mirror of
https://github.com/OtusTeam/Spring.git
synced 2026-05-30 10:50:42 +00:00
Александр Оруджев
1692 lines
62 KiB
JSON
1692 lines
62 KiB
JSON
{
|
|
"id" : "KCExample",
|
|
"realm" : "KCExample",
|
|
"notBefore" : 0,
|
|
"revokeRefreshToken" : false,
|
|
"refreshTokenMaxReuse" : 0,
|
|
"accessTokenLifespan" : 300,
|
|
"accessTokenLifespanForImplicitFlow" : 900,
|
|
"ssoSessionIdleTimeout" : 1800,
|
|
"ssoSessionMaxLifespan" : 36000,
|
|
"ssoSessionIdleTimeoutRememberMe" : 0,
|
|
"ssoSessionMaxLifespanRememberMe" : 0,
|
|
"offlineSessionIdleTimeout" : 2592000,
|
|
"offlineSessionMaxLifespanEnabled" : false,
|
|
"offlineSessionMaxLifespan" : 5184000,
|
|
"clientSessionIdleTimeout" : 0,
|
|
"clientSessionMaxLifespan" : 0,
|
|
"clientOfflineSessionIdleTimeout" : 0,
|
|
"clientOfflineSessionMaxLifespan" : 0,
|
|
"accessCodeLifespan" : 60,
|
|
"accessCodeLifespanUserAction" : 300,
|
|
"accessCodeLifespanLogin" : 1800,
|
|
"actionTokenGeneratedByAdminLifespan" : 43200,
|
|
"actionTokenGeneratedByUserLifespan" : 300,
|
|
"enabled" : true,
|
|
"sslRequired" : "external",
|
|
"registrationAllowed" : false,
|
|
"registrationEmailAsUsername" : false,
|
|
"rememberMe" : false,
|
|
"verifyEmail" : false,
|
|
"loginWithEmailAllowed" : true,
|
|
"duplicateEmailsAllowed" : false,
|
|
"resetPasswordAllowed" : false,
|
|
"editUsernameAllowed" : false,
|
|
"bruteForceProtected" : false,
|
|
"permanentLockout" : false,
|
|
"maxFailureWaitSeconds" : 900,
|
|
"minimumQuickLoginWaitSeconds" : 60,
|
|
"waitIncrementSeconds" : 60,
|
|
"quickLoginCheckMilliSeconds" : 1000,
|
|
"maxDeltaTimeSeconds" : 43200,
|
|
"failureFactor" : 30,
|
|
"roles" : {
|
|
"realm" : [ {
|
|
"id" : "dc431c2f-2ff1-453f-8f77-8b375552f8aa",
|
|
"name" : "user",
|
|
"composite" : false,
|
|
"clientRole" : false,
|
|
"containerId" : "KCExample",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "90579424-f687-4e47-bd7d-ce1ae4ea3257",
|
|
"name" : "uma_authorization",
|
|
"description" : "${role_uma_authorization}",
|
|
"composite" : false,
|
|
"clientRole" : false,
|
|
"containerId" : "KCExample",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "247d2ebb-bf4c-4b59-ad79-604fdf72a8c0",
|
|
"name" : "offline_access",
|
|
"description" : "${role_offline-access}",
|
|
"composite" : false,
|
|
"clientRole" : false,
|
|
"containerId" : "KCExample",
|
|
"attributes" : { }
|
|
} ],
|
|
"client" : {
|
|
"realm-management" : [ {
|
|
"id" : "04d457b1-285a-47b5-a117-82603c852899",
|
|
"name" : "create-client",
|
|
"description" : "${role_create-client}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b07799b6-1af2-4250-84b9-1d01b965ff37",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "0b7c28b2-49a9-40a2-ba7a-87b5b0ebfb6e",
|
|
"name" : "manage-clients",
|
|
"description" : "${role_manage-clients}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b07799b6-1af2-4250-84b9-1d01b965ff37",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "b5291577-1052-4616-94de-e5ad768bc0b5",
|
|
"name" : "query-groups",
|
|
"description" : "${role_query-groups}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b07799b6-1af2-4250-84b9-1d01b965ff37",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "62fe4970-3c8a-4037-a939-918821062df7",
|
|
"name" : "view-users",
|
|
"description" : "${role_view-users}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"realm-management" : [ "query-groups", "query-users" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "b07799b6-1af2-4250-84b9-1d01b965ff37",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "642cd9b0-5eaf-413f-b5d8-5795023b3cb5",
|
|
"name" : "view-identity-providers",
|
|
"description" : "${role_view-identity-providers}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b07799b6-1af2-4250-84b9-1d01b965ff37",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "b477f7dd-29be-412b-962a-b2932f7d72f8",
|
|
"name" : "realm-admin",
|
|
"description" : "${role_realm-admin}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"realm-management" : [ "create-client", "manage-clients", "query-groups", "view-users", "view-identity-providers", "manage-users", "manage-identity-providers", "view-clients", "view-realm", "view-events", "impersonation", "view-authorization", "query-users", "query-clients", "manage-events", "manage-authorization", "query-realms", "manage-realm" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "b07799b6-1af2-4250-84b9-1d01b965ff37",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "59fb9863-1795-43eb-85a1-5b3b0d2f6133",
|
|
"name" : "manage-users",
|
|
"description" : "${role_manage-users}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b07799b6-1af2-4250-84b9-1d01b965ff37",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "38ea0fa9-184c-403d-8e21-59c668315e09",
|
|
"name" : "view-clients",
|
|
"description" : "${role_view-clients}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"realm-management" : [ "query-clients" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "b07799b6-1af2-4250-84b9-1d01b965ff37",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "11916f78-81c5-40c2-9f3b-778cf93c8ef7",
|
|
"name" : "manage-identity-providers",
|
|
"description" : "${role_manage-identity-providers}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b07799b6-1af2-4250-84b9-1d01b965ff37",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "60b36880-6f90-4446-b880-4f0be7a10942",
|
|
"name" : "view-realm",
|
|
"description" : "${role_view-realm}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b07799b6-1af2-4250-84b9-1d01b965ff37",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "8c3dfe0c-1c45-47ef-a530-84b943649ea6",
|
|
"name" : "view-events",
|
|
"description" : "${role_view-events}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b07799b6-1af2-4250-84b9-1d01b965ff37",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "7f9fe27c-4b31-4ec2-ba12-d1c9e6a8751a",
|
|
"name" : "impersonation",
|
|
"description" : "${role_impersonation}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b07799b6-1af2-4250-84b9-1d01b965ff37",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "4a219fa4-8d8c-4fe4-82a2-0a956db02f18",
|
|
"name" : "view-authorization",
|
|
"description" : "${role_view-authorization}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b07799b6-1af2-4250-84b9-1d01b965ff37",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "100102c6-f673-4769-98ab-8a723ab730a6",
|
|
"name" : "query-users",
|
|
"description" : "${role_query-users}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b07799b6-1af2-4250-84b9-1d01b965ff37",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "fbfdb2ab-bdb8-4f92-908a-245a3d9c74af",
|
|
"name" : "query-clients",
|
|
"description" : "${role_query-clients}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b07799b6-1af2-4250-84b9-1d01b965ff37",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "64940b10-d875-4e7d-a9f8-cec1d953b4d8",
|
|
"name" : "manage-events",
|
|
"description" : "${role_manage-events}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b07799b6-1af2-4250-84b9-1d01b965ff37",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "0b238a2a-4ed0-4d5e-8d56-af41bca5029d",
|
|
"name" : "manage-authorization",
|
|
"description" : "${role_manage-authorization}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b07799b6-1af2-4250-84b9-1d01b965ff37",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "5248baa5-0043-44f8-9dbc-fe2e4d993ff9",
|
|
"name" : "query-realms",
|
|
"description" : "${role_query-realms}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b07799b6-1af2-4250-84b9-1d01b965ff37",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "c70404e9-1a03-4cc4-937c-4486b2ff9a58",
|
|
"name" : "manage-realm",
|
|
"description" : "${role_manage-realm}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "b07799b6-1af2-4250-84b9-1d01b965ff37",
|
|
"attributes" : { }
|
|
} ],
|
|
"resource-app" : [ ],
|
|
"security-admin-console" : [ ],
|
|
"admin-cli" : [ ],
|
|
"account-console" : [ ],
|
|
"broker" : [ {
|
|
"id" : "33d04ec1-c850-42be-b3a2-b47b0c4eaa02",
|
|
"name" : "read-token",
|
|
"description" : "${role_read-token}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "2e02a9cf-6856-4e30-88cf-dada0c3a3ca6",
|
|
"attributes" : { }
|
|
} ],
|
|
"account" : [ {
|
|
"id" : "01c1cde3-229a-480e-b75b-e5e588d4e0ca",
|
|
"name" : "manage-account",
|
|
"description" : "${role_manage-account}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"account" : [ "manage-account-links" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "e45dba14-f168-4710-a71d-3ab3097d621b",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "a76cb432-93ae-482d-a4f4-c19efce9ce0d",
|
|
"name" : "manage-account-links",
|
|
"description" : "${role_manage-account-links}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "e45dba14-f168-4710-a71d-3ab3097d621b",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "bfeec309-6ec9-4470-a404-aaad72e5a50c",
|
|
"name" : "view-profile",
|
|
"description" : "${role_view-profile}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "e45dba14-f168-4710-a71d-3ab3097d621b",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "43280d4b-4cfc-4326-983b-86e894f03b1c",
|
|
"name" : "manage-consent",
|
|
"description" : "${role_manage-consent}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"account" : [ "view-consent" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "e45dba14-f168-4710-a71d-3ab3097d621b",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "adc0fb95-8570-4d8e-926c-f54ab8c8b2a3",
|
|
"name" : "view-consent",
|
|
"description" : "${role_view-consent}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "e45dba14-f168-4710-a71d-3ab3097d621b",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "7cbe85fb-ef71-4d04-b288-559cf50012c8",
|
|
"name" : "view-applications",
|
|
"description" : "${role_view-applications}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "e45dba14-f168-4710-a71d-3ab3097d621b",
|
|
"attributes" : { }
|
|
} ]
|
|
}
|
|
},
|
|
"groups" : [ ],
|
|
"defaultRoles" : [ "offline_access", "uma_authorization" ],
|
|
"requiredCredentials" : [ "password" ],
|
|
"otpPolicyType" : "totp",
|
|
"otpPolicyAlgorithm" : "HmacSHA1",
|
|
"otpPolicyInitialCounter" : 0,
|
|
"otpPolicyDigits" : 6,
|
|
"otpPolicyLookAheadWindow" : 1,
|
|
"otpPolicyPeriod" : 30,
|
|
"otpSupportedApplications" : [ "FreeOTP", "Google Authenticator" ],
|
|
"webAuthnPolicyRpEntityName" : "keycloak",
|
|
"webAuthnPolicySignatureAlgorithms" : [ "ES256" ],
|
|
"webAuthnPolicyRpId" : "",
|
|
"webAuthnPolicyAttestationConveyancePreference" : "not specified",
|
|
"webAuthnPolicyAuthenticatorAttachment" : "not specified",
|
|
"webAuthnPolicyRequireResidentKey" : "not specified",
|
|
"webAuthnPolicyUserVerificationRequirement" : "not specified",
|
|
"webAuthnPolicyCreateTimeout" : 0,
|
|
"webAuthnPolicyAvoidSameAuthenticatorRegister" : false,
|
|
"webAuthnPolicyAcceptableAaguids" : [ ],
|
|
"webAuthnPolicyPasswordlessRpEntityName" : "keycloak",
|
|
"webAuthnPolicyPasswordlessSignatureAlgorithms" : [ "ES256" ],
|
|
"webAuthnPolicyPasswordlessRpId" : "",
|
|
"webAuthnPolicyPasswordlessAttestationConveyancePreference" : "not specified",
|
|
"webAuthnPolicyPasswordlessAuthenticatorAttachment" : "not specified",
|
|
"webAuthnPolicyPasswordlessRequireResidentKey" : "not specified",
|
|
"webAuthnPolicyPasswordlessUserVerificationRequirement" : "not specified",
|
|
"webAuthnPolicyPasswordlessCreateTimeout" : 0,
|
|
"webAuthnPolicyPasswordlessAvoidSameAuthenticatorRegister" : false,
|
|
"webAuthnPolicyPasswordlessAcceptableAaguids" : [ ],
|
|
"users" : [ {
|
|
"id" : "4fdbd7bb-9899-43bd-8c66-611efc5562c8",
|
|
"createdTimestamp" : 1597775215644,
|
|
"username" : "user",
|
|
"enabled" : true,
|
|
"totp" : false,
|
|
"emailVerified" : false,
|
|
"credentials" : [ {
|
|
"id" : "2b6b083b-4fb8-4b65-8dd3-b904b9af3376",
|
|
"type" : "password",
|
|
"createdDate" : 1597775229838,
|
|
"secretData" : "{\"value\":\"oTlEJ/Apanqv2TLqvx7iGnewAWICgcO7dTyvXCTi1Pz39LhdsysXx2gHsdD/a3yp/NxZvlNAWsi/q9CPKPC94w==\",\"salt\":\"Ztv01bri1iuicpob2BnE/w==\"}",
|
|
"credentialData" : "{\"hashIterations\":27500,\"algorithm\":\"pbkdf2-sha256\"}"
|
|
} ],
|
|
"disableableCredentialTypes" : [ ],
|
|
"requiredActions" : [ ],
|
|
"realmRoles" : [ "user", "uma_authorization", "offline_access" ],
|
|
"clientRoles" : {
|
|
"account" : [ "manage-account", "view-profile" ]
|
|
},
|
|
"notBefore" : 0,
|
|
"groups" : [ ]
|
|
} ],
|
|
"scopeMappings" : [ {
|
|
"clientScope" : "offline_access",
|
|
"roles" : [ "offline_access" ]
|
|
} ],
|
|
"clientScopeMappings" : {
|
|
"account" : [ {
|
|
"client" : "account-console",
|
|
"roles" : [ "manage-account" ]
|
|
} ]
|
|
},
|
|
"clients" : [ {
|
|
"id" : "e45dba14-f168-4710-a71d-3ab3097d621b",
|
|
"clientId" : "account",
|
|
"name" : "${client_account}",
|
|
"rootUrl" : "${authBaseUrl}",
|
|
"baseUrl" : "/realms/KCExample/account/",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"secret" : "5f5174ef-70e3-4f67-99de-b13c758c6199",
|
|
"defaultRoles" : [ "manage-account", "view-profile" ],
|
|
"redirectUris" : [ "/realms/KCExample/account/*" ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : false,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : { },
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "role_list", "profile", "roles", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "89156bcf-86e2-4153-beab-c8688f10084e",
|
|
"clientId" : "account-console",
|
|
"name" : "${client_account-console}",
|
|
"rootUrl" : "${authBaseUrl}",
|
|
"baseUrl" : "/realms/KCExample/account/",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"secret" : "d612a775-3fec-43e1-9f20-975444ecc9d2",
|
|
"redirectUris" : [ "/realms/KCExample/account/*" ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"pkce.code.challenge.method" : "S256"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"protocolMappers" : [ {
|
|
"id" : "4eb74ba0-3bf4-4f21-a31f-2db09c1031c0",
|
|
"name" : "audience resolve",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-audience-resolve-mapper",
|
|
"consentRequired" : false,
|
|
"config" : { }
|
|
} ],
|
|
"defaultClientScopes" : [ "web-origins", "role_list", "profile", "roles", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "84c9ccf4-e524-4156-8397-d2dfc45094f2",
|
|
"clientId" : "admin-cli",
|
|
"name" : "${client_admin-cli}",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"secret" : "23c7b85b-5505-4c63-8da5-ac6eb09e542f",
|
|
"redirectUris" : [ ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : false,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : true,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : { },
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "role_list", "profile", "roles", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "2e02a9cf-6856-4e30-88cf-dada0c3a3ca6",
|
|
"clientId" : "broker",
|
|
"name" : "${client_broker}",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"secret" : "2e5b3528-9e3d-4ada-9e2e-d784110f4d2e",
|
|
"redirectUris" : [ ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : false,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : { },
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "role_list", "profile", "roles", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "b07799b6-1af2-4250-84b9-1d01b965ff37",
|
|
"clientId" : "realm-management",
|
|
"name" : "${client_realm-management}",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"secret" : "6013cf10-5cd5-4806-8be3-8fd31b0da0bd",
|
|
"redirectUris" : [ ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : true,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : false,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : { },
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "role_list", "profile", "roles", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "2d6c11c7-cca3-4c6a-8f6b-a02b1a75d85c",
|
|
"clientId" : "resource-app",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"secret" : "0cd95dfa-71f4-4e72-beb5-7d69d0ae628f",
|
|
"redirectUris" : [ "http://localhost:8080/*" ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : true,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"saml.assertion.signature" : "false",
|
|
"saml.force.post.binding" : "false",
|
|
"saml.multivalued.roles" : "false",
|
|
"saml.encrypt" : "false",
|
|
"saml.server.signature" : "false",
|
|
"saml.server.signature.keyinfo.ext" : "false",
|
|
"exclude.session.state.from.auth.response" : "false",
|
|
"saml_force_name_id_format" : "false",
|
|
"saml.client.signature" : "false",
|
|
"tls.client.certificate.bound.access.tokens" : "false",
|
|
"saml.authnstatement" : "false",
|
|
"display.on.consent.screen" : "false",
|
|
"saml.onetimeuse.condition" : "false"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : true,
|
|
"nodeReRegistrationTimeout" : -1,
|
|
"defaultClientScopes" : [ "web-origins", "role_list", "profile", "roles", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "3f0a2630-2356-4d18-a279-7ff9e9d2158e",
|
|
"clientId" : "security-admin-console",
|
|
"name" : "${client_security-admin-console}",
|
|
"rootUrl" : "${authAdminUrl}",
|
|
"baseUrl" : "/admin/KCExample/console/",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"secret" : "a6608280-5182-4c80-9b28-4b1cb05caa77",
|
|
"redirectUris" : [ "/admin/KCExample/console/*" ],
|
|
"webOrigins" : [ "+" ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"pkce.code.challenge.method" : "S256"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"protocolMappers" : [ {
|
|
"id" : "1b258cdf-4d76-4f7d-bbdd-4e074b99fc7d",
|
|
"name" : "locale",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "locale",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "locale",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ],
|
|
"defaultClientScopes" : [ "web-origins", "role_list", "profile", "roles", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
} ],
|
|
"clientScopes" : [ {
|
|
"id" : "945e9419-a2ab-4ee5-bb61-830bf356255f",
|
|
"name" : "address",
|
|
"description" : "OpenID Connect built-in scope: address",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "true",
|
|
"consent.screen.text" : "${addressScopeConsentText}"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "f5100b8d-8533-4a3a-838a-eedd22597a17",
|
|
"name" : "address",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-address-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"user.attribute.formatted" : "formatted",
|
|
"user.attribute.country" : "country",
|
|
"user.attribute.postal_code" : "postal_code",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute.street" : "street",
|
|
"id.token.claim" : "true",
|
|
"user.attribute.region" : "region",
|
|
"access.token.claim" : "true",
|
|
"user.attribute.locality" : "locality"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "874895f7-1d55-4d3a-be38-36d212365ca2",
|
|
"name" : "email",
|
|
"description" : "OpenID Connect built-in scope: email",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "true",
|
|
"consent.screen.text" : "${emailScopeConsentText}"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "7a425203-06ca-49a8-a566-7f553365dba2",
|
|
"name" : "email",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-property-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "email",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "email",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "c5bb2c35-5dd3-4ef0-830c-2bba5a46d7ff",
|
|
"name" : "email verified",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-property-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "emailVerified",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "email_verified",
|
|
"jsonType.label" : "boolean"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "58971c82-d63b-44c9-a2d6-53a0bb62a0ec",
|
|
"name" : "microprofile-jwt",
|
|
"description" : "Microprofile - JWT built-in scope",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "false"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "541902b2-3f06-4fa9-b2ca-0c12c6ea5b18",
|
|
"name" : "upn",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-property-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "username",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "upn",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "c8c6881e-e208-4530-9f44-432995c8f5a3",
|
|
"name" : "groups",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-realm-role-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"multivalued" : "true",
|
|
"user.attribute" : "foo",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "groups",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "15f527b5-0273-4826-a501-785c6d5a2d14",
|
|
"name" : "offline_access",
|
|
"description" : "OpenID Connect built-in scope: offline_access",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"consent.screen.text" : "${offlineAccessScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
}
|
|
}, {
|
|
"id" : "f52e19e8-73da-460d-b987-26503519c3e7",
|
|
"name" : "phone",
|
|
"description" : "OpenID Connect built-in scope: phone",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "true",
|
|
"consent.screen.text" : "${phoneScopeConsentText}"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "5158c1b1-b655-4c32-9a59-94b79a2b69f8",
|
|
"name" : "phone number",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "phoneNumber",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "phone_number",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "1508019a-dd2b-442c-adf4-786360437c5c",
|
|
"name" : "phone number verified",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "phoneNumberVerified",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "phone_number_verified",
|
|
"jsonType.label" : "boolean"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "097c4ff4-76ed-4acb-9aae-b967c6c37862",
|
|
"name" : "profile",
|
|
"description" : "OpenID Connect built-in scope: profile",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "true",
|
|
"consent.screen.text" : "${profileScopeConsentText}"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "e25b30f8-b925-4630-9902-537e8f6bed7d",
|
|
"name" : "updated at",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "updatedAt",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "updated_at",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "9646891f-a605-405a-b266-4ea8b2811baa",
|
|
"name" : "website",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "website",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "website",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "70cc3e36-ee1c-45ea-b77a-8d58be37c8ce",
|
|
"name" : "nickname",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "nickname",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "nickname",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "7fda7133-2676-4d80-bc11-f7d3ee3293e1",
|
|
"name" : "locale",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "locale",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "locale",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "7a509dfa-bcdd-49bf-ad4c-770d1bd82eba",
|
|
"name" : "family name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-property-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "lastName",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "family_name",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "88df15f0-7f95-41c2-bb3c-2d6ac0f11182",
|
|
"name" : "username",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-property-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "username",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "preferred_username",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "28c32597-30fe-4510-8f28-7d85c8be4d3f",
|
|
"name" : "gender",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "gender",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "gender",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "637379c0-0937-42df-8f24-642b83339d20",
|
|
"name" : "picture",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "picture",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "picture",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "645ebb06-0bb6-493a-b96f-5ae45a346157",
|
|
"name" : "birthdate",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "birthdate",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "birthdate",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "d0715878-42f6-4e47-b665-c3a62f1cb889",
|
|
"name" : "profile",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "profile",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "profile",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "ed8fe48f-06c1-45a2-bf83-e8a297b5b200",
|
|
"name" : "given name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-property-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "firstName",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "given_name",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "9593fe2d-6c0d-4b13-8c72-d7078875d097",
|
|
"name" : "full name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-full-name-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"userinfo.token.claim" : "true"
|
|
}
|
|
}, {
|
|
"id" : "2ad79d8e-297f-4260-8591-95fb53b2ae0c",
|
|
"name" : "middle name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "middleName",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "middle_name",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "5ab24791-1d01-45dc-a421-aa86cd2424a7",
|
|
"name" : "zoneinfo",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "zoneinfo",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "zoneinfo",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "f813f7b5-849b-4108-9dd2-6005e462ce43",
|
|
"name" : "role_list",
|
|
"description" : "SAML role list",
|
|
"protocol" : "saml",
|
|
"attributes" : {
|
|
"consent.screen.text" : "${samlRoleListScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "6aaf363b-b068-4add-ad36-70c2f55f8e45",
|
|
"name" : "role list",
|
|
"protocol" : "saml",
|
|
"protocolMapper" : "saml-role-list-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"single" : "false",
|
|
"attribute.nameformat" : "Basic",
|
|
"attribute.name" : "Role"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "d486248b-7c68-444a-9623-af2a9059fda3",
|
|
"name" : "roles",
|
|
"description" : "OpenID Connect scope for add user roles to the access token",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "false",
|
|
"display.on.consent.screen" : "true",
|
|
"consent.screen.text" : "${rolesScopeConsentText}"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "2b1cf97e-832e-499c-befa-55914aa9982c",
|
|
"name" : "client roles",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-client-role-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"user.attribute" : "foo",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "resource_access.${client_id}.roles",
|
|
"jsonType.label" : "String",
|
|
"multivalued" : "true"
|
|
}
|
|
}, {
|
|
"id" : "cb823520-7944-485a-aa5e-499153f0c4d1",
|
|
"name" : "audience resolve",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-audience-resolve-mapper",
|
|
"consentRequired" : false,
|
|
"config" : { }
|
|
}, {
|
|
"id" : "6ca65b32-0960-4590-b621-29434e0b36e9",
|
|
"name" : "realm roles",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-realm-role-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"user.attribute" : "foo",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "realm_access.roles",
|
|
"jsonType.label" : "String",
|
|
"multivalued" : "true"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "73caf3fc-87b0-4d36-b6ea-e1d31b7abf33",
|
|
"name" : "web-origins",
|
|
"description" : "OpenID Connect scope for add allowed web origins to the access token",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "false",
|
|
"display.on.consent.screen" : "false",
|
|
"consent.screen.text" : ""
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "e46e624a-8524-4304-b00b-ab96b0862dd0",
|
|
"name" : "allowed web origins",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-allowed-origins-mapper",
|
|
"consentRequired" : false,
|
|
"config" : { }
|
|
} ]
|
|
} ],
|
|
"defaultDefaultClientScopes" : [ "role_list", "profile", "email", "roles", "web-origins" ],
|
|
"defaultOptionalClientScopes" : [ "offline_access", "address", "phone", "microprofile-jwt" ],
|
|
"browserSecurityHeaders" : {
|
|
"contentSecurityPolicyReportOnly" : "",
|
|
"xContentTypeOptions" : "nosniff",
|
|
"xRobotsTag" : "none",
|
|
"xFrameOptions" : "SAMEORIGIN",
|
|
"contentSecurityPolicy" : "frame-src 'self'; frame-ancestors 'self'; object-src 'none';",
|
|
"xXSSProtection" : "1; mode=block",
|
|
"strictTransportSecurity" : "max-age=31536000; includeSubDomains"
|
|
},
|
|
"smtpServer" : { },
|
|
"eventsEnabled" : false,
|
|
"eventsListeners" : [ "jboss-logging" ],
|
|
"enabledEventTypes" : [ ],
|
|
"adminEventsEnabled" : false,
|
|
"adminEventsDetailsEnabled" : false,
|
|
"components" : {
|
|
"org.keycloak.services.clientregistration.policy.ClientRegistrationPolicy" : [ {
|
|
"id" : "ec2ac426-940b-4af6-a3f3-bd1f77e21ec1",
|
|
"name" : "Max Clients Limit",
|
|
"providerId" : "max-clients",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"max-clients" : [ "200" ]
|
|
}
|
|
}, {
|
|
"id" : "e5949af8-9f97-41ea-bf2d-832ff6c94ef3",
|
|
"name" : "Allowed Protocol Mapper Types",
|
|
"providerId" : "allowed-protocol-mappers",
|
|
"subType" : "authenticated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allowed-protocol-mapper-types" : [ "oidc-usermodel-attribute-mapper", "oidc-sha256-pairwise-sub-mapper", "oidc-full-name-mapper", "oidc-usermodel-property-mapper", "saml-user-property-mapper", "saml-user-attribute-mapper", "saml-role-list-mapper", "oidc-address-mapper" ]
|
|
}
|
|
}, {
|
|
"id" : "e57f1213-9e0c-4f7a-bd98-dfb25c4a9613",
|
|
"name" : "Consent Required",
|
|
"providerId" : "consent-required",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : { }
|
|
}, {
|
|
"id" : "779333b3-18fe-4cad-8bcc-2f4d98b727ba",
|
|
"name" : "Allowed Client Scopes",
|
|
"providerId" : "allowed-client-templates",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allow-default-scopes" : [ "true" ]
|
|
}
|
|
}, {
|
|
"id" : "083a188a-9ec8-48b2-83f6-810afffa4bed",
|
|
"name" : "Trusted Hosts",
|
|
"providerId" : "trusted-hosts",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"host-sending-registration-request-must-match" : [ "true" ],
|
|
"client-uris-must-match" : [ "true" ]
|
|
}
|
|
}, {
|
|
"id" : "d0e390c5-4b25-44ad-9498-536eef2e1a0f",
|
|
"name" : "Allowed Client Scopes",
|
|
"providerId" : "allowed-client-templates",
|
|
"subType" : "authenticated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allow-default-scopes" : [ "true" ]
|
|
}
|
|
}, {
|
|
"id" : "86ac02cb-dc12-48e4-b196-5f6973e15803",
|
|
"name" : "Allowed Protocol Mapper Types",
|
|
"providerId" : "allowed-protocol-mappers",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allowed-protocol-mapper-types" : [ "oidc-address-mapper", "oidc-usermodel-property-mapper", "saml-user-property-mapper", "saml-user-attribute-mapper", "oidc-sha256-pairwise-sub-mapper", "saml-role-list-mapper", "oidc-usermodel-attribute-mapper", "oidc-full-name-mapper" ]
|
|
}
|
|
}, {
|
|
"id" : "0205f3ef-680d-4b34-9857-8b10d09dab2f",
|
|
"name" : "Full Scope Disabled",
|
|
"providerId" : "scope",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : { }
|
|
} ],
|
|
"org.keycloak.keys.KeyProvider" : [ {
|
|
"id" : "5d16d23c-79c7-463f-9bbf-8bb5da2df6e9",
|
|
"name" : "rsa-generated",
|
|
"providerId" : "rsa-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"privateKey" : [ "MIIEpQIBAAKCAQEAou/9jwRyZEBlGvxZgAUkxJsJb7mFB+3EiIXGBnc2RNxuf2E90u0sumDVzjksJXKM+ZeaZcNvbinegyWqPU4uT3XX+eWFHpFCR60Ch4ry31/Fu8p+biKlLZX3K8MHC9H7ZKkMjKWC9gIK1p4CXLhplwxLpQb6LKvTVCxSZKPoK8jfGIHiJDCE1X4Z4uCPrl60Xg9zlhsFi/JAHtNIne8yDZSw+tEdCYoEtvOJngg8rVbiuPVjAVgKeiTwb7NEAX9xoF02J2cwla45qoGww8Ilwb+c2s01Q7KTMqTy3s1xqH0tl1BrNnhWQWWXQUWgu5VUnpfM+2WuGKxzARdudxIIoQIDAQABAoIBAGT4vjPzuIPh2AX6HeiUx21C+n0PBZ6dPO6xn77//1R7Gcq8Uxi0O8SgH771dSMbsrs1tMudah9luOui2rW1DkPVrmrBTlZcBCvwziF6/PlqG1o9qU3NEHmIdqza5jHwBY8ip5E9PEQBjf/j2WjmKyEc0H/LLBuku4htEv4lCMqgaOJI8gUTUQ0Pg5kotutdI8twDmyIRdDPO3s7xA+9LuMNXHEDRSH3vGbmTXjaD4N3xMzoFk7KvYN4OR73io9FusaIyC46gvUCq5xg4aTuhgfXPrVIvLtMcCy0apOpPNEKdqvQ1lfzwTGcJoujFYKNjQ0WNop/GRqq0C4Jbw4amAECgYEA49ycZb1TuDcYTyEicMRw9bCuJg7rRbSVvBrT30TsUGL/4Gy+VI0SRSk6uTQAQXw7jE4cg8jAJT+KV+VH2mDPOHSOQcbkpTaVt5iySrJ3/a7JifSLoy3PckMD5Vb4Fx8gapWWrQzSMQpFc1O5klJnKerzKLc50zslc+eC9Xs4NUECgYEAtw7t1gX++1mKwd7+qSjS2oDNqlxgMFZn95XlB6klFG60KIqyUkB3bkYHZw7krG8OCSPFTgq6wFVzpLe5aFYvyPGXztV4soTCymAlTSHpIoS6xJoAR6k4yfRb9z9iH957UO6uBheVNQwT1C27DBZSXqZ8fCwU/Rz6VkocvscoG2ECgYEAjopCF+7wwUtN3KpIpixs0XUd69bnXKqUBKDvqzqtbbgQgy7jfXbmV/drsdGS22RAyAtRESty75opC8T1RunKl3FqUEGAZM2ZqMlPtySfpUVC9BbTh1ev7rV3aW8XMTeairJbGJPtpRncykE01BDSUkmUpQLBnJ7iVfgcVz4mskECgYEAr4lFT8IYK/ZFNHsdQCDBcH2quf4yzqdMswGtyZbM07cEUwwMywq+e6PzXUPOy/sCPolqndd0FRLb/cufowlicRIaPGA/iQ/9qgpgOoKWCF+2qOfz9MO0jRQhTAofkefJ4GW/wl/C2EdojEH95y1Qdyq2nGu5BK5Q74XJ4rcfIoECgYEAmOlFl1ZXeXN6wACDWOmZJ3u+mbqKJ8IcWs7OFM8q1uJ2eyZwRR4VlRWEE5DX8izieH+E6xw05L1rRAvtkUOq7MZE1DYR4blyTySU27PJEHTrSmnJNGzkCYLkaikCmEwUfxmItP8l020fT69v2oCz3Cz63EUs4/UV4jnD3VzmWMg=" ],
|
|
"certificate" : [ "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" ],
|
|
"priority" : [ "100" ]
|
|
}
|
|
}, {
|
|
"id" : "2f182934-4fe6-4e53-b095-5e83e7faa8d6",
|
|
"name" : "hmac-generated",
|
|
"providerId" : "hmac-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"kid" : [ "fe4350c9-950f-43ff-8fd2-da6de380a9d4" ],
|
|
"secret" : [ "1xrYFB_VUS2bEYAg-m4fZdokpbccITRwqhwoM4HLr0qDxU7g1ODofDHbCCT5jzC3MAhfDfV2uXZm9rpIxOjm8Q" ],
|
|
"priority" : [ "100" ],
|
|
"algorithm" : [ "HS256" ]
|
|
}
|
|
}, {
|
|
"id" : "ce512173-984a-4894-8cc1-0c2f6bb8c2d4",
|
|
"name" : "aes-generated",
|
|
"providerId" : "aes-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"kid" : [ "2f6fb75c-aa96-4cb4-9174-c8e7108deac3" ],
|
|
"secret" : [ "tS1ULzgUF9-74ojI_E2Cng" ],
|
|
"priority" : [ "100" ]
|
|
}
|
|
} ]
|
|
},
|
|
"internationalizationEnabled" : false,
|
|
"supportedLocales" : [ ],
|
|
"authenticationFlows" : [ {
|
|
"id" : "dfd2f528-4b75-4a3d-9586-157376d5a9cb",
|
|
"alias" : "Account verification options",
|
|
"description" : "Method with which to verity the existing account",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "idp-email-verification",
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 20,
|
|
"flowAlias" : "Verify Existing Account by Re-authentication",
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : true
|
|
} ]
|
|
}, {
|
|
"id" : "85ba93a4-a5aa-4315-8bc5-cc9b77bd0f2e",
|
|
"alias" : "Authentication Options",
|
|
"description" : "Authentication options.",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "basic-auth",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"authenticator" : "basic-auth-otp",
|
|
"requirement" : "DISABLED",
|
|
"priority" : 20,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"authenticator" : "auth-spnego",
|
|
"requirement" : "DISABLED",
|
|
"priority" : 30,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
} ]
|
|
}, {
|
|
"id" : "5bcc8efb-3878-4105-b9e4-18d70f7f14d2",
|
|
"alias" : "Browser - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP is required for the authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"authenticator" : "auth-otp-form",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
} ]
|
|
}, {
|
|
"id" : "9f668eff-6e32-4958-b62d-fdc5827a7e91",
|
|
"alias" : "Direct Grant - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP is required for the authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"authenticator" : "direct-grant-validate-otp",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
} ]
|
|
}, {
|
|
"id" : "f62fe642-6108-4454-837e-7f332cfa95b7",
|
|
"alias" : "First broker login - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP is required for the authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"authenticator" : "auth-otp-form",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
} ]
|
|
}, {
|
|
"id" : "a0cd15fc-5bcb-4fed-aea8-13ba2db99140",
|
|
"alias" : "Handle Existing Account",
|
|
"description" : "Handle what to do if there is existing account with same email/username like authenticated identity provider",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "idp-confirm-link",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"flowAlias" : "Account verification options",
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : true
|
|
} ]
|
|
}, {
|
|
"id" : "07160955-87aa-4382-a147-2060f4c4809f",
|
|
"alias" : "Reset - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP should be reset or not. Set to REQUIRED to force.",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"authenticator" : "reset-otp",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
} ]
|
|
}, {
|
|
"id" : "3cab948d-5721-42f9-b17d-9066ed5b8211",
|
|
"alias" : "User creation or linking",
|
|
"description" : "Flow for the existing/non-existing user alternatives",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticatorConfig" : "create unique user config",
|
|
"authenticator" : "idp-create-user-if-unique",
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 20,
|
|
"flowAlias" : "Handle Existing Account",
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : true
|
|
} ]
|
|
}, {
|
|
"id" : "af7039f6-e8d4-489c-a209-eba0326b332d",
|
|
"alias" : "Verify Existing Account by Re-authentication",
|
|
"description" : "Reauthentication of existing account",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "idp-username-password-form",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 20,
|
|
"flowAlias" : "First broker login - Conditional OTP",
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : true
|
|
} ]
|
|
}, {
|
|
"id" : "8cb99efb-d70f-486a-8b74-b95b75bd79cd",
|
|
"alias" : "browser",
|
|
"description" : "browser based authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "auth-cookie",
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"authenticator" : "auth-spnego",
|
|
"requirement" : "DISABLED",
|
|
"priority" : 20,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"authenticator" : "identity-provider-redirector",
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 25,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 30,
|
|
"flowAlias" : "forms",
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : true
|
|
} ]
|
|
}, {
|
|
"id" : "616d3123-07cb-4888-86c7-8b024240a48a",
|
|
"alias" : "clients",
|
|
"description" : "Base authentication for clients",
|
|
"providerId" : "client-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "client-secret",
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"authenticator" : "client-jwt",
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 20,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"authenticator" : "client-secret-jwt",
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 30,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"authenticator" : "client-x509",
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 40,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
} ]
|
|
}, {
|
|
"id" : "0516d6fa-e1e3-41fc-8424-92a5c5b15478",
|
|
"alias" : "direct grant",
|
|
"description" : "OpenID Connect Resource Owner Grant",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "direct-grant-validate-username",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"authenticator" : "direct-grant-validate-password",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 30,
|
|
"flowAlias" : "Direct Grant - Conditional OTP",
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : true
|
|
} ]
|
|
}, {
|
|
"id" : "da35f65f-eb9d-402e-8c18-05122c748852",
|
|
"alias" : "docker auth",
|
|
"description" : "Used by Docker clients to authenticate against the IDP",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "docker-http-basic-authenticator",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
} ]
|
|
}, {
|
|
"id" : "19c7586a-b27a-4849-bfa9-1d6ad49237d5",
|
|
"alias" : "first broker login",
|
|
"description" : "Actions taken after first broker login with identity provider account, which is not yet linked to any Keycloak account",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticatorConfig" : "review profile config",
|
|
"authenticator" : "idp-review-profile",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"flowAlias" : "User creation or linking",
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : true
|
|
} ]
|
|
}, {
|
|
"id" : "72291173-9cde-4c48-8730-736f1f7a2138",
|
|
"alias" : "forms",
|
|
"description" : "Username, password, otp and other auth forms.",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "auth-username-password-form",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 20,
|
|
"flowAlias" : "Browser - Conditional OTP",
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : true
|
|
} ]
|
|
}, {
|
|
"id" : "4cb6c342-bc21-46e5-aac4-beaacbbc543a",
|
|
"alias" : "http challenge",
|
|
"description" : "An authentication flow based on challenge-response HTTP Authentication Schemes",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "no-cookie-redirect",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"flowAlias" : "Authentication Options",
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : true
|
|
} ]
|
|
}, {
|
|
"id" : "e2cbdfb6-6697-4b4c-9df1-1c00633152a2",
|
|
"alias" : "registration",
|
|
"description" : "registration flow",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "registration-page-form",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"flowAlias" : "registration form",
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : true
|
|
} ]
|
|
}, {
|
|
"id" : "d9eaa5b8-1a2c-48e0-9195-14651b201a57",
|
|
"alias" : "registration form",
|
|
"description" : "registration form",
|
|
"providerId" : "form-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "registration-user-creation",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"authenticator" : "registration-profile-action",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 40,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"authenticator" : "registration-password-action",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 50,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"authenticator" : "registration-recaptcha-action",
|
|
"requirement" : "DISABLED",
|
|
"priority" : 60,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
} ]
|
|
}, {
|
|
"id" : "e9682c13-6f5b-4b8d-ba7a-2f08e46dc6f8",
|
|
"alias" : "reset credentials",
|
|
"description" : "Reset credentials for a user if they forgot their password or something",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "reset-credentials-choose-user",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"authenticator" : "reset-credential-email",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"authenticator" : "reset-password",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 30,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
}, {
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 40,
|
|
"flowAlias" : "Reset - Conditional OTP",
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : true
|
|
} ]
|
|
}, {
|
|
"id" : "3aa3d718-420f-46a0-9219-9a7ae939e847",
|
|
"alias" : "saml ecp",
|
|
"description" : "SAML ECP Profile Authentication Flow",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "http-basic-authenticator",
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"userSetupAllowed" : false,
|
|
"autheticatorFlow" : false
|
|
} ]
|
|
} ],
|
|
"authenticatorConfig" : [ {
|
|
"id" : "0bcfb3fc-2a12-40d3-835c-a93c2e43864f",
|
|
"alias" : "create unique user config",
|
|
"config" : {
|
|
"require.password.update.after.registration" : "false"
|
|
}
|
|
}, {
|
|
"id" : "b29dc357-e0f4-4e00-b6f2-8cd7cfbf4661",
|
|
"alias" : "review profile config",
|
|
"config" : {
|
|
"update.profile.on.first.login" : "missing"
|
|
}
|
|
} ],
|
|
"requiredActions" : [ {
|
|
"alias" : "CONFIGURE_TOTP",
|
|
"name" : "Configure OTP",
|
|
"providerId" : "CONFIGURE_TOTP",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 10,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "terms_and_conditions",
|
|
"name" : "Terms and Conditions",
|
|
"providerId" : "terms_and_conditions",
|
|
"enabled" : false,
|
|
"defaultAction" : false,
|
|
"priority" : 20,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "UPDATE_PASSWORD",
|
|
"name" : "Update Password",
|
|
"providerId" : "UPDATE_PASSWORD",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 30,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "UPDATE_PROFILE",
|
|
"name" : "Update Profile",
|
|
"providerId" : "UPDATE_PROFILE",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 40,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "VERIFY_EMAIL",
|
|
"name" : "Verify Email",
|
|
"providerId" : "VERIFY_EMAIL",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 50,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "update_user_locale",
|
|
"name" : "Update User Locale",
|
|
"providerId" : "update_user_locale",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 1000,
|
|
"config" : { }
|
|
} ],
|
|
"browserFlow" : "browser",
|
|
"registrationFlow" : "registration",
|
|
"directGrantFlow" : "direct grant",
|
|
"resetCredentialsFlow" : "reset credentials",
|
|
"clientAuthenticationFlow" : "clients",
|
|
"dockerAuthenticationFlow" : "docker auth",
|
|
"attributes" : { },
|
|
"keycloakVersion" : "11.0.0",
|
|
"userManagedAccessAllowed" : false
|
|
} |