2070 lines
75 KiB
JSON
2070 lines
75 KiB
JSON
{
|
|
"id" : "35678c7b-83bb-4af5-beff-a178625c4227",
|
|
"realm" : "present-portal",
|
|
"notBefore" : 0,
|
|
"defaultSignatureAlgorithm" : "RS256",
|
|
"revokeRefreshToken" : false,
|
|
"refreshTokenMaxReuse" : 0,
|
|
"accessTokenLifespan" : 300,
|
|
"accessTokenLifespanForImplicitFlow" : 900,
|
|
"ssoSessionIdleTimeout" : 1800,
|
|
"ssoSessionMaxLifespan" : 36000,
|
|
"ssoSessionIdleTimeoutRememberMe" : 0,
|
|
"ssoSessionMaxLifespanRememberMe" : 0,
|
|
"offlineSessionIdleTimeout" : 2592000,
|
|
"offlineSessionMaxLifespanEnabled" : false,
|
|
"offlineSessionMaxLifespan" : 5184000,
|
|
"clientSessionIdleTimeout" : 0,
|
|
"clientSessionMaxLifespan" : 0,
|
|
"clientOfflineSessionIdleTimeout" : 0,
|
|
"clientOfflineSessionMaxLifespan" : 0,
|
|
"accessCodeLifespan" : 60,
|
|
"accessCodeLifespanUserAction" : 300,
|
|
"accessCodeLifespanLogin" : 1800,
|
|
"actionTokenGeneratedByAdminLifespan" : 43200,
|
|
"actionTokenGeneratedByUserLifespan" : 300,
|
|
"oauth2DeviceCodeLifespan" : 600,
|
|
"oauth2DevicePollingInterval" : 5,
|
|
"enabled" : true,
|
|
"sslRequired" : "external",
|
|
"registrationAllowed" : false,
|
|
"registrationEmailAsUsername" : false,
|
|
"rememberMe" : false,
|
|
"verifyEmail" : false,
|
|
"loginWithEmailAllowed" : true,
|
|
"duplicateEmailsAllowed" : false,
|
|
"resetPasswordAllowed" : false,
|
|
"editUsernameAllowed" : false,
|
|
"bruteForceProtected" : false,
|
|
"permanentLockout" : false,
|
|
"maxTemporaryLockouts" : 0,
|
|
"bruteForceStrategy" : "MULTIPLE",
|
|
"maxFailureWaitSeconds" : 900,
|
|
"minimumQuickLoginWaitSeconds" : 60,
|
|
"waitIncrementSeconds" : 60,
|
|
"quickLoginCheckMilliSeconds" : 1000,
|
|
"maxDeltaTimeSeconds" : 43200,
|
|
"failureFactor" : 30,
|
|
"roles" : {
|
|
"realm" : [ {
|
|
"id" : "aa825324-f74a-41e2-99cd-3fe9ef81edb7",
|
|
"name" : "default-roles-present-portal",
|
|
"description" : "${role_default-roles}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"realm" : [ "offline_access", "uma_authorization" ],
|
|
"client" : {
|
|
"account" : [ "manage-account", "view-profile" ]
|
|
}
|
|
},
|
|
"clientRole" : false,
|
|
"containerId" : "35678c7b-83bb-4af5-beff-a178625c4227",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "ffe16e13-ff1f-4774-b057-1456ba45ef56",
|
|
"name" : "offline_access",
|
|
"description" : "${role_offline-access}",
|
|
"composite" : false,
|
|
"clientRole" : false,
|
|
"containerId" : "35678c7b-83bb-4af5-beff-a178625c4227",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "be845137-d6fa-4b30-9f2f-dd5e66884f34",
|
|
"name" : "uma_authorization",
|
|
"description" : "${role_uma_authorization}",
|
|
"composite" : false,
|
|
"clientRole" : false,
|
|
"containerId" : "35678c7b-83bb-4af5-beff-a178625c4227",
|
|
"attributes" : { }
|
|
} ],
|
|
"client" : {
|
|
"realm-management" : [ {
|
|
"id" : "fc4e20c0-632e-4872-b4ab-4983221c0b4c",
|
|
"name" : "view-events",
|
|
"description" : "${role_view-events}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "a537806a-1e37-4e09-aceb-63439623b531",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "0a099a17-c736-4948-b895-30359ec082b7",
|
|
"name" : "manage-users",
|
|
"description" : "${role_manage-users}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "a537806a-1e37-4e09-aceb-63439623b531",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "5483f0fd-e8c8-45a1-8703-513d108aab5f",
|
|
"name" : "view-realm",
|
|
"description" : "${role_view-realm}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "a537806a-1e37-4e09-aceb-63439623b531",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "faa7c60e-fd8f-4146-977c-3c42a3f159b0",
|
|
"name" : "manage-identity-providers",
|
|
"description" : "${role_manage-identity-providers}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "a537806a-1e37-4e09-aceb-63439623b531",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "929c8bce-15f6-4fd9-988d-3537c4ce5c76",
|
|
"name" : "manage-clients",
|
|
"description" : "${role_manage-clients}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "a537806a-1e37-4e09-aceb-63439623b531",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "a2331cca-4ca0-49db-8ec1-6e7704e6990a",
|
|
"name" : "realm-admin",
|
|
"description" : "${role_realm-admin}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"realm-management" : [ "view-events", "manage-users", "view-realm", "manage-identity-providers", "manage-clients", "query-users", "manage-events", "view-clients", "create-client", "query-groups", "manage-realm", "query-realms", "view-authorization", "view-identity-providers", "query-clients", "manage-authorization", "view-users", "impersonation" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "a537806a-1e37-4e09-aceb-63439623b531",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "10cb569f-6beb-4009-a428-a62c9f30ae16",
|
|
"name" : "query-users",
|
|
"description" : "${role_query-users}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "a537806a-1e37-4e09-aceb-63439623b531",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "1e32fd58-d3ac-4b95-9d4d-4978d4ab5b77",
|
|
"name" : "manage-events",
|
|
"description" : "${role_manage-events}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "a537806a-1e37-4e09-aceb-63439623b531",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "6d27e172-c4b6-4204-9472-babed1d32894",
|
|
"name" : "view-clients",
|
|
"description" : "${role_view-clients}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"realm-management" : [ "query-clients" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "a537806a-1e37-4e09-aceb-63439623b531",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "2b68bd93-5b8e-4954-bddf-9b2c8e7ec13c",
|
|
"name" : "create-client",
|
|
"description" : "${role_create-client}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "a537806a-1e37-4e09-aceb-63439623b531",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "f371844b-8518-42d9-ae68-db9582b01dad",
|
|
"name" : "query-groups",
|
|
"description" : "${role_query-groups}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "a537806a-1e37-4e09-aceb-63439623b531",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "b1bfd3ed-8fef-431d-9388-7db4cd28f9ed",
|
|
"name" : "manage-realm",
|
|
"description" : "${role_manage-realm}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "a537806a-1e37-4e09-aceb-63439623b531",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "f8300398-da6b-4a28-b8fc-240004c2b187",
|
|
"name" : "query-realms",
|
|
"description" : "${role_query-realms}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "a537806a-1e37-4e09-aceb-63439623b531",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "23c35633-e3de-4b70-bef5-bf19e311d354",
|
|
"name" : "view-authorization",
|
|
"description" : "${role_view-authorization}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "a537806a-1e37-4e09-aceb-63439623b531",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "fd2e8b8f-e543-4c5d-9f46-6ddcf3a1e581",
|
|
"name" : "view-identity-providers",
|
|
"description" : "${role_view-identity-providers}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "a537806a-1e37-4e09-aceb-63439623b531",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "bd903407-3fd2-4285-9cf8-e2a48b97c10f",
|
|
"name" : "query-clients",
|
|
"description" : "${role_query-clients}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "a537806a-1e37-4e09-aceb-63439623b531",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "be30cd96-8343-450a-b68a-aa402763a1c9",
|
|
"name" : "manage-authorization",
|
|
"description" : "${role_manage-authorization}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "a537806a-1e37-4e09-aceb-63439623b531",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "a3d4fc19-c731-46fe-94d3-4c81397b742c",
|
|
"name" : "impersonation",
|
|
"description" : "${role_impersonation}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "a537806a-1e37-4e09-aceb-63439623b531",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "320223e6-3c9f-4655-ada0-ea130a8c71cc",
|
|
"name" : "view-users",
|
|
"description" : "${role_view-users}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"realm-management" : [ "query-users", "query-groups" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "a537806a-1e37-4e09-aceb-63439623b531",
|
|
"attributes" : { }
|
|
} ],
|
|
"security-admin-console" : [ ],
|
|
"admin-cli" : [ ],
|
|
"account-console" : [ ],
|
|
"api" : [ ],
|
|
"broker" : [ {
|
|
"id" : "5d795049-d88d-4ed1-8a28-78dc7e276ded",
|
|
"name" : "read-token",
|
|
"description" : "${role_read-token}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "4d6d538b-4d70-4f15-a8e9-02bfde35e7a2",
|
|
"attributes" : { }
|
|
} ],
|
|
"account" : [ {
|
|
"id" : "ccf8b687-7a10-44c3-a043-57d419793eb5",
|
|
"name" : "manage-account",
|
|
"description" : "${role_manage-account}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"account" : [ "manage-account-links" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "976d6156-6e72-4c0b-b922-888bad80a736",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "3fcbb084-183a-4736-bda7-59b2280cb192",
|
|
"name" : "view-profile",
|
|
"description" : "${role_view-profile}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "976d6156-6e72-4c0b-b922-888bad80a736",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "24523833-3d81-4bb9-a45e-349fbc7dd9ee",
|
|
"name" : "view-groups",
|
|
"description" : "${role_view-groups}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "976d6156-6e72-4c0b-b922-888bad80a736",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "f7308f10-3c32-48b5-8f4a-06d5058af673",
|
|
"name" : "view-applications",
|
|
"description" : "${role_view-applications}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "976d6156-6e72-4c0b-b922-888bad80a736",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "28af84b2-073c-49e1-a8d0-13c58d0a3089",
|
|
"name" : "view-consent",
|
|
"description" : "${role_view-consent}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "976d6156-6e72-4c0b-b922-888bad80a736",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "c2818ce3-2d22-4896-9b09-10b0ea5249b5",
|
|
"name" : "delete-account",
|
|
"description" : "${role_delete-account}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "976d6156-6e72-4c0b-b922-888bad80a736",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "5201922a-8072-4ee7-ae6c-db715fb09769",
|
|
"name" : "manage-account-links",
|
|
"description" : "${role_manage-account-links}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "976d6156-6e72-4c0b-b922-888bad80a736",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "9eebdf9c-311a-4a47-9e57-12ee0ab79513",
|
|
"name" : "manage-consent",
|
|
"description" : "${role_manage-consent}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"account" : [ "view-consent" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "976d6156-6e72-4c0b-b922-888bad80a736",
|
|
"attributes" : { }
|
|
} ]
|
|
}
|
|
},
|
|
"groups" : [ ],
|
|
"defaultRole" : {
|
|
"id" : "aa825324-f74a-41e2-99cd-3fe9ef81edb7",
|
|
"name" : "default-roles-present-portal",
|
|
"description" : "${role_default-roles}",
|
|
"composite" : true,
|
|
"clientRole" : false,
|
|
"containerId" : "35678c7b-83bb-4af5-beff-a178625c4227"
|
|
},
|
|
"requiredCredentials" : [ "password" ],
|
|
"otpPolicyType" : "totp",
|
|
"otpPolicyAlgorithm" : "HmacSHA1",
|
|
"otpPolicyInitialCounter" : 0,
|
|
"otpPolicyDigits" : 6,
|
|
"otpPolicyLookAheadWindow" : 1,
|
|
"otpPolicyPeriod" : 30,
|
|
"otpPolicyCodeReusable" : false,
|
|
"otpSupportedApplications" : [ "totpAppFreeOTPName", "totpAppGoogleName", "totpAppMicrosoftAuthenticatorName" ],
|
|
"localizationTexts" : { },
|
|
"webAuthnPolicyRpEntityName" : "keycloak",
|
|
"webAuthnPolicySignatureAlgorithms" : [ "ES256", "RS256" ],
|
|
"webAuthnPolicyRpId" : "",
|
|
"webAuthnPolicyAttestationConveyancePreference" : "not specified",
|
|
"webAuthnPolicyAuthenticatorAttachment" : "not specified",
|
|
"webAuthnPolicyRequireResidentKey" : "not specified",
|
|
"webAuthnPolicyUserVerificationRequirement" : "not specified",
|
|
"webAuthnPolicyCreateTimeout" : 0,
|
|
"webAuthnPolicyAvoidSameAuthenticatorRegister" : false,
|
|
"webAuthnPolicyAcceptableAaguids" : [ ],
|
|
"webAuthnPolicyExtraOrigins" : [ ],
|
|
"webAuthnPolicyPasswordlessRpEntityName" : "keycloak",
|
|
"webAuthnPolicyPasswordlessSignatureAlgorithms" : [ "ES256", "RS256" ],
|
|
"webAuthnPolicyPasswordlessRpId" : "",
|
|
"webAuthnPolicyPasswordlessAttestationConveyancePreference" : "not specified",
|
|
"webAuthnPolicyPasswordlessAuthenticatorAttachment" : "not specified",
|
|
"webAuthnPolicyPasswordlessRequireResidentKey" : "not specified",
|
|
"webAuthnPolicyPasswordlessUserVerificationRequirement" : "not specified",
|
|
"webAuthnPolicyPasswordlessCreateTimeout" : 0,
|
|
"webAuthnPolicyPasswordlessAvoidSameAuthenticatorRegister" : false,
|
|
"webAuthnPolicyPasswordlessAcceptableAaguids" : [ ],
|
|
"webAuthnPolicyPasswordlessExtraOrigins" : [ ],
|
|
"users" : [ {
|
|
"id" : "016cc1d8-09ab-4ad5-89d5-20e9914bc842",
|
|
"username" : "test.user",
|
|
"email" : "test.user@example.com",
|
|
"emailVerified" : true,
|
|
"createdTimestamp" : 1754238635582,
|
|
"enabled" : true,
|
|
"totp" : false,
|
|
"credentials" : [ {
|
|
"id" : "493e771f-8532-42b8-92d3-01d33b93eb95",
|
|
"type" : "password",
|
|
"userLabel" : "Password",
|
|
"createdDate" : 1754238756842,
|
|
"secretData" : "{\"value\":\"eKhtoLFdov6FTYyJbNgijMwjDTeRUIOgSAlqn1G1yhc=\",\"salt\":\"7EGEeMKMSeQAioeai2PkhQ==\",\"additionalParameters\":{}}",
|
|
"credentialData" : "{\"hashIterations\":5,\"algorithm\":\"argon2\",\"additionalParameters\":{\"hashLength\":[\"32\"],\"memory\":[\"7168\"],\"type\":[\"id\"],\"version\":[\"1.3\"],\"parallelism\":[\"1\"]}}"
|
|
} ],
|
|
"disableableCredentialTypes" : [ ],
|
|
"requiredActions" : [ ],
|
|
"realmRoles" : [ "default-roles-present-portal" ],
|
|
"notBefore" : 0,
|
|
"groups" : [ ]
|
|
} ],
|
|
"scopeMappings" : [ {
|
|
"clientScope" : "offline_access",
|
|
"roles" : [ "offline_access" ]
|
|
} ],
|
|
"clientScopeMappings" : {
|
|
"account" : [ {
|
|
"client" : "account-console",
|
|
"roles" : [ "manage-account", "view-groups" ]
|
|
} ]
|
|
},
|
|
"clients" : [ {
|
|
"id" : "976d6156-6e72-4c0b-b922-888bad80a736",
|
|
"clientId" : "account",
|
|
"name" : "${client_account}",
|
|
"rootUrl" : "${authBaseUrl}",
|
|
"baseUrl" : "/realms/present-portal/account/",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ "/realms/present-portal/account/*" ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"realm_client" : "false",
|
|
"post.logout.redirect.uris" : "+"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "organization", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "b0cf61ec-9090-47ba-bb6e-9c40277d87a7",
|
|
"clientId" : "account-console",
|
|
"name" : "${client_account-console}",
|
|
"rootUrl" : "${authBaseUrl}",
|
|
"baseUrl" : "/realms/present-portal/account/",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ "/realms/present-portal/account/*" ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"realm_client" : "false",
|
|
"post.logout.redirect.uris" : "+",
|
|
"pkce.code.challenge.method" : "S256"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"protocolMappers" : [ {
|
|
"id" : "cea29ee3-9b32-4b35-a31c-87658c79c40e",
|
|
"name" : "audience resolve",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-audience-resolve-mapper",
|
|
"consentRequired" : false,
|
|
"config" : { }
|
|
} ],
|
|
"defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "organization", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "a6a001e8-3243-49b2-ad6e-b13824ad3294",
|
|
"clientId" : "admin-cli",
|
|
"name" : "${client_admin-cli}",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : false,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : true,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"realm_client" : "false",
|
|
"client.use.lightweight.access.token.enabled" : "true",
|
|
"post.logout.redirect.uris" : "+"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : true,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "organization", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "88bc001a-49dd-4c50-b000-4cdc11d34f61",
|
|
"clientId" : "api",
|
|
"name" : "",
|
|
"description" : "",
|
|
"rootUrl" : "http://localhost:5342",
|
|
"adminUrl" : "http://localhost:5342",
|
|
"baseUrl" : "http://localhost:5342",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ "/*" ],
|
|
"webOrigins" : [ "+" ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : true,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"realm_client" : "false",
|
|
"oidc.ciba.grant.enabled" : "false",
|
|
"backchannel.logout.session.required" : "true",
|
|
"standard.token.exchange.enabled" : "false",
|
|
"post.logout.redirect.uris" : "+",
|
|
"frontchannel.logout.session.required" : "true",
|
|
"oauth2.device.authorization.grant.enabled" : "false",
|
|
"display.on.consent.screen" : "false",
|
|
"backchannel.logout.revoke.offline.tokens" : "false"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : true,
|
|
"nodeReRegistrationTimeout" : -1,
|
|
"defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "organization", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "4d6d538b-4d70-4f15-a8e9-02bfde35e7a2",
|
|
"clientId" : "broker",
|
|
"name" : "${client_broker}",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : true,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : false,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"realm_client" : "true",
|
|
"post.logout.redirect.uris" : "+"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "organization", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "a537806a-1e37-4e09-aceb-63439623b531",
|
|
"clientId" : "realm-management",
|
|
"name" : "${client_realm-management}",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : true,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : false,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"realm_client" : "true",
|
|
"post.logout.redirect.uris" : "+"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "organization", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "757e2725-b154-4398-883b-5a7bde625651",
|
|
"clientId" : "security-admin-console",
|
|
"name" : "${client_security-admin-console}",
|
|
"rootUrl" : "${authAdminUrl}",
|
|
"baseUrl" : "/admin/present-portal/console/",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ "/admin/present-portal/console/*" ],
|
|
"webOrigins" : [ "+" ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"realm_client" : "false",
|
|
"client.use.lightweight.access.token.enabled" : "true",
|
|
"post.logout.redirect.uris" : "+",
|
|
"pkce.code.challenge.method" : "S256"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : true,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"protocolMappers" : [ {
|
|
"id" : "e6be9e38-59ff-441c-8154-87575ff39da4",
|
|
"name" : "locale",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "locale",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "locale",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ],
|
|
"defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "organization", "offline_access", "microprofile-jwt" ]
|
|
} ],
|
|
"clientScopes" : [ {
|
|
"id" : "a5f90dfb-d8ef-466f-a183-c7b4365721d8",
|
|
"name" : "saml_organization",
|
|
"description" : "Organization Membership",
|
|
"protocol" : "saml",
|
|
"attributes" : {
|
|
"display.on.consent.screen" : "false"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "080b5371-fc0a-4535-9e67-1d42410e9ae1",
|
|
"name" : "organization",
|
|
"protocol" : "saml",
|
|
"protocolMapper" : "saml-organization-membership-mapper",
|
|
"consentRequired" : false,
|
|
"config" : { }
|
|
} ]
|
|
}, {
|
|
"id" : "6d13f7e8-164b-4afc-819b-b3d8ac732b91",
|
|
"name" : "role_list",
|
|
"description" : "SAML role list",
|
|
"protocol" : "saml",
|
|
"attributes" : {
|
|
"consent.screen.text" : "${samlRoleListScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "b219496e-877e-4b5f-8a4a-39929e90ea47",
|
|
"name" : "role list",
|
|
"protocol" : "saml",
|
|
"protocolMapper" : "saml-role-list-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"single" : "false",
|
|
"attribute.nameformat" : "Basic",
|
|
"attribute.name" : "Role"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "e398e0a5-335e-4b25-a526-87949e064be5",
|
|
"name" : "profile",
|
|
"description" : "OpenID Connect built-in scope: profile",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"consent.screen.text" : "${profileScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "1234007d-be38-451f-a9e0-163572bd59fa",
|
|
"name" : "given name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "firstName",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "given_name",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "be4e43e5-911a-4307-81c2-95acdfee2f9b",
|
|
"name" : "birthdate",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "birthdate",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "birthdate",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "3e0dc12a-113b-4801-a023-fc76310ff434",
|
|
"name" : "updated at",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "updatedAt",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "updated_at",
|
|
"jsonType.label" : "long"
|
|
}
|
|
}, {
|
|
"id" : "050666d9-60bd-4e64-a72b-da4fb3cd0785",
|
|
"name" : "zoneinfo",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "zoneinfo",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "zoneinfo",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "625bdcd8-c5f5-43d8-81c4-360eaa294c83",
|
|
"name" : "gender",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "gender",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "gender",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "e81989c7-a04f-4687-b545-b253da72f209",
|
|
"name" : "picture",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "picture",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "picture",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "d81f5f4e-5f5a-440d-ad7d-75896a60b334",
|
|
"name" : "family name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "lastName",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "family_name",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "79d0b2ae-29e8-4e4d-8508-b304da7a2d65",
|
|
"name" : "middle name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "middleName",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "middle_name",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "36061eef-7944-46c6-9da4-a1673a32c0a7",
|
|
"name" : "nickname",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "nickname",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "nickname",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "3c3df3dd-7e1a-4b42-8334-80752d065091",
|
|
"name" : "username",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "username",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "preferred_username",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "f79622b4-5dbe-4152-82ca-c3bbdbd7df04",
|
|
"name" : "locale",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "locale",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "locale",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "b457a3bf-be60-4536-9f80-671dcc5f6dd2",
|
|
"name" : "profile",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "profile",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "profile",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "f79f9b71-a72f-4144-abb4-e028cf1e7c30",
|
|
"name" : "full name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-full-name-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"id.token.claim" : "true",
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"userinfo.token.claim" : "true"
|
|
}
|
|
}, {
|
|
"id" : "a170fb68-7ecf-410b-85f2-858c071eb028",
|
|
"name" : "website",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "website",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "website",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "c70ca8e0-5518-4f88-876d-8acdc7a2aed4",
|
|
"name" : "email",
|
|
"description" : "OpenID Connect built-in scope: email",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"consent.screen.text" : "${emailScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "15c96d83-9e85-47a9-b34e-84ffe845f0ff",
|
|
"name" : "email verified",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-property-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "emailVerified",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "email_verified",
|
|
"jsonType.label" : "boolean"
|
|
}
|
|
}, {
|
|
"id" : "571bef67-2fa7-439d-9f16-2260013246fe",
|
|
"name" : "email",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "email",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "email",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "e0888d16-3b7f-437c-abbf-605a25a438b3",
|
|
"name" : "basic",
|
|
"description" : "OpenID Connect scope for add all basic claims to the token",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "false",
|
|
"display.on.consent.screen" : "false"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "b94d0cba-1b39-4444-8444-8cad667bea48",
|
|
"name" : "sub",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-sub-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true"
|
|
}
|
|
}, {
|
|
"id" : "f3b6e9d3-ed7c-4044-8601-a63698ea7c7a",
|
|
"name" : "auth_time",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usersessionmodel-note-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"user.session.note" : "AUTH_TIME",
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "auth_time",
|
|
"jsonType.label" : "long"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "d4759a90-2362-4a8c-8b9a-264ba9d37605",
|
|
"name" : "microprofile-jwt",
|
|
"description" : "Microprofile - JWT built-in scope",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "false"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "9f220fbf-c524-4453-a8d2-4913d2513b0d",
|
|
"name" : "groups",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-realm-role-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"multivalued" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "foo",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "groups",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "92195460-087d-48ca-b649-9f2ae4231765",
|
|
"name" : "upn",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "username",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "upn",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "a7fe1d0a-04ef-4a89-a702-40883db7261b",
|
|
"name" : "organization",
|
|
"description" : "Additional claims about the organization a subject belongs to",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"consent.screen.text" : "${organizationScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "0457c075-277c-4a16-a26f-9aa9e4ab2a4e",
|
|
"name" : "organization",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-organization-membership-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"multivalued" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "organization",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "f4566fa0-a828-4323-9bbc-c3441c35de42",
|
|
"name" : "roles",
|
|
"description" : "OpenID Connect scope for add user roles to the access token",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "false",
|
|
"consent.screen.text" : "${rolesScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "f2347957-9adf-442f-9f5f-27333b0da3c2",
|
|
"name" : "realm roles",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-realm-role-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"user.attribute" : "foo",
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "realm_access.roles",
|
|
"jsonType.label" : "String",
|
|
"multivalued" : "true"
|
|
}
|
|
}, {
|
|
"id" : "ae8bbeff-4439-43be-b2bd-192c40beee1e",
|
|
"name" : "audience resolve",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-audience-resolve-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true"
|
|
}
|
|
}, {
|
|
"id" : "6988257b-a15a-4fc5-998f-574bd1d0c53b",
|
|
"name" : "client roles",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-client-role-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"user.attribute" : "foo",
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "resource_access.${client_id}.roles",
|
|
"jsonType.label" : "String",
|
|
"multivalued" : "true"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "c72fcb2c-7956-4962-9735-0c5826a137ba",
|
|
"name" : "offline_access",
|
|
"description" : "OpenID Connect built-in scope: offline_access",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"consent.screen.text" : "${offlineAccessScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
}
|
|
}, {
|
|
"id" : "2a789cbc-2bc1-4d36-8e39-e992e598577b",
|
|
"name" : "web-origins",
|
|
"description" : "OpenID Connect scope for add allowed web origins to the access token",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "false",
|
|
"consent.screen.text" : "",
|
|
"display.on.consent.screen" : "false"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "2281cb9c-9521-404f-b236-075510251d9e",
|
|
"name" : "allowed web origins",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-allowed-origins-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "394843d8-2259-4b75-85eb-873f5f7535e5",
|
|
"name" : "acr",
|
|
"description" : "OpenID Connect scope for add acr (authentication context class reference) to the token",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "false",
|
|
"display.on.consent.screen" : "false"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "b74806bc-f799-44a3-b7d3-64c0907964a9",
|
|
"name" : "acr loa level",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-acr-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"id.token.claim" : "true",
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"userinfo.token.claim" : "true"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "deca762d-b863-459b-b746-17c6338f27b2",
|
|
"name" : "address",
|
|
"description" : "OpenID Connect built-in scope: address",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"consent.screen.text" : "${addressScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "9c945b09-4409-47d1-99de-8d992fc3cbd0",
|
|
"name" : "address",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-address-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"user.attribute.formatted" : "formatted",
|
|
"user.attribute.country" : "country",
|
|
"introspection.token.claim" : "true",
|
|
"user.attribute.postal_code" : "postal_code",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute.street" : "street",
|
|
"id.token.claim" : "true",
|
|
"user.attribute.region" : "region",
|
|
"access.token.claim" : "true",
|
|
"user.attribute.locality" : "locality"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "929c8180-f3c2-42a5-aaaa-5791def67af2",
|
|
"name" : "phone",
|
|
"description" : "OpenID Connect built-in scope: phone",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"consent.screen.text" : "${phoneScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "ec927489-db06-4485-bf85-9b96e614d4b7",
|
|
"name" : "phone number",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "phoneNumber",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "phone_number",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "5b86e625-ed9d-4a55-acc4-f48a175ec327",
|
|
"name" : "phone number verified",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "phoneNumberVerified",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "phone_number_verified",
|
|
"jsonType.label" : "boolean"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "fdfa79e5-ad13-493f-9879-0e8e19d97a93",
|
|
"name" : "service_account",
|
|
"description" : "Specific scope for a client enabled for service accounts",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "false",
|
|
"display.on.consent.screen" : "false"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "49e48f01-7342-4080-b4c8-3910ea195cac",
|
|
"name" : "Client ID",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usersessionmodel-note-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"user.session.note" : "client_id",
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "client_id",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "8e936f21-73c0-456f-8305-1b23a13b889c",
|
|
"name" : "Client Host",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usersessionmodel-note-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"user.session.note" : "clientHost",
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "clientHost",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "e6fdd726-c754-4afd-8df8-521f6ceb1b0f",
|
|
"name" : "Client IP Address",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usersessionmodel-note-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"user.session.note" : "clientAddress",
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "clientAddress",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ]
|
|
} ],
|
|
"defaultDefaultClientScopes" : [ "role_list", "saml_organization", "profile", "email", "roles", "web-origins", "acr", "basic" ],
|
|
"defaultOptionalClientScopes" : [ "offline_access", "address", "phone", "microprofile-jwt", "organization" ],
|
|
"browserSecurityHeaders" : {
|
|
"contentSecurityPolicyReportOnly" : "",
|
|
"xContentTypeOptions" : "nosniff",
|
|
"referrerPolicy" : "no-referrer",
|
|
"xRobotsTag" : "none",
|
|
"xFrameOptions" : "SAMEORIGIN",
|
|
"contentSecurityPolicy" : "frame-src 'self'; frame-ancestors 'self'; object-src 'none';",
|
|
"strictTransportSecurity" : "max-age=31536000; includeSubDomains"
|
|
},
|
|
"smtpServer" : { },
|
|
"eventsEnabled" : false,
|
|
"eventsListeners" : [ "jboss-logging" ],
|
|
"enabledEventTypes" : [ ],
|
|
"adminEventsEnabled" : false,
|
|
"adminEventsDetailsEnabled" : false,
|
|
"identityProviders" : [ ],
|
|
"identityProviderMappers" : [ ],
|
|
"components" : {
|
|
"org.keycloak.services.clientregistration.policy.ClientRegistrationPolicy" : [ {
|
|
"id" : "8fd1cefc-b20f-49ed-b80f-6e02e83940e1",
|
|
"name" : "Max Clients Limit",
|
|
"providerId" : "max-clients",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"max-clients" : [ "200" ]
|
|
}
|
|
}, {
|
|
"id" : "5e8ad309-d6fa-499b-b6aa-2f953dba0515",
|
|
"name" : "Allowed Protocol Mapper Types",
|
|
"providerId" : "allowed-protocol-mappers",
|
|
"subType" : "authenticated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allowed-protocol-mapper-types" : [ "oidc-full-name-mapper", "saml-user-property-mapper", "oidc-sha256-pairwise-sub-mapper", "oidc-address-mapper", "saml-role-list-mapper", "saml-user-attribute-mapper", "oidc-usermodel-property-mapper", "oidc-usermodel-attribute-mapper" ]
|
|
}
|
|
}, {
|
|
"id" : "7c7a09a7-dd4b-4276-addb-e37cef12df36",
|
|
"name" : "Allowed Client Scopes",
|
|
"providerId" : "allowed-client-templates",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allow-default-scopes" : [ "true" ]
|
|
}
|
|
}, {
|
|
"id" : "4d8c22b6-5113-4923-b839-e213e00ccdee",
|
|
"name" : "Allowed Protocol Mapper Types",
|
|
"providerId" : "allowed-protocol-mappers",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allowed-protocol-mapper-types" : [ "saml-role-list-mapper", "oidc-full-name-mapper", "oidc-usermodel-property-mapper", "oidc-address-mapper", "saml-user-attribute-mapper", "oidc-usermodel-attribute-mapper", "oidc-sha256-pairwise-sub-mapper", "saml-user-property-mapper" ]
|
|
}
|
|
}, {
|
|
"id" : "14d408cd-b052-4089-bd01-19e36925cdf5",
|
|
"name" : "Allowed Client Scopes",
|
|
"providerId" : "allowed-client-templates",
|
|
"subType" : "authenticated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allow-default-scopes" : [ "true" ]
|
|
}
|
|
}, {
|
|
"id" : "3d23b326-4c8a-4b65-99c0-25ffd54a851c",
|
|
"name" : "Trusted Hosts",
|
|
"providerId" : "trusted-hosts",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"host-sending-registration-request-must-match" : [ "true" ],
|
|
"client-uris-must-match" : [ "true" ]
|
|
}
|
|
}, {
|
|
"id" : "d36ce013-17e9-4004-b1e9-e7fa46b8e2e7",
|
|
"name" : "Consent Required",
|
|
"providerId" : "consent-required",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : { }
|
|
}, {
|
|
"id" : "0a746a78-1afd-4878-bf6b-78e3467f0205",
|
|
"name" : "Full Scope Disabled",
|
|
"providerId" : "scope",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : { }
|
|
} ],
|
|
"org.keycloak.keys.KeyProvider" : [ {
|
|
"id" : "67dde9be-8446-407f-b857-2bc12a9a9c86",
|
|
"name" : "rsa-enc-generated",
|
|
"providerId" : "rsa-enc-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"privateKey" : [ "MIIEogIBAAKCAQEAlIsdjfH7g5qzsbi5uGLh0Iiy/yy8Ogy1gvW3SiyN+oeVBtPYmtA+Mb1rI824HHeUBCWBhYSsL6iiUkWggZGou/lstjsS9z2Nw1OU5uMR2kFnMRQB8EgHOufc9J0GLOila1wsinevM+P7QQoeI+HzOk6Op6p/yazArDoZhKKMCw8GvqWjDWcRfN6zgtskYPG+LWeKmy06pqYUdmQhyfhGstKHIxJ4ho5lqwtMwVvwU8iRBYuNb4yvGk0mVwLruNN3UMnQxD4aGKJssRL6tbsJw1ZeJKxoWWMkX6aHLDsbuEYBGJC3jRkmBPYC3hTWleH3+tTq/PgdtdBhrhTaxhBgLwIDAQABAoIBAArLYz3t8EubgeRv2psyIFvRm0Rc4V7MjqIyLfwnabfjg2poGa0CZgqiS7dh2zfCXtDAUv27avHZrNYStjvENIFYelRxzYqHABbKK59tr93u88tGu29VJKVctRtXj9vSmjbHj3sOgH5iWl9bF16fLFg33jkD9F5Y/fVmEXWohEnHVOTT/isWx1EeGb9xRqJP1bauFVq+f65JqnhB//29Pb7pGmS9+lRgqlHWpJyw8yeD8G9R919PzHHCgdgUNpW6YkdkRDyqrPRbFfZqZWVsyVLEQja3c13xpLt2Y00p2qodwwkqIvsp/AgCgqkwykxGfv7DrlTMryg2RbnRUZB4pEECgYEAy+pc26cUK/vt9ckV+u+yDISOmM87ZtMY3qLyMA9yAHX8yPSYpi5ZJQD7KbdpcJlVTY83RlZtoJhuaRvLtGMDZ+GD+hqGzISd+FAJZ+rCjhMm93L3kCgiqOGt++DWGf+1rwIoxVzVHpxWGVcX77c5XBO4LICe2GS2M73cHV+jzsECgYEAunwUzLeFYDpd5PaXOcB0uGC/kjSp9p3AuAwhKqP2Z453qIb80IZUH41VezQBgSC1+VlxL8f4t4ElolmcLtGHEB5fJj+O2ODNQn71bRFS6OKZ8PLtXJDFWd0bk7sjpugIJ8mjF/zhI6gGP9FALLf3o36v43gTEkG7jNW+6hSS2u8CgYBEVXNswF7IJpKlzQ8qmmymOT24A6o6WP96jExwwpxHf0KI7T7CYcHJ3rxMTIRvEVM+vIGfdpMiQDKv0nq/Jncbtr0NcRo/Kyns7pVYV5l/Fvf18Hb5vhlvUsGFKOFWsRRnY2faS7O3oFhSAZep41K7gngzoZ6ZkZZlXHiI92XjgQKBgFSTj+9k0GXbMth0ChQUOBujLV9G6UrDMzOFtMkdAdTnpVdWmXSNZ7vDouA0rvX8euuy6AWuoRvAw+vEznPhbWsfCzJSoxuzoQQmhnLH551doEnKM2LG+eqOwEIZHstE8uXwqjpn40gDnYn2AjAF45dQDr+Qpr2h+EigbGzHle8bAoGAWw58T2zZ918kYwdDsO8GPmbB5C6Av7q/GRWF8HoHxzt+hsLPq67QdGlsWMdOJZP5O8KI001kX2Fz6lLu8GIBatyFXu5M1wO2kgSDZ9U3UUSOFnYWNLrwKF+TERX3js0spn2fHryefGiArCAkDFtgEzqVMJacx2vpqw6E+kOt5DQ=" ],
|
|
"certificate" : [ "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" ],
|
|
"priority" : [ "100" ],
|
|
"algorithm" : [ "RSA-OAEP" ]
|
|
}
|
|
}, {
|
|
"id" : "e552eb4e-c23d-4c42-a5db-69709c4e47a1",
|
|
"name" : "rsa-generated",
|
|
"providerId" : "rsa-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"privateKey" : [ "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" ],
|
|
"certificate" : [ "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" ],
|
|
"priority" : [ "100" ]
|
|
}
|
|
}, {
|
|
"id" : "451dd23e-a6c9-48e5-bb4d-047dbf1f0bfe",
|
|
"name" : "hmac-generated-hs512",
|
|
"providerId" : "hmac-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"kid" : [ "19399004-f950-458e-9ffb-3f9eb2a75b0b" ],
|
|
"secret" : [ "vMjGVSGXiigXDRnWjqsKjB176i-bmDfq4DqPzai3GmYZ6kT0NV3ZrJcdrWbK6fjNud3Qs4iiusQRgsxwPXnaB1gn74whIYu9Va6Zxre5Fovo6RggEEy69f47pkbDoD2TnatiQuScUpic4_1TL-CchBoDFc7JY8mUByXhskMz9RY" ],
|
|
"priority" : [ "100" ],
|
|
"algorithm" : [ "HS512" ]
|
|
}
|
|
}, {
|
|
"id" : "d33aa581-a00a-4745-87aa-dc13a3469ec4",
|
|
"name" : "aes-generated",
|
|
"providerId" : "aes-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"kid" : [ "185d0e87-d1ab-4e5c-969f-ab1c12d8b065" ],
|
|
"secret" : [ "QON2LeCoexZ1J8uR8ZmaZw" ],
|
|
"priority" : [ "100" ]
|
|
}
|
|
} ]
|
|
},
|
|
"internationalizationEnabled" : false,
|
|
"supportedLocales" : [ ],
|
|
"authenticationFlows" : [ {
|
|
"id" : "82344b9f-2217-4288-8c1f-ac2c1aac7c1a",
|
|
"alias" : "Account verification options",
|
|
"description" : "Method with which to verity the existing account",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "idp-email-verification",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Verify Existing Account by Re-authentication",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "58dbcad5-cf0e-44f8-83e3-86ff121f327a",
|
|
"alias" : "Browser - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP is required for the authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "auth-otp-form",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "8373ae89-e345-4feb-8da4-b8f3ed2c2f7c",
|
|
"alias" : "Browser - Conditional Organization",
|
|
"description" : "Flow to determine if the organization identity-first login is to be used",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "organization",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "07949a55-ce10-4f47-8ae9-0d6bd8cb6f7f",
|
|
"alias" : "Direct Grant - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP is required for the authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "direct-grant-validate-otp",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "f32714ad-8a89-4430-a6eb-455a6d2c7804",
|
|
"alias" : "First Broker Login - Conditional Organization",
|
|
"description" : "Flow to determine if the authenticator that adds organization members is to be used",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "idp-add-organization-member",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "ac99e837-1fa8-485a-b6d1-363912801bee",
|
|
"alias" : "First broker login - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP is required for the authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "auth-otp-form",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "00e27cd7-0d52-4f2d-acd4-f716104457de",
|
|
"alias" : "Handle Existing Account",
|
|
"description" : "Handle what to do if there is existing account with same email/username like authenticated identity provider",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "idp-confirm-link",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Account verification options",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "4cbe87e5-91ed-46ce-b282-37702170a355",
|
|
"alias" : "Organization",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Browser - Conditional Organization",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "fbdbfe7e-7f0d-4f8d-96e9-94a68dc04cfb",
|
|
"alias" : "Reset - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP should be reset or not. Set to REQUIRED to force.",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "reset-otp",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "069327fb-0117-4895-810e-562137a7ebda",
|
|
"alias" : "User creation or linking",
|
|
"description" : "Flow for the existing/non-existing user alternatives",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticatorConfig" : "create unique user config",
|
|
"authenticator" : "idp-create-user-if-unique",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Handle Existing Account",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "817189c9-92f1-41dd-a577-8767046f559f",
|
|
"alias" : "Verify Existing Account by Re-authentication",
|
|
"description" : "Reauthentication of existing account",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "idp-username-password-form",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "First broker login - Conditional OTP",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "23d9fb82-7c32-4be1-8e31-b139f13fecc1",
|
|
"alias" : "browser",
|
|
"description" : "Browser based authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "auth-cookie",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "auth-spnego",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "DISABLED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "identity-provider-redirector",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 25,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 26,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Organization",
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 30,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "forms",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "c94e7753-6744-4533-bcde-d79d9916f0d1",
|
|
"alias" : "clients",
|
|
"description" : "Base authentication for clients",
|
|
"providerId" : "client-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "client-secret",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "client-jwt",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "client-secret-jwt",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 30,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "client-x509",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 40,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "db1a1993-9b0f-4028-ab63-6c2756cce59a",
|
|
"alias" : "direct grant",
|
|
"description" : "OpenID Connect Resource Owner Grant",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "direct-grant-validate-username",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "direct-grant-validate-password",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 30,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Direct Grant - Conditional OTP",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "744d7de6-496a-4aed-b7ed-2056527bbb6f",
|
|
"alias" : "docker auth",
|
|
"description" : "Used by Docker clients to authenticate against the IDP",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "docker-http-basic-authenticator",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "a0ea33cc-0385-4c52-b84f-72301188640b",
|
|
"alias" : "first broker login",
|
|
"description" : "Actions taken after first broker login with identity provider account, which is not yet linked to any Keycloak account",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticatorConfig" : "review profile config",
|
|
"authenticator" : "idp-review-profile",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "User creation or linking",
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 50,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "First Broker Login - Conditional Organization",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "9262f236-c6dc-45a0-9386-71330a238fb6",
|
|
"alias" : "forms",
|
|
"description" : "Username, password, otp and other auth forms.",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "auth-username-password-form",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Browser - Conditional OTP",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "3c98f07f-895c-4c50-ac33-cdd32c612e07",
|
|
"alias" : "registration",
|
|
"description" : "Registration flow",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "registration-page-form",
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "registration form",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "db09c4ef-ab22-4786-b7fe-98acd481beb0",
|
|
"alias" : "registration form",
|
|
"description" : "Registration form",
|
|
"providerId" : "form-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "registration-user-creation",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "registration-password-action",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 50,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "registration-recaptcha-action",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "DISABLED",
|
|
"priority" : 60,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "registration-terms-and-conditions",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "DISABLED",
|
|
"priority" : 70,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "806ba9f6-56c1-408f-ad07-74976e56fa1a",
|
|
"alias" : "reset credentials",
|
|
"description" : "Reset credentials for a user if they forgot their password or something",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "reset-credentials-choose-user",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "reset-credential-email",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "reset-password",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 30,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 40,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Reset - Conditional OTP",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "db87aee7-f2b0-4c65-9bad-261f4cf5c2ff",
|
|
"alias" : "saml ecp",
|
|
"description" : "SAML ECP Profile Authentication Flow",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "http-basic-authenticator",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
} ],
|
|
"authenticatorConfig" : [ {
|
|
"id" : "019088c5-10be-4260-9c9e-5d02d87bb52e",
|
|
"alias" : "create unique user config",
|
|
"config" : {
|
|
"require.password.update.after.registration" : "false"
|
|
}
|
|
}, {
|
|
"id" : "14975c35-3c01-4b46-a083-452aff8b0886",
|
|
"alias" : "review profile config",
|
|
"config" : {
|
|
"update.profile.on.first.login" : "missing"
|
|
}
|
|
} ],
|
|
"requiredActions" : [ {
|
|
"alias" : "CONFIGURE_TOTP",
|
|
"name" : "Configure OTP",
|
|
"providerId" : "CONFIGURE_TOTP",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 10,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "TERMS_AND_CONDITIONS",
|
|
"name" : "Terms and Conditions",
|
|
"providerId" : "TERMS_AND_CONDITIONS",
|
|
"enabled" : false,
|
|
"defaultAction" : false,
|
|
"priority" : 20,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "UPDATE_PASSWORD",
|
|
"name" : "Update Password",
|
|
"providerId" : "UPDATE_PASSWORD",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 30,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "UPDATE_PROFILE",
|
|
"name" : "Update Profile",
|
|
"providerId" : "UPDATE_PROFILE",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 40,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "VERIFY_EMAIL",
|
|
"name" : "Verify Email",
|
|
"providerId" : "VERIFY_EMAIL",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 50,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "delete_account",
|
|
"name" : "Delete Account",
|
|
"providerId" : "delete_account",
|
|
"enabled" : false,
|
|
"defaultAction" : false,
|
|
"priority" : 60,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "webauthn-register",
|
|
"name" : "Webauthn Register",
|
|
"providerId" : "webauthn-register",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 70,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "webauthn-register-passwordless",
|
|
"name" : "Webauthn Register Passwordless",
|
|
"providerId" : "webauthn-register-passwordless",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 80,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "VERIFY_PROFILE",
|
|
"name" : "Verify Profile",
|
|
"providerId" : "VERIFY_PROFILE",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 90,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "delete_credential",
|
|
"name" : "Delete Credential",
|
|
"providerId" : "delete_credential",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 100,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "update_user_locale",
|
|
"name" : "Update User Locale",
|
|
"providerId" : "update_user_locale",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 1000,
|
|
"config" : { }
|
|
} ],
|
|
"browserFlow" : "browser",
|
|
"registrationFlow" : "registration",
|
|
"directGrantFlow" : "direct grant",
|
|
"resetCredentialsFlow" : "reset credentials",
|
|
"clientAuthenticationFlow" : "clients",
|
|
"dockerAuthenticationFlow" : "docker auth",
|
|
"firstBrokerLoginFlow" : "first broker login",
|
|
"attributes" : {
|
|
"cibaBackchannelTokenDeliveryMode" : "poll",
|
|
"cibaExpiresIn" : "120",
|
|
"cibaAuthRequestedUserHint" : "login_hint",
|
|
"oauth2DeviceCodeLifespan" : "600",
|
|
"clientOfflineSessionMaxLifespan" : "0",
|
|
"oauth2DevicePollingInterval" : "5",
|
|
"clientSessionIdleTimeout" : "0",
|
|
"parRequestUriLifespan" : "60",
|
|
"clientSessionMaxLifespan" : "0",
|
|
"clientOfflineSessionIdleTimeout" : "0",
|
|
"cibaInterval" : "5",
|
|
"realmReusableOtpCode" : "false"
|
|
},
|
|
"keycloakVersion" : "26.2.5",
|
|
"userManagedAccessAllowed" : false,
|
|
"organizationsEnabled" : false,
|
|
"verifiableCredentialsEnabled" : false,
|
|
"adminPermissionsEnabled" : false,
|
|
"clientProfiles" : {
|
|
"profiles" : [ ]
|
|
},
|
|
"clientPolicies" : {
|
|
"policies" : [ ]
|
|
}
|
|
} |