Created
March 23, 2018 16:00
-
-
Save mareknovotny/142d7c73a445b053242c22c9864463b9 to your computer and use it in GitHub Desktop.
KIE keycloak setup
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "id": "demo", | |
| "realm": "demo", | |
| "notBefore": 0, | |
| "revokeRefreshToken": false, | |
| "refreshTokenMaxReuse": 0, | |
| "accessTokenLifespan": 300, | |
| "accessTokenLifespanForImplicitFlow": 900, | |
| "ssoSessionIdleTimeout": 1800, | |
| "ssoSessionMaxLifespan": 36000, | |
| "offlineSessionIdleTimeout": 2592000, | |
| "accessCodeLifespan": 60, | |
| "accessCodeLifespanUserAction": 300, | |
| "accessCodeLifespanLogin": 1800, | |
| "actionTokenGeneratedByAdminLifespan": 43200, | |
| "actionTokenGeneratedByUserLifespan": 300, | |
| "enabled": true, | |
| "sslRequired": "external", | |
| "registrationAllowed": false, | |
| "registrationEmailAsUsername": false, | |
| "rememberMe": false, | |
| "verifyEmail": false, | |
| "loginWithEmailAllowed": true, | |
| "duplicateEmailsAllowed": false, | |
| "resetPasswordAllowed": false, | |
| "editUsernameAllowed": false, | |
| "bruteForceProtected": false, | |
| "permanentLockout": false, | |
| "maxFailureWaitSeconds": 900, | |
| "minimumQuickLoginWaitSeconds": 60, | |
| "waitIncrementSeconds": 60, | |
| "quickLoginCheckMilliSeconds": 1000, | |
| "maxDeltaTimeSeconds": 43200, | |
| "failureFactor": 30, | |
| "roles": { | |
| "realm": [ | |
| { | |
| "id": "37984a0e-56a9-42c6-b28d-747fc58917a2", | |
| "name": "admin", | |
| "scopeParamRequired": false, | |
| "composite": false, | |
| "clientRole": false, | |
| "containerId": "demo" | |
| }, | |
| { | |
| "id": "f054576f-841d-4e17-99c6-b60cbddb31c3", | |
| "name": "uma_authorization", | |
| "description": "${role_uma_authorization}", | |
| "scopeParamRequired": false, | |
| "composite": false, | |
| "clientRole": false, | |
| "containerId": "demo" | |
| }, | |
| { | |
| "id": "7a7f85e4-c212-4cad-8b7c-52caa7a9ed19", | |
| "name": "kiemgmt", | |
| "scopeParamRequired": false, | |
| "composite": false, | |
| "clientRole": false, | |
| "containerId": "demo" | |
| }, | |
| { | |
| "id": "635600ab-bd76-43c8-bcee-fc2b66626867", | |
| "name": "offline_access", | |
| "description": "${role_offline-access}", | |
| "scopeParamRequired": true, | |
| "composite": false, | |
| "clientRole": false, | |
| "containerId": "demo" | |
| }, | |
| { | |
| "id": "5c5bbf49-d40d-4ec9-9cc6-772a2857ad0b", | |
| "name": "rest-all", | |
| "scopeParamRequired": false, | |
| "composite": false, | |
| "clientRole": false, | |
| "containerId": "demo" | |
| } | |
| ], | |
| "client": { | |
| "realm-management": [ | |
| { | |
| "id": "fec34b44-26b7-470e-b41d-d9620021f6ba", | |
| "name": "view-authorization", | |
| "description": "${role_view-authorization}", | |
| "scopeParamRequired": false, | |
| "composite": false, | |
| "clientRole": true, | |
| "containerId": "480da7fb-1787-4ecb-9780-16676df64fd6" | |
| }, | |
| { | |
| "id": "564a6e47-118f-49b3-a934-13e57a738a1b", | |
| "name": "manage-events", | |
| "description": "${role_manage-events}", | |
| "scopeParamRequired": false, | |
| "composite": false, | |
| "clientRole": true, | |
| "containerId": "480da7fb-1787-4ecb-9780-16676df64fd6" | |
| }, | |
| { | |
| "id": "416fadbc-8690-4586-8967-85512926fe1c", | |
| "name": "manage-authorization", | |
| "description": "${role_manage-authorization}", | |
| "scopeParamRequired": false, | |
| "composite": false, | |
| "clientRole": true, | |
| "containerId": "480da7fb-1787-4ecb-9780-16676df64fd6" | |
| }, | |
| { | |
| "id": "407fda75-19a6-4b62-b1d0-3d0081b3f1aa", | |
| "name": "query-realms", | |
| "description": "${role_query-realms}", | |
| "scopeParamRequired": false, | |
| "composite": false, | |
| "clientRole": true, | |
| "containerId": "480da7fb-1787-4ecb-9780-16676df64fd6" | |
| }, | |
| { | |
| "id": "96eb348f-deec-4bf4-8b50-ebe0a383fd39", | |
| "name": "view-identity-providers", | |
| "description": "${role_view-identity-providers}", | |
| "scopeParamRequired": false, | |
| "composite": false, | |
| "clientRole": true, | |
| "containerId": "480da7fb-1787-4ecb-9780-16676df64fd6" | |
| }, | |
| { | |
| "id": "b5d47600-bfbd-45c3-87fb-b1ba60c4889b", | |
| "name": "manage-clients", | |
| "description": "${role_manage-clients}", | |
| "scopeParamRequired": false, | |
| "composite": false, | |
| "clientRole": true, | |
| "containerId": "480da7fb-1787-4ecb-9780-16676df64fd6" | |
| }, | |
| { | |
| "id": "c3cd81f8-582b-437d-afdb-991e74e820aa", | |
| "name": "query-groups", | |
| "description": "${role_query-groups}", | |
| "scopeParamRequired": false, | |
| "composite": false, | |
| "clientRole": true, | |
| "containerId": "480da7fb-1787-4ecb-9780-16676df64fd6" | |
| }, | |
| { | |
| "id": "a0e835a4-a0da-4a83-a39a-06c0f7a6e6ce", | |
| "name": "manage-identity-providers", | |
| "description": "${role_manage-identity-providers}", | |
| "scopeParamRequired": false, | |
| "composite": false, | |
| "clientRole": true, | |
| "containerId": "480da7fb-1787-4ecb-9780-16676df64fd6" | |
| }, | |
| { | |
| "id": "8e4a7450-09eb-4a1f-8865-1d457970bbb3", | |
| "name": "query-users", | |
| "description": "${role_query-users}", | |
| "scopeParamRequired": false, | |
| "composite": false, | |
| "clientRole": true, | |
| "containerId": "480da7fb-1787-4ecb-9780-16676df64fd6" | |
| }, | |
| { | |
| "id": "d94e6c8a-30ce-47ab-805d-1ae0cc09bc7e", | |
| "name": "view-events", | |
| "description": "${role_view-events}", | |
| "scopeParamRequired": false, | |
| "composite": false, | |
| "clientRole": true, | |
| "containerId": "480da7fb-1787-4ecb-9780-16676df64fd6" | |
| }, | |
| { | |
| "id": "1bf89823-0418-41fa-aea6-800bbb69a422", | |
| "name": "realm-admin", | |
| "description": "${role_realm-admin}", | |
| "scopeParamRequired": false, | |
| "composite": true, | |
| "composites": { | |
| "client": { | |
| "realm-management": [ | |
| "manage-authorization", | |
| "manage-events", | |
| "view-authorization", | |
| "query-realms", | |
| "view-identity-providers", | |
| "manage-clients", | |
| "query-groups", | |
| "query-users", | |
| "manage-identity-providers", | |
| "view-events", | |
| "manage-users", | |
| "view-users", | |
| "impersonation", | |
| "query-clients", | |
| "create-client", | |
| "view-realm", | |
| "view-clients", | |
| "manage-realm" | |
| ] | |
| } | |
| }, | |
| "clientRole": true, | |
| "containerId": "480da7fb-1787-4ecb-9780-16676df64fd6" | |
| }, | |
| { | |
| "id": "42d886aa-2162-4b1e-92ec-a76a68a5d964", | |
| "name": "manage-users", | |
| "description": "${role_manage-users}", | |
| "scopeParamRequired": false, | |
| "composite": false, | |
| "clientRole": true, | |
| "containerId": "480da7fb-1787-4ecb-9780-16676df64fd6" | |
| }, | |
| { | |
| "id": "0615fe94-88bd-4a4a-b886-471f5e367c11", | |
| "name": "view-users", | |
| "description": "${role_view-users}", | |
| "scopeParamRequired": false, | |
| "composite": true, | |
| "composites": { | |
| "client": { | |
| "realm-management": [ | |
| "query-groups", | |
| "query-users" | |
| ] | |
| } | |
| }, | |
| "clientRole": true, | |
| "containerId": "480da7fb-1787-4ecb-9780-16676df64fd6" | |
| }, | |
| { | |
| "id": "f9da6735-9c97-4d48-b384-e41e31a68e90", | |
| "name": "query-clients", | |
| "description": "${role_query-clients}", | |
| "scopeParamRequired": false, | |
| "composite": false, | |
| "clientRole": true, | |
| "containerId": "480da7fb-1787-4ecb-9780-16676df64fd6" | |
| }, | |
| { | |
| "id": "7fd06bc9-7d5e-4d1d-a1f3-2e9e4a41380b", | |
| "name": "impersonation", | |
| "description": "${role_impersonation}", | |
| "scopeParamRequired": false, | |
| "composite": false, | |
| "clientRole": true, | |
| "containerId": "480da7fb-1787-4ecb-9780-16676df64fd6" | |
| }, | |
| { | |
| "id": "877b18c7-d17c-4043-9c63-a65924fbb17b", | |
| "name": "create-client", | |
| "description": "${role_create-client}", | |
| "scopeParamRequired": false, | |
| "composite": false, | |
| "clientRole": true, | |
| "containerId": "480da7fb-1787-4ecb-9780-16676df64fd6" | |
| }, | |
| { | |
| "id": "d076ed6a-4257-4ba0-8294-eeff9e575c85", | |
| "name": "view-realm", | |
| "description": "${role_view-realm}", | |
| "scopeParamRequired": false, | |
| "composite": false, | |
| "clientRole": true, | |
| "containerId": "480da7fb-1787-4ecb-9780-16676df64fd6" | |
| }, | |
| { | |
| "id": "dafbb61f-3946-4976-bc66-79ebfb6a6213", | |
| "name": "view-clients", | |
| "description": "${role_view-clients}", | |
| "scopeParamRequired": false, | |
| "composite": true, | |
| "composites": { | |
| "client": { | |
| "realm-management": [ | |
| "query-clients" | |
| ] | |
| } | |
| }, | |
| "clientRole": true, | |
| "containerId": "480da7fb-1787-4ecb-9780-16676df64fd6" | |
| }, | |
| { | |
| "id": "149a6db5-dadf-4615-b48f-dd06086c38f5", | |
| "name": "manage-realm", | |
| "description": "${role_manage-realm}", | |
| "scopeParamRequired": false, | |
| "composite": false, | |
| "clientRole": true, | |
| "containerId": "480da7fb-1787-4ecb-9780-16676df64fd6" | |
| } | |
| ], | |
| "security-admin-console": [], | |
| "kie": [], | |
| "admin-cli": [], | |
| "broker": [ | |
| { | |
| "id": "456da5e6-f873-4111-a65b-90c009174222", | |
| "name": "read-token", | |
| "description": "${role_read-token}", | |
| "scopeParamRequired": false, | |
| "composite": false, | |
| "clientRole": true, | |
| "containerId": "7fb80b94-3d1f-451a-954e-abcab52e62ce" | |
| } | |
| ], | |
| "account": [ | |
| { | |
| "id": "f19210b6-3ab8-416b-a5ae-bbe7fa49536b", | |
| "name": "view-profile", | |
| "description": "${role_view-profile}", | |
| "scopeParamRequired": false, | |
| "composite": false, | |
| "clientRole": true, | |
| "containerId": "692f8e19-1798-4057-8e99-209450f8a00b" | |
| }, | |
| { | |
| "id": "377fe1c1-5ab9-4796-9d1b-69d96d9d147a", | |
| "name": "manage-account-links", | |
| "description": "${role_manage-account-links}", | |
| "scopeParamRequired": false, | |
| "composite": false, | |
| "clientRole": true, | |
| "containerId": "692f8e19-1798-4057-8e99-209450f8a00b" | |
| }, | |
| { | |
| "id": "2376a5bd-d25d-4e35-a7b2-03c24f35e661", | |
| "name": "manage-account", | |
| "description": "${role_manage-account}", | |
| "scopeParamRequired": false, | |
| "composite": true, | |
| "composites": { | |
| "client": { | |
| "account": [ | |
| "manage-account-links" | |
| ] | |
| } | |
| }, | |
| "clientRole": true, | |
| "containerId": "692f8e19-1798-4057-8e99-209450f8a00b" | |
| } | |
| ] | |
| } | |
| }, | |
| "groups": [], | |
| "defaultRoles": [ | |
| "offline_access", | |
| "uma_authorization" | |
| ], | |
| "requiredCredentials": [ | |
| "password" | |
| ], | |
| "otpPolicyType": "totp", | |
| "otpPolicyAlgorithm": "HmacSHA1", | |
| "otpPolicyInitialCounter": 0, | |
| "otpPolicyDigits": 6, | |
| "otpPolicyLookAheadWindow": 1, | |
| "otpPolicyPeriod": 30, | |
| "otpSupportedApplications": [ | |
| "FreeOTP", | |
| "Google Authenticator" | |
| ], | |
| "clients": [ | |
| { | |
| "id": "480da7fb-1787-4ecb-9780-16676df64fd6", | |
| "clientId": "realm-management", | |
| "name": "${client_realm-management}", | |
| "surrogateAuthRequired": false, | |
| "enabled": true, | |
| "clientAuthenticatorType": "client-secret", | |
| "secret": "**********", | |
| "redirectUris": [], | |
| "webOrigins": [], | |
| "notBefore": 0, | |
| "bearerOnly": true, | |
| "consentRequired": false, | |
| "standardFlowEnabled": true, | |
| "implicitFlowEnabled": false, | |
| "directAccessGrantsEnabled": false, | |
| "serviceAccountsEnabled": false, | |
| "publicClient": false, | |
| "frontchannelLogout": false, | |
| "protocol": "openid-connect", | |
| "attributes": {}, | |
| "fullScopeAllowed": false, | |
| "nodeReRegistrationTimeout": 0, | |
| "protocolMappers": [ | |
| { | |
| "id": "2f5c1ff0-f7b3-44b5-a486-6e8437799bb2", | |
| "name": "family name", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${familyName}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "lastName", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "family_name", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "df8dad7d-7354-45d8-b3bc-3b33ea0550dd", | |
| "name": "email", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${email}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "email", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "email", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "fc1825e7-bbe7-4686-892c-a73bf59daef1", | |
| "name": "username", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${username}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "username", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "preferred_username", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "32879e7f-963b-489d-8df1-2172abd8cfcc", | |
| "name": "given name", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${givenName}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "firstName", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "given_name", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "13fb230a-f90c-474d-a6b8-26be1ee768a9", | |
| "name": "role list", | |
| "protocol": "saml", | |
| "protocolMapper": "saml-role-list-mapper", | |
| "consentRequired": false, | |
| "config": { | |
| "single": "false", | |
| "attribute.nameformat": "Basic", | |
| "attribute.name": "Role" | |
| } | |
| }, | |
| { | |
| "id": "8c716cd6-fdbb-4ff9-9119-3668ad1dbd9b", | |
| "name": "full name", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-full-name-mapper", | |
| "consentRequired": true, | |
| "consentText": "${fullName}", | |
| "config": { | |
| "id.token.claim": "true", | |
| "access.token.claim": "true" | |
| } | |
| } | |
| ], | |
| "useTemplateConfig": false, | |
| "useTemplateScope": false, | |
| "useTemplateMappers": false | |
| }, | |
| { | |
| "id": "2fcdf709-601c-44e4-8876-f1ea41f8f8d0", | |
| "clientId": "security-admin-console", | |
| "name": "${client_security-admin-console}", | |
| "baseUrl": "/auth/admin/demo/console/index.html", | |
| "surrogateAuthRequired": false, | |
| "enabled": true, | |
| "clientAuthenticatorType": "client-secret", | |
| "secret": "**********", | |
| "redirectUris": [ | |
| "/auth/admin/demo/console/*" | |
| ], | |
| "webOrigins": [], | |
| "notBefore": 0, | |
| "bearerOnly": false, | |
| "consentRequired": false, | |
| "standardFlowEnabled": true, | |
| "implicitFlowEnabled": false, | |
| "directAccessGrantsEnabled": false, | |
| "serviceAccountsEnabled": false, | |
| "publicClient": true, | |
| "frontchannelLogout": false, | |
| "protocol": "openid-connect", | |
| "attributes": {}, | |
| "fullScopeAllowed": false, | |
| "nodeReRegistrationTimeout": 0, | |
| "protocolMappers": [ | |
| { | |
| "id": "30429a88-2658-4c8f-95ef-124d4e2e36b7", | |
| "name": "given name", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${givenName}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "firstName", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "given_name", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "ca550659-6f84-421a-abc3-6b395fa66cbb", | |
| "name": "username", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${username}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "username", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "preferred_username", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "f23d7a6c-3dcb-4ace-a5fc-21aeac919235", | |
| "name": "role list", | |
| "protocol": "saml", | |
| "protocolMapper": "saml-role-list-mapper", | |
| "consentRequired": false, | |
| "config": { | |
| "single": "false", | |
| "attribute.nameformat": "Basic", | |
| "attribute.name": "Role" | |
| } | |
| }, | |
| { | |
| "id": "da07b00d-705c-4040-ad1a-d3218d42518e", | |
| "name": "family name", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${familyName}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "lastName", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "family_name", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "814a37a4-0a1d-4b11-a52d-1c842c20a80b", | |
| "name": "locale", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-attribute-mapper", | |
| "consentRequired": false, | |
| "consentText": "${locale}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "locale", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "locale", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "3ed9ca35-875f-4f49-bc19-e4d30d596dc6", | |
| "name": "email", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${email}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "email", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "email", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "d9c86296-7be1-4deb-a657-0550b26bdb3e", | |
| "name": "full name", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-full-name-mapper", | |
| "consentRequired": true, | |
| "consentText": "${fullName}", | |
| "config": { | |
| "id.token.claim": "true", | |
| "access.token.claim": "true" | |
| } | |
| } | |
| ], | |
| "useTemplateConfig": false, | |
| "useTemplateScope": false, | |
| "useTemplateMappers": false | |
| }, | |
| { | |
| "id": "f71c944b-f5c3-4afb-896e-bf6177ac1de3", | |
| "clientId": "kie", | |
| "rootUrl": "http://localhost:8080", | |
| "adminUrl": "http://localhost:8080", | |
| "baseUrl": "/kie-wb-webapp", | |
| "surrogateAuthRequired": false, | |
| "enabled": true, | |
| "clientAuthenticatorType": "client-secret", | |
| "secret": "**********", | |
| "redirectUris": [ | |
| "/kie-wb-webapp/*" | |
| ], | |
| "webOrigins": [ | |
| "http://localhost:8080" | |
| ], | |
| "notBefore": 0, | |
| "bearerOnly": false, | |
| "consentRequired": false, | |
| "standardFlowEnabled": true, | |
| "implicitFlowEnabled": false, | |
| "directAccessGrantsEnabled": true, | |
| "serviceAccountsEnabled": false, | |
| "publicClient": false, | |
| "frontchannelLogout": false, | |
| "protocol": "openid-connect", | |
| "attributes": { | |
| "saml.assertion.signature": "false", | |
| "saml.force.post.binding": "false", | |
| "saml.multivalued.roles": "false", | |
| "saml.encrypt": "false", | |
| "saml_force_name_id_format": "false", | |
| "saml.client.signature": "false", | |
| "saml.authnstatement": "false", | |
| "saml.server.signature": "false", | |
| "saml.server.signature.keyinfo.ext": "false", | |
| "saml.onetimeuse.condition": "false" | |
| }, | |
| "fullScopeAllowed": true, | |
| "nodeReRegistrationTimeout": -1, | |
| "protocolMappers": [ | |
| { | |
| "id": "98a60232-43a2-4d03-a8ae-5cc836769eb0", | |
| "name": "username", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${username}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "username", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "preferred_username", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "ead60eb5-4210-443f-8da0-4cc3bb072ee9", | |
| "name": "family name", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${familyName}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "lastName", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "family_name", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "e3150042-3e4f-4cd9-af84-a705436143e6", | |
| "name": "full name", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-full-name-mapper", | |
| "consentRequired": true, | |
| "consentText": "${fullName}", | |
| "config": { | |
| "id.token.claim": "true", | |
| "access.token.claim": "true" | |
| } | |
| }, | |
| { | |
| "id": "066655e3-fc71-472f-81be-4d7bb6163895", | |
| "name": "email", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${email}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "email", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "email", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "ccc599db-ff76-4439-a45e-dad1186f699e", | |
| "name": "given name", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${givenName}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "firstName", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "given_name", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "7372ff0d-e142-44e4-9229-9740726f7553", | |
| "name": "role list", | |
| "protocol": "saml", | |
| "protocolMapper": "saml-role-list-mapper", | |
| "consentRequired": false, | |
| "config": { | |
| "single": "false", | |
| "attribute.nameformat": "Basic", | |
| "attribute.name": "Role" | |
| } | |
| } | |
| ], | |
| "useTemplateConfig": false, | |
| "useTemplateScope": false, | |
| "useTemplateMappers": false | |
| }, | |
| { | |
| "id": "ab9770e6-98c6-4eba-8bd8-5a959a04f836", | |
| "clientId": "admin-cli", | |
| "name": "${client_admin-cli}", | |
| "surrogateAuthRequired": false, | |
| "enabled": true, | |
| "clientAuthenticatorType": "client-secret", | |
| "secret": "**********", | |
| "redirectUris": [], | |
| "webOrigins": [], | |
| "notBefore": 0, | |
| "bearerOnly": false, | |
| "consentRequired": false, | |
| "standardFlowEnabled": false, | |
| "implicitFlowEnabled": false, | |
| "directAccessGrantsEnabled": true, | |
| "serviceAccountsEnabled": false, | |
| "publicClient": true, | |
| "frontchannelLogout": false, | |
| "protocol": "openid-connect", | |
| "attributes": {}, | |
| "fullScopeAllowed": false, | |
| "nodeReRegistrationTimeout": 0, | |
| "protocolMappers": [ | |
| { | |
| "id": "eec0abb2-8f48-4ce7-8a5a-9b0c038cb80b", | |
| "name": "username", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${username}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "username", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "preferred_username", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "aed19243-23ff-4700-a197-13c9e5380d28", | |
| "name": "family name", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${familyName}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "lastName", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "family_name", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "446a1b62-8190-4299-a1ee-f54aaa4a3818", | |
| "name": "email", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${email}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "email", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "email", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "64eb1696-b249-4dd7-b508-cb71156d06ea", | |
| "name": "given name", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${givenName}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "firstName", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "given_name", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "8f2a1a74-34e8-4181-a5da-f54cedce871b", | |
| "name": "role list", | |
| "protocol": "saml", | |
| "protocolMapper": "saml-role-list-mapper", | |
| "consentRequired": false, | |
| "config": { | |
| "single": "false", | |
| "attribute.nameformat": "Basic", | |
| "attribute.name": "Role" | |
| } | |
| }, | |
| { | |
| "id": "996b7fbe-9be8-47d9-8b88-8115b0a40984", | |
| "name": "full name", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-full-name-mapper", | |
| "consentRequired": true, | |
| "consentText": "${fullName}", | |
| "config": { | |
| "id.token.claim": "true", | |
| "access.token.claim": "true" | |
| } | |
| } | |
| ], | |
| "useTemplateConfig": false, | |
| "useTemplateScope": false, | |
| "useTemplateMappers": false | |
| }, | |
| { | |
| "id": "7fb80b94-3d1f-451a-954e-abcab52e62ce", | |
| "clientId": "broker", | |
| "name": "${client_broker}", | |
| "surrogateAuthRequired": false, | |
| "enabled": true, | |
| "clientAuthenticatorType": "client-secret", | |
| "secret": "**********", | |
| "redirectUris": [], | |
| "webOrigins": [], | |
| "notBefore": 0, | |
| "bearerOnly": false, | |
| "consentRequired": false, | |
| "standardFlowEnabled": true, | |
| "implicitFlowEnabled": false, | |
| "directAccessGrantsEnabled": false, | |
| "serviceAccountsEnabled": false, | |
| "publicClient": false, | |
| "frontchannelLogout": false, | |
| "protocol": "openid-connect", | |
| "attributes": {}, | |
| "fullScopeAllowed": false, | |
| "nodeReRegistrationTimeout": 0, | |
| "protocolMappers": [ | |
| { | |
| "id": "b783585e-d0ec-43b9-8c2a-7c3242cd0074", | |
| "name": "role list", | |
| "protocol": "saml", | |
| "protocolMapper": "saml-role-list-mapper", | |
| "consentRequired": false, | |
| "config": { | |
| "single": "false", | |
| "attribute.nameformat": "Basic", | |
| "attribute.name": "Role" | |
| } | |
| }, | |
| { | |
| "id": "4aa03f50-ede6-47ea-85a5-3316cb4e6e23", | |
| "name": "username", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${username}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "username", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "preferred_username", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "942f546f-b323-4142-8db1-160aaadaf334", | |
| "name": "family name", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${familyName}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "lastName", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "family_name", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "9a817114-75b4-45a7-a225-c8442b0ca48a", | |
| "name": "given name", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${givenName}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "firstName", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "given_name", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "5a95e283-35f9-4d95-9480-142f897d2a7c", | |
| "name": "email", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${email}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "email", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "email", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "c82c4621-1d9b-4474-aff0-09f90ff1c11e", | |
| "name": "full name", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-full-name-mapper", | |
| "consentRequired": true, | |
| "consentText": "${fullName}", | |
| "config": { | |
| "id.token.claim": "true", | |
| "access.token.claim": "true" | |
| } | |
| } | |
| ], | |
| "useTemplateConfig": false, | |
| "useTemplateScope": false, | |
| "useTemplateMappers": false | |
| }, | |
| { | |
| "id": "692f8e19-1798-4057-8e99-209450f8a00b", | |
| "clientId": "account", | |
| "name": "${client_account}", | |
| "baseUrl": "/auth/realms/demo/account", | |
| "surrogateAuthRequired": false, | |
| "enabled": true, | |
| "clientAuthenticatorType": "client-secret", | |
| "secret": "**********", | |
| "defaultRoles": [ | |
| "manage-account", | |
| "view-profile" | |
| ], | |
| "redirectUris": [ | |
| "/auth/realms/demo/account/*" | |
| ], | |
| "webOrigins": [], | |
| "notBefore": 0, | |
| "bearerOnly": false, | |
| "consentRequired": false, | |
| "standardFlowEnabled": true, | |
| "implicitFlowEnabled": false, | |
| "directAccessGrantsEnabled": false, | |
| "serviceAccountsEnabled": false, | |
| "publicClient": false, | |
| "frontchannelLogout": false, | |
| "protocol": "openid-connect", | |
| "attributes": {}, | |
| "fullScopeAllowed": false, | |
| "nodeReRegistrationTimeout": 0, | |
| "protocolMappers": [ | |
| { | |
| "id": "9f93f3ef-218f-43c2-bc5b-752bb61dc52b", | |
| "name": "full name", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-full-name-mapper", | |
| "consentRequired": true, | |
| "consentText": "${fullName}", | |
| "config": { | |
| "id.token.claim": "true", | |
| "access.token.claim": "true" | |
| } | |
| }, | |
| { | |
| "id": "1a51014e-01b3-40c6-8a11-dd99247fd472", | |
| "name": "username", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${username}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "username", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "preferred_username", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "66e02700-6108-4787-8a8e-991f3a161f50", | |
| "name": "given name", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${givenName}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "firstName", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "given_name", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "2eb5acd9-7b01-4a23-bc9e-c01e9b18979b", | |
| "name": "email", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${email}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "email", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "email", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "ed84d306-0e4c-4079-b28b-ae5587ebc227", | |
| "name": "family name", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${familyName}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "lastName", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "family_name", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "id": "37895621-d6df-4eab-b732-a4a1b3d4291c", | |
| "name": "role list", | |
| "protocol": "saml", | |
| "protocolMapper": "saml-role-list-mapper", | |
| "consentRequired": false, | |
| "config": { | |
| "single": "false", | |
| "attribute.nameformat": "Basic", | |
| "attribute.name": "Role" | |
| } | |
| } | |
| ], | |
| "useTemplateConfig": false, | |
| "useTemplateScope": false, | |
| "useTemplateMappers": false | |
| } | |
| ], | |
| "clientTemplates": [], | |
| "browserSecurityHeaders": { | |
| "xContentTypeOptions": "nosniff", | |
| "xRobotsTag": "none", | |
| "xFrameOptions": "SAMEORIGIN", | |
| "xXSSProtection": "1; mode=block", | |
| "contentSecurityPolicy": "frame-src 'self'; frame-ancestors 'self'; object-src 'none';", | |
| "strictTransportSecurity": "max-age=31536000; includeSubDomains" | |
| }, | |
| "smtpServer": {}, | |
| "eventsEnabled": false, | |
| "eventsListeners": [ | |
| "jboss-logging" | |
| ], | |
| "enabledEventTypes": [], | |
| "adminEventsEnabled": false, | |
| "adminEventsDetailsEnabled": false, | |
| "components": { | |
| "org.keycloak.services.clientregistration.policy.ClientRegistrationPolicy": [ | |
| { | |
| "id": "32acea45-74ee-480b-a73d-bfd1470de2cc", | |
| "name": "Trusted Hosts", | |
| "providerId": "trusted-hosts", | |
| "subType": "anonymous", | |
| "subComponents": {}, | |
| "config": { | |
| "host-sending-registration-request-must-match": [ | |
| "true" | |
| ], | |
| "client-uris-must-match": [ | |
| "true" | |
| ] | |
| } | |
| }, | |
| { | |
| "id": "73978706-56ed-460d-886d-77d4bc4f3b05", | |
| "name": "Allowed Protocol Mapper Types", | |
| "providerId": "allowed-protocol-mappers", | |
| "subType": "authenticated", | |
| "subComponents": {}, | |
| "config": { | |
| "allowed-protocol-mapper-types": [ | |
| "oidc-address-mapper", | |
| "oidc-full-name-mapper", | |
| "saml-user-attribute-mapper", | |
| "oidc-usermodel-attribute-mapper", | |
| "oidc-usermodel-property-mapper", | |
| "saml-user-property-mapper", | |
| "oidc-sha256-pairwise-sub-mapper", | |
| "saml-role-list-mapper" | |
| ], | |
| "consent-required-for-all-mappers": [ | |
| "true" | |
| ] | |
| } | |
| }, | |
| { | |
| "id": "4d774907-fe71-4b1c-9ddc-4338834cb223", | |
| "name": "Allowed Client Templates", | |
| "providerId": "allowed-client-templates", | |
| "subType": "authenticated", | |
| "subComponents": {}, | |
| "config": {} | |
| }, | |
| { | |
| "id": "1519eacf-09a1-4391-844f-2b6e210095fc", | |
| "name": "Full Scope Disabled", | |
| "providerId": "scope", | |
| "subType": "anonymous", | |
| "subComponents": {}, | |
| "config": {} | |
| }, | |
| { | |
| "id": "9c3f183d-ff47-4b10-b9cc-d6d22901edb0", | |
| "name": "Allowed Client Templates", | |
| "providerId": "allowed-client-templates", | |
| "subType": "anonymous", | |
| "subComponents": {}, | |
| "config": {} | |
| }, | |
| { | |
| "id": "bdaee3bc-efe9-441e-930d-e61a2ebde67e", | |
| "name": "Max Clients Limit", | |
| "providerId": "max-clients", | |
| "subType": "anonymous", | |
| "subComponents": {}, | |
| "config": { | |
| "max-clients": [ | |
| "200" | |
| ] | |
| } | |
| }, | |
| { | |
| "id": "9676db3c-2706-4754-b96b-d75e99bbe7b9", | |
| "name": "Consent Required", | |
| "providerId": "consent-required", | |
| "subType": "anonymous", | |
| "subComponents": {}, | |
| "config": {} | |
| }, | |
| { | |
| "id": "90d43c31-3ddc-48e2-9b47-bc393e60fb8b", | |
| "name": "Allowed Protocol Mapper Types", | |
| "providerId": "allowed-protocol-mappers", | |
| "subType": "anonymous", | |
| "subComponents": {}, | |
| "config": { | |
| "allowed-protocol-mapper-types": [ | |
| "saml-user-property-mapper", | |
| "oidc-address-mapper", | |
| "oidc-full-name-mapper", | |
| "oidc-usermodel-attribute-mapper", | |
| "saml-user-attribute-mapper", | |
| "oidc-usermodel-property-mapper", | |
| "oidc-sha256-pairwise-sub-mapper", | |
| "saml-role-list-mapper" | |
| ], | |
| "consent-required-for-all-mappers": [ | |
| "true" | |
| ] | |
| } | |
| } | |
| ], | |
| "org.keycloak.keys.KeyProvider": [ | |
| { | |
| "id": "2bf91309-8258-4db9-b2de-9c79d133ad42", | |
| "name": "hmac-generated", | |
| "providerId": "hmac-generated", | |
| "subComponents": {}, | |
| "config": { | |
| "priority": [ | |
| "100" | |
| ] | |
| } | |
| }, | |
| { | |
| "id": "d4424d7e-4f74-428b-a59c-f7156c782afd", | |
| "name": "rsa-generated", | |
| "providerId": "rsa-generated", | |
| "subComponents": {}, | |
| "config": { | |
| "priority": [ | |
| "100" | |
| ] | |
| } | |
| }, | |
| { | |
| "id": "751c5a54-524d-4fb7-840a-d2c31b94e351", | |
| "name": "aes-generated", | |
| "providerId": "aes-generated", | |
| "subComponents": {}, | |
| "config": { | |
| "priority": [ | |
| "100" | |
| ] | |
| } | |
| } | |
| ] | |
| }, | |
| "internationalizationEnabled": false, | |
| "supportedLocales": [], | |
| "authenticationFlows": [ | |
| { | |
| "id": "500ad2bd-a336-4e4b-a902-99244258d7ae", | |
| "alias": "Handle Existing Account", | |
| "description": "Handle what to do if there is existing account with same email/username like authenticated identity provider", | |
| "providerId": "basic-flow", | |
| "topLevel": false, | |
| "builtIn": true, | |
| "authenticationExecutions": [ | |
| { | |
| "authenticator": "idp-confirm-link", | |
| "requirement": "REQUIRED", | |
| "priority": 10, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| }, | |
| { | |
| "authenticator": "idp-email-verification", | |
| "requirement": "ALTERNATIVE", | |
| "priority": 20, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| }, | |
| { | |
| "requirement": "ALTERNATIVE", | |
| "priority": 30, | |
| "flowAlias": "Verify Existing Account by Re-authentication", | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": true | |
| } | |
| ] | |
| }, | |
| { | |
| "id": "145f64c5-bd0b-45d6-8338-cb4a1a3a898a", | |
| "alias": "Verify Existing Account by Re-authentication", | |
| "description": "Reauthentication of existing account", | |
| "providerId": "basic-flow", | |
| "topLevel": false, | |
| "builtIn": true, | |
| "authenticationExecutions": [ | |
| { | |
| "authenticator": "idp-username-password-form", | |
| "requirement": "REQUIRED", | |
| "priority": 10, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| }, | |
| { | |
| "authenticator": "auth-otp-form", | |
| "requirement": "OPTIONAL", | |
| "priority": 20, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| } | |
| ] | |
| }, | |
| { | |
| "id": "c877d4da-6a01-472f-bb5d-116d592b7b1c", | |
| "alias": "browser", | |
| "description": "browser based authentication", | |
| "providerId": "basic-flow", | |
| "topLevel": true, | |
| "builtIn": true, | |
| "authenticationExecutions": [ | |
| { | |
| "authenticator": "auth-cookie", | |
| "requirement": "ALTERNATIVE", | |
| "priority": 10, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| }, | |
| { | |
| "authenticator": "auth-spnego", | |
| "requirement": "DISABLED", | |
| "priority": 20, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| }, | |
| { | |
| "authenticator": "identity-provider-redirector", | |
| "requirement": "ALTERNATIVE", | |
| "priority": 25, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| }, | |
| { | |
| "requirement": "ALTERNATIVE", | |
| "priority": 30, | |
| "flowAlias": "forms", | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": true | |
| } | |
| ] | |
| }, | |
| { | |
| "id": "b536a604-10c7-4bc5-82b3-c6dcdd79e6c2", | |
| "alias": "clients", | |
| "description": "Base authentication for clients", | |
| "providerId": "client-flow", | |
| "topLevel": true, | |
| "builtIn": true, | |
| "authenticationExecutions": [ | |
| { | |
| "authenticator": "client-secret", | |
| "requirement": "ALTERNATIVE", | |
| "priority": 10, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| }, | |
| { | |
| "authenticator": "client-jwt", | |
| "requirement": "ALTERNATIVE", | |
| "priority": 20, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| } | |
| ] | |
| }, | |
| { | |
| "id": "c15e8146-335a-4a4b-8d8b-ae92e4453c3e", | |
| "alias": "direct grant", | |
| "description": "OpenID Connect Resource Owner Grant", | |
| "providerId": "basic-flow", | |
| "topLevel": true, | |
| "builtIn": true, | |
| "authenticationExecutions": [ | |
| { | |
| "authenticator": "direct-grant-validate-username", | |
| "requirement": "REQUIRED", | |
| "priority": 10, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| }, | |
| { | |
| "authenticator": "direct-grant-validate-password", | |
| "requirement": "REQUIRED", | |
| "priority": 20, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| }, | |
| { | |
| "authenticator": "direct-grant-validate-otp", | |
| "requirement": "OPTIONAL", | |
| "priority": 30, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| } | |
| ] | |
| }, | |
| { | |
| "id": "17a3643f-db74-4fb4-9ea8-54b21d5402dd", | |
| "alias": "docker auth", | |
| "description": "Used by Docker clients to authenticate against the IDP", | |
| "providerId": "basic-flow", | |
| "topLevel": true, | |
| "builtIn": true, | |
| "authenticationExecutions": [ | |
| { | |
| "authenticator": "docker-http-basic-authenticator", | |
| "requirement": "REQUIRED", | |
| "priority": 10, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| } | |
| ] | |
| }, | |
| { | |
| "id": "a78e57d0-8aa8-4b29-a357-fa5b9241b4d9", | |
| "alias": "first broker login", | |
| "description": "Actions taken after first broker login with identity provider account, which is not yet linked to any Keycloak account", | |
| "providerId": "basic-flow", | |
| "topLevel": true, | |
| "builtIn": true, | |
| "authenticationExecutions": [ | |
| { | |
| "authenticatorConfig": "review profile config", | |
| "authenticator": "idp-review-profile", | |
| "requirement": "REQUIRED", | |
| "priority": 10, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| }, | |
| { | |
| "authenticatorConfig": "create unique user config", | |
| "authenticator": "idp-create-user-if-unique", | |
| "requirement": "ALTERNATIVE", | |
| "priority": 20, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| }, | |
| { | |
| "requirement": "ALTERNATIVE", | |
| "priority": 30, | |
| "flowAlias": "Handle Existing Account", | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": true | |
| } | |
| ] | |
| }, | |
| { | |
| "id": "33410d52-ee86-419e-aa66-008f582f3a8a", | |
| "alias": "forms", | |
| "description": "Username, password, otp and other auth forms.", | |
| "providerId": "basic-flow", | |
| "topLevel": false, | |
| "builtIn": true, | |
| "authenticationExecutions": [ | |
| { | |
| "authenticator": "auth-username-password-form", | |
| "requirement": "REQUIRED", | |
| "priority": 10, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| }, | |
| { | |
| "authenticator": "auth-otp-form", | |
| "requirement": "OPTIONAL", | |
| "priority": 20, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| } | |
| ] | |
| }, | |
| { | |
| "id": "37861c53-fcfc-4a07-8fd8-86765668caf6", | |
| "alias": "registration", | |
| "description": "registration flow", | |
| "providerId": "basic-flow", | |
| "topLevel": true, | |
| "builtIn": true, | |
| "authenticationExecutions": [ | |
| { | |
| "authenticator": "registration-page-form", | |
| "requirement": "REQUIRED", | |
| "priority": 10, | |
| "flowAlias": "registration form", | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": true | |
| } | |
| ] | |
| }, | |
| { | |
| "id": "5b59301d-773d-460c-94ff-c3d8113bd0aa", | |
| "alias": "registration form", | |
| "description": "registration form", | |
| "providerId": "form-flow", | |
| "topLevel": false, | |
| "builtIn": true, | |
| "authenticationExecutions": [ | |
| { | |
| "authenticator": "registration-user-creation", | |
| "requirement": "REQUIRED", | |
| "priority": 20, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| }, | |
| { | |
| "authenticator": "registration-profile-action", | |
| "requirement": "REQUIRED", | |
| "priority": 40, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| }, | |
| { | |
| "authenticator": "registration-password-action", | |
| "requirement": "REQUIRED", | |
| "priority": 50, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| }, | |
| { | |
| "authenticator": "registration-recaptcha-action", | |
| "requirement": "DISABLED", | |
| "priority": 60, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| } | |
| ] | |
| }, | |
| { | |
| "id": "a43bdb4e-da8f-431d-920d-5979a87fd7a4", | |
| "alias": "reset credentials", | |
| "description": "Reset credentials for a user if they forgot their password or something", | |
| "providerId": "basic-flow", | |
| "topLevel": true, | |
| "builtIn": true, | |
| "authenticationExecutions": [ | |
| { | |
| "authenticator": "reset-credentials-choose-user", | |
| "requirement": "REQUIRED", | |
| "priority": 10, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| }, | |
| { | |
| "authenticator": "reset-credential-email", | |
| "requirement": "REQUIRED", | |
| "priority": 20, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| }, | |
| { | |
| "authenticator": "reset-password", | |
| "requirement": "REQUIRED", | |
| "priority": 30, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| }, | |
| { | |
| "authenticator": "reset-otp", | |
| "requirement": "OPTIONAL", | |
| "priority": 40, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| } | |
| ] | |
| }, | |
| { | |
| "id": "63fae5b3-b4ba-47aa-b8b5-8acead62e95c", | |
| "alias": "saml ecp", | |
| "description": "SAML ECP Profile Authentication Flow", | |
| "providerId": "basic-flow", | |
| "topLevel": true, | |
| "builtIn": true, | |
| "authenticationExecutions": [ | |
| { | |
| "authenticator": "http-basic-authenticator", | |
| "requirement": "REQUIRED", | |
| "priority": 10, | |
| "userSetupAllowed": false, | |
| "autheticatorFlow": false | |
| } | |
| ] | |
| } | |
| ], | |
| "authenticatorConfig": [ | |
| { | |
| "id": "66050c55-3316-458d-bf87-4497eb808438", | |
| "alias": "create unique user config", | |
| "config": { | |
| "require.password.update.after.registration": "false" | |
| } | |
| }, | |
| { | |
| "id": "f68273d4-8913-49ba-84bc-17db8f60bc59", | |
| "alias": "review profile config", | |
| "config": { | |
| "update.profile.on.first.login": "missing" | |
| } | |
| } | |
| ], | |
| "requiredActions": [ | |
| { | |
| "alias": "CONFIGURE_TOTP", | |
| "name": "Configure OTP", | |
| "providerId": "CONFIGURE_TOTP", | |
| "enabled": true, | |
| "defaultAction": false, | |
| "config": {} | |
| }, | |
| { | |
| "alias": "UPDATE_PASSWORD", | |
| "name": "Update Password", | |
| "providerId": "UPDATE_PASSWORD", | |
| "enabled": true, | |
| "defaultAction": false, | |
| "config": {} | |
| }, | |
| { | |
| "alias": "UPDATE_PROFILE", | |
| "name": "Update Profile", | |
| "providerId": "UPDATE_PROFILE", | |
| "enabled": true, | |
| "defaultAction": false, | |
| "config": {} | |
| }, | |
| { | |
| "alias": "VERIFY_EMAIL", | |
| "name": "Verify Email", | |
| "providerId": "VERIFY_EMAIL", | |
| "enabled": true, | |
| "defaultAction": false, | |
| "config": {} | |
| }, | |
| { | |
| "alias": "terms_and_conditions", | |
| "name": "Terms and Conditions", | |
| "providerId": "terms_and_conditions", | |
| "enabled": false, | |
| "defaultAction": false, | |
| "config": {} | |
| } | |
| ], | |
| "browserFlow": "browser", | |
| "registrationFlow": "registration", | |
| "directGrantFlow": "direct grant", | |
| "resetCredentialsFlow": "reset credentials", | |
| "clientAuthenticationFlow": "clients", | |
| "dockerAuthenticationFlow": "docker auth", | |
| "attributes": { | |
| "_browser_header.xXSSProtection": "1; mode=block", | |
| "_browser_header.xFrameOptions": "SAMEORIGIN", | |
| "_browser_header.strictTransportSecurity": "max-age=31536000; includeSubDomains", | |
| "permanentLockout": "false", | |
| "quickLoginCheckMilliSeconds": "1000", | |
| "_browser_header.xRobotsTag": "none", | |
| "maxFailureWaitSeconds": "900", | |
| "minimumQuickLoginWaitSeconds": "60", | |
| "failureFactor": "30", | |
| "actionTokenGeneratedByUserLifespan": "300", | |
| "maxDeltaTimeSeconds": "43200", | |
| "_browser_header.xContentTypeOptions": "nosniff", | |
| "actionTokenGeneratedByAdminLifespan": "43200", | |
| "bruteForceProtected": "false", | |
| "_browser_header.contentSecurityPolicy": "frame-src 'self'; frame-ancestors 'self'; object-src 'none';", | |
| "waitIncrementSeconds": "60" | |
| }, | |
| "keycloakVersion": "3.4.3.Final" | |
| } |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "clientId": "kie", | |
| "rootUrl": "http://localhost:8080", | |
| "adminUrl": "http://localhost:8080", | |
| "baseUrl": "/kie-wb-webapp", | |
| "surrogateAuthRequired": false, | |
| "enabled": true, | |
| "clientAuthenticatorType": "client-secret", | |
| "redirectUris": [ | |
| "/kie-wb-webapp/*" | |
| ], | |
| "webOrigins": [ | |
| "http://localhost:8080" | |
| ], | |
| "notBefore": 0, | |
| "bearerOnly": false, | |
| "consentRequired": false, | |
| "standardFlowEnabled": true, | |
| "implicitFlowEnabled": false, | |
| "directAccessGrantsEnabled": true, | |
| "serviceAccountsEnabled": false, | |
| "publicClient": false, | |
| "frontchannelLogout": false, | |
| "protocol": "openid-connect", | |
| "attributes": { | |
| "saml.assertion.signature": "false", | |
| "saml.force.post.binding": "false", | |
| "saml.multivalued.roles": "false", | |
| "saml.encrypt": "false", | |
| "saml_force_name_id_format": "false", | |
| "saml.client.signature": "false", | |
| "saml.authnstatement": "false", | |
| "saml.server.signature": "false", | |
| "saml.server.signature.keyinfo.ext": "false", | |
| "saml.onetimeuse.condition": "false" | |
| }, | |
| "fullScopeAllowed": true, | |
| "nodeReRegistrationTimeout": -1, | |
| "protocolMappers": [ | |
| { | |
| "name": "username", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${username}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "username", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "preferred_username", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "name": "family name", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${familyName}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "lastName", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "family_name", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "name": "full name", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-full-name-mapper", | |
| "consentRequired": true, | |
| "consentText": "${fullName}", | |
| "config": { | |
| "id.token.claim": "true", | |
| "access.token.claim": "true" | |
| } | |
| }, | |
| { | |
| "name": "email", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${email}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "email", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "email", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "name": "given name", | |
| "protocol": "openid-connect", | |
| "protocolMapper": "oidc-usermodel-property-mapper", | |
| "consentRequired": true, | |
| "consentText": "${givenName}", | |
| "config": { | |
| "userinfo.token.claim": "true", | |
| "user.attribute": "firstName", | |
| "id.token.claim": "true", | |
| "access.token.claim": "true", | |
| "claim.name": "given_name", | |
| "jsonType.label": "String" | |
| } | |
| }, | |
| { | |
| "name": "role list", | |
| "protocol": "saml", | |
| "protocolMapper": "saml-role-list-mapper", | |
| "consentRequired": false, | |
| "config": { | |
| "single": "false", | |
| "attribute.nameformat": "Basic", | |
| "attribute.name": "Role" | |
| } | |
| } | |
| ], | |
| "useTemplateConfig": false, | |
| "useTemplateScope": false, | |
| "useTemplateMappers": false, | |
| "access": { | |
| "view": true, | |
| "configure": true, | |
| "manage": true | |
| } | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment