1830 lines
68 KiB
JSON
1830 lines
68 KiB
JSON
{
|
|
"id" : "otus-marketplace",
|
|
"realm" : "otus-marketplace",
|
|
"displayName" : "Otus Marketplace",
|
|
"notBefore" : 0,
|
|
"defaultSignatureAlgorithm" : "RS256",
|
|
"revokeRefreshToken" : false,
|
|
"refreshTokenMaxReuse" : 0,
|
|
"accessTokenLifespan" : 300,
|
|
"accessTokenLifespanForImplicitFlow" : 900,
|
|
"ssoSessionIdleTimeout" : 1800,
|
|
"ssoSessionMaxLifespan" : 36000,
|
|
"ssoSessionIdleTimeoutRememberMe" : 0,
|
|
"ssoSessionMaxLifespanRememberMe" : 0,
|
|
"offlineSessionIdleTimeout" : 2592000,
|
|
"offlineSessionMaxLifespanEnabled" : false,
|
|
"offlineSessionMaxLifespan" : 5184000,
|
|
"clientSessionIdleTimeout" : 0,
|
|
"clientSessionMaxLifespan" : 0,
|
|
"clientOfflineSessionIdleTimeout" : 0,
|
|
"clientOfflineSessionMaxLifespan" : 0,
|
|
"accessCodeLifespan" : 60,
|
|
"accessCodeLifespanUserAction" : 300,
|
|
"accessCodeLifespanLogin" : 1800,
|
|
"actionTokenGeneratedByAdminLifespan" : 43200,
|
|
"actionTokenGeneratedByUserLifespan" : 300,
|
|
"oauth2DeviceCodeLifespan" : 600,
|
|
"oauth2DevicePollingInterval" : 5,
|
|
"enabled" : true,
|
|
"sslRequired" : "external",
|
|
"registrationAllowed" : false,
|
|
"registrationEmailAsUsername" : false,
|
|
"rememberMe" : false,
|
|
"verifyEmail" : false,
|
|
"loginWithEmailAllowed" : true,
|
|
"duplicateEmailsAllowed" : false,
|
|
"resetPasswordAllowed" : false,
|
|
"editUsernameAllowed" : false,
|
|
"bruteForceProtected" : false,
|
|
"permanentLockout" : false,
|
|
"maxFailureWaitSeconds" : 900,
|
|
"minimumQuickLoginWaitSeconds" : 60,
|
|
"waitIncrementSeconds" : 60,
|
|
"quickLoginCheckMilliSeconds" : 1000,
|
|
"maxDeltaTimeSeconds" : 43200,
|
|
"failureFactor" : 30,
|
|
"roles" : {
|
|
"realm" : [ {
|
|
"id" : "ec06542b-8c8a-4fa1-a605-1594b17250b4",
|
|
"name" : "default-roles-otus-marketplace",
|
|
"description" : "${role_default-roles}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"realm" : [ "offline_access", "uma_authorization" ],
|
|
"client" : {
|
|
"account" : [ "view-profile", "manage-account" ]
|
|
}
|
|
},
|
|
"clientRole" : false,
|
|
"containerId" : "otus-marketplace",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "e0ed7ba1-870a-443d-bd59-470a22a336ec",
|
|
"name" : "uma_authorization",
|
|
"description" : "${role_uma_authorization}",
|
|
"composite" : false,
|
|
"clientRole" : false,
|
|
"containerId" : "otus-marketplace",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "faaa28ab-a7db-4336-a16f-32f55bb16112",
|
|
"name" : "offline_access",
|
|
"description" : "${role_offline-access}",
|
|
"composite" : false,
|
|
"clientRole" : false,
|
|
"containerId" : "otus-marketplace",
|
|
"attributes" : { }
|
|
} ],
|
|
"client" : {
|
|
"otus-marketplace-service" : [ {
|
|
"id" : "f7e5668b-1f4d-4dff-aa98-9e5225b43e7d",
|
|
"name" : "USER",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "96b7d5f3-b04b-4460-9f7a-faf964c583a5",
|
|
"attributes" : { }
|
|
} ],
|
|
"realm-management" : [ {
|
|
"id" : "442bfc5f-0a32-423f-83b8-8dedec745bf9",
|
|
"name" : "view-realm",
|
|
"description" : "${role_view-realm}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6d21188b-8942-4c23-99ca-ddbd534f0dc3",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "c6ad5c1d-72a1-46d3-8404-b037d86e4ebf",
|
|
"name" : "view-clients",
|
|
"description" : "${role_view-clients}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"realm-management" : [ "query-clients" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "6d21188b-8942-4c23-99ca-ddbd534f0dc3",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "a0e86a5b-323e-4c45-9252-e8352a3250dd",
|
|
"name" : "manage-users",
|
|
"description" : "${role_manage-users}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6d21188b-8942-4c23-99ca-ddbd534f0dc3",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "c4cc9153-950f-4dd1-86bf-fbdb90cd5c7d",
|
|
"name" : "impersonation",
|
|
"description" : "${role_impersonation}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6d21188b-8942-4c23-99ca-ddbd534f0dc3",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "c5eadc9c-7a0c-4a84-81c4-75a7160bca09",
|
|
"name" : "realm-admin",
|
|
"description" : "${role_realm-admin}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"realm-management" : [ "view-realm", "view-clients", "manage-users", "impersonation", "view-events", "query-realms", "manage-realm", "query-groups", "manage-identity-providers", "query-clients", "create-client", "view-authorization", "manage-events", "manage-clients", "manage-authorization", "query-users", "view-identity-providers", "view-users" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "6d21188b-8942-4c23-99ca-ddbd534f0dc3",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "43d1944b-8b96-4b14-9f03-cbf4d7747a0e",
|
|
"name" : "view-events",
|
|
"description" : "${role_view-events}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6d21188b-8942-4c23-99ca-ddbd534f0dc3",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "cde7483f-a6c9-4885-b638-830bd208cf09",
|
|
"name" : "query-realms",
|
|
"description" : "${role_query-realms}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6d21188b-8942-4c23-99ca-ddbd534f0dc3",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "b375162f-fd21-4034-ab47-e622d8a390aa",
|
|
"name" : "manage-realm",
|
|
"description" : "${role_manage-realm}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6d21188b-8942-4c23-99ca-ddbd534f0dc3",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "fd1bc1bb-fe38-486c-8906-3e93d3b6c8ba",
|
|
"name" : "manage-identity-providers",
|
|
"description" : "${role_manage-identity-providers}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6d21188b-8942-4c23-99ca-ddbd534f0dc3",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "62a7a36c-b52f-42d1-aff6-b463d671a966",
|
|
"name" : "query-groups",
|
|
"description" : "${role_query-groups}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6d21188b-8942-4c23-99ca-ddbd534f0dc3",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "db9fde48-20bf-4516-881d-46fd4b94e88d",
|
|
"name" : "query-clients",
|
|
"description" : "${role_query-clients}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6d21188b-8942-4c23-99ca-ddbd534f0dc3",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "eb863476-fe0a-4e38-a385-56976bbfb851",
|
|
"name" : "create-client",
|
|
"description" : "${role_create-client}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6d21188b-8942-4c23-99ca-ddbd534f0dc3",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "cb748ce9-eab9-4bc5-a1e5-ff0672ac34db",
|
|
"name" : "view-authorization",
|
|
"description" : "${role_view-authorization}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6d21188b-8942-4c23-99ca-ddbd534f0dc3",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "a0e0453d-aeb4-4f4d-a871-3dd039584456",
|
|
"name" : "manage-clients",
|
|
"description" : "${role_manage-clients}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6d21188b-8942-4c23-99ca-ddbd534f0dc3",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "36d59481-fe9f-46ee-8d33-cd46b1f4d307",
|
|
"name" : "manage-events",
|
|
"description" : "${role_manage-events}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6d21188b-8942-4c23-99ca-ddbd534f0dc3",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "29a41fe2-3499-4261-af17-36602a14647f",
|
|
"name" : "manage-authorization",
|
|
"description" : "${role_manage-authorization}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6d21188b-8942-4c23-99ca-ddbd534f0dc3",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "ddb597c6-cb7f-45ea-8b6c-4e5ab66b2106",
|
|
"name" : "query-users",
|
|
"description" : "${role_query-users}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6d21188b-8942-4c23-99ca-ddbd534f0dc3",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "bba1df94-d44c-4584-8373-6ca8dd3c86be",
|
|
"name" : "view-identity-providers",
|
|
"description" : "${role_view-identity-providers}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "6d21188b-8942-4c23-99ca-ddbd534f0dc3",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "c9b4a403-9b28-4c25-8c88-49e5ff848cd5",
|
|
"name" : "view-users",
|
|
"description" : "${role_view-users}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"realm-management" : [ "query-groups", "query-users" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "6d21188b-8942-4c23-99ca-ddbd534f0dc3",
|
|
"attributes" : { }
|
|
} ],
|
|
"security-admin-console" : [ ],
|
|
"admin-cli" : [ ],
|
|
"account-console" : [ ],
|
|
"broker" : [ {
|
|
"id" : "52b5daaf-81fa-4d59-8f3d-2cab429a0341",
|
|
"name" : "read-token",
|
|
"description" : "${role_read-token}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "7f5a6b99-d4fc-4276-82e0-93642fbc2f60",
|
|
"attributes" : { }
|
|
} ],
|
|
"account" : [ {
|
|
"id" : "08b328ca-8d45-4098-807a-d97b13e931e4",
|
|
"name" : "view-profile",
|
|
"description" : "${role_view-profile}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "ba10e1e9-e7dd-4260-b412-60a9a4a2b6a0",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "bb8e8f91-8a19-488b-afd0-69dfc3e38ef0",
|
|
"name" : "view-groups",
|
|
"description" : "${role_view-groups}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "ba10e1e9-e7dd-4260-b412-60a9a4a2b6a0",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "a8ab93f6-5b15-4f98-a328-c833f2815826",
|
|
"name" : "manage-consent",
|
|
"description" : "${role_manage-consent}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"account" : [ "view-consent" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "ba10e1e9-e7dd-4260-b412-60a9a4a2b6a0",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "76a2152c-d06c-4bbe-bc51-1a86c38684ba",
|
|
"name" : "view-consent",
|
|
"description" : "${role_view-consent}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "ba10e1e9-e7dd-4260-b412-60a9a4a2b6a0",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "4e37e74b-ec6c-4245-a277-b82bc057fb8e",
|
|
"name" : "manage-account",
|
|
"description" : "${role_manage-account}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"account" : [ "manage-account-links" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "ba10e1e9-e7dd-4260-b412-60a9a4a2b6a0",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "3b76c415-6a54-4719-a2b8-44bd2aedef97",
|
|
"name" : "view-applications",
|
|
"description" : "${role_view-applications}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "ba10e1e9-e7dd-4260-b412-60a9a4a2b6a0",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "557663b6-1e42-4697-89b3-279272467349",
|
|
"name" : "manage-account-links",
|
|
"description" : "${role_manage-account-links}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "ba10e1e9-e7dd-4260-b412-60a9a4a2b6a0",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "744ee6f8-0c20-4848-b34d-3d1f7a05a6bf",
|
|
"name" : "delete-account",
|
|
"description" : "${role_delete-account}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "ba10e1e9-e7dd-4260-b412-60a9a4a2b6a0",
|
|
"attributes" : { }
|
|
} ]
|
|
}
|
|
},
|
|
"groups" : [ {
|
|
"id" : "8711b426-3d18-4842-832d-c277d5414ee8",
|
|
"name" : "USER",
|
|
"path" : "/USER",
|
|
"subGroups" : [ ],
|
|
"attributes" : { },
|
|
"realmRoles" : [ "default-roles-otus-marketplace" ],
|
|
"clientRoles" : { }
|
|
} ],
|
|
"defaultRole" : {
|
|
"id" : "ec06542b-8c8a-4fa1-a605-1594b17250b4",
|
|
"name" : "default-roles-otus-marketplace",
|
|
"description" : "${role_default-roles}",
|
|
"composite" : true,
|
|
"clientRole" : false,
|
|
"containerId" : "otus-marketplace"
|
|
},
|
|
"defaultGroups" : [ "/USER" ],
|
|
"requiredCredentials" : [ "password" ],
|
|
"otpPolicyType" : "totp",
|
|
"otpPolicyAlgorithm" : "HmacSHA1",
|
|
"otpPolicyInitialCounter" : 0,
|
|
"otpPolicyDigits" : 6,
|
|
"otpPolicyLookAheadWindow" : 1,
|
|
"otpPolicyPeriod" : 30,
|
|
"otpPolicyCodeReusable" : false,
|
|
"otpSupportedApplications" : [ "totpAppFreeOTPName", "totpAppGoogleName", "totpAppMicrosoftAuthenticatorName" ],
|
|
"localizationTexts" : { },
|
|
"webAuthnPolicyRpEntityName" : "keycloak",
|
|
"webAuthnPolicySignatureAlgorithms" : [ "ES256" ],
|
|
"webAuthnPolicyRpId" : "",
|
|
"webAuthnPolicyAttestationConveyancePreference" : "not specified",
|
|
"webAuthnPolicyAuthenticatorAttachment" : "not specified",
|
|
"webAuthnPolicyRequireResidentKey" : "not specified",
|
|
"webAuthnPolicyUserVerificationRequirement" : "not specified",
|
|
"webAuthnPolicyCreateTimeout" : 0,
|
|
"webAuthnPolicyAvoidSameAuthenticatorRegister" : false,
|
|
"webAuthnPolicyAcceptableAaguids" : [ ],
|
|
"webAuthnPolicyExtraOrigins" : [ ],
|
|
"webAuthnPolicyPasswordlessRpEntityName" : "keycloak",
|
|
"webAuthnPolicyPasswordlessSignatureAlgorithms" : [ "ES256" ],
|
|
"webAuthnPolicyPasswordlessRpId" : "",
|
|
"webAuthnPolicyPasswordlessAttestationConveyancePreference" : "not specified",
|
|
"webAuthnPolicyPasswordlessAuthenticatorAttachment" : "not specified",
|
|
"webAuthnPolicyPasswordlessRequireResidentKey" : "not specified",
|
|
"webAuthnPolicyPasswordlessUserVerificationRequirement" : "not specified",
|
|
"webAuthnPolicyPasswordlessCreateTimeout" : 0,
|
|
"webAuthnPolicyPasswordlessAvoidSameAuthenticatorRegister" : false,
|
|
"webAuthnPolicyPasswordlessAcceptableAaguids" : [ ],
|
|
"webAuthnPolicyPasswordlessExtraOrigins" : [ ],
|
|
"scopeMappings" : [ {
|
|
"clientScope" : "offline_access",
|
|
"roles" : [ "offline_access" ]
|
|
}, {
|
|
"clientScope" : "otus-marketplace",
|
|
"roles" : [ "default-roles-otus-marketplace" ]
|
|
} ],
|
|
"clientScopeMappings" : {
|
|
"account" : [ {
|
|
"client" : "account-console",
|
|
"roles" : [ "manage-account", "view-groups" ]
|
|
} ]
|
|
},
|
|
"clients" : [ {
|
|
"id" : "ba10e1e9-e7dd-4260-b412-60a9a4a2b6a0",
|
|
"clientId" : "account",
|
|
"name" : "${client_account}",
|
|
"rootUrl" : "${authBaseUrl}",
|
|
"baseUrl" : "/realms/otus-marketplace/account/",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ "/realms/otus-marketplace/account/*" ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"post.logout.redirect.uris" : "+"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "profile", "roles", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "8380c41e-f906-4c01-8685-dce56e853ee3",
|
|
"clientId" : "account-console",
|
|
"name" : "${client_account-console}",
|
|
"rootUrl" : "${authBaseUrl}",
|
|
"baseUrl" : "/realms/otus-marketplace/account/",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ "/realms/otus-marketplace/account/*" ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"post.logout.redirect.uris" : "+",
|
|
"pkce.code.challenge.method" : "S256"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"protocolMappers" : [ {
|
|
"id" : "9046a1dc-cd8c-4812-b3b7-5e1f342a479d",
|
|
"name" : "audience resolve",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-audience-resolve-mapper",
|
|
"consentRequired" : false,
|
|
"config" : { }
|
|
} ],
|
|
"defaultClientScopes" : [ "web-origins", "profile", "roles", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "1ea1031a-c029-46fd-9477-2867783adc93",
|
|
"clientId" : "admin-cli",
|
|
"name" : "${client_admin-cli}",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : false,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : true,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"post.logout.redirect.uris" : "+"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "profile", "roles", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "7f5a6b99-d4fc-4276-82e0-93642fbc2f60",
|
|
"clientId" : "broker",
|
|
"name" : "${client_broker}",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : true,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : false,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"post.logout.redirect.uris" : "+"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "profile", "roles", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "96b7d5f3-b04b-4460-9f7a-faf964c583a5",
|
|
"clientId" : "otus-marketplace-service",
|
|
"rootUrl" : "http://localhost:8080",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ "/" ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : true,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"saml.force.post.binding" : "false",
|
|
"saml.multivalued.roles" : "false",
|
|
"post.logout.redirect.uris" : "+",
|
|
"oauth2.device.authorization.grant.enabled" : "false",
|
|
"backchannel.logout.revoke.offline.tokens" : "false",
|
|
"saml.server.signature.keyinfo.ext" : "false",
|
|
"use.refresh.tokens" : "true",
|
|
"jwt.credential.certificate" : "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",
|
|
"oidc.ciba.grant.enabled" : "false",
|
|
"backchannel.logout.session.required" : "true",
|
|
"client_credentials.use_refresh_token" : "false",
|
|
"require.pushed.authorization.requests" : "false",
|
|
"saml.client.signature" : "false",
|
|
"id.token.as.detached.signature" : "false",
|
|
"saml.assertion.signature" : "false",
|
|
"saml.encrypt" : "false",
|
|
"saml.server.signature" : "false",
|
|
"exclude.session.state.from.auth.response" : "false",
|
|
"saml.artifact.binding" : "false",
|
|
"saml_force_name_id_format" : "false",
|
|
"tls.client.certificate.bound.access.tokens" : "false",
|
|
"saml.authnstatement" : "false",
|
|
"display.on.consent.screen" : "false",
|
|
"saml.onetimeuse.condition" : "false"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : true,
|
|
"nodeReRegistrationTimeout" : -1,
|
|
"protocolMappers" : [ {
|
|
"id" : "e6d885c8-4c3a-40a6-87bb-5ee2e6ee835f",
|
|
"name" : "aud",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-hardcoded-claim-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"claim.value" : "ad-users",
|
|
"userinfo.token.claim" : "true",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "aud",
|
|
"access.tokenResponse.claim" : "false"
|
|
}
|
|
}, {
|
|
"id" : "10524baa-10b6-49ee-a18e-cb5242c0fa13",
|
|
"name" : "groups",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-group-membership-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"full.path" : "false",
|
|
"id.token.claim" : "false",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "groups",
|
|
"userinfo.token.claim" : "false"
|
|
}
|
|
} ],
|
|
"defaultClientScopes" : [ "web-origins", "roles" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "6d21188b-8942-4c23-99ca-ddbd534f0dc3",
|
|
"clientId" : "realm-management",
|
|
"name" : "${client_realm-management}",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : true,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : false,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"post.logout.redirect.uris" : "+"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "profile", "roles", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "d829107c-dcfe-416e-82cb-a36b76f33009",
|
|
"clientId" : "security-admin-console",
|
|
"name" : "${client_security-admin-console}",
|
|
"rootUrl" : "${authAdminUrl}",
|
|
"baseUrl" : "/admin/otus-marketplace/console/",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ "/admin/otus-marketplace/console/*" ],
|
|
"webOrigins" : [ "+" ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"post.logout.redirect.uris" : "+",
|
|
"pkce.code.challenge.method" : "S256"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"protocolMappers" : [ {
|
|
"id" : "a3c28e64-eef9-4e9f-9a72-6814545b84d3",
|
|
"name" : "locale",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "locale",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "locale",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ],
|
|
"defaultClientScopes" : [ "web-origins", "profile", "roles", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
} ],
|
|
"clientScopes" : [ {
|
|
"id" : "73de5776-9807-46ac-a040-601d07722400",
|
|
"name" : "address",
|
|
"description" : "OpenID Connect built-in scope: address",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "true",
|
|
"consent.screen.text" : "${addressScopeConsentText}"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "0457b8bb-54ee-4583-8c02-df7dac6f28d5",
|
|
"name" : "address",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-address-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"user.attribute.formatted" : "formatted",
|
|
"user.attribute.country" : "country",
|
|
"user.attribute.postal_code" : "postal_code",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute.street" : "street",
|
|
"id.token.claim" : "true",
|
|
"user.attribute.region" : "region",
|
|
"access.token.claim" : "true",
|
|
"user.attribute.locality" : "locality"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "6779cf1c-a895-4330-a94c-36d607635fb3",
|
|
"name" : "acr",
|
|
"description" : "OpenID Connect scope for add acr (authentication context class reference) to the token",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "false",
|
|
"display.on.consent.screen" : "false"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "6905b9fa-1f2b-4276-9538-885728d81c6e",
|
|
"name" : "acr loa level",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-acr-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"id.token.claim" : "true",
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "a782e4d5-7389-4d90-9627-10ea2911a33e",
|
|
"name" : "role_list",
|
|
"description" : "SAML role list",
|
|
"protocol" : "saml",
|
|
"attributes" : {
|
|
"consent.screen.text" : "${samlRoleListScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "c936ab6c-b7df-4f18-81cb-f9b4599f259b",
|
|
"name" : "role list",
|
|
"protocol" : "saml",
|
|
"protocolMapper" : "saml-role-list-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"single" : "false",
|
|
"attribute.nameformat" : "Basic",
|
|
"attribute.name" : "Role"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "d610fd5c-e9f0-4c75-bada-deaa38a44f93",
|
|
"name" : "phone",
|
|
"description" : "OpenID Connect built-in scope: phone",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "true",
|
|
"consent.screen.text" : "${phoneScopeConsentText}"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "678d741b-72da-4dcc-a866-1554b656c3a3",
|
|
"name" : "phone number",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "phoneNumber",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "phone_number",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "1ce17405-221a-4702-b39b-35eeae432681",
|
|
"name" : "phone number verified",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "phoneNumberVerified",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "phone_number_verified",
|
|
"jsonType.label" : "boolean"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "85f25644-ae19-46b6-b8b2-7fb4c4fd0a56",
|
|
"name" : "web-origins",
|
|
"description" : "OpenID Connect scope for add allowed web origins to the access token",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "false",
|
|
"display.on.consent.screen" : "false",
|
|
"consent.screen.text" : ""
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "58a55003-399f-4ad8-aaac-8547f0b57e78",
|
|
"name" : "allowed web origins",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-allowed-origins-mapper",
|
|
"consentRequired" : false,
|
|
"config" : { }
|
|
} ]
|
|
}, {
|
|
"id" : "1e91dc51-1c7b-42fb-a146-10acc4b7f0e6",
|
|
"name" : "email",
|
|
"description" : "OpenID Connect built-in scope: email",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "true",
|
|
"consent.screen.text" : "${emailScopeConsentText}"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "67a034c1-1995-4322-b61d-3dc731256172",
|
|
"name" : "email",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-property-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "email",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "email",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "a70613bb-3d0b-4e1f-a7d1-97806ef4fb49",
|
|
"name" : "email verified",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-property-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "emailVerified",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "email_verified",
|
|
"jsonType.label" : "boolean"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "d01d7158-4bc5-438f-b426-1b75858f1fa8",
|
|
"name" : "profile",
|
|
"description" : "OpenID Connect built-in scope: profile",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "true",
|
|
"consent.screen.text" : "${profileScopeConsentText}"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "45951871-317f-426a-afba-aff445ea1d1c",
|
|
"name" : "middle name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "middleName",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "middle_name",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "b0f80249-5325-4120-9fba-2c80fb167dae",
|
|
"name" : "profile",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "profile",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "profile",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "b58b57ff-3251-423a-9fa8-792de8e4fefd",
|
|
"name" : "username",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-property-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "username",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "preferred_username",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "faf0444a-4437-437a-a4e8-639c10febb0d",
|
|
"name" : "gender",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "gender",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "gender",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "ee5ccaae-cdde-40f7-9912-6d05c32d021d",
|
|
"name" : "birthdate",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "birthdate",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "birthdate",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "3f92e080-d77f-4cd8-a1d0-95864b714e67",
|
|
"name" : "zoneinfo",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "zoneinfo",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "zoneinfo",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "628747d4-9a19-46ba-ae31-844cb03614b5",
|
|
"name" : "website",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "website",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "website",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "ff254cad-f6bc-43f5-b826-99300f1e5ccd",
|
|
"name" : "locale",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "locale",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "locale",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "fec69fa9-0ca2-4cd8-a9c3-cd1f46b7f125",
|
|
"name" : "nickname",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "nickname",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "nickname",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "9917ec30-6547-44b4-ac7e-4063bb6aa450",
|
|
"name" : "given name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-property-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "firstName",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "given_name",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "fb56dbeb-1e95-4ebb-a664-6bb0f646578d",
|
|
"name" : "family name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-property-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "lastName",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "family_name",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "fc776024-878e-4ffc-bcba-811df52fefea",
|
|
"name" : "picture",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "picture",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "picture",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "6a6c50b6-7dc7-4176-b4d0-0e66362612ca",
|
|
"name" : "updated at",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "updatedAt",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "updated_at",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "b2dccd64-15d5-4327-8cd1-27c17e171db3",
|
|
"name" : "full name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-full-name-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"userinfo.token.claim" : "true"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "c5393ba9-51ad-4439-9a3a-e3d50fc90db8",
|
|
"name" : "roles",
|
|
"description" : "OpenID Connect scope for add user roles to the access token",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "false",
|
|
"display.on.consent.screen" : "true",
|
|
"consent.screen.text" : "${rolesScopeConsentText}"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "c501f064-accb-4a04-a6ce-6a56a9f4c20b",
|
|
"name" : "client roles",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-client-role-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"user.attribute" : "foo",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "resource_access.${client_id}.roles",
|
|
"jsonType.label" : "String",
|
|
"multivalued" : "true"
|
|
}
|
|
}, {
|
|
"id" : "cc56ea3e-e440-4124-b71f-51f74d253a91",
|
|
"name" : "audience resolve",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-audience-resolve-mapper",
|
|
"consentRequired" : false,
|
|
"config" : { }
|
|
}, {
|
|
"id" : "3028fb30-d025-4666-a016-75c69132fe0a",
|
|
"name" : "realm roles",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-realm-role-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"user.attribute" : "foo",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "realm_access.roles",
|
|
"jsonType.label" : "String",
|
|
"multivalued" : "true"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "d826541e-37d1-42ac-94e6-c9ace735e12e",
|
|
"name" : "offline_access",
|
|
"description" : "OpenID Connect built-in scope: offline_access",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"consent.screen.text" : "${offlineAccessScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
}
|
|
}, {
|
|
"id" : "d51fdf5d-d297-4b3b-ac78-f002c8517398",
|
|
"name" : "otus-marketplace",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "true"
|
|
}
|
|
}, {
|
|
"id" : "7e017fb9-185f-4540-9061-8d8fa0ef9559",
|
|
"name" : "microprofile-jwt",
|
|
"description" : "Microprofile - JWT built-in scope",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "false"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "fa2c8da1-9068-4bf1-8efa-bce9169af279",
|
|
"name" : "upn",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-property-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "username",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "upn",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "30a7a411-f1de-4b4a-804c-7ebad85dbc0f",
|
|
"name" : "groups",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-realm-role-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"multivalued" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "foo",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "groups",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ]
|
|
} ],
|
|
"defaultDefaultClientScopes" : [ "email", "web-origins", "role_list", "roles", "profile", "acr" ],
|
|
"defaultOptionalClientScopes" : [ "address", "microprofile-jwt", "phone", "offline_access" ],
|
|
"browserSecurityHeaders" : {
|
|
"contentSecurityPolicyReportOnly" : "",
|
|
"xContentTypeOptions" : "nosniff",
|
|
"referrerPolicy" : "no-referrer",
|
|
"xRobotsTag" : "none",
|
|
"xFrameOptions" : "SAMEORIGIN",
|
|
"contentSecurityPolicy" : "frame-src 'self'; frame-ancestors 'self'; object-src 'none';",
|
|
"xXSSProtection" : "1; mode=block",
|
|
"strictTransportSecurity" : "max-age=31536000; includeSubDomains"
|
|
},
|
|
"smtpServer" : { },
|
|
"loginTheme" : "keycloak",
|
|
"eventsEnabled" : false,
|
|
"eventsListeners" : [ "jboss-logging" ],
|
|
"enabledEventTypes" : [ ],
|
|
"adminEventsEnabled" : false,
|
|
"adminEventsDetailsEnabled" : false,
|
|
"identityProviders" : [ ],
|
|
"identityProviderMappers" : [ ],
|
|
"components" : {
|
|
"org.keycloak.services.clientregistration.policy.ClientRegistrationPolicy" : [ {
|
|
"id" : "aa142c07-2a15-4b0d-af81-cb9a13107a47",
|
|
"name" : "Max Clients Limit",
|
|
"providerId" : "max-clients",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"max-clients" : [ "200" ]
|
|
}
|
|
}, {
|
|
"id" : "35c7b09b-9043-4337-ae7d-4455a2daa14c",
|
|
"name" : "Allowed Client Scopes",
|
|
"providerId" : "allowed-client-templates",
|
|
"subType" : "authenticated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allow-default-scopes" : [ "true" ]
|
|
}
|
|
}, {
|
|
"id" : "3b2dee13-e36e-4545-8307-0b970e70ab5d",
|
|
"name" : "Trusted Hosts",
|
|
"providerId" : "trusted-hosts",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"host-sending-registration-request-must-match" : [ "true" ],
|
|
"client-uris-must-match" : [ "true" ]
|
|
}
|
|
}, {
|
|
"id" : "9bc37677-45b4-4d50-afcc-9ee741f77a5e",
|
|
"name" : "Allowed Protocol Mapper Types",
|
|
"providerId" : "allowed-protocol-mappers",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allowed-protocol-mapper-types" : [ "oidc-usermodel-property-mapper", "saml-user-attribute-mapper", "saml-role-list-mapper", "oidc-usermodel-attribute-mapper", "oidc-full-name-mapper", "oidc-address-mapper", "oidc-sha256-pairwise-sub-mapper", "saml-user-property-mapper" ]
|
|
}
|
|
}, {
|
|
"id" : "3f10a26e-c3c1-4fd6-9ce4-909088438d97",
|
|
"name" : "Allowed Protocol Mapper Types",
|
|
"providerId" : "allowed-protocol-mappers",
|
|
"subType" : "authenticated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allowed-protocol-mapper-types" : [ "saml-user-attribute-mapper", "oidc-sha256-pairwise-sub-mapper", "oidc-address-mapper", "oidc-usermodel-property-mapper", "saml-user-property-mapper", "oidc-usermodel-attribute-mapper", "saml-role-list-mapper", "oidc-full-name-mapper" ]
|
|
}
|
|
}, {
|
|
"id" : "9f1597f1-7492-4e37-879a-3010278305a6",
|
|
"name" : "Full Scope Disabled",
|
|
"providerId" : "scope",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : { }
|
|
}, {
|
|
"id" : "c62fbee8-d4b6-42d3-bf33-a969143be74c",
|
|
"name" : "Allowed Client Scopes",
|
|
"providerId" : "allowed-client-templates",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allow-default-scopes" : [ "true" ]
|
|
}
|
|
}, {
|
|
"id" : "11e3a6d8-fc57-4ac1-a74f-aa8bc4b4ec23",
|
|
"name" : "Consent Required",
|
|
"providerId" : "consent-required",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : { }
|
|
} ],
|
|
"org.keycloak.keys.KeyProvider" : [ {
|
|
"id" : "2ee7e882-a94f-44cd-8dfd-23ddf6574d0f",
|
|
"name" : "rsa-generated",
|
|
"providerId" : "rsa-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"privateKey" : [ "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" ],
|
|
"certificate" : [ "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" ],
|
|
"priority" : [ "100" ]
|
|
}
|
|
}, {
|
|
"id" : "af4bd03c-bb9b-4861-b69d-b8f69a241968",
|
|
"name" : "aes-generated",
|
|
"providerId" : "aes-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"kid" : [ "fff43362-ca3b-4b85-bc29-bf632fb00255" ],
|
|
"secret" : [ "nsWH9ORgLvzJeZHDbNr4Kw" ],
|
|
"priority" : [ "100" ]
|
|
}
|
|
}, {
|
|
"id" : "7888065d-47a7-43db-85e1-9ae9a8664d4e",
|
|
"name" : "rsa-enc-generated",
|
|
"providerId" : "rsa-enc-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"privateKey" : [ "MIIEogIBAAKCAQEAn0yGgdbE+sh203AMpy3p3gVwUxPmU4VOTN0IW44FtA6okIXaaQdUVsAdmc3U/KOPT7KOw8JeuJr2CaBcLWpNya4//atDJTR+3mLe0I4kwghX8q1S8n+PawW7U9ZSLql2gntQc8UHqLCliWNKhCOe6Jk7eRUoWuf3UC6u0lfSnmfcfFJRIyg7guK5W7H+GPlNFoCBIQzhwNz7M91V52xLIAhDhNc8ZqBn/UwHzEFRaIMQ9IwMHk4xnNzLPCyA9UDUYB9nXXvekObz7g1Az3qA48C2gSIVWuFNA8vFtjn/v81wAxZciLUswE9kKOvmY/rP5x/KCzqXB3Ohxi/WaIVN6QIDAQABAoIBAAMaxXNR2XhuwDwaLrDyaOCqF/iShnZhvncqhp9sKunJsFjStwE9gpQHPfxxocFDuccKmpQvnVN5N6rT3IAJFpeD5RzfQdl/hqp0YFXNs2MxsO8amCeAO24RSEeXwXXF2TitSRHciOvtd2hwTjM5k38Cf4F6W1U8OJpwMnmIeyMZqLNzW5GCz0m/Fv3dxdKNlZap9YGb3cktUrovH1Oyz0kRAs8b1GKywnday6lhrKLgMELQibifIp1OIWAbTib9yyWtljup1glnAmiRL00yOac0cntiwcsR7hGKmRSBuYxlESRfgCVToULtDeAVgWPfek+Vze1HVQjpvSC0qFSvNvUCgYEA2BZHdZTP88Uxe1a05hXUCalHXzNi3xXpFzehkeAUSMoyqEmXGBnQsoTl0JxPC5wqktJSYKiJczYMcFQQNnFhT4k41pU3AYJzbg8Y3DcqH9kK2CFlKHzOT+g7DWUoTMO+19Vb8pQ1sMH0C35zx1ApjeLyctVtOE8TnLuR1xUKKT0CgYEAvLkCSRFM8jIqwXXtrEQA6C5UG0Ad4WM6D3ovIusbFNmO4RuOAp9CbCPQsOnUGrITBB71Xak1MChuTu79OPfVROhkNAhxa1B74POHvFt6WXCCUg5QtPtkfG/c9aChC80u6A/vhjNHGHf0dw20zpQrajCmTFH1/p1cwSgfnllvSh0CgYAnT+5SOu+WRtLYwI6KqX/4/f4JGN0s/tx4J9vSITUvhPGwYisF7HRmdf0ldbp/vzqTmYX5JdBT0Ip0ySZl8Tyl7q4Tg/QM50G+zSpVrgeQ4biyV2kC86nJKdPMfRHW3WnT9HIU8NfPv4l5qdjAcxoMQTSgpamILALCafF/csl1dQKBgBRkBPwyE1dD1lzKyiBHxLVRdCLxnYjhuL89W2RxdJ6fFxH5cTGVVY7rm7vRt+oefXF/itFQ2/9VDv4WUmPaWz+zwEfi9aY7rvbSOUM/uwt43YvSIiQ72VKcn4omjeABjmTie+XLGo5pP4+xemyrk7lIgl9Sp7qX9BKmrCvmy+B9AoGAb4LVupSZYnp6ESYG8HznzF0OjKdTJhfUDsdPd0f27mGpjxyksRuwLoX+1Xd96Bko9mbKA/FzS2W6RJH030umhAze9/BIvTPtbs3cyl/szIhnxtskLZ2UAvODA5lgfb3mG8qgh59kIk/ASq3x0wXJ40dgcZFNEye6A40Yjp6vYGk=" ],
|
|
"certificate" : [ "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" ],
|
|
"priority" : [ "100" ],
|
|
"algorithm" : [ "RSA-OAEP" ]
|
|
}
|
|
}, {
|
|
"id" : "3d06a085-40da-40ef-bad4-398447b62ecf",
|
|
"name" : "hmac-generated",
|
|
"providerId" : "hmac-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"kid" : [ "917b5e68-5ab5-45e0-9c6e-8b457b0de579" ],
|
|
"secret" : [ "JWRhYMWjb9zugMKBuh-WBW_X8J6KU-XSiiGD9_mXrxFTZkmtvMGDLMEZVfXOOWRIPJXWG-MaGDEXEaHByQ9y-w" ],
|
|
"priority" : [ "100" ],
|
|
"algorithm" : [ "HS256" ]
|
|
}
|
|
} ]
|
|
},
|
|
"internationalizationEnabled" : false,
|
|
"supportedLocales" : [ "" ],
|
|
"authenticationFlows" : [ {
|
|
"id" : "913f1273-2755-4ed6-9d43-7451fc7f46f6",
|
|
"alias" : "Account verification options",
|
|
"description" : "Method with which to verity the existing account",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "idp-email-verification",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Verify Existing Account by Re-authentication",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "7fde02a6-6252-41f7-8de7-f8e963ed3721",
|
|
"alias" : "Browser - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP is required for the authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "auth-otp-form",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "00d4700a-3554-4372-af15-8aafdd1e0a6b",
|
|
"alias" : "Direct Grant - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP is required for the authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "direct-grant-validate-otp",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "5f6b4205-7374-4e62-8c3a-7f343c05fc4c",
|
|
"alias" : "First broker login - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP is required for the authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "auth-otp-form",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "84ee15fa-f04b-43fd-879a-3d464ad4d0ce",
|
|
"alias" : "Handle Existing Account",
|
|
"description" : "Handle what to do if there is existing account with same email/username like authenticated identity provider",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "idp-confirm-link",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Account verification options",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "f78faeb8-9b19-4863-a67e-f4b3071521b8",
|
|
"alias" : "Reset - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP should be reset or not. Set to REQUIRED to force.",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "reset-otp",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "f6a32408-74f1-4c37-b5f1-0f45dabcdcfc",
|
|
"alias" : "User creation or linking",
|
|
"description" : "Flow for the existing/non-existing user alternatives",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticatorConfig" : "create unique user config",
|
|
"authenticator" : "idp-create-user-if-unique",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Handle Existing Account",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "781f4946-073c-49bf-ab5c-9dcc30f7bacd",
|
|
"alias" : "Verify Existing Account by Re-authentication",
|
|
"description" : "Reauthentication of existing account",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "idp-username-password-form",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "First broker login - Conditional OTP",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "14c0cae3-23fb-4bc2-aaf5-b00e6b28d690",
|
|
"alias" : "browser",
|
|
"description" : "browser based authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "auth-cookie",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "auth-spnego",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "DISABLED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "identity-provider-redirector",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 25,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 30,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "forms",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "787889ec-0399-4381-9e5c-c81e41dc34a1",
|
|
"alias" : "clients",
|
|
"description" : "Base authentication for clients",
|
|
"providerId" : "client-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "client-secret",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "client-jwt",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "client-secret-jwt",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 30,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "client-x509",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 40,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "a36e5912-620c-4d7a-a9f0-956bbeefbd5b",
|
|
"alias" : "direct grant",
|
|
"description" : "OpenID Connect Resource Owner Grant",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "direct-grant-validate-username",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "direct-grant-validate-password",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 30,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Direct Grant - Conditional OTP",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "9ded7328-5509-4224-a823-59d84a7eff38",
|
|
"alias" : "docker auth",
|
|
"description" : "Used by Docker clients to authenticate against the IDP",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "docker-http-basic-authenticator",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "b8439ff4-0f9d-49d8-bf1e-293fca6011d8",
|
|
"alias" : "first broker login",
|
|
"description" : "Actions taken after first broker login with identity provider account, which is not yet linked to any Keycloak account",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticatorConfig" : "review profile config",
|
|
"authenticator" : "idp-review-profile",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "User creation or linking",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "b8ac79f8-ffb5-4716-b29e-b508bbe8c204",
|
|
"alias" : "forms",
|
|
"description" : "Username, password, otp and other auth forms.",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "auth-username-password-form",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Browser - Conditional OTP",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "449cc526-f2e1-4b0e-ae06-c914eac81443",
|
|
"alias" : "registration",
|
|
"description" : "registration flow",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "registration-page-form",
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "registration form",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "69dd4fa9-de4d-4dbf-b77a-11599d485930",
|
|
"alias" : "registration form",
|
|
"description" : "registration form",
|
|
"providerId" : "form-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "registration-user-creation",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "registration-password-action",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 50,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "registration-recaptcha-action",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "DISABLED",
|
|
"priority" : 60,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "cea3fde8-217b-49cc-b33e-b639adbf5a12",
|
|
"alias" : "reset credentials",
|
|
"description" : "Reset credentials for a user if they forgot their password or something",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "reset-credentials-choose-user",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "reset-credential-email",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "reset-password",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 30,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 40,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Reset - Conditional OTP",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "82506382-c8fc-46f0-84ee-acacb2cf16cc",
|
|
"alias" : "saml ecp",
|
|
"description" : "SAML ECP Profile Authentication Flow",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "http-basic-authenticator",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
} ],
|
|
"authenticatorConfig" : [ {
|
|
"id" : "085caece-781c-45ae-9c4d-b9920563f657",
|
|
"alias" : "create unique user config",
|
|
"config" : {
|
|
"require.password.update.after.registration" : "false"
|
|
}
|
|
}, {
|
|
"id" : "a28287da-7d00-46f5-be37-32d3bb4b267f",
|
|
"alias" : "review profile config",
|
|
"config" : {
|
|
"update.profile.on.first.login" : "missing"
|
|
}
|
|
} ],
|
|
"requiredActions" : [ {
|
|
"alias" : "CONFIGURE_TOTP",
|
|
"name" : "Configure OTP",
|
|
"providerId" : "CONFIGURE_TOTP",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 10,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "TERMS_AND_CONDITIONS",
|
|
"name" : "Terms and Conditions",
|
|
"providerId" : "TERMS_AND_CONDITIONS",
|
|
"enabled" : false,
|
|
"defaultAction" : false,
|
|
"priority" : 20,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "UPDATE_PASSWORD",
|
|
"name" : "Update Password",
|
|
"providerId" : "UPDATE_PASSWORD",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 30,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "UPDATE_PROFILE",
|
|
"name" : "Update Profile",
|
|
"providerId" : "UPDATE_PROFILE",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 40,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "VERIFY_EMAIL",
|
|
"name" : "Verify Email",
|
|
"providerId" : "VERIFY_EMAIL",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 50,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "delete_account",
|
|
"name" : "Delete Account",
|
|
"providerId" : "delete_account",
|
|
"enabled" : false,
|
|
"defaultAction" : false,
|
|
"priority" : 60,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "update_user_locale",
|
|
"name" : "Update User Locale",
|
|
"providerId" : "update_user_locale",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 1000,
|
|
"config" : { }
|
|
} ],
|
|
"browserFlow" : "browser",
|
|
"registrationFlow" : "registration",
|
|
"directGrantFlow" : "direct grant",
|
|
"resetCredentialsFlow" : "reset credentials",
|
|
"clientAuthenticationFlow" : "clients",
|
|
"dockerAuthenticationFlow" : "docker auth",
|
|
"attributes" : {
|
|
"cibaBackchannelTokenDeliveryMode" : "poll",
|
|
"cibaAuthRequestedUserHint" : "login_hint",
|
|
"clientOfflineSessionMaxLifespan" : "0",
|
|
"oauth2DevicePollingInterval" : "5",
|
|
"clientSessionIdleTimeout" : "0",
|
|
"userProfileEnabled" : "false",
|
|
"clientOfflineSessionIdleTimeout" : "0",
|
|
"cibaInterval" : "5",
|
|
"realmReusableOtpCode" : "false",
|
|
"cibaExpiresIn" : "120",
|
|
"oauth2DeviceCodeLifespan" : "600",
|
|
"parRequestUriLifespan" : "60",
|
|
"clientSessionMaxLifespan" : "0"
|
|
},
|
|
"keycloakVersion" : "23.0.6",
|
|
"userManagedAccessAllowed" : false,
|
|
"clientProfiles" : {
|
|
"profiles" : [ ]
|
|
},
|
|
"clientPolicies" : {
|
|
"policies" : [ ]
|
|
}
|
|
} |