1883 lines
70 KiB
JSON
Executable File
1883 lines
70 KiB
JSON
Executable File
{
|
|
"id" : "3097d173-25f7-43da-91b0-f67c819d02a9",
|
|
"realm" : "hemhub",
|
|
"notBefore" : 0,
|
|
"defaultSignatureAlgorithm" : "RS256",
|
|
"revokeRefreshToken" : false,
|
|
"refreshTokenMaxReuse" : 0,
|
|
"accessTokenLifespan" : 300,
|
|
"accessTokenLifespanForImplicitFlow" : 900,
|
|
"ssoSessionIdleTimeout" : 1800,
|
|
"ssoSessionMaxLifespan" : 36000,
|
|
"ssoSessionIdleTimeoutRememberMe" : 0,
|
|
"ssoSessionMaxLifespanRememberMe" : 0,
|
|
"offlineSessionIdleTimeout" : 2592000,
|
|
"offlineSessionMaxLifespanEnabled" : false,
|
|
"offlineSessionMaxLifespan" : 5184000,
|
|
"clientSessionIdleTimeout" : 0,
|
|
"clientSessionMaxLifespan" : 0,
|
|
"clientOfflineSessionIdleTimeout" : 0,
|
|
"clientOfflineSessionMaxLifespan" : 0,
|
|
"accessCodeLifespan" : 60,
|
|
"accessCodeLifespanUserAction" : 300,
|
|
"accessCodeLifespanLogin" : 1800,
|
|
"actionTokenGeneratedByAdminLifespan" : 43200,
|
|
"actionTokenGeneratedByUserLifespan" : 300,
|
|
"oauth2DeviceCodeLifespan" : 600,
|
|
"oauth2DevicePollingInterval" : 5,
|
|
"enabled" : true,
|
|
"sslRequired" : "external",
|
|
"registrationAllowed" : false,
|
|
"registrationEmailAsUsername" : false,
|
|
"rememberMe" : false,
|
|
"verifyEmail" : false,
|
|
"loginWithEmailAllowed" : true,
|
|
"duplicateEmailsAllowed" : false,
|
|
"resetPasswordAllowed" : false,
|
|
"editUsernameAllowed" : false,
|
|
"bruteForceProtected" : false,
|
|
"permanentLockout" : false,
|
|
"maxTemporaryLockouts" : 0,
|
|
"maxFailureWaitSeconds" : 900,
|
|
"minimumQuickLoginWaitSeconds" : 60,
|
|
"waitIncrementSeconds" : 60,
|
|
"quickLoginCheckMilliSeconds" : 1000,
|
|
"maxDeltaTimeSeconds" : 43200,
|
|
"failureFactor" : 30,
|
|
"roles" : {
|
|
"realm" : [ {
|
|
"id" : "f5b5ba46-b1cf-49ab-911b-ae852f588565",
|
|
"name" : "offline_access",
|
|
"description" : "${role_offline-access}",
|
|
"composite" : false,
|
|
"clientRole" : false,
|
|
"containerId" : "3097d173-25f7-43da-91b0-f67c819d02a9",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "b620d634-61a9-4c85-b8cd-c37ed54c08fb",
|
|
"name" : "MEMBER",
|
|
"composite" : false,
|
|
"clientRole" : false,
|
|
"containerId" : "3097d173-25f7-43da-91b0-f67c819d02a9",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "71f62ebe-1268-41e0-8bb4-91242ffd327b",
|
|
"name" : "default-roles-hemhub",
|
|
"description" : "${role_default-roles}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"realm" : [ "offline_access", "uma_authorization" ],
|
|
"client" : {
|
|
"account" : [ "manage-account", "view-profile" ]
|
|
}
|
|
},
|
|
"clientRole" : false,
|
|
"containerId" : "3097d173-25f7-43da-91b0-f67c819d02a9",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "1d8b11b7-5b13-4bdf-ad53-4a5ee8f5cd87",
|
|
"name" : "OWNER",
|
|
"composite" : false,
|
|
"clientRole" : false,
|
|
"containerId" : "3097d173-25f7-43da-91b0-f67c819d02a9",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "7b79c306-3f47-43d4-a2a4-b4b85245df5e",
|
|
"name" : "uma_authorization",
|
|
"description" : "${role_uma_authorization}",
|
|
"composite" : false,
|
|
"clientRole" : false,
|
|
"containerId" : "3097d173-25f7-43da-91b0-f67c819d02a9",
|
|
"attributes" : { }
|
|
} ],
|
|
"client" : {
|
|
"realm-management" : [ {
|
|
"id" : "5fda7144-72bc-474b-ac83-0a348282d883",
|
|
"name" : "manage-events",
|
|
"description" : "${role_manage-events}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "c75db151-bce4-403f-9e57-065077e6d868",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "6cd9bd2d-7b8f-421c-9924-97d2abb53586",
|
|
"name" : "query-clients",
|
|
"description" : "${role_query-clients}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "c75db151-bce4-403f-9e57-065077e6d868",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "ede514db-5cc4-4d28-bcc6-6662867959b7",
|
|
"name" : "view-clients",
|
|
"description" : "${role_view-clients}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"realm-management" : [ "query-clients" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "c75db151-bce4-403f-9e57-065077e6d868",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "a66e0cec-44ca-45f7-ae36-0efd2f831b24",
|
|
"name" : "view-realm",
|
|
"description" : "${role_view-realm}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "c75db151-bce4-403f-9e57-065077e6d868",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "89dc33ac-7272-4d23-8db7-e11efbea75ca",
|
|
"name" : "impersonation",
|
|
"description" : "${role_impersonation}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "c75db151-bce4-403f-9e57-065077e6d868",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "c3004fea-529d-4e6e-aa47-1f7797ddc826",
|
|
"name" : "query-users",
|
|
"description" : "${role_query-users}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "c75db151-bce4-403f-9e57-065077e6d868",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "ca2f7f97-9180-4ff8-8632-130870c58e53",
|
|
"name" : "view-authorization",
|
|
"description" : "${role_view-authorization}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "c75db151-bce4-403f-9e57-065077e6d868",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "1045267f-5b6a-445f-849a-ee1521864918",
|
|
"name" : "view-identity-providers",
|
|
"description" : "${role_view-identity-providers}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "c75db151-bce4-403f-9e57-065077e6d868",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "d60203d5-db96-4e70-b5b1-16b38d080180",
|
|
"name" : "create-client",
|
|
"description" : "${role_create-client}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "c75db151-bce4-403f-9e57-065077e6d868",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "d768a5a6-aa1e-4aea-87b1-14e8ea35f4c6",
|
|
"name" : "manage-realm",
|
|
"description" : "${role_manage-realm}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "c75db151-bce4-403f-9e57-065077e6d868",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "7eb669e0-1a7c-49ad-bf1a-3eaffbae67f9",
|
|
"name" : "manage-clients",
|
|
"description" : "${role_manage-clients}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "c75db151-bce4-403f-9e57-065077e6d868",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "d3f50813-1c1b-48f1-9de7-452f2c985bf8",
|
|
"name" : "query-groups",
|
|
"description" : "${role_query-groups}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "c75db151-bce4-403f-9e57-065077e6d868",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "8cdd5f3f-52b5-4bde-8499-c8aedacebfc6",
|
|
"name" : "manage-identity-providers",
|
|
"description" : "${role_manage-identity-providers}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "c75db151-bce4-403f-9e57-065077e6d868",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "36599116-cacf-437b-b5a8-756d3c6dc8f3",
|
|
"name" : "manage-users",
|
|
"description" : "${role_manage-users}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "c75db151-bce4-403f-9e57-065077e6d868",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "61410c51-3815-46d5-bcb6-957e0a8fae52",
|
|
"name" : "view-users",
|
|
"description" : "${role_view-users}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"realm-management" : [ "query-groups", "query-users" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "c75db151-bce4-403f-9e57-065077e6d868",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "22dc2cbf-ce40-44da-b0c2-66ccc711f439",
|
|
"name" : "manage-authorization",
|
|
"description" : "${role_manage-authorization}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "c75db151-bce4-403f-9e57-065077e6d868",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "d8aaedeb-079c-4213-9142-885deee8aee4",
|
|
"name" : "query-realms",
|
|
"description" : "${role_query-realms}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "c75db151-bce4-403f-9e57-065077e6d868",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "f41fa55f-6cb3-4ff9-96bc-38e19c082e90",
|
|
"name" : "realm-admin",
|
|
"description" : "${role_realm-admin}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"realm-management" : [ "manage-events", "query-clients", "view-clients", "view-realm", "query-users", "impersonation", "view-authorization", "view-identity-providers", "create-client", "manage-realm", "manage-clients", "query-groups", "manage-users", "manage-identity-providers", "view-users", "manage-authorization", "query-realms", "view-events" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "c75db151-bce4-403f-9e57-065077e6d868",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "4cb11e1b-ce5a-49b0-a652-564ad8d63805",
|
|
"name" : "view-events",
|
|
"description" : "${role_view-events}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "c75db151-bce4-403f-9e57-065077e6d868",
|
|
"attributes" : { }
|
|
} ],
|
|
"security-admin-console" : [ ],
|
|
"hemhub-public" : [ ],
|
|
"admin-cli" : [ ],
|
|
"account-console" : [ ],
|
|
"broker" : [ {
|
|
"id" : "649fffd4-18a2-497d-a3f6-1e284ea89417",
|
|
"name" : "read-token",
|
|
"description" : "${role_read-token}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "03e46055-96f3-4c3c-997e-8aa5c033d212",
|
|
"attributes" : { }
|
|
} ],
|
|
"account" : [ {
|
|
"id" : "4fc4eb33-5bca-4064-92ae-c5a5a4c83d11",
|
|
"name" : "delete-account",
|
|
"description" : "${role_delete-account}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "ab526527-bd97-447a-a93d-dcf21ea3a585",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "9876020c-d6d5-4538-bbb6-80f794765c3d",
|
|
"name" : "view-consent",
|
|
"description" : "${role_view-consent}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "ab526527-bd97-447a-a93d-dcf21ea3a585",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "b8c6c3ea-6404-40b8-9203-a68294003a99",
|
|
"name" : "view-groups",
|
|
"description" : "${role_view-groups}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "ab526527-bd97-447a-a93d-dcf21ea3a585",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "ed82527a-7a2d-4ad7-84b2-f987e1136e96",
|
|
"name" : "manage-consent",
|
|
"description" : "${role_manage-consent}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"account" : [ "view-consent" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "ab526527-bd97-447a-a93d-dcf21ea3a585",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "3c198f22-1d94-4b44-9161-f2eb5d211032",
|
|
"name" : "view-applications",
|
|
"description" : "${role_view-applications}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "ab526527-bd97-447a-a93d-dcf21ea3a585",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "25978ccf-a76a-4297-8648-78fd46951168",
|
|
"name" : "manage-account",
|
|
"description" : "${role_manage-account}",
|
|
"composite" : true,
|
|
"composites" : {
|
|
"client" : {
|
|
"account" : [ "manage-account-links" ]
|
|
}
|
|
},
|
|
"clientRole" : true,
|
|
"containerId" : "ab526527-bd97-447a-a93d-dcf21ea3a585",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "7d75985e-691a-4c61-82d3-abeaca0d3ac8",
|
|
"name" : "manage-account-links",
|
|
"description" : "${role_manage-account-links}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "ab526527-bd97-447a-a93d-dcf21ea3a585",
|
|
"attributes" : { }
|
|
}, {
|
|
"id" : "c2ff899c-577e-4b43-9b09-7986052b3d81",
|
|
"name" : "view-profile",
|
|
"description" : "${role_view-profile}",
|
|
"composite" : false,
|
|
"clientRole" : true,
|
|
"containerId" : "ab526527-bd97-447a-a93d-dcf21ea3a585",
|
|
"attributes" : { }
|
|
} ]
|
|
}
|
|
},
|
|
"groups" : [ ],
|
|
"defaultRole" : {
|
|
"id" : "71f62ebe-1268-41e0-8bb4-91242ffd327b",
|
|
"name" : "default-roles-hemhub",
|
|
"description" : "${role_default-roles}",
|
|
"composite" : true,
|
|
"clientRole" : false,
|
|
"containerId" : "3097d173-25f7-43da-91b0-f67c819d02a9"
|
|
},
|
|
"requiredCredentials" : [ "password" ],
|
|
"otpPolicyType" : "totp",
|
|
"otpPolicyAlgorithm" : "HmacSHA1",
|
|
"otpPolicyInitialCounter" : 0,
|
|
"otpPolicyDigits" : 6,
|
|
"otpPolicyLookAheadWindow" : 1,
|
|
"otpPolicyPeriod" : 30,
|
|
"otpPolicyCodeReusable" : false,
|
|
"otpSupportedApplications" : [ "totpAppFreeOTPName", "totpAppGoogleName", "totpAppMicrosoftAuthenticatorName" ],
|
|
"localizationTexts" : { },
|
|
"webAuthnPolicyRpEntityName" : "keycloak",
|
|
"webAuthnPolicySignatureAlgorithms" : [ "ES256" ],
|
|
"webAuthnPolicyRpId" : "",
|
|
"webAuthnPolicyAttestationConveyancePreference" : "not specified",
|
|
"webAuthnPolicyAuthenticatorAttachment" : "not specified",
|
|
"webAuthnPolicyRequireResidentKey" : "not specified",
|
|
"webAuthnPolicyUserVerificationRequirement" : "not specified",
|
|
"webAuthnPolicyCreateTimeout" : 0,
|
|
"webAuthnPolicyAvoidSameAuthenticatorRegister" : false,
|
|
"webAuthnPolicyAcceptableAaguids" : [ ],
|
|
"webAuthnPolicyExtraOrigins" : [ ],
|
|
"webAuthnPolicyPasswordlessRpEntityName" : "keycloak",
|
|
"webAuthnPolicyPasswordlessSignatureAlgorithms" : [ "ES256" ],
|
|
"webAuthnPolicyPasswordlessRpId" : "",
|
|
"webAuthnPolicyPasswordlessAttestationConveyancePreference" : "not specified",
|
|
"webAuthnPolicyPasswordlessAuthenticatorAttachment" : "not specified",
|
|
"webAuthnPolicyPasswordlessRequireResidentKey" : "not specified",
|
|
"webAuthnPolicyPasswordlessUserVerificationRequirement" : "not specified",
|
|
"webAuthnPolicyPasswordlessCreateTimeout" : 0,
|
|
"webAuthnPolicyPasswordlessAvoidSameAuthenticatorRegister" : false,
|
|
"webAuthnPolicyPasswordlessAcceptableAaguids" : [ ],
|
|
"webAuthnPolicyPasswordlessExtraOrigins" : [ ],
|
|
"users" : [ {
|
|
"id" : "ce156c0e-5a3b-425f-a312-ecf7ed8540e4",
|
|
"username" : "maria",
|
|
"firstName" : "Maria",
|
|
"lastName" : "Andersson",
|
|
"email" : "maria@example.com",
|
|
"emailVerified" : true,
|
|
"attributes" : {
|
|
"householdId" : [ "H-ANDERSSON" ]
|
|
},
|
|
"createdTimestamp" : 1760168567646,
|
|
"enabled" : true,
|
|
"totp" : false,
|
|
"credentials" : [ {
|
|
"id" : "b70958f7-306e-4a4d-a73d-5f8cac575021",
|
|
"type" : "password",
|
|
"createdDate" : 1760168568392,
|
|
"secretData" : "{\"value\":\"ZpQcZiOp5+Yx+cLjDCVcszFMwICYaiPceN3SW91R9+taS4qGBoDPz4FyFh0ClIsWErpcxhWApY0LqjlJlFA31w==\",\"salt\":\"IfzFPM/4EpqqlOEndZhd9g==\",\"additionalParameters\":{}}",
|
|
"credentialData" : "{\"hashIterations\":210000,\"algorithm\":\"pbkdf2-sha512\",\"additionalParameters\":{}}"
|
|
} ],
|
|
"disableableCredentialTypes" : [ ],
|
|
"requiredActions" : [ ],
|
|
"realmRoles" : [ "MEMBER", "default-roles-hemhub", "OWNER" ],
|
|
"notBefore" : 0,
|
|
"groups" : [ ]
|
|
} ],
|
|
"scopeMappings" : [ {
|
|
"clientScope" : "offline_access",
|
|
"roles" : [ "offline_access" ]
|
|
} ],
|
|
"clientScopeMappings" : {
|
|
"account" : [ {
|
|
"client" : "account-console",
|
|
"roles" : [ "manage-account", "view-groups" ]
|
|
} ]
|
|
},
|
|
"clients" : [ {
|
|
"id" : "ab526527-bd97-447a-a93d-dcf21ea3a585",
|
|
"clientId" : "account",
|
|
"name" : "${client_account}",
|
|
"rootUrl" : "${authBaseUrl}",
|
|
"baseUrl" : "/realms/hemhub/account/",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ "/realms/hemhub/account/*" ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"post.logout.redirect.uris" : "+"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "a876084b-59e2-4d7b-863a-2300446d6798",
|
|
"clientId" : "account-console",
|
|
"name" : "${client_account-console}",
|
|
"rootUrl" : "${authBaseUrl}",
|
|
"baseUrl" : "/realms/hemhub/account/",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ "/realms/hemhub/account/*" ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"post.logout.redirect.uris" : "+",
|
|
"pkce.code.challenge.method" : "S256"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"protocolMappers" : [ {
|
|
"id" : "b67bacaf-5a1a-482c-b1fc-b14f8eeddaaf",
|
|
"name" : "audience resolve",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-audience-resolve-mapper",
|
|
"consentRequired" : false,
|
|
"config" : { }
|
|
} ],
|
|
"defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "3679aa76-d7ff-4f1f-a4a5-286f8b92387f",
|
|
"clientId" : "admin-cli",
|
|
"name" : "${client_admin-cli}",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : false,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : true,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : { },
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "03e46055-96f3-4c3c-997e-8aa5c033d212",
|
|
"clientId" : "broker",
|
|
"name" : "${client_broker}",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : true,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : false,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : { },
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "c31dbb89-1ba6-4bb7-864d-b2a9cea46182",
|
|
"clientId" : "hemhub-public",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ "http://localhost:3000/*", "http://localhost:5173/*" ],
|
|
"webOrigins" : [ "*" ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : true,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"pkce.code.challenge.method" : "S256",
|
|
"backchannel.logout.session.required" : "true",
|
|
"backchannel.logout.revoke.offline.tokens" : "false"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : true,
|
|
"nodeReRegistrationTimeout" : -1,
|
|
"protocolMappers" : [ {
|
|
"id" : "3fb7bf69-030c-45fc-91ba-85b9f33048bd",
|
|
"name" : "householdId",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"aggregate.attrs" : "false",
|
|
"introspection.token.claim" : "true",
|
|
"multivalued" : "false",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "householdId",
|
|
"id.token.claim" : "true",
|
|
"lightweight.claim" : "false",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "householdId",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ],
|
|
"defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "c75db151-bce4-403f-9e57-065077e6d868",
|
|
"clientId" : "realm-management",
|
|
"name" : "${client_realm-management}",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ ],
|
|
"webOrigins" : [ ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : true,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : false,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : { },
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
}, {
|
|
"id" : "9fff62db-896c-4c40-89b6-e9b1c603167b",
|
|
"clientId" : "security-admin-console",
|
|
"name" : "${client_security-admin-console}",
|
|
"rootUrl" : "${authAdminUrl}",
|
|
"baseUrl" : "/admin/hemhub/console/",
|
|
"surrogateAuthRequired" : false,
|
|
"enabled" : true,
|
|
"alwaysDisplayInConsole" : false,
|
|
"clientAuthenticatorType" : "client-secret",
|
|
"redirectUris" : [ "/admin/hemhub/console/*" ],
|
|
"webOrigins" : [ "+" ],
|
|
"notBefore" : 0,
|
|
"bearerOnly" : false,
|
|
"consentRequired" : false,
|
|
"standardFlowEnabled" : true,
|
|
"implicitFlowEnabled" : false,
|
|
"directAccessGrantsEnabled" : false,
|
|
"serviceAccountsEnabled" : false,
|
|
"publicClient" : true,
|
|
"frontchannelLogout" : false,
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"post.logout.redirect.uris" : "+",
|
|
"pkce.code.challenge.method" : "S256"
|
|
},
|
|
"authenticationFlowBindingOverrides" : { },
|
|
"fullScopeAllowed" : false,
|
|
"nodeReRegistrationTimeout" : 0,
|
|
"protocolMappers" : [ {
|
|
"id" : "64519cef-b08c-4dcb-b0e3-040e5a1547c7",
|
|
"name" : "locale",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "locale",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "locale",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ],
|
|
"defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "email" ],
|
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
|
|
} ],
|
|
"clientScopes" : [ {
|
|
"id" : "fd41d54f-2b02-454b-8585-ba68adf30701",
|
|
"name" : "offline_access",
|
|
"description" : "OpenID Connect built-in scope: offline_access",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"consent.screen.text" : "${offlineAccessScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
}
|
|
}, {
|
|
"id" : "16e2464e-cf1d-4e87-94cd-65215cf131e0",
|
|
"name" : "email",
|
|
"description" : "OpenID Connect built-in scope: email",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "true",
|
|
"consent.screen.text" : "${emailScopeConsentText}"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "089b475f-a0bf-4c62-8d02-f4a7deef9c54",
|
|
"name" : "email verified",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-property-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "emailVerified",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "email_verified",
|
|
"jsonType.label" : "boolean"
|
|
}
|
|
}, {
|
|
"id" : "2bc4b1f5-d9a6-4893-92d7-6567d178c0c7",
|
|
"name" : "email",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "email",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "email",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "b2076721-0714-4a7a-8f4b-c77bda83b317",
|
|
"name" : "profile",
|
|
"description" : "OpenID Connect built-in scope: profile",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "true",
|
|
"consent.screen.text" : "${profileScopeConsentText}"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "a9621307-449a-43c2-b2e0-641d6f7eacbf",
|
|
"name" : "profile",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "profile",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "profile",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "cd6a85b0-643f-4fd0-a83d-bd9b8114f3b5",
|
|
"name" : "middle name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "middleName",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "middle_name",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "e72937ca-537e-445e-8733-0a9912ac9690",
|
|
"name" : "updated at",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "updatedAt",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "updated_at",
|
|
"jsonType.label" : "long"
|
|
}
|
|
}, {
|
|
"id" : "e1672845-69e7-4cdf-9e39-fda4490705e8",
|
|
"name" : "picture",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "picture",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "picture",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "f426bdb1-7744-4eb9-9653-10bc0e5b364c",
|
|
"name" : "nickname",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "nickname",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "nickname",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "5395f8f5-aa24-462b-973c-280eea3fdac5",
|
|
"name" : "birthdate",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "birthdate",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "birthdate",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "2e3c1542-af08-40bf-b52e-8754f233e733",
|
|
"name" : "given name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "firstName",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "given_name",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "8a142384-3eee-45f8-9daa-daa3f7a791bd",
|
|
"name" : "website",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "website",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "website",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "367cec70-5ae7-4d91-8a4b-f3847e43da3f",
|
|
"name" : "gender",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "gender",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "gender",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "cb9842ec-9ecb-44b4-9312-5bfbd475b203",
|
|
"name" : "zoneinfo",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "zoneinfo",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "zoneinfo",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "88c6e178-a0ac-435e-9dd9-e5967da72689",
|
|
"name" : "locale",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "locale",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "locale",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "070125c2-b7d9-4015-8241-a692fab6d975",
|
|
"name" : "username",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "username",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "preferred_username",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "cca341b2-880d-48e8-9187-38f8cf4ddbd8",
|
|
"name" : "family name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "lastName",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "family_name",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "eba8a415-4d23-4937-9ef2-a716003d11fe",
|
|
"name" : "full name",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-full-name-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"id.token.claim" : "true",
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"userinfo.token.claim" : "true"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "f91d57c6-7795-4b7e-a7a7-38c8d9e2f98e",
|
|
"name" : "roles",
|
|
"description" : "OpenID Connect scope for add user roles to the access token",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "false",
|
|
"display.on.consent.screen" : "true",
|
|
"consent.screen.text" : "${rolesScopeConsentText}"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "6f1bfc17-2832-4585-874d-8cb7d4b2276a",
|
|
"name" : "audience resolve",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-audience-resolve-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true"
|
|
}
|
|
}, {
|
|
"id" : "2c5326bc-9436-426e-8fc3-0cd9348a24f6",
|
|
"name" : "realm roles",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-realm-role-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"multivalued" : "true",
|
|
"user.attribute" : "foo",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "realm_access.roles",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "0f6d7e71-0143-4aa9-94ea-07174e3f9d7e",
|
|
"name" : "client roles",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-client-role-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"multivalued" : "true",
|
|
"user.attribute" : "foo",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "resource_access.${client_id}.roles",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "6400e4fc-4f71-4cb8-8462-40e513c7e892",
|
|
"name" : "web-origins",
|
|
"description" : "OpenID Connect scope for add allowed web origins to the access token",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "false",
|
|
"display.on.consent.screen" : "false",
|
|
"consent.screen.text" : ""
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "28b206c4-7eec-4050-9b6b-971759b20bec",
|
|
"name" : "allowed web origins",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-allowed-origins-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "8491faf1-29bc-45ed-a425-015608d79dca",
|
|
"name" : "acr",
|
|
"description" : "OpenID Connect scope for add acr (authentication context class reference) to the token",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "false",
|
|
"display.on.consent.screen" : "false"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "53af5301-2e99-4b62-869b-768399e26300",
|
|
"name" : "acr loa level",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-acr-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"id.token.claim" : "true",
|
|
"introspection.token.claim" : "true",
|
|
"access.token.claim" : "true"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "6382c975-1bea-4431-947e-f4a78ba2aae9",
|
|
"name" : "role_list",
|
|
"description" : "SAML role list",
|
|
"protocol" : "saml",
|
|
"attributes" : {
|
|
"consent.screen.text" : "${samlRoleListScopeConsentText}",
|
|
"display.on.consent.screen" : "true"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "7a41f8d0-2f8e-49c8-9ee4-d675bf8293f9",
|
|
"name" : "role list",
|
|
"protocol" : "saml",
|
|
"protocolMapper" : "saml-role-list-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"single" : "false",
|
|
"attribute.nameformat" : "Basic",
|
|
"attribute.name" : "Role"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "c83fc5e2-d209-4b11-a486-ce413a7b9d84",
|
|
"name" : "phone",
|
|
"description" : "OpenID Connect built-in scope: phone",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "true",
|
|
"consent.screen.text" : "${phoneScopeConsentText}"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "a5a575ac-23c2-4cc8-b952-907d17b98e07",
|
|
"name" : "phone number",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "phoneNumber",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "phone_number",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "5ff09f67-df7e-4181-8f18-4dec12bd32c8",
|
|
"name" : "phone number verified",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "phoneNumberVerified",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "phone_number_verified",
|
|
"jsonType.label" : "boolean"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "ed590694-5fb9-4c97-84dc-1f7c63adb8e7",
|
|
"name" : "microprofile-jwt",
|
|
"description" : "Microprofile - JWT built-in scope",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "false"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "9389de14-cf22-4e40-b10e-71918a7bb7d9",
|
|
"name" : "upn",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-attribute-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute" : "username",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "upn",
|
|
"jsonType.label" : "String"
|
|
}
|
|
}, {
|
|
"id" : "f32cf3ca-638b-463b-87a7-a43a4df9e1e2",
|
|
"name" : "groups",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-usermodel-realm-role-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"introspection.token.claim" : "true",
|
|
"multivalued" : "true",
|
|
"user.attribute" : "foo",
|
|
"id.token.claim" : "true",
|
|
"access.token.claim" : "true",
|
|
"claim.name" : "groups",
|
|
"jsonType.label" : "String"
|
|
}
|
|
} ]
|
|
}, {
|
|
"id" : "c73c029e-03eb-498b-874b-3762ba8c5f71",
|
|
"name" : "address",
|
|
"description" : "OpenID Connect built-in scope: address",
|
|
"protocol" : "openid-connect",
|
|
"attributes" : {
|
|
"include.in.token.scope" : "true",
|
|
"display.on.consent.screen" : "true",
|
|
"consent.screen.text" : "${addressScopeConsentText}"
|
|
},
|
|
"protocolMappers" : [ {
|
|
"id" : "ba59852a-7353-421f-93d3-3077fdf2aea9",
|
|
"name" : "address",
|
|
"protocol" : "openid-connect",
|
|
"protocolMapper" : "oidc-address-mapper",
|
|
"consentRequired" : false,
|
|
"config" : {
|
|
"user.attribute.formatted" : "formatted",
|
|
"user.attribute.country" : "country",
|
|
"introspection.token.claim" : "true",
|
|
"user.attribute.postal_code" : "postal_code",
|
|
"userinfo.token.claim" : "true",
|
|
"user.attribute.street" : "street",
|
|
"id.token.claim" : "true",
|
|
"user.attribute.region" : "region",
|
|
"access.token.claim" : "true",
|
|
"user.attribute.locality" : "locality"
|
|
}
|
|
} ]
|
|
} ],
|
|
"defaultDefaultClientScopes" : [ "role_list", "profile", "email", "roles", "web-origins", "acr" ],
|
|
"defaultOptionalClientScopes" : [ "offline_access", "address", "phone", "microprofile-jwt" ],
|
|
"browserSecurityHeaders" : {
|
|
"contentSecurityPolicyReportOnly" : "",
|
|
"xContentTypeOptions" : "nosniff",
|
|
"referrerPolicy" : "no-referrer",
|
|
"xRobotsTag" : "none",
|
|
"xFrameOptions" : "SAMEORIGIN",
|
|
"contentSecurityPolicy" : "frame-src 'self'; frame-ancestors 'self'; object-src 'none';",
|
|
"xXSSProtection" : "1; mode=block",
|
|
"strictTransportSecurity" : "max-age=31536000; includeSubDomains"
|
|
},
|
|
"smtpServer" : { },
|
|
"eventsEnabled" : false,
|
|
"eventsListeners" : [ "jboss-logging" ],
|
|
"enabledEventTypes" : [ ],
|
|
"adminEventsEnabled" : false,
|
|
"adminEventsDetailsEnabled" : false,
|
|
"identityProviders" : [ ],
|
|
"identityProviderMappers" : [ ],
|
|
"components" : {
|
|
"org.keycloak.services.clientregistration.policy.ClientRegistrationPolicy" : [ {
|
|
"id" : "9843b55b-3e3a-44e3-81dc-6cf3a37981ec",
|
|
"name" : "Allowed Client Scopes",
|
|
"providerId" : "allowed-client-templates",
|
|
"subType" : "authenticated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allow-default-scopes" : [ "true" ]
|
|
}
|
|
}, {
|
|
"id" : "60ec8136-ae40-44b2-a46d-a156c3e8eebd",
|
|
"name" : "Trusted Hosts",
|
|
"providerId" : "trusted-hosts",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"host-sending-registration-request-must-match" : [ "true" ],
|
|
"client-uris-must-match" : [ "true" ]
|
|
}
|
|
}, {
|
|
"id" : "026c2152-7f08-4581-b3c2-7dcfdcd8e4f2",
|
|
"name" : "Consent Required",
|
|
"providerId" : "consent-required",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : { }
|
|
}, {
|
|
"id" : "4cc21fbe-f204-4487-9991-8331acad2e73",
|
|
"name" : "Allowed Protocol Mapper Types",
|
|
"providerId" : "allowed-protocol-mappers",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allowed-protocol-mapper-types" : [ "oidc-sha256-pairwise-sub-mapper", "saml-user-attribute-mapper", "oidc-address-mapper", "oidc-usermodel-property-mapper", "saml-role-list-mapper", "oidc-usermodel-attribute-mapper", "oidc-full-name-mapper", "saml-user-property-mapper" ]
|
|
}
|
|
}, {
|
|
"id" : "93047b4e-85cf-432a-8f99-8e7e7eb92818",
|
|
"name" : "Full Scope Disabled",
|
|
"providerId" : "scope",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : { }
|
|
}, {
|
|
"id" : "f4dac735-dabf-49b2-8b98-5f6a1be9cfbc",
|
|
"name" : "Max Clients Limit",
|
|
"providerId" : "max-clients",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"max-clients" : [ "200" ]
|
|
}
|
|
}, {
|
|
"id" : "ac20b4a5-d178-4858-b4d4-197a96b8325c",
|
|
"name" : "Allowed Protocol Mapper Types",
|
|
"providerId" : "allowed-protocol-mappers",
|
|
"subType" : "authenticated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allowed-protocol-mapper-types" : [ "oidc-usermodel-property-mapper", "oidc-full-name-mapper", "oidc-usermodel-attribute-mapper", "saml-role-list-mapper", "oidc-address-mapper", "saml-user-property-mapper", "oidc-sha256-pairwise-sub-mapper", "saml-user-attribute-mapper" ]
|
|
}
|
|
}, {
|
|
"id" : "b4322ec8-45e8-4d45-a766-8fcdcb500848",
|
|
"name" : "Allowed Client Scopes",
|
|
"providerId" : "allowed-client-templates",
|
|
"subType" : "anonymous",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"allow-default-scopes" : [ "true" ]
|
|
}
|
|
} ],
|
|
"org.keycloak.userprofile.UserProfileProvider" : [ {
|
|
"id" : "9b64d38c-58a7-4611-90c8-6f4d757925f7",
|
|
"providerId" : "declarative-user-profile",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"kc.user.profile.config" : [ "{\"attributes\":[{\"name\":\"username\",\"displayName\":\"${username}\",\"validations\":{\"length\":{\"min\":3,\"max\":255},\"username-prohibited-characters\":{},\"up-username-not-idn-homograph\":{}},\"permissions\":{\"view\":[\"admin\",\"user\"],\"edit\":[\"admin\",\"user\"]},\"multivalued\":false},{\"name\":\"email\",\"displayName\":\"${email}\",\"validations\":{\"email\":{},\"length\":{\"max\":255}},\"required\":{\"roles\":[\"user\"]},\"permissions\":{\"view\":[\"admin\",\"user\"],\"edit\":[\"admin\",\"user\"]},\"multivalued\":false},{\"name\":\"firstName\",\"displayName\":\"${firstName}\",\"validations\":{\"length\":{\"max\":255},\"person-name-prohibited-characters\":{}},\"required\":{\"roles\":[\"user\"]},\"permissions\":{\"view\":[\"admin\",\"user\"],\"edit\":[\"admin\",\"user\"]},\"multivalued\":false},{\"name\":\"lastName\",\"displayName\":\"${lastName}\",\"validations\":{\"length\":{\"max\":255},\"person-name-prohibited-characters\":{}},\"required\":{\"roles\":[\"user\"]},\"permissions\":{\"view\":[\"admin\",\"user\"],\"edit\":[\"admin\",\"user\"]},\"multivalued\":false},{\"name\":\"householdId\",\"displayName\":\"Household ID\",\"validations\":{},\"annotations\":{},\"permissions\":{\"view\":[],\"edit\":[\"admin\",\"user\"]},\"multivalued\":false}],\"groups\":[{\"name\":\"user-metadata\",\"displayHeader\":\"User metadata\",\"displayDescription\":\"Attributes, which refer to user metadata\"}]}" ]
|
|
}
|
|
} ],
|
|
"org.keycloak.keys.KeyProvider" : [ {
|
|
"id" : "b3579503-6247-43ea-8f68-cff75b9c72c5",
|
|
"name" : "hmac-generated-hs512",
|
|
"providerId" : "hmac-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"kid" : [ "fc15e15f-d893-40b9-ae7d-fd2c01dd54e4" ],
|
|
"secret" : [ "UF6PD6ZqgB72-_KplZ9czSSD50bNmnGH7lXkbgucp7BhzMCbLzg_pCTh42R-YjNUrhluKJbITGpoDiGG9s5yk8oKhgdLDuUzWfO11L30iYf3NkfXAHuF42sTUBGQIKjoh2Mm-CDcl4n9VvblpY7yXFezcc1Or1dov4GFdFLqZEU" ],
|
|
"priority" : [ "100" ],
|
|
"algorithm" : [ "HS512" ]
|
|
}
|
|
}, {
|
|
"id" : "85035e99-b56b-47d1-8d2f-bcc44b6cc621",
|
|
"name" : "rsa-enc-generated",
|
|
"providerId" : "rsa-enc-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"privateKey" : [ "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" ],
|
|
"keyUse" : [ "ENC" ],
|
|
"certificate" : [ "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" ],
|
|
"priority" : [ "100" ],
|
|
"algorithm" : [ "RSA-OAEP" ]
|
|
}
|
|
}, {
|
|
"id" : "c96e3a8d-5132-41d3-93d4-c16af59b56f2",
|
|
"name" : "aes-generated",
|
|
"providerId" : "aes-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"kid" : [ "4ef45126-d613-4f40-b0b6-b1af32fded48" ],
|
|
"secret" : [ "eIfp6nUwDKbr0I_w2Pmnlg" ],
|
|
"priority" : [ "100" ]
|
|
}
|
|
}, {
|
|
"id" : "ac17c1ef-3c19-446c-ae70-dd2598c69b50",
|
|
"name" : "rsa-generated",
|
|
"providerId" : "rsa-generated",
|
|
"subComponents" : { },
|
|
"config" : {
|
|
"privateKey" : [ "MIIEpQIBAAKCAQEAzrw8tOq7+BloQxZuy7hn2nXceU36pifs9RQizlHXbXVkBnogAFwJn5hVBREhEZWrEYw30bH40m1vX8RBgVdXnv5WRkqXYXcR7uWbqlqvolG+/EjXamd7Or7okSgOXxTItVvZpQ2c1H9CEiqZimsbxWrLUiRm0qnB0Blp+VjfVS2KujZjUAvQtS+uKqYSS6CzPmXAS4vEYMSzBxthunVeLkw4oPcgnOK+1PCBGXVai+jVBdiLfA4/HNLN9MSrSluPWzGUulnc4eZ5RVgE0vDpS5cvCSxw8OWVHEQSED3jsUjd9Le2H9THYOEwJ9m4zadpFOdfH93ShSSAfn9aYaJHxwIDAQABAoIBAC7x688hZqHGEzj4xRwZueuPzAr3vC0y78oPUoALcaH3gElAPjgWrlDBZL0L0LiPhhMsBhjmExyloR7cEAvw64K9OpYnpgyJ31aiaSDcCvoPGhFr8Q7GhOMoKuObdvf8Xj9gpiGm37AZXcWGSut1uw6vW5BBl9/KkKpSuw/WMJDEqB6xMgMg3mZTVRbcHRW36TMbbw4PSn5YOdIF4bP5za9W+gyC+xYeOEAtoR/IwM2yffjykqttHPrO9f0iQM41JdxDmh+5vqzh+OCeg1zQWScQf4dUOyqj5lG2LxXGJR1PEIJdlNhZqk/4lRlyqlLumtgnOnVQj2CBbx9yRUGTDvECgYEA8NTpFNtDSLNLpUYZKvNjOTtqj8YKKdxhuvsQ23brCoci9EnWhb/9O0IBTG3YYrGCIIMuAMi0o1i1VNjp5X23dq3nyXURWnfE/s306c+3ifobYw7h23gV4DcugI/jDblEjT+qAQO6M9pw+7vEZqfOpwmthPjlUIkXmuCXeePbVN0CgYEA28GRagroObfBOlzFiJlZiNJ+v2AjOVUIyxOmRqdAZgFJygsCD6U+KqrQFQde5K6vlBO9BfhVcEfiJZvVTa/qG3lHWDw8vIMY0A2jyQocISkQnkH+TT4z+ktbzr2+qS8p0ZgnE6cwuJWhJKom8Iz5TtimoIQnUdXHeeIAbeTzAvMCgYEA3d+pZPekg2P7uyZbpYBZ165vvEl9r5dDypnnq+lhHW/muh0UsGBykpd6zskcY8CZ3A4+4aYHFb5yQNsekblCvun081sRQ8G4Ee/5RTeDJnDvrlFVr3Zw4QK1quflDQ20pFUU8J5Ye9Ex6hnRFapf7vAxlqIf0hSbVKq5oyhTN1kCgYEAz4piEOo4I7p9TOcszzM0sdlKRuc+nPjIEzJ9iKCQW0XAMIZw7eG7coRbfGC3p/WqcIirriW4WxAobihcLMCEsmm5jYVmPwr4thULp+RaaJ7lyPC+gKjMYgglrnzYweN+9SljTlZJ1ynJRF1F5Uzeby6BP3tPvyPM/jkI+sCNGS0CgYEAziGe+2cDFQiliAh3BSaX+RXj89L+V3XJrHHxRE4fucqdApBYYA9sWE1+OqCPtkMnqRhuCSO1B5T8a7Lej4g1p7MtfsZN6Ggg22Ky/Sp1lCpVsvX3h9FU7U3RS9LyaiDEieYyEhUmlcgjgMWdEBfDqUicMO5incTb6oCoRIJHjvQ=" ],
|
|
"keyUse" : [ "SIG" ],
|
|
"certificate" : [ "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" ],
|
|
"priority" : [ "100" ]
|
|
}
|
|
} ]
|
|
},
|
|
"internationalizationEnabled" : false,
|
|
"supportedLocales" : [ ],
|
|
"authenticationFlows" : [ {
|
|
"id" : "7d6d3119-7bf8-4a6b-831b-401dbcfb59e7",
|
|
"alias" : "Account verification options",
|
|
"description" : "Method with which to verity the existing account",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "idp-email-verification",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Verify Existing Account by Re-authentication",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "89859439-f52c-4a96-81e8-9537b7409e4b",
|
|
"alias" : "Browser - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP is required for the authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "auth-otp-form",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "6ebafc46-d98d-40fe-be1d-010fd5a40388",
|
|
"alias" : "Direct Grant - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP is required for the authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "direct-grant-validate-otp",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "fabea0b3-6263-44e6-89b0-0a0eb615ea4b",
|
|
"alias" : "First broker login - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP is required for the authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "auth-otp-form",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "b405a48c-d9e9-483c-9837-3d31e12fdcad",
|
|
"alias" : "Handle Existing Account",
|
|
"description" : "Handle what to do if there is existing account with same email/username like authenticated identity provider",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "idp-confirm-link",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Account verification options",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "9b6540ed-bf81-45bf-a29b-6312940bf3f1",
|
|
"alias" : "Reset - Conditional OTP",
|
|
"description" : "Flow to determine if the OTP should be reset or not. Set to REQUIRED to force.",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "conditional-user-configured",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "reset-otp",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "e6fdbdf0-4ae6-492d-9b31-63da90966a52",
|
|
"alias" : "User creation or linking",
|
|
"description" : "Flow for the existing/non-existing user alternatives",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticatorConfig" : "create unique user config",
|
|
"authenticator" : "idp-create-user-if-unique",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Handle Existing Account",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "3c6363f3-f33e-425f-9425-acd9253ac065",
|
|
"alias" : "Verify Existing Account by Re-authentication",
|
|
"description" : "Reauthentication of existing account",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "idp-username-password-form",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "First broker login - Conditional OTP",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "a5837aae-e697-4313-ae35-319eccd54da7",
|
|
"alias" : "browser",
|
|
"description" : "browser based authentication",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "auth-cookie",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "auth-spnego",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "DISABLED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "identity-provider-redirector",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 25,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 30,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "forms",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "77d04741-add7-4e56-b821-3c9fcbcd5388",
|
|
"alias" : "clients",
|
|
"description" : "Base authentication for clients",
|
|
"providerId" : "client-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "client-secret",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "client-jwt",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "client-secret-jwt",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 30,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "client-x509",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "ALTERNATIVE",
|
|
"priority" : 40,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "f9ef19a8-2e9c-47f4-8f9c-c1e9e81ca21d",
|
|
"alias" : "direct grant",
|
|
"description" : "OpenID Connect Resource Owner Grant",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "direct-grant-validate-username",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "direct-grant-validate-password",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 30,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Direct Grant - Conditional OTP",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "a69ec6fa-ba18-4c56-bc38-91125ca0dcbb",
|
|
"alias" : "docker auth",
|
|
"description" : "Used by Docker clients to authenticate against the IDP",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "docker-http-basic-authenticator",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "8802ac7a-66f2-49a6-92bb-5147abab3a22",
|
|
"alias" : "first broker login",
|
|
"description" : "Actions taken after first broker login with identity provider account, which is not yet linked to any Keycloak account",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticatorConfig" : "review profile config",
|
|
"authenticator" : "idp-review-profile",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "User creation or linking",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "f3ddd08a-225f-4c1c-a2c5-6237c8d03fd9",
|
|
"alias" : "forms",
|
|
"description" : "Username, password, otp and other auth forms.",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "auth-username-password-form",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Browser - Conditional OTP",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "6806c3da-4084-471d-a74b-74b4d834f60e",
|
|
"alias" : "registration",
|
|
"description" : "registration flow",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "registration-page-form",
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "registration form",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "951bed61-e37d-4748-8dea-39b0a779b5b8",
|
|
"alias" : "registration form",
|
|
"description" : "registration form",
|
|
"providerId" : "form-flow",
|
|
"topLevel" : false,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "registration-user-creation",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "registration-password-action",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 50,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "registration-recaptcha-action",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "DISABLED",
|
|
"priority" : 60,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "registration-terms-and-conditions",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "DISABLED",
|
|
"priority" : 70,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "a98ea622-4a59-4067-9bfe-4a19c094c94e",
|
|
"alias" : "reset credentials",
|
|
"description" : "Reset credentials for a user if they forgot their password or something",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "reset-credentials-choose-user",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "reset-credential-email",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 20,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticator" : "reset-password",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 30,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
}, {
|
|
"authenticatorFlow" : true,
|
|
"requirement" : "CONDITIONAL",
|
|
"priority" : 40,
|
|
"autheticatorFlow" : true,
|
|
"flowAlias" : "Reset - Conditional OTP",
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
}, {
|
|
"id" : "4d412f36-040c-4849-8054-f2c6b5ee179f",
|
|
"alias" : "saml ecp",
|
|
"description" : "SAML ECP Profile Authentication Flow",
|
|
"providerId" : "basic-flow",
|
|
"topLevel" : true,
|
|
"builtIn" : true,
|
|
"authenticationExecutions" : [ {
|
|
"authenticator" : "http-basic-authenticator",
|
|
"authenticatorFlow" : false,
|
|
"requirement" : "REQUIRED",
|
|
"priority" : 10,
|
|
"autheticatorFlow" : false,
|
|
"userSetupAllowed" : false
|
|
} ]
|
|
} ],
|
|
"authenticatorConfig" : [ {
|
|
"id" : "edf30596-cac4-42ea-9627-7b7b264015d9",
|
|
"alias" : "create unique user config",
|
|
"config" : {
|
|
"require.password.update.after.registration" : "false"
|
|
}
|
|
}, {
|
|
"id" : "e0bd7b2e-97f5-4f97-bb61-217dc1cbd905",
|
|
"alias" : "review profile config",
|
|
"config" : {
|
|
"update.profile.on.first.login" : "missing"
|
|
}
|
|
} ],
|
|
"requiredActions" : [ {
|
|
"alias" : "CONFIGURE_TOTP",
|
|
"name" : "Configure OTP",
|
|
"providerId" : "CONFIGURE_TOTP",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 10,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "TERMS_AND_CONDITIONS",
|
|
"name" : "Terms and Conditions",
|
|
"providerId" : "TERMS_AND_CONDITIONS",
|
|
"enabled" : false,
|
|
"defaultAction" : false,
|
|
"priority" : 20,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "UPDATE_PASSWORD",
|
|
"name" : "Update Password",
|
|
"providerId" : "UPDATE_PASSWORD",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 30,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "UPDATE_PROFILE",
|
|
"name" : "Update Profile",
|
|
"providerId" : "UPDATE_PROFILE",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 40,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "VERIFY_EMAIL",
|
|
"name" : "Verify Email",
|
|
"providerId" : "VERIFY_EMAIL",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 50,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "delete_account",
|
|
"name" : "Delete Account",
|
|
"providerId" : "delete_account",
|
|
"enabled" : false,
|
|
"defaultAction" : false,
|
|
"priority" : 60,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "webauthn-register",
|
|
"name" : "Webauthn Register",
|
|
"providerId" : "webauthn-register",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 70,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "webauthn-register-passwordless",
|
|
"name" : "Webauthn Register Passwordless",
|
|
"providerId" : "webauthn-register-passwordless",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 80,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "VERIFY_PROFILE",
|
|
"name" : "Verify Profile",
|
|
"providerId" : "VERIFY_PROFILE",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 90,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "delete_credential",
|
|
"name" : "Delete Credential",
|
|
"providerId" : "delete_credential",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 100,
|
|
"config" : { }
|
|
}, {
|
|
"alias" : "update_user_locale",
|
|
"name" : "Update User Locale",
|
|
"providerId" : "update_user_locale",
|
|
"enabled" : true,
|
|
"defaultAction" : false,
|
|
"priority" : 1000,
|
|
"config" : { }
|
|
} ],
|
|
"browserFlow" : "browser",
|
|
"registrationFlow" : "registration",
|
|
"directGrantFlow" : "direct grant",
|
|
"resetCredentialsFlow" : "reset credentials",
|
|
"clientAuthenticationFlow" : "clients",
|
|
"dockerAuthenticationFlow" : "docker auth",
|
|
"firstBrokerLoginFlow" : "first broker login",
|
|
"attributes" : {
|
|
"cibaBackchannelTokenDeliveryMode" : "poll",
|
|
"cibaExpiresIn" : "120",
|
|
"cibaAuthRequestedUserHint" : "login_hint",
|
|
"oauth2DeviceCodeLifespan" : "600",
|
|
"oauth2DevicePollingInterval" : "5",
|
|
"clientOfflineSessionMaxLifespan" : "0",
|
|
"clientSessionIdleTimeout" : "0",
|
|
"parRequestUriLifespan" : "60",
|
|
"clientSessionMaxLifespan" : "0",
|
|
"clientOfflineSessionIdleTimeout" : "0",
|
|
"cibaInterval" : "5",
|
|
"realmReusableOtpCode" : "false"
|
|
},
|
|
"keycloakVersion" : "24.0.5",
|
|
"userManagedAccessAllowed" : false,
|
|
"clientProfiles" : {
|
|
"profiles" : [ ]
|
|
},
|
|
"clientPolicies" : {
|
|
"policies" : [ ]
|
|
}
|
|
} |