name", | |
"providerId": "user-attribute-ldap-mapper", | |
"subComponents": {}, | |
"config": { | |
"ldap.attribute": [ | |
"sn" | |
], | |
"is.mandatory.in.ldap": [ | |
"true" | |
], | |
"always.read.value.from.ldap": [ | |
"true" | |
], | |
"read.only": [ | |
"true" | |
], | |
"user.model.attribute": [ | |
"lastName" | |
] | |
} | |
}, | |
{ | |
"id": "d391f973-f869-4c68-9ab7-1f48a52c3f69", | |
"name": "MSAD account controls", | |
"providerId": "msad-user-account-control-mapper", | |
"subComponents": {}, | |
"config": {} | |
}, | |
{ | |
"id": "a4603254-201b-47e5-ba8f-37c0745a4803", | |
"name": "first name", | |
"providerId": "user-attribute-ldap-mapper", | |
"subComponents": {}, | |
"config": { | |
"ldap.attribute": [ | |
"givenName" | |
], | |
"is.mandatory.in.ldap": [ | |
"true" | |
], | |
"always.read.value.from.ldap": [ | |
"true" | |
], | |
"read.only": [ | |
"true" | |
], | |
"user.model.attribute": [ | |
"firstName" | |
] | |
} | |
}, | |
{ | |
"id": "8b852f05-6df7-4ea4-82d8-010c3551fe88", | |
"name": "email", | |
"providerId": "user-attribute-ldap-mapper", | |
"subComponents": {}, | |
"config": { | |
"ldap.attribute": [ | |
"mail" | |
], | |
"is.mandatory.in.ldap": [ | |
"false" | |
], | |
"read.only": [ | |
"true" | |
], | |
"always.read.value.from.ldap": [ | |
"false" | |
], | |
"user.model.attribute": [ | |
"email" | |
] | |
} | |
} | |
] | |
}, | |
"config": { | |
"pagination": [ | |
"true" | |
], | |
"fullSyncPeriod": [ | |
"-1" | |
], | |
"usersDn": [ | |
"OU=Users,OU=Organic Units,DC=my,DC=domain,DC=com" | |
], | |
"connectionPooling": [ | |
"true" | |
], | |
"cachePolicy": [ | |
"DEFAULT" | |
], | |
"useKerberosForPasswordAuthentication": [ | |
"false" | |
], | |
"importEnabled": [ | |
"true" | |
], | |
"enabled": [ | |
"true" | |
], | |
"changedSyncPeriod": [ | |
"-1" | |
], | |
"bindCredential": [ | |
"**********" | |
], | |
"usernameLDAPAttribute": [ | |
"cn" | |
], | |
"bindDn": [ | |
"CN=my_user,OU=Users,OU=Organic Units,DC=my,DC=domain,DC=com" | |
], | |
"vendor": [ | |
"ad" | |
], | |
"uuidLDAPAttribute": [ | |
"objectGUID" | |
], | |
"allowKerberosAuthentication": [ | |
"false" | |
], | |
"connectionUrl": [ | |
"ldaps://my.domain.com:636" | |
], | |
"syncRegistrations": [ | |
"false" | |
], | |
"authType": [ | |
"simple" | |
], | |
"customUserSearchFilter": [ | |
"(memberOf=CN=my_groups,OU=Workgroups,DC=my,DC=domain,DC=com)" | |
], | |
"debug": [ | |
"false" | |
], | |
"searchScope": [ | |
"1" | |
], | |
"useTruststoreSpi": [ | |
"ldapsOnly" | |
], | |
"priority": [ | |
"0" | |
], | |
"userObjectClasses": [ | |
"person, organizationalPerson, user" | |
], | |
"rdnLDAPAttribute": [ | |
"cn" | |
], | |
"editMode": [ | |
"READ_ONLY" | |
], | |
"validatePasswordPolicy": [ | |
"false" | |
], | |
"batchSizeForSync": [ | |
"1000" | |
] | |
} | |
} |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment