2024-07-04 12:42:13 +02:00
{
2024-07-31 09:09:48 +02:00
"id" : "8c01436d-9073-418c-940e-6b6178066782" ,
2024-07-04 12:42:13 +02:00
"realm" : "nine" ,
2024-07-31 09:09:48 +02:00
"displayName" : "Keycloak" ,
"displayNameHtml" : "<div class=\"kc-logo-text\"><span>Nine</span></div>" ,
2024-07-04 12:42:13 +02:00
"notBefore" : 0 ,
"defaultSignatureAlgorithm" : "RS256" ,
"revokeRefreshToken" : false ,
"refreshTokenMaxReuse" : 0 ,
2024-07-31 09:09:48 +02:00
"accessTokenLifespan" : 60 ,
2024-07-04 12:42:13 +02:00
"accessTokenLifespanForImplicitFlow" : 900 ,
"ssoSessionIdleTimeout" : 1800 ,
"ssoSessionMaxLifespan" : 36000 ,
"ssoSessionIdleTimeoutRememberMe" : 0 ,
"ssoSessionMaxLifespanRememberMe" : 0 ,
"offlineSessionIdleTimeout" : 2592000 ,
"offlineSessionMaxLifespanEnabled" : false ,
"offlineSessionMaxLifespan" : 5184000 ,
"clientSessionIdleTimeout" : 0 ,
"clientSessionMaxLifespan" : 0 ,
"clientOfflineSessionIdleTimeout" : 0 ,
"clientOfflineSessionMaxLifespan" : 0 ,
"accessCodeLifespan" : 60 ,
"accessCodeLifespanUserAction" : 300 ,
"accessCodeLifespanLogin" : 1800 ,
"actionTokenGeneratedByAdminLifespan" : 43200 ,
"actionTokenGeneratedByUserLifespan" : 300 ,
"oauth2DeviceCodeLifespan" : 600 ,
2024-07-28 17:46:07 +02:00
"oauth2DevicePollingInterval" : 5 ,
2024-07-04 12:42:13 +02:00
"enabled" : true ,
"sslRequired" : "external" ,
"registrationAllowed" : false ,
"registrationEmailAsUsername" : false ,
"rememberMe" : false ,
"verifyEmail" : false ,
"loginWithEmailAllowed" : true ,
"duplicateEmailsAllowed" : false ,
"resetPasswordAllowed" : false ,
"editUsernameAllowed" : false ,
"bruteForceProtected" : false ,
"permanentLockout" : false ,
2024-07-28 17:46:07 +02:00
"maxTemporaryLockouts" : 0 ,
2024-07-04 12:42:13 +02:00
"maxFailureWaitSeconds" : 900 ,
"minimumQuickLoginWaitSeconds" : 60 ,
"waitIncrementSeconds" : 60 ,
"quickLoginCheckMilliSeconds" : 1000 ,
"maxDeltaTimeSeconds" : 43200 ,
"failureFactor" : 30 ,
"defaultRole" : {
2024-07-31 09:09:48 +02:00
"id" : "c6cb73d9-9ced-4620-8c2a-f03306b7d0a2" ,
2024-07-28 17:46:07 +02:00
"name" : "default-roles-nine" ,
2024-07-04 12:42:13 +02:00
"description" : "${role_default-roles}" ,
"composite" : true ,
"clientRole" : false ,
2024-07-31 09:09:48 +02:00
"containerId" : "8c01436d-9073-418c-940e-6b6178066782"
2024-07-04 12:42:13 +02:00
} ,
"requiredCredentials" : [
"password"
] ,
"otpPolicyType" : "totp" ,
"otpPolicyAlgorithm" : "HmacSHA1" ,
"otpPolicyInitialCounter" : 0 ,
"otpPolicyDigits" : 6 ,
"otpPolicyLookAheadWindow" : 1 ,
"otpPolicyPeriod" : 30 ,
2024-07-28 17:46:07 +02:00
"otpPolicyCodeReusable" : false ,
2024-07-04 12:42:13 +02:00
"otpSupportedApplications" : [
2024-07-28 17:46:07 +02:00
"totpAppFreeOTPName" ,
"totpAppGoogleName" ,
"totpAppMicrosoftAuthenticatorName"
2024-07-04 12:42:13 +02:00
] ,
2024-07-28 17:46:07 +02:00
"localizationTexts" : { } ,
2024-07-04 12:42:13 +02:00
"webAuthnPolicyRpEntityName" : "keycloak" ,
"webAuthnPolicySignatureAlgorithms" : [
"ES256"
] ,
"webAuthnPolicyRpId" : "" ,
"webAuthnPolicyAttestationConveyancePreference" : "not specified" ,
"webAuthnPolicyAuthenticatorAttachment" : "not specified" ,
"webAuthnPolicyRequireResidentKey" : "not specified" ,
"webAuthnPolicyUserVerificationRequirement" : "not specified" ,
"webAuthnPolicyCreateTimeout" : 0 ,
"webAuthnPolicyAvoidSameAuthenticatorRegister" : false ,
"webAuthnPolicyAcceptableAaguids" : [ ] ,
2024-07-28 17:46:07 +02:00
"webAuthnPolicyExtraOrigins" : [ ] ,
2024-07-04 12:42:13 +02:00
"webAuthnPolicyPasswordlessRpEntityName" : "keycloak" ,
"webAuthnPolicyPasswordlessSignatureAlgorithms" : [
"ES256"
] ,
"webAuthnPolicyPasswordlessRpId" : "" ,
"webAuthnPolicyPasswordlessAttestationConveyancePreference" : "not specified" ,
"webAuthnPolicyPasswordlessAuthenticatorAttachment" : "not specified" ,
"webAuthnPolicyPasswordlessRequireResidentKey" : "not specified" ,
"webAuthnPolicyPasswordlessUserVerificationRequirement" : "not specified" ,
"webAuthnPolicyPasswordlessCreateTimeout" : 0 ,
"webAuthnPolicyPasswordlessAvoidSameAuthenticatorRegister" : false ,
"webAuthnPolicyPasswordlessAcceptableAaguids" : [ ] ,
2024-07-28 17:46:07 +02:00
"webAuthnPolicyPasswordlessExtraOrigins" : [ ] ,
2024-07-04 12:42:13 +02:00
"scopeMappings" : [
{
"clientScope" : "offline_access" ,
"roles" : [
"offline_access"
]
}
] ,
"clientScopeMappings" : {
"account" : [
{
"client" : "account-console" ,
"roles" : [
2024-07-28 17:46:07 +02:00
"manage-account" ,
"view-groups"
2024-07-04 12:42:13 +02:00
]
}
]
} ,
"clients" : [
{
2024-07-31 09:09:48 +02:00
"id" : "233d4e12-e0f2-4ac9-83ff-d83e408c41b1" ,
2024-07-04 12:42:13 +02:00
"clientId" : "account" ,
"name" : "${client_account}" ,
"rootUrl" : "${authBaseUrl}" ,
"baseUrl" : "/realms/nine/account/" ,
"surrogateAuthRequired" : false ,
"enabled" : true ,
"alwaysDisplayInConsole" : false ,
"clientAuthenticatorType" : "client-secret" ,
"redirectUris" : [
"/realms/nine/account/*"
] ,
"webOrigins" : [ ] ,
"notBefore" : 0 ,
"bearerOnly" : false ,
"consentRequired" : false ,
"standardFlowEnabled" : true ,
"implicitFlowEnabled" : false ,
"directAccessGrantsEnabled" : false ,
"serviceAccountsEnabled" : false ,
"publicClient" : true ,
"frontchannelLogout" : false ,
"protocol" : "openid-connect" ,
2024-07-28 17:46:07 +02:00
"attributes" : {
"post.logout.redirect.uris" : "+"
} ,
2024-07-04 12:42:13 +02:00
"authenticationFlowBindingOverrides" : { } ,
"fullScopeAllowed" : false ,
"nodeReRegistrationTimeout" : 0 ,
"protocolMappers" : [
{
2024-07-31 09:09:48 +02:00
"id" : "948e92a9-d96a-4b75-9300-bb4ddf11166c" ,
"name" : "full name" ,
2024-07-04 12:42:13 +02:00
"protocol" : "cas" ,
2024-07-31 09:09:48 +02:00
"protocolMapper" : "cas-full-name-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
"config" : {
2024-07-31 09:09:48 +02:00
"claim.name" : "cn" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "0493b3b4-6b22-47ca-8942-77b0d6f6b4c0" ,
"name" : "email" ,
2024-07-04 12:42:13 +02:00
"protocol" : "cas" ,
"protocolMapper" : "cas-usermodel-property-mapper" ,
"consentRequired" : false ,
"config" : {
2024-07-31 09:09:48 +02:00
"user.attribute" : "email" ,
"claim.name" : "mail" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "f3c849e4-0e9e-4e64-a177-f58506a50942" ,
"name" : "given name" ,
2024-07-04 12:42:13 +02:00
"protocol" : "cas" ,
"protocolMapper" : "cas-usermodel-property-mapper" ,
"consentRequired" : false ,
"config" : {
2024-07-31 09:09:48 +02:00
"user.attribute" : "firstName" ,
"claim.name" : "givenName" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "c85e0aee-70df-4684-897a-178221e01856" ,
"name" : "family name" ,
2024-07-04 12:42:13 +02:00
"protocol" : "cas" ,
2024-07-31 09:09:48 +02:00
"protocolMapper" : "cas-usermodel-property-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
"config" : {
2024-07-31 09:09:48 +02:00
"user.attribute" : "lastName" ,
"claim.name" : "sn" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
}
] ,
2024-07-28 17:46:07 +02:00
"defaultClientScopes" : [
"web-origins" ,
"acr" ,
"roles" ,
"profile" ,
"email"
] ,
"optionalClientScopes" : [
"address" ,
"phone" ,
"offline_access" ,
"microprofile-jwt"
]
2024-07-04 12:42:13 +02:00
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "b5094515-d074-49df-8354-11aa5a748f39" ,
2024-07-04 12:42:13 +02:00
"clientId" : "account-console" ,
"name" : "${client_account-console}" ,
"rootUrl" : "${authBaseUrl}" ,
"baseUrl" : "/realms/nine/account/" ,
"surrogateAuthRequired" : false ,
"enabled" : true ,
"alwaysDisplayInConsole" : false ,
"clientAuthenticatorType" : "client-secret" ,
"redirectUris" : [
"/realms/nine/account/*"
] ,
"webOrigins" : [ ] ,
"notBefore" : 0 ,
"bearerOnly" : false ,
"consentRequired" : false ,
"standardFlowEnabled" : true ,
"implicitFlowEnabled" : false ,
"directAccessGrantsEnabled" : false ,
"serviceAccountsEnabled" : false ,
"publicClient" : true ,
"frontchannelLogout" : false ,
"protocol" : "openid-connect" ,
"attributes" : {
2024-07-28 17:46:07 +02:00
"post.logout.redirect.uris" : "+" ,
2024-07-04 12:42:13 +02:00
"pkce.code.challenge.method" : "S256"
} ,
"authenticationFlowBindingOverrides" : { } ,
"fullScopeAllowed" : false ,
"nodeReRegistrationTimeout" : 0 ,
"protocolMappers" : [
{
2024-07-31 09:09:48 +02:00
"id" : "689cb46e-9af9-4967-97c8-c44dcc96fd9d" ,
"name" : "full name" ,
2024-07-28 17:46:07 +02:00
"protocol" : "cas" ,
2024-07-31 09:09:48 +02:00
"protocolMapper" : "cas-full-name-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
2024-07-28 17:46:07 +02:00
"config" : {
2024-07-31 09:09:48 +02:00
"claim.name" : "cn" ,
2024-07-28 17:46:07 +02:00
"jsonType.label" : "String"
}
2024-07-04 12:42:13 +02:00
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "d798371a-1b03-4dd7-8b35-2dc736cfb384" ,
2024-07-04 12:42:13 +02:00
"name" : "family name" ,
"protocol" : "cas" ,
"protocolMapper" : "cas-usermodel-property-mapper" ,
"consentRequired" : false ,
"config" : {
"user.attribute" : "lastName" ,
"claim.name" : "sn" ,
"jsonType.label" : "String"
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "f9e1aaf2-6bf5-4652-9f37-4c3c94a5d6b9" ,
2024-07-28 17:46:07 +02:00
"name" : "audience resolve" ,
"protocol" : "openid-connect" ,
"protocolMapper" : "oidc-audience-resolve-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
2024-07-28 17:46:07 +02:00
"config" : { }
2024-07-04 12:42:13 +02:00
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "528c18f8-2a2e-44fa-9429-77bdd8d679e9" ,
"name" : "email" ,
"protocol" : "cas" ,
"protocolMapper" : "cas-usermodel-property-mapper" ,
"consentRequired" : false ,
"config" : {
"user.attribute" : "email" ,
"claim.name" : "mail" ,
"jsonType.label" : "String"
}
} ,
{
"id" : "93f8c307-5296-4773-82f9-b2791c2302d7" ,
2024-07-28 17:46:07 +02:00
"name" : "given name" ,
2024-07-04 12:42:13 +02:00
"protocol" : "cas" ,
"protocolMapper" : "cas-usermodel-property-mapper" ,
"consentRequired" : false ,
"config" : {
2024-07-28 17:46:07 +02:00
"user.attribute" : "firstName" ,
"claim.name" : "givenName" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
}
] ,
2024-07-28 17:46:07 +02:00
"defaultClientScopes" : [
"web-origins" ,
"acr" ,
"roles" ,
"profile" ,
"email"
] ,
"optionalClientScopes" : [
"address" ,
"phone" ,
"offline_access" ,
"microprofile-jwt"
]
2024-07-04 12:42:13 +02:00
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "64bd651e-62b0-4d4c-846d-d41a64e9168d" ,
2024-07-04 12:42:13 +02:00
"clientId" : "admin-cli" ,
"name" : "${client_admin-cli}" ,
"surrogateAuthRequired" : false ,
"enabled" : true ,
"alwaysDisplayInConsole" : false ,
"clientAuthenticatorType" : "client-secret" ,
"redirectUris" : [ ] ,
"webOrigins" : [ ] ,
"notBefore" : 0 ,
"bearerOnly" : false ,
"consentRequired" : false ,
"standardFlowEnabled" : false ,
"implicitFlowEnabled" : false ,
"directAccessGrantsEnabled" : true ,
"serviceAccountsEnabled" : false ,
"publicClient" : true ,
"frontchannelLogout" : false ,
"protocol" : "openid-connect" ,
"attributes" : { } ,
"authenticationFlowBindingOverrides" : { } ,
"fullScopeAllowed" : false ,
"nodeReRegistrationTimeout" : 0 ,
"protocolMappers" : [
{
2024-07-31 09:09:48 +02:00
"id" : "b07a89df-98e3-4ed1-8611-4be22376db88" ,
"name" : "full name" ,
2024-07-04 12:42:13 +02:00
"protocol" : "cas" ,
2024-07-31 09:09:48 +02:00
"protocolMapper" : "cas-full-name-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
"config" : {
2024-07-31 09:09:48 +02:00
"claim.name" : "cn" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "24437aa5-70c3-42d8-b279-9e9775de8bd1" ,
"name" : "email" ,
2024-07-04 12:42:13 +02:00
"protocol" : "cas" ,
"protocolMapper" : "cas-usermodel-property-mapper" ,
"consentRequired" : false ,
"config" : {
2024-07-31 09:09:48 +02:00
"user.attribute" : "email" ,
"claim.name" : "mail" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "7c3eb243-db59-4f9d-a230-f26162d7fde1" ,
"name" : "given name" ,
2024-07-04 12:42:13 +02:00
"protocol" : "cas" ,
2024-07-31 09:09:48 +02:00
"protocolMapper" : "cas-usermodel-property-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
"config" : {
2024-07-31 09:09:48 +02:00
"user.attribute" : "firstName" ,
"claim.name" : "givenName" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "aaf9c300-14af-4999-a0f6-cd01363d6f2c" ,
"name" : "family name" ,
2024-07-04 12:42:13 +02:00
"protocol" : "cas" ,
2024-07-28 17:46:07 +02:00
"protocolMapper" : "cas-usermodel-property-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
"config" : {
2024-07-31 09:09:48 +02:00
"user.attribute" : "lastName" ,
"claim.name" : "sn" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
}
] ,
2024-07-28 17:46:07 +02:00
"defaultClientScopes" : [
"web-origins" ,
"acr" ,
"roles" ,
"profile" ,
"email"
] ,
"optionalClientScopes" : [
"address" ,
"phone" ,
"offline_access" ,
"microprofile-jwt"
]
2024-07-04 12:42:13 +02:00
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "29badf9a-5911-4c4c-a3bb-544e53a39603" ,
2024-07-04 12:42:13 +02:00
"clientId" : "broker" ,
"name" : "${client_broker}" ,
"surrogateAuthRequired" : false ,
"enabled" : true ,
"alwaysDisplayInConsole" : false ,
"clientAuthenticatorType" : "client-secret" ,
"redirectUris" : [ ] ,
"webOrigins" : [ ] ,
"notBefore" : 0 ,
"bearerOnly" : true ,
"consentRequired" : false ,
"standardFlowEnabled" : true ,
"implicitFlowEnabled" : false ,
"directAccessGrantsEnabled" : false ,
"serviceAccountsEnabled" : false ,
"publicClient" : false ,
"frontchannelLogout" : false ,
"protocol" : "openid-connect" ,
"attributes" : { } ,
"authenticationFlowBindingOverrides" : { } ,
"fullScopeAllowed" : false ,
"nodeReRegistrationTimeout" : 0 ,
"protocolMappers" : [
{
2024-07-31 09:09:48 +02:00
"id" : "38457dea-3c4d-45f7-9e57-bf57c21125cf" ,
"name" : "full name" ,
2024-07-04 12:42:13 +02:00
"protocol" : "cas" ,
2024-07-31 09:09:48 +02:00
"protocolMapper" : "cas-full-name-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
"config" : {
2024-07-31 09:09:48 +02:00
"claim.name" : "cn" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "475e052f-bda8-4fbc-b0d8-90e1dd60cf5a" ,
"name" : "family name" ,
2024-07-04 12:42:13 +02:00
"protocol" : "cas" ,
2024-07-31 09:09:48 +02:00
"protocolMapper" : "cas-usermodel-property-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
"config" : {
2024-07-31 09:09:48 +02:00
"user.attribute" : "lastName" ,
"claim.name" : "sn" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "d2ce31a8-bd06-4f59-ad2b-f0c99950eb13" ,
2024-07-04 12:42:13 +02:00
"name" : "given name" ,
"protocol" : "cas" ,
"protocolMapper" : "cas-usermodel-property-mapper" ,
"consentRequired" : false ,
"config" : {
"user.attribute" : "firstName" ,
"claim.name" : "givenName" ,
"jsonType.label" : "String"
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "6f1164c7-2b43-4957-a174-42e311dc2b2b" ,
"name" : "email" ,
2024-07-04 12:42:13 +02:00
"protocol" : "cas" ,
"protocolMapper" : "cas-usermodel-property-mapper" ,
"consentRequired" : false ,
"config" : {
2024-07-31 09:09:48 +02:00
"user.attribute" : "email" ,
"claim.name" : "mail" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
}
] ,
2024-07-28 17:46:07 +02:00
"defaultClientScopes" : [
"web-origins" ,
"acr" ,
"roles" ,
"profile" ,
"email"
] ,
"optionalClientScopes" : [
"address" ,
"phone" ,
"offline_access" ,
"microprofile-jwt"
]
2024-07-04 12:42:13 +02:00
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "d1f15fb9-2780-44b7-b673-317bde459ee3" ,
"clientId" : "nine-realm" ,
"name" : "Nine Realm" ,
"surrogateAuthRequired" : false ,
"enabled" : true ,
"alwaysDisplayInConsole" : false ,
"clientAuthenticatorType" : "client-secret" ,
"redirectUris" : [ ] ,
"webOrigins" : [ ] ,
"notBefore" : 0 ,
"bearerOnly" : true ,
"consentRequired" : false ,
"standardFlowEnabled" : true ,
"implicitFlowEnabled" : false ,
"directAccessGrantsEnabled" : false ,
"serviceAccountsEnabled" : false ,
"publicClient" : false ,
"frontchannelLogout" : false ,
"attributes" : { } ,
"authenticationFlowBindingOverrides" : { } ,
"fullScopeAllowed" : false ,
"nodeReRegistrationTimeout" : 0 ,
"defaultClientScopes" : [
"web-origins" ,
"acr" ,
"roles" ,
"profile" ,
"email"
] ,
"optionalClientScopes" : [
"address" ,
"phone" ,
"offline_access" ,
"microprofile-jwt"
]
} ,
{
"id" : "0369c3c4-5619-458d-9968-474ce7468e36" ,
2024-07-04 12:42:13 +02:00
"clientId" : "nine" ,
2024-07-31 09:09:48 +02:00
"name" : "" ,
2024-07-28 17:46:07 +02:00
"description" : "" ,
2024-10-21 17:00:05 +02:00
"rootUrl" : "${PROTOCOLE}://${WEB_URL}" ,
"adminUrl" : "${PROTOCOLE}://${WEB_URL}" ,
"baseUrl" : "${PROTOCOLE}://${WEB_URL}" ,
2024-07-04 12:42:13 +02:00
"surrogateAuthRequired" : false ,
"enabled" : true ,
"alwaysDisplayInConsole" : false ,
"clientAuthenticatorType" : "client-secret" ,
"redirectUris" : [
2024-10-21 17:00:05 +02:00
"${PROTOCOLE}://${WEB_URL}/*"
2024-07-04 12:42:13 +02:00
] ,
"webOrigins" : [ ] ,
"notBefore" : 0 ,
"bearerOnly" : false ,
"consentRequired" : false ,
"standardFlowEnabled" : true ,
"implicitFlowEnabled" : false ,
2024-07-28 17:46:07 +02:00
"directAccessGrantsEnabled" : true ,
2024-07-04 12:42:13 +02:00
"serviceAccountsEnabled" : false ,
2024-07-28 17:46:07 +02:00
"publicClient" : true ,
"frontchannelLogout" : true ,
2024-07-04 12:42:13 +02:00
"protocol" : "cas" ,
2024-07-28 17:46:07 +02:00
"attributes" : { } ,
2024-07-04 12:42:13 +02:00
"authenticationFlowBindingOverrides" : { } ,
"fullScopeAllowed" : true ,
"nodeReRegistrationTimeout" : -1 ,
"protocolMappers" : [
{
2024-07-31 09:09:48 +02:00
"id" : "51dda658-3bda-4426-a2ac-4a4116d47c5b" ,
"name" : "full name" ,
2024-07-04 12:42:13 +02:00
"protocol" : "cas" ,
2024-07-31 09:09:48 +02:00
"protocolMapper" : "cas-full-name-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
"config" : {
2024-07-31 09:09:48 +02:00
"claim.name" : "cn" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "b0ef29ec-43e6-4de1-a32a-428b8cc9256f" ,
2024-07-04 12:42:13 +02:00
"name" : "family name" ,
"protocol" : "cas" ,
"protocolMapper" : "cas-usermodel-property-mapper" ,
"consentRequired" : false ,
"config" : {
"user.attribute" : "lastName" ,
"claim.name" : "sn" ,
"jsonType.label" : "String"
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "2513a533-dd8a-4ac9-a5e4-a112782747c2" ,
2024-07-04 12:42:13 +02:00
"name" : "given name" ,
"protocol" : "cas" ,
"protocolMapper" : "cas-usermodel-property-mapper" ,
"consentRequired" : false ,
"config" : {
"user.attribute" : "firstName" ,
"claim.name" : "givenName" ,
"jsonType.label" : "String"
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "53ade622-b842-40ab-9865-2d915edb33a9" ,
2024-07-04 12:42:13 +02:00
"name" : "email" ,
"protocol" : "cas" ,
"protocolMapper" : "cas-usermodel-property-mapper" ,
"consentRequired" : false ,
"config" : {
"user.attribute" : "email" ,
"claim.name" : "mail" ,
"jsonType.label" : "String"
}
}
] ,
2024-07-31 09:09:48 +02:00
"defaultClientScopes" : [ ] ,
"optionalClientScopes" : [ ]
2024-07-04 12:42:13 +02:00
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "f2669799-582f-4b47-af83-3d6e038ab26f" ,
2024-07-04 12:42:13 +02:00
"clientId" : "security-admin-console" ,
"name" : "${client_security-admin-console}" ,
"rootUrl" : "${authAdminUrl}" ,
"baseUrl" : "/admin/nine/console/" ,
"surrogateAuthRequired" : false ,
"enabled" : true ,
"alwaysDisplayInConsole" : false ,
"clientAuthenticatorType" : "client-secret" ,
"redirectUris" : [
"/admin/nine/console/*"
] ,
"webOrigins" : [
"+"
] ,
"notBefore" : 0 ,
"bearerOnly" : false ,
"consentRequired" : false ,
"standardFlowEnabled" : true ,
"implicitFlowEnabled" : false ,
"directAccessGrantsEnabled" : false ,
"serviceAccountsEnabled" : false ,
"publicClient" : true ,
"frontchannelLogout" : false ,
"protocol" : "openid-connect" ,
"attributes" : {
2024-07-28 17:46:07 +02:00
"post.logout.redirect.uris" : "+" ,
2024-07-04 12:42:13 +02:00
"pkce.code.challenge.method" : "S256"
} ,
"authenticationFlowBindingOverrides" : { } ,
"fullScopeAllowed" : false ,
"nodeReRegistrationTimeout" : 0 ,
"protocolMappers" : [
{
2024-07-31 09:09:48 +02:00
"id" : "f82de958-ae41-4c7d-a083-6e2d50c5a7d7" ,
2024-07-28 17:46:07 +02:00
"name" : "locale" ,
"protocol" : "openid-connect" ,
"protocolMapper" : "oidc-usermodel-attribute-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
"config" : {
2024-07-28 17:46:07 +02:00
"introspection.token.claim" : "true" ,
"userinfo.token.claim" : "true" ,
"user.attribute" : "locale" ,
"id.token.claim" : "true" ,
"access.token.claim" : "true" ,
"claim.name" : "locale" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "a03ae4fe-184c-4d69-9406-d09c14679b75" ,
"name" : "email" ,
2024-07-04 12:42:13 +02:00
"protocol" : "cas" ,
"protocolMapper" : "cas-usermodel-property-mapper" ,
"consentRequired" : false ,
"config" : {
2024-07-31 09:09:48 +02:00
"user.attribute" : "email" ,
"claim.name" : "mail" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "a6df64fe-f3cb-4f4f-81fa-a07f97cc3f81" ,
"name" : "family name" ,
2024-07-28 17:46:07 +02:00
"protocol" : "cas" ,
2024-07-31 09:09:48 +02:00
"protocolMapper" : "cas-usermodel-property-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
"config" : {
2024-07-31 09:09:48 +02:00
"user.attribute" : "lastName" ,
"claim.name" : "sn" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "1550aa6b-3498-4b21-9585-0744b340ab26" ,
"name" : "given name" ,
2024-07-04 12:42:13 +02:00
"protocol" : "cas" ,
"protocolMapper" : "cas-usermodel-property-mapper" ,
"consentRequired" : false ,
"config" : {
2024-07-31 09:09:48 +02:00
"user.attribute" : "firstName" ,
"claim.name" : "givenName" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
2024-07-28 17:46:07 +02:00
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "9c698b95-7793-43af-9fd4-6ea8d1e77f0f" ,
"name" : "full name" ,
2024-07-28 17:46:07 +02:00
"protocol" : "cas" ,
2024-07-31 09:09:48 +02:00
"protocolMapper" : "cas-full-name-mapper" ,
2024-07-28 17:46:07 +02:00
"consentRequired" : false ,
"config" : {
2024-07-31 09:09:48 +02:00
"claim.name" : "cn" ,
2024-07-28 17:46:07 +02:00
"jsonType.label" : "String"
}
2024-07-04 12:42:13 +02:00
}
] ,
2024-07-28 17:46:07 +02:00
"defaultClientScopes" : [
"web-origins" ,
"acr" ,
"roles" ,
"profile" ,
"email"
] ,
"optionalClientScopes" : [
"address" ,
"phone" ,
"offline_access" ,
"microprofile-jwt"
]
2024-07-04 12:42:13 +02:00
}
] ,
"clientScopes" : [
{
2024-07-31 09:09:48 +02:00
"id" : "44f5b9b0-613d-474b-a01f-4a0034dfcbf0" ,
2024-07-28 17:46:07 +02:00
"name" : "address" ,
"description" : "OpenID Connect built-in scope: address" ,
2024-07-04 12:42:13 +02:00
"protocol" : "openid-connect" ,
"attributes" : {
"include.in.token.scope" : "true" ,
"display.on.consent.screen" : "true" ,
2024-07-28 17:46:07 +02:00
"consent.screen.text" : "${addressScopeConsentText}"
2024-07-04 12:42:13 +02:00
} ,
"protocolMappers" : [
{
2024-07-31 09:09:48 +02:00
"id" : "7fca379b-3748-448d-a3bc-b5594ba9a4d1" ,
2024-07-28 17:46:07 +02:00
"name" : "address" ,
2024-07-04 12:42:13 +02:00
"protocol" : "openid-connect" ,
2024-07-28 17:46:07 +02:00
"protocolMapper" : "oidc-address-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
"config" : {
2024-07-28 17:46:07 +02:00
"user.attribute.formatted" : "formatted" ,
"user.attribute.country" : "country" ,
"introspection.token.claim" : "true" ,
"user.attribute.postal_code" : "postal_code" ,
2024-07-04 12:42:13 +02:00
"userinfo.token.claim" : "true" ,
2024-07-28 17:46:07 +02:00
"user.attribute.street" : "street" ,
2024-07-04 12:42:13 +02:00
"id.token.claim" : "true" ,
2024-07-28 17:46:07 +02:00
"user.attribute.region" : "region" ,
2024-07-04 12:42:13 +02:00
"access.token.claim" : "true" ,
2024-07-28 17:46:07 +02:00
"user.attribute.locality" : "locality"
2024-07-04 12:42:13 +02:00
}
}
]
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "f7c624a7-450e-4d80-9c79-7ffc13253ef1" ,
"name" : "role_list" ,
"description" : "SAML role list" ,
"protocol" : "saml" ,
2024-07-04 12:42:13 +02:00
"attributes" : {
2024-07-31 09:09:48 +02:00
"consent.screen.text" : "${samlRoleListScopeConsentText}" ,
"display.on.consent.screen" : "true"
2024-07-04 12:42:13 +02:00
} ,
"protocolMappers" : [
{
2024-07-31 09:09:48 +02:00
"id" : "0b0c0090-6428-4f0d-9b4e-aa16a95aca86" ,
"name" : "role list" ,
"protocol" : "saml" ,
"protocolMapper" : "saml-role-list-mapper" ,
2024-07-28 17:46:07 +02:00
"consentRequired" : false ,
"config" : {
2024-07-31 09:09:48 +02:00
"single" : "false" ,
"attribute.nameformat" : "Basic" ,
"attribute.name" : "Role"
2024-07-04 12:42:13 +02:00
}
}
]
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "1aecf9c9-4cfb-4d38-b2c7-b123c0b70f3c" ,
"name" : "acr" ,
"description" : "OpenID Connect scope for add acr (authentication context class reference) to the token" ,
2024-07-04 12:42:13 +02:00
"protocol" : "openid-connect" ,
"attributes" : {
2024-07-31 09:09:48 +02:00
"include.in.token.scope" : "false" ,
"display.on.consent.screen" : "false"
2024-07-04 12:42:13 +02:00
} ,
"protocolMappers" : [
{
2024-07-31 09:09:48 +02:00
"id" : "9b0fccab-e157-458a-b8ee-588f4e6749f7" ,
"name" : "acr loa level" ,
2024-07-04 12:42:13 +02:00
"protocol" : "openid-connect" ,
2024-07-31 09:09:48 +02:00
"protocolMapper" : "oidc-acr-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
"config" : {
"id.token.claim" : "true" ,
"access.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"introspection.token.claim" : "true"
2024-07-04 12:42:13 +02:00
}
2024-07-28 17:46:07 +02:00
}
]
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "3f5c736b-6ee5-4b62-a8f3-9c5ce50c590b" ,
"name" : "offline_access" ,
"description" : "OpenID Connect built-in scope: offline_access" ,
"protocol" : "openid-connect" ,
"attributes" : {
"consent.screen.text" : "${offlineAccessScopeConsentText}" ,
"display.on.consent.screen" : "true"
}
} ,
{
"id" : "108a7d33-774c-43e0-b53a-11bc47e370b1" ,
2024-07-28 17:46:07 +02:00
"name" : "microprofile-jwt" ,
"description" : "Microprofile - JWT built-in scope" ,
"protocol" : "openid-connect" ,
"attributes" : {
"include.in.token.scope" : "true" ,
"display.on.consent.screen" : "false"
} ,
"protocolMappers" : [
2024-07-04 12:42:13 +02:00
{
2024-07-31 09:09:48 +02:00
"id" : "08b725cb-24b7-40f8-84b2-06c1f603b6dd" ,
"name" : "upn" ,
2024-07-04 12:42:13 +02:00
"protocol" : "openid-connect" ,
2024-07-31 09:09:48 +02:00
"protocolMapper" : "oidc-usermodel-attribute-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
"config" : {
2024-07-28 17:46:07 +02:00
"introspection.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"userinfo.token.claim" : "true" ,
"user.attribute" : "username" ,
2024-07-04 12:42:13 +02:00
"id.token.claim" : "true" ,
"access.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"claim.name" : "upn" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "74767889-becd-41c1-9f73-a95696e3a50a" ,
"name" : "groups" ,
2024-07-04 12:42:13 +02:00
"protocol" : "openid-connect" ,
2024-07-31 09:09:48 +02:00
"protocolMapper" : "oidc-usermodel-realm-role-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
"config" : {
2024-07-28 17:46:07 +02:00
"introspection.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"multivalued" : "true" ,
"user.attribute" : "foo" ,
2024-07-04 12:42:13 +02:00
"id.token.claim" : "true" ,
"access.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"claim.name" : "groups" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
2024-07-28 17:46:07 +02:00
}
]
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "dbb54e59-442b-4ba7-a57e-a7bfa1a69639" ,
2024-07-28 17:46:07 +02:00
"name" : "phone" ,
"description" : "OpenID Connect built-in scope: phone" ,
"protocol" : "openid-connect" ,
"attributes" : {
"include.in.token.scope" : "true" ,
"display.on.consent.screen" : "true" ,
"consent.screen.text" : "${phoneScopeConsentText}"
} ,
"protocolMappers" : [
{
2024-07-31 09:09:48 +02:00
"id" : "141307b6-f544-4952-aa08-bd25c5cbb064" ,
2024-07-28 17:46:07 +02:00
"name" : "phone number verified" ,
2024-07-04 12:42:13 +02:00
"protocol" : "openid-connect" ,
"protocolMapper" : "oidc-usermodel-attribute-mapper" ,
"consentRequired" : false ,
"config" : {
2024-07-28 17:46:07 +02:00
"introspection.token.claim" : "true" ,
2024-07-04 12:42:13 +02:00
"userinfo.token.claim" : "true" ,
2024-07-28 17:46:07 +02:00
"user.attribute" : "phoneNumberVerified" ,
2024-07-04 12:42:13 +02:00
"id.token.claim" : "true" ,
"access.token.claim" : "true" ,
2024-07-28 17:46:07 +02:00
"claim.name" : "phone_number_verified" ,
"jsonType.label" : "boolean"
2024-07-04 12:42:13 +02:00
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "2ba0989c-e084-4a1c-b61d-b16e8163075a" ,
2024-07-28 17:46:07 +02:00
"name" : "phone number" ,
2024-07-04 12:42:13 +02:00
"protocol" : "openid-connect" ,
"protocolMapper" : "oidc-usermodel-attribute-mapper" ,
"consentRequired" : false ,
"config" : {
2024-07-28 17:46:07 +02:00
"introspection.token.claim" : "true" ,
2024-07-04 12:42:13 +02:00
"userinfo.token.claim" : "true" ,
2024-07-28 17:46:07 +02:00
"user.attribute" : "phoneNumber" ,
2024-07-04 12:42:13 +02:00
"id.token.claim" : "true" ,
"access.token.claim" : "true" ,
2024-07-28 17:46:07 +02:00
"claim.name" : "phone_number" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
2024-07-28 17:46:07 +02:00
}
]
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "a0bcda9b-a848-4b56-8e20-c04002a34275" ,
"name" : "roles" ,
"description" : "OpenID Connect scope for add user roles to the access token" ,
2024-07-28 17:46:07 +02:00
"protocol" : "openid-connect" ,
"attributes" : {
"include.in.token.scope" : "false" ,
2024-07-31 09:09:48 +02:00
"display.on.consent.screen" : "true" ,
"consent.screen.text" : "${rolesScopeConsentText}"
2024-07-28 17:46:07 +02:00
} ,
"protocolMappers" : [
2024-07-04 12:42:13 +02:00
{
2024-07-31 09:09:48 +02:00
"id" : "4144f3eb-7963-4a18-a3dd-e269042ee8e5" ,
"name" : "realm roles" ,
2024-07-04 12:42:13 +02:00
"protocol" : "openid-connect" ,
2024-07-31 09:09:48 +02:00
"protocolMapper" : "oidc-usermodel-realm-role-mapper" ,
2024-07-28 17:46:07 +02:00
"consentRequired" : false ,
"config" : {
2024-07-31 09:09:48 +02:00
"introspection.token.claim" : "true" ,
"multivalued" : "true" ,
"user.attribute" : "foo" ,
2024-07-28 17:46:07 +02:00
"access.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"claim.name" : "realm_access.roles" ,
"jsonType.label" : "String"
2024-07-28 17:46:07 +02:00
}
2024-07-31 09:09:48 +02:00
} ,
2024-07-28 17:46:07 +02:00
{
2024-07-31 09:09:48 +02:00
"id" : "f94cef89-ceec-4644-b61b-08d13f8107ab" ,
"name" : "audience resolve" ,
2024-07-28 17:46:07 +02:00
"protocol" : "openid-connect" ,
2024-07-31 09:09:48 +02:00
"protocolMapper" : "oidc-audience-resolve-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
"config" : {
"access.token.claim" : "true" ,
2024-07-28 17:46:07 +02:00
"introspection.token.claim" : "true"
2024-07-04 12:42:13 +02:00
}
2024-07-31 09:09:48 +02:00
} ,
{
"id" : "8bdd8757-4f3b-4e81-89af-84771ba5f27f" ,
"name" : "client roles" ,
"protocol" : "openid-connect" ,
"protocolMapper" : "oidc-usermodel-client-role-mapper" ,
"consentRequired" : false ,
"config" : {
"introspection.token.claim" : "true" ,
"multivalued" : "true" ,
"user.attribute" : "foo" ,
"access.token.claim" : "true" ,
"claim.name" : "resource_access.${client_id}.roles" ,
"jsonType.label" : "String"
}
2024-07-28 17:46:07 +02:00
}
]
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "30fc2b82-026a-4633-b44b-9aa00fad5dd2" ,
2024-07-28 17:46:07 +02:00
"name" : "profile" ,
"description" : "OpenID Connect built-in scope: profile" ,
"protocol" : "openid-connect" ,
"attributes" : {
"include.in.token.scope" : "true" ,
"display.on.consent.screen" : "true" ,
"consent.screen.text" : "${profileScopeConsentText}"
} ,
"protocolMappers" : [
2024-07-04 12:42:13 +02:00
{
2024-07-31 09:09:48 +02:00
"id" : "70d3b52d-e817-4530-8f39-c78fd36dd2ec" ,
"name" : "given name" ,
2024-07-04 12:42:13 +02:00
"protocol" : "openid-connect" ,
"protocolMapper" : "oidc-usermodel-attribute-mapper" ,
"consentRequired" : false ,
"config" : {
2024-07-28 17:46:07 +02:00
"introspection.token.claim" : "true" ,
2024-07-04 12:42:13 +02:00
"userinfo.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"user.attribute" : "firstName" ,
2024-07-04 12:42:13 +02:00
"id.token.claim" : "true" ,
"access.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"claim.name" : "given_name" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "3981e8a2-b98c-4b5b-a829-a6c7a78e78aa" ,
"name" : "picture" ,
2024-07-04 12:42:13 +02:00
"protocol" : "openid-connect" ,
2024-07-31 09:09:48 +02:00
"protocolMapper" : "oidc-usermodel-attribute-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
"config" : {
2024-07-31 09:09:48 +02:00
"introspection.token.claim" : "true" ,
"userinfo.token.claim" : "true" ,
"user.attribute" : "picture" ,
2024-07-04 12:42:13 +02:00
"id.token.claim" : "true" ,
"access.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"claim.name" : "picture" ,
"jsonType.label" : "String"
}
} ,
{
"id" : "b8ff8f12-b4ad-4824-b80e-3ed24d2cf0d5" ,
"name" : "username" ,
"protocol" : "openid-connect" ,
"protocolMapper" : "oidc-usermodel-attribute-mapper" ,
"consentRequired" : false ,
"config" : {
2024-07-28 17:46:07 +02:00
"introspection.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"userinfo.token.claim" : "true" ,
"user.attribute" : "username" ,
"id.token.claim" : "true" ,
"access.token.claim" : "true" ,
"claim.name" : "preferred_username" ,
"jsonType.label" : "String"
2024-07-04 12:42:13 +02:00
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "f57f5e63-76e6-49cd-a626-6a1719178bb6" ,
"name" : "gender" ,
2024-07-04 12:42:13 +02:00
"protocol" : "openid-connect" ,
2024-07-28 17:46:07 +02:00
"protocolMapper" : "oidc-usermodel-attribute-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
"config" : {
2024-07-28 17:46:07 +02:00
"introspection.token.claim" : "true" ,
2024-07-04 12:42:13 +02:00
"userinfo.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"user.attribute" : "gender" ,
2024-07-04 12:42:13 +02:00
"id.token.claim" : "true" ,
"access.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"claim.name" : "gender" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "93e59cd5-58da-4bc1-85bd-b3c30f22672c" ,
"name" : "locale" ,
2024-07-04 12:42:13 +02:00
"protocol" : "openid-connect" ,
"protocolMapper" : "oidc-usermodel-attribute-mapper" ,
"consentRequired" : false ,
"config" : {
2024-07-28 17:46:07 +02:00
"introspection.token.claim" : "true" ,
2024-07-04 12:42:13 +02:00
"userinfo.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"user.attribute" : "locale" ,
2024-07-04 12:42:13 +02:00
"id.token.claim" : "true" ,
"access.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"claim.name" : "locale" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "3d5e9f25-6957-47a6-adf6-28dce56cde6c" ,
"name" : "zoneinfo" ,
2024-07-04 12:42:13 +02:00
"protocol" : "openid-connect" ,
"protocolMapper" : "oidc-usermodel-attribute-mapper" ,
"consentRequired" : false ,
"config" : {
2024-07-28 17:46:07 +02:00
"introspection.token.claim" : "true" ,
2024-07-04 12:42:13 +02:00
"userinfo.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"user.attribute" : "zoneinfo" ,
2024-07-04 12:42:13 +02:00
"id.token.claim" : "true" ,
"access.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"claim.name" : "zoneinfo" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "b382c7d1-7eee-4116-a559-cc1b7995c02a" ,
2024-07-28 17:46:07 +02:00
"name" : "website" ,
2024-07-04 12:42:13 +02:00
"protocol" : "openid-connect" ,
2024-07-28 17:46:07 +02:00
"protocolMapper" : "oidc-usermodel-attribute-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
"config" : {
2024-07-28 17:46:07 +02:00
"introspection.token.claim" : "true" ,
"userinfo.token.claim" : "true" ,
"user.attribute" : "website" ,
2024-07-04 12:42:13 +02:00
"id.token.claim" : "true" ,
"access.token.claim" : "true" ,
2024-07-28 17:46:07 +02:00
"claim.name" : "website" ,
"jsonType.label" : "String"
2024-07-04 12:42:13 +02:00
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "b0f598b6-4423-4851-9340-af4b4ce2372c" ,
"name" : "updated at" ,
2024-07-04 12:42:13 +02:00
"protocol" : "openid-connect" ,
2024-07-28 17:46:07 +02:00
"protocolMapper" : "oidc-usermodel-attribute-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
"config" : {
2024-07-28 17:46:07 +02:00
"introspection.token.claim" : "true" ,
2024-07-04 12:42:13 +02:00
"userinfo.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"user.attribute" : "updatedAt" ,
2024-07-04 12:42:13 +02:00
"id.token.claim" : "true" ,
"access.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"claim.name" : "updated_at" ,
"jsonType.label" : "long"
2024-07-04 12:42:13 +02:00
}
2024-07-28 17:46:07 +02:00
} ,
2024-07-04 12:42:13 +02:00
{
2024-07-31 09:09:48 +02:00
"id" : "1b46128d-59cf-4784-919a-6b6d239a7cb3" ,
"name" : "middle name" ,
2024-07-04 12:42:13 +02:00
"protocol" : "openid-connect" ,
"protocolMapper" : "oidc-usermodel-attribute-mapper" ,
"consentRequired" : false ,
"config" : {
2024-07-28 17:46:07 +02:00
"introspection.token.claim" : "true" ,
2024-07-04 12:42:13 +02:00
"userinfo.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"user.attribute" : "middleName" ,
2024-07-04 12:42:13 +02:00
"id.token.claim" : "true" ,
"access.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"claim.name" : "middle_name" ,
2024-07-28 17:46:07 +02:00
"jsonType.label" : "String"
2024-07-04 12:42:13 +02:00
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "3ecceb6a-19af-4dac-800d-02e1bf5e583c" ,
2024-07-28 17:46:07 +02:00
"name" : "family name" ,
2024-07-04 12:42:13 +02:00
"protocol" : "openid-connect" ,
"protocolMapper" : "oidc-usermodel-attribute-mapper" ,
"consentRequired" : false ,
"config" : {
2024-07-28 17:46:07 +02:00
"introspection.token.claim" : "true" ,
2024-07-04 12:42:13 +02:00
"userinfo.token.claim" : "true" ,
2024-07-28 17:46:07 +02:00
"user.attribute" : "lastName" ,
2024-07-04 12:42:13 +02:00
"id.token.claim" : "true" ,
"access.token.claim" : "true" ,
2024-07-28 17:46:07 +02:00
"claim.name" : "family_name" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
2024-07-28 17:46:07 +02:00
} ,
2024-07-04 12:42:13 +02:00
{
2024-07-31 09:09:48 +02:00
"id" : "731c33ad-e095-4773-ad96-6d7d15f6ca6a" ,
"name" : "full name" ,
"protocol" : "openid-connect" ,
"protocolMapper" : "oidc-full-name-mapper" ,
"consentRequired" : false ,
"config" : {
"id.token.claim" : "true" ,
"access.token.claim" : "true" ,
"introspection.token.claim" : "true" ,
"userinfo.token.claim" : "true"
}
} ,
{
"id" : "5644efe6-3b6f-4da6-9a24-1050e187373d" ,
"name" : "birthdate" ,
"protocol" : "openid-connect" ,
"protocolMapper" : "oidc-usermodel-attribute-mapper" ,
"consentRequired" : false ,
"config" : {
"introspection.token.claim" : "true" ,
"userinfo.token.claim" : "true" ,
"user.attribute" : "birthdate" ,
"id.token.claim" : "true" ,
"access.token.claim" : "true" ,
"claim.name" : "birthdate" ,
"jsonType.label" : "String"
}
} ,
{
"id" : "0b74b6fc-dd25-49c9-92b3-4c0c24c0f400" ,
2024-07-28 17:46:07 +02:00
"name" : "nickname" ,
2024-07-04 12:42:13 +02:00
"protocol" : "openid-connect" ,
2024-07-28 17:46:07 +02:00
"protocolMapper" : "oidc-usermodel-attribute-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
"config" : {
2024-07-28 17:46:07 +02:00
"introspection.token.claim" : "true" ,
2024-07-04 12:42:13 +02:00
"userinfo.token.claim" : "true" ,
2024-07-28 17:46:07 +02:00
"user.attribute" : "nickname" ,
2024-07-04 12:42:13 +02:00
"id.token.claim" : "true" ,
"access.token.claim" : "true" ,
2024-07-28 17:46:07 +02:00
"claim.name" : "nickname" ,
"jsonType.label" : "String"
2024-07-04 12:42:13 +02:00
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "0da3ead5-e8da-44d4-b305-202250b8ba8e" ,
"name" : "profile" ,
2024-07-04 12:42:13 +02:00
"protocol" : "openid-connect" ,
2024-07-28 17:46:07 +02:00
"protocolMapper" : "oidc-usermodel-attribute-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
"config" : {
2024-07-28 17:46:07 +02:00
"introspection.token.claim" : "true" ,
"userinfo.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"user.attribute" : "profile" ,
2024-07-28 17:46:07 +02:00
"id.token.claim" : "true" ,
2024-07-04 12:42:13 +02:00
"access.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"claim.name" : "profile" ,
2024-07-28 17:46:07 +02:00
"jsonType.label" : "String"
2024-07-04 12:42:13 +02:00
}
2024-07-31 09:09:48 +02:00
}
]
} ,
{
"id" : "472d994e-e8b6-488e-b0dd-c22683a7288a" ,
"name" : "email" ,
"description" : "OpenID Connect built-in scope: email" ,
"protocol" : "openid-connect" ,
"attributes" : {
"include.in.token.scope" : "true" ,
"display.on.consent.screen" : "true" ,
"consent.screen.text" : "${emailScopeConsentText}"
} ,
"protocolMappers" : [
2024-07-04 12:42:13 +02:00
{
2024-07-31 09:09:48 +02:00
"id" : "94581337-8186-4eed-b4a7-15dde470a949" ,
"name" : "email verified" ,
2024-07-04 12:42:13 +02:00
"protocol" : "openid-connect" ,
2024-07-31 09:09:48 +02:00
"protocolMapper" : "oidc-usermodel-property-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
"config" : {
2024-07-28 17:46:07 +02:00
"introspection.token.claim" : "true" ,
2024-07-04 12:42:13 +02:00
"userinfo.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"user.attribute" : "emailVerified" ,
2024-07-04 12:42:13 +02:00
"id.token.claim" : "true" ,
"access.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"claim.name" : "email_verified" ,
"jsonType.label" : "boolean"
2024-07-04 12:42:13 +02:00
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "789c447c-c5d4-41d1-bc57-f333fad86b3f" ,
"name" : "email" ,
2024-07-04 12:42:13 +02:00
"protocol" : "openid-connect" ,
2024-07-28 17:46:07 +02:00
"protocolMapper" : "oidc-usermodel-attribute-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
"config" : {
2024-07-28 17:46:07 +02:00
"introspection.token.claim" : "true" ,
2024-07-04 12:42:13 +02:00
"userinfo.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"user.attribute" : "email" ,
2024-07-04 12:42:13 +02:00
"id.token.claim" : "true" ,
"access.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"claim.name" : "email" ,
2024-07-04 12:42:13 +02:00
"jsonType.label" : "String"
}
2024-07-31 09:09:48 +02:00
}
]
} ,
{
"id" : "f1befe1c-6a3d-4407-afce-bd5323b3617a" ,
"name" : "web-origins" ,
"description" : "OpenID Connect scope for add allowed web origins to the access token" ,
"protocol" : "openid-connect" ,
"attributes" : {
"include.in.token.scope" : "false" ,
"display.on.consent.screen" : "false" ,
"consent.screen.text" : ""
} ,
"protocolMappers" : [
2024-07-04 12:42:13 +02:00
{
2024-07-31 09:09:48 +02:00
"id" : "9d42f847-50ea-4d25-b7c5-1390606a935d" ,
"name" : "allowed web origins" ,
2024-07-28 17:46:07 +02:00
"protocol" : "openid-connect" ,
2024-07-31 09:09:48 +02:00
"protocolMapper" : "oidc-allowed-origins-mapper" ,
2024-07-04 12:42:13 +02:00
"consentRequired" : false ,
"config" : {
2024-07-28 17:46:07 +02:00
"access.token.claim" : "true" ,
2024-07-31 09:09:48 +02:00
"introspection.token.claim" : "true"
2024-07-04 12:42:13 +02:00
}
}
]
}
] ,
"defaultDefaultClientScopes" : [
2024-07-31 09:09:48 +02:00
"acr" ,
2024-07-04 12:42:13 +02:00
"profile" ,
2024-07-31 09:09:48 +02:00
"email" ,
"roles" ,
2024-07-28 17:46:07 +02:00
"web-origins" ,
2024-07-31 09:09:48 +02:00
"role_list"
2024-07-04 12:42:13 +02:00
] ,
"defaultOptionalClientScopes" : [
"microprofile-jwt" ,
2024-07-31 09:09:48 +02:00
"offline_access" ,
2024-07-28 17:46:07 +02:00
"address" ,
2024-07-31 09:09:48 +02:00
"phone"
2024-07-04 12:42:13 +02:00
] ,
"browserSecurityHeaders" : {
"contentSecurityPolicyReportOnly" : "" ,
"xContentTypeOptions" : "nosniff" ,
2024-07-28 17:46:07 +02:00
"referrerPolicy" : "no-referrer" ,
2024-07-04 12:42:13 +02:00
"xRobotsTag" : "none" ,
"xFrameOptions" : "SAMEORIGIN" ,
"xXSSProtection" : "1; mode=block" ,
2024-07-31 09:09:48 +02:00
"contentSecurityPolicy" : "frame-src 'self'; frame-ancestors 'self'; object-src 'none';" ,
2024-07-04 12:42:13 +02:00
"strictTransportSecurity" : "max-age=31536000; includeSubDomains"
} ,
"smtpServer" : { } ,
"eventsEnabled" : false ,
"eventsListeners" : [
"jboss-logging"
] ,
"enabledEventTypes" : [ ] ,
"adminEventsEnabled" : false ,
"adminEventsDetailsEnabled" : false ,
"identityProviders" : [ ] ,
"identityProviderMappers" : [ ] ,
"components" : {
"org.keycloak.services.clientregistration.policy.ClientRegistrationPolicy" : [
{
2024-07-31 09:09:48 +02:00
"id" : "23af680b-0b89-4857-b4f7-350b6c2e220d" ,
"name" : "Full Scope Disabled" ,
"providerId" : "scope" ,
"subType" : "anonymous" ,
"subComponents" : { } ,
"config" : { }
} ,
{
"id" : "cdc6000c-d869-49cf-952d-4da8f1d415fb" ,
"name" : "Trusted Hosts" ,
"providerId" : "trusted-hosts" ,
"subType" : "anonymous" ,
"subComponents" : { } ,
"config" : {
"host-sending-registration-request-must-match" : [
"true"
] ,
"client-uris-must-match" : [
"true"
]
}
} ,
{
"id" : "b5dc34f8-d83b-46e1-8937-f99477889e3d" ,
2024-07-04 12:42:13 +02:00
"name" : "Allowed Protocol Mapper Types" ,
"providerId" : "allowed-protocol-mappers" ,
2024-07-31 09:09:48 +02:00
"subType" : "anonymous" ,
2024-07-04 12:42:13 +02:00
"subComponents" : { } ,
"config" : {
"allowed-protocol-mapper-types" : [
2024-07-28 17:46:07 +02:00
"oidc-address-mapper" ,
"saml-user-attribute-mapper" ,
"oidc-usermodel-attribute-mapper" ,
2024-07-31 09:09:48 +02:00
"saml-user-property-mapper" ,
"saml-role-list-mapper" ,
"oidc-full-name-mapper" ,
"oidc-usermodel-property-mapper" ,
"oidc-sha256-pairwise-sub-mapper"
2024-07-04 12:42:13 +02:00
]
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "70694b72-a05c-4333-b5a9-e999b8c94baf" ,
2024-07-28 17:46:07 +02:00
"name" : "Max Clients Limit" ,
"providerId" : "max-clients" ,
"subType" : "anonymous" ,
"subComponents" : { } ,
"config" : {
"max-clients" : [
"200"
]
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "e744782e-3ad6-43e5-b833-492954f741f3" ,
"name" : "Allowed Client Scopes" ,
"providerId" : "allowed-client-templates" ,
2024-07-04 12:42:13 +02:00
"subType" : "anonymous" ,
"subComponents" : { } ,
"config" : {
2024-07-31 09:09:48 +02:00
"allow-default-scopes" : [
2024-07-04 12:42:13 +02:00
"true"
]
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "f4f0c4a7-3c81-47bc-a1f7-e064ade250a0" ,
2024-07-28 17:46:07 +02:00
"name" : "Consent Required" ,
"providerId" : "consent-required" ,
"subType" : "anonymous" ,
"subComponents" : { } ,
"config" : { }
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "a458c0dd-a4b1-4f81-a1a3-f96e1d6876e7" ,
2024-07-04 12:42:13 +02:00
"name" : "Allowed Client Scopes" ,
"providerId" : "allowed-client-templates" ,
2024-07-31 09:09:48 +02:00
"subType" : "authenticated" ,
2024-07-04 12:42:13 +02:00
"subComponents" : { } ,
"config" : {
"allow-default-scopes" : [
"true"
]
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "4fe5808b-36cf-4d06-a450-f34ab07b1fc7" ,
2024-07-04 12:42:13 +02:00
"name" : "Allowed Protocol Mapper Types" ,
"providerId" : "allowed-protocol-mappers" ,
2024-07-31 09:09:48 +02:00
"subType" : "authenticated" ,
2024-07-04 12:42:13 +02:00
"subComponents" : { } ,
"config" : {
"allowed-protocol-mapper-types" : [
2024-07-31 09:09:48 +02:00
"saml-user-attribute-mapper" ,
"oidc-sha256-pairwise-sub-mapper" ,
2024-07-28 17:46:07 +02:00
"oidc-usermodel-property-mapper" ,
"oidc-address-mapper" ,
2024-07-04 12:42:13 +02:00
"oidc-full-name-mapper" ,
2024-07-31 09:09:48 +02:00
"saml-user-property-mapper" ,
"oidc-usermodel-attribute-mapper" ,
"saml-role-list-mapper"
2024-07-04 12:42:13 +02:00
]
}
}
] ,
"org.keycloak.storage.UserStorageProvider" : [
{
2024-07-31 09:09:48 +02:00
"id" : "ec9f5ff8-7e9f-4bc3-a497-40d2529f230c" ,
2024-07-04 12:42:13 +02:00
"name" : "ldap" ,
"providerId" : "ldap" ,
"subComponents" : {
"org.keycloak.storage.ldap.mappers.LDAPStorageMapper" : [
{
2024-07-31 09:09:48 +02:00
"id" : "675c4ceb-ad7e-4ad1-9248-9bd1baff6c0e" ,
"name" : "MSAD account controls" ,
"providerId" : "msad-user-account-control-mapper" ,
2024-07-04 12:42:13 +02:00
"subComponents" : { } ,
"config" : {
2024-07-31 09:09:48 +02:00
"always.read.enabled.value.from.ldap" : [
2024-07-28 17:46:07 +02:00
"true"
2024-07-04 12:42:13 +02:00
]
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "e5364a67-473c-4b4f-8a0e-b1b20f96b2cc" ,
2024-07-04 12:42:13 +02:00
"name" : "username" ,
"providerId" : "user-attribute-ldap-mapper" ,
"subComponents" : { } ,
"config" : {
"ldap.attribute" : [
2024-07-31 09:09:48 +02:00
"${LDAP_USERNAME}"
2024-07-04 12:42:13 +02:00
] ,
"is.mandatory.in.ldap" : [
2024-07-28 17:46:07 +02:00
"true"
2024-07-04 12:42:13 +02:00
] ,
2024-07-31 09:09:48 +02:00
"read.only" : [
2024-07-04 12:42:13 +02:00
"false"
] ,
2024-07-31 09:09:48 +02:00
"always.read.value.from.ldap" : [
2024-07-28 17:46:07 +02:00
"false"
2024-07-04 12:42:13 +02:00
] ,
"user.model.attribute" : [
"username"
]
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "56f2e0ab-bb99-40b7-95ed-def5758724b0" ,
"name" : "creation date" ,
2024-07-04 12:42:13 +02:00
"providerId" : "user-attribute-ldap-mapper" ,
"subComponents" : { } ,
"config" : {
"ldap.attribute" : [
2024-07-31 09:09:48 +02:00
"whenCreated"
2024-07-04 12:42:13 +02:00
] ,
"is.mandatory.in.ldap" : [
"false"
] ,
2024-07-28 17:46:07 +02:00
"always.read.value.from.ldap" : [
2024-07-04 12:42:13 +02:00
"true"
] ,
2024-07-31 09:09:48 +02:00
"read.only" : [
"true"
] ,
2024-07-04 12:42:13 +02:00
"user.model.attribute" : [
2024-07-31 09:09:48 +02:00
"createTimestamp"
2024-07-04 12:42:13 +02:00
]
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "a74b9186-df91-40c9-8862-74088daa11b4" ,
"name" : "email" ,
2024-07-04 12:42:13 +02:00
"providerId" : "user-attribute-ldap-mapper" ,
"subComponents" : { } ,
"config" : {
"ldap.attribute" : [
2024-07-31 09:09:48 +02:00
"${LDAP_EMAIL}"
2024-07-04 12:42:13 +02:00
] ,
"is.mandatory.in.ldap" : [
2024-07-28 17:46:07 +02:00
"false"
2024-07-04 12:42:13 +02:00
] ,
"read.only" : [
2024-07-31 09:09:48 +02:00
"false"
] ,
"always.read.value.from.ldap" : [
"false"
2024-07-04 12:42:13 +02:00
] ,
"user.model.attribute" : [
2024-07-31 09:09:48 +02:00
"email"
2024-07-04 12:42:13 +02:00
]
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "6ea199ee-b4f8-4610-b52d-3fe8b24e731d" ,
"name" : "modify date" ,
2024-07-04 12:42:13 +02:00
"providerId" : "user-attribute-ldap-mapper" ,
"subComponents" : { } ,
"config" : {
"ldap.attribute" : [
2024-07-31 09:09:48 +02:00
"whenChanged"
2024-07-04 12:42:13 +02:00
] ,
"is.mandatory.in.ldap" : [
"false"
] ,
"always.read.value.from.ldap" : [
2024-07-31 09:09:48 +02:00
"true"
2024-07-04 12:42:13 +02:00
] ,
"read.only" : [
2024-07-31 09:09:48 +02:00
"true"
2024-07-04 12:42:13 +02:00
] ,
"user.model.attribute" : [
2024-07-31 09:09:48 +02:00
"modifyTimestamp"
2024-07-28 17:46:07 +02:00
]
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "8ed3a4f0-3c65-48fb-8d4b-60ca8c256893" ,
"name" : "last name" ,
2024-07-04 12:42:13 +02:00
"providerId" : "user-attribute-ldap-mapper" ,
"subComponents" : { } ,
"config" : {
"ldap.attribute" : [
2024-07-31 09:09:48 +02:00
"${LDAP_LASTNAME}"
2024-07-04 12:42:13 +02:00
] ,
"is.mandatory.in.ldap" : [
2024-07-31 09:09:48 +02:00
"true"
2024-07-04 12:42:13 +02:00
] ,
2024-07-28 17:46:07 +02:00
"read.only" : [
2024-07-04 12:42:13 +02:00
"false"
] ,
2024-07-28 17:46:07 +02:00
"always.read.value.from.ldap" : [
2024-07-31 09:09:48 +02:00
"true"
2024-07-04 12:42:13 +02:00
] ,
"user.model.attribute" : [
2024-07-31 09:09:48 +02:00
"lastName"
2024-07-04 12:42:13 +02:00
]
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "7993f193-0dd8-4901-8568-d19f5071be4c" ,
"name" : "first name" ,
2024-07-04 12:42:13 +02:00
"providerId" : "user-attribute-ldap-mapper" ,
"subComponents" : { } ,
"config" : {
"ldap.attribute" : [
2024-07-31 09:09:48 +02:00
"${LDAP_FIRSTNAME}"
2024-07-04 12:42:13 +02:00
] ,
"is.mandatory.in.ldap" : [
"true"
] ,
2024-07-28 17:46:07 +02:00
"read.only" : [
2024-07-31 09:09:48 +02:00
"false"
] ,
"always.read.value.from.ldap" : [
2024-07-04 12:42:13 +02:00
"true"
] ,
"user.model.attribute" : [
2024-07-31 09:09:48 +02:00
"firstName"
2024-07-04 12:42:13 +02:00
]
}
}
]
} ,
"config" : {
"fullSyncPeriod" : [
"-1"
] ,
2024-07-31 09:09:48 +02:00
"pagination" : [
"false"
] ,
2024-07-28 17:46:07 +02:00
"startTls" : [
"false"
] ,
2024-07-04 12:42:13 +02:00
"connectionPooling" : [
2024-07-28 17:46:07 +02:00
"false"
2024-07-04 12:42:13 +02:00
] ,
"usersDn" : [
2024-07-31 09:09:48 +02:00
"${LDAP_BASEUSER}"
2024-07-04 12:42:13 +02:00
] ,
"cachePolicy" : [
"DEFAULT"
] ,
"useKerberosForPasswordAuthentication" : [
"false"
] ,
"importEnabled" : [
2024-07-28 17:46:07 +02:00
"true"
2024-07-04 12:42:13 +02:00
] ,
"enabled" : [
"true"
] ,
"usernameLDAPAttribute" : [
2024-07-31 09:09:48 +02:00
"${LDAP_USERNAME}"
2024-07-04 12:42:13 +02:00
] ,
"bindDn" : [
2024-07-31 09:09:48 +02:00
"${LDAP_USER}"
] ,
"bindCredential" : [
"${LDAP_PASSWORD}"
2024-07-04 12:42:13 +02:00
] ,
2024-07-28 17:46:07 +02:00
"changedSyncPeriod" : [
"-1"
2024-07-04 12:42:13 +02:00
] ,
"vendor" : [
2024-07-28 17:46:07 +02:00
"ad"
2024-07-04 12:42:13 +02:00
] ,
"uuidLDAPAttribute" : [
2024-07-31 09:09:48 +02:00
"${LDAP_USERNAME}"
2024-07-04 12:42:13 +02:00
] ,
"allowKerberosAuthentication" : [
"false"
] ,
2024-07-31 09:09:48 +02:00
"connectionUrl" : [
"ldap://${LDAP_HOST}:${LDAP_PORT}"
] ,
2024-07-04 12:42:13 +02:00
"syncRegistrations" : [
2024-07-28 17:46:07 +02:00
"true"
2024-07-04 12:42:13 +02:00
] ,
"authType" : [
"simple"
] ,
2024-07-28 17:46:07 +02:00
"krbPrincipalAttribute" : [
"userPrincipalName"
] ,
"customUserSearchFilter" : [
2024-07-31 09:09:48 +02:00
""
2024-07-04 12:42:13 +02:00
] ,
"searchScope" : [
2024-07-28 17:46:07 +02:00
"2"
2024-07-04 12:42:13 +02:00
] ,
"useTruststoreSpi" : [
2024-07-28 17:46:07 +02:00
"always"
2024-07-04 12:42:13 +02:00
] ,
2024-07-28 17:46:07 +02:00
"usePasswordModifyExtendedOp" : [
2024-07-04 12:42:13 +02:00
"false"
] ,
2024-07-28 17:46:07 +02:00
"trustEmail" : [
"false"
2024-07-04 12:42:13 +02:00
] ,
"userObjectClasses" : [
2024-07-28 17:46:07 +02:00
"person, organizationalPerson"
2024-07-04 12:42:13 +02:00
] ,
"rdnLDAPAttribute" : [
2024-07-31 09:09:48 +02:00
"${LDAP_USERNAME}"
2024-07-04 12:42:13 +02:00
] ,
"editMode" : [
2024-07-31 09:09:48 +02:00
"READ_ONLY"
2024-07-04 12:42:13 +02:00
] ,
"validatePasswordPolicy" : [
"false"
]
}
}
] ,
2024-07-31 09:09:48 +02:00
"org.keycloak.userprofile.UserProfileProvider" : [
2024-07-04 12:42:13 +02:00
{
2024-07-31 09:09:48 +02:00
"id" : "1a37be47-9d7f-4a11-9164-aec609d02ca5" ,
"providerId" : "declarative-user-profile" ,
2024-07-04 12:42:13 +02:00
"subComponents" : { } ,
"config" : {
2024-07-31 09:09:48 +02:00
"kc.user.profile.config" : [
"{\"attributes\":[{\"name\":\"username\",\"displayName\":\"${username}\",\"validations\":{\"length\":{\"min\":3,\"max\":255},\"username-prohibited-characters\":{},\"up-username-not-idn-homograph\":{}},\"permissions\":{\"view\":[\"admin\",\"user\"],\"edit\":[\"admin\",\"user\"]},\"multivalued\":false},{\"name\":\"email\",\"displayName\":\"${email}\",\"validations\":{\"email\":{},\"length\":{\"max\":255}},\"permissions\":{\"view\":[\"admin\",\"user\"],\"edit\":[\"admin\",\"user\"]},\"multivalued\":false},{\"name\":\"firstName\",\"displayName\":\"${firstName}\",\"validations\":{\"length\":{\"max\":255},\"person-name-prohibited-characters\":{}},\"permissions\":{\"view\":[\"admin\",\"user\"],\"edit\":[\"admin\",\"user\"]},\"multivalued\":false},{\"name\":\"lastName\",\"displayName\":\"${lastName}\",\"validations\":{\"length\":{\"max\":255},\"person-name-prohibited-characters\":{}},\"permissions\":{\"view\":[\"admin\",\"user\"],\"edit\":[\"admin\",\"user\"]},\"multivalued\":false}],\"groups\":[{\"name\":\"user-metadata\",\"displayHeader\":\"User metadata\",\"displayDescription\":\"Attributes, which refer to user metadata\"}]}"
2024-07-04 12:42:13 +02:00
]
}
2024-07-31 09:09:48 +02:00
}
] ,
"org.keycloak.keys.KeyProvider" : [
2024-07-04 12:42:13 +02:00
{
2024-07-31 09:09:48 +02:00
"id" : "6081048e-5704-4c3b-857d-9e07abde9899" ,
2024-07-28 17:46:07 +02:00
"name" : "rsa-generated" ,
"providerId" : "rsa-generated" ,
2024-07-04 12:42:13 +02:00
"subComponents" : { } ,
"config" : {
"priority" : [
"100"
]
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "2f926d8a-0ead-4a97-a067-2cf87fa21e40" ,
"name" : "hmac-generated-hs512" ,
"providerId" : "hmac-generated" ,
2024-07-04 12:42:13 +02:00
"subComponents" : { } ,
"config" : {
"priority" : [
"100"
2024-07-31 09:09:48 +02:00
] ,
"algorithm" : [
"HS512"
2024-07-04 12:42:13 +02:00
]
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "4e12d30a-0ddd-4723-a1b9-3aa8a0bee122" ,
"name" : "rsa-enc-generated" ,
"providerId" : "rsa-enc-generated" ,
2024-07-04 12:42:13 +02:00
"subComponents" : { } ,
"config" : {
"priority" : [
"100"
2024-07-28 17:46:07 +02:00
] ,
"algorithm" : [
2024-07-31 09:09:48 +02:00
"RSA-OAEP"
]
}
} ,
{
"id" : "31d61106-da3a-42c4-b6b3-b683352ebb0f" ,
"name" : "aes-generated" ,
"providerId" : "aes-generated" ,
"subComponents" : { } ,
"config" : {
"priority" : [
"100"
2024-07-04 12:42:13 +02:00
]
}
}
]
} ,
"internationalizationEnabled" : false ,
"supportedLocales" : [ ] ,
"authenticationFlows" : [
{
2024-07-31 09:09:48 +02:00
"id" : "6f96a656-96bf-4dfb-ae4c-5a8f0b8b8dbd" ,
2024-07-04 12:42:13 +02:00
"alias" : "Account verification options" ,
"description" : "Method with which to verity the existing account" ,
"providerId" : "basic-flow" ,
"topLevel" : false ,
"builtIn" : true ,
"authenticationExecutions" : [
{
"authenticator" : "idp-email-verification" ,
"authenticatorFlow" : false ,
"requirement" : "ALTERNATIVE" ,
"priority" : 10 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
} ,
{
"authenticatorFlow" : true ,
"requirement" : "ALTERNATIVE" ,
"priority" : 20 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : true ,
2024-07-04 12:42:13 +02:00
"flowAlias" : "Verify Existing Account by Re-authentication" ,
2024-07-28 17:46:07 +02:00
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
}
]
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "263ef5c8-371f-497a-849d-71e99baa0e69" ,
2024-07-04 12:42:13 +02:00
"alias" : "Browser - Conditional OTP" ,
"description" : "Flow to determine if the OTP is required for the authentication" ,
"providerId" : "basic-flow" ,
"topLevel" : false ,
"builtIn" : true ,
"authenticationExecutions" : [
{
"authenticator" : "conditional-user-configured" ,
"authenticatorFlow" : false ,
"requirement" : "REQUIRED" ,
"priority" : 10 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
} ,
{
"authenticator" : "auth-otp-form" ,
"authenticatorFlow" : false ,
"requirement" : "REQUIRED" ,
"priority" : 20 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
}
]
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "bb77c574-7c8a-4b03-9621-a459eb698ab8" ,
2024-07-04 12:42:13 +02:00
"alias" : "Direct Grant - Conditional OTP" ,
"description" : "Flow to determine if the OTP is required for the authentication" ,
"providerId" : "basic-flow" ,
"topLevel" : false ,
"builtIn" : true ,
"authenticationExecutions" : [
{
"authenticator" : "conditional-user-configured" ,
"authenticatorFlow" : false ,
"requirement" : "REQUIRED" ,
"priority" : 10 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
} ,
{
"authenticator" : "direct-grant-validate-otp" ,
"authenticatorFlow" : false ,
"requirement" : "REQUIRED" ,
"priority" : 20 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
}
]
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "79e04092-ee16-4d4a-9f46-6d6fa7c3a2b2" ,
2024-07-04 12:42:13 +02:00
"alias" : "First broker login - Conditional OTP" ,
"description" : "Flow to determine if the OTP is required for the authentication" ,
"providerId" : "basic-flow" ,
"topLevel" : false ,
"builtIn" : true ,
"authenticationExecutions" : [
{
"authenticator" : "conditional-user-configured" ,
"authenticatorFlow" : false ,
"requirement" : "REQUIRED" ,
"priority" : 10 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
} ,
{
"authenticator" : "auth-otp-form" ,
"authenticatorFlow" : false ,
"requirement" : "REQUIRED" ,
"priority" : 20 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
}
]
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "20994506-5361-4b3a-bcbf-80df6479540e" ,
2024-07-04 12:42:13 +02:00
"alias" : "Handle Existing Account" ,
"description" : "Handle what to do if there is existing account with same email/username like authenticated identity provider" ,
"providerId" : "basic-flow" ,
"topLevel" : false ,
"builtIn" : true ,
"authenticationExecutions" : [
{
"authenticator" : "idp-confirm-link" ,
"authenticatorFlow" : false ,
"requirement" : "REQUIRED" ,
"priority" : 10 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
} ,
{
"authenticatorFlow" : true ,
"requirement" : "REQUIRED" ,
"priority" : 20 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : true ,
2024-07-04 12:42:13 +02:00
"flowAlias" : "Account verification options" ,
2024-07-28 17:46:07 +02:00
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
}
]
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "80bdca65-5877-4f59-87db-4f3b5f9822c3" ,
2024-07-04 12:42:13 +02:00
"alias" : "Reset - Conditional OTP" ,
"description" : "Flow to determine if the OTP should be reset or not. Set to REQUIRED to force." ,
"providerId" : "basic-flow" ,
"topLevel" : false ,
"builtIn" : true ,
"authenticationExecutions" : [
{
"authenticator" : "conditional-user-configured" ,
"authenticatorFlow" : false ,
"requirement" : "REQUIRED" ,
"priority" : 10 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
} ,
{
"authenticator" : "reset-otp" ,
"authenticatorFlow" : false ,
"requirement" : "REQUIRED" ,
"priority" : 20 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
}
]
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "196de53d-9fdb-43c6-877b-6e51916a5cb7" ,
2024-07-04 12:42:13 +02:00
"alias" : "User creation or linking" ,
"description" : "Flow for the existing/non-existing user alternatives" ,
"providerId" : "basic-flow" ,
"topLevel" : false ,
"builtIn" : true ,
"authenticationExecutions" : [
{
"authenticatorConfig" : "create unique user config" ,
"authenticator" : "idp-create-user-if-unique" ,
"authenticatorFlow" : false ,
"requirement" : "ALTERNATIVE" ,
"priority" : 10 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
} ,
{
"authenticatorFlow" : true ,
"requirement" : "ALTERNATIVE" ,
"priority" : 20 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : true ,
2024-07-04 12:42:13 +02:00
"flowAlias" : "Handle Existing Account" ,
2024-07-28 17:46:07 +02:00
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
}
]
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "3b58dbe7-a052-4312-b45b-63e9c3d47a23" ,
2024-07-04 12:42:13 +02:00
"alias" : "Verify Existing Account by Re-authentication" ,
"description" : "Reauthentication of existing account" ,
"providerId" : "basic-flow" ,
"topLevel" : false ,
"builtIn" : true ,
"authenticationExecutions" : [
{
"authenticator" : "idp-username-password-form" ,
"authenticatorFlow" : false ,
"requirement" : "REQUIRED" ,
"priority" : 10 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
} ,
{
"authenticatorFlow" : true ,
"requirement" : "CONDITIONAL" ,
"priority" : 20 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : true ,
2024-07-04 12:42:13 +02:00
"flowAlias" : "First broker login - Conditional OTP" ,
2024-07-28 17:46:07 +02:00
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
}
]
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "f93f00c3-a0cf-4ad7-bba2-e09cb1c3427f" ,
2024-07-04 12:42:13 +02:00
"alias" : "browser" ,
"description" : "browser based authentication" ,
"providerId" : "basic-flow" ,
"topLevel" : true ,
"builtIn" : true ,
"authenticationExecutions" : [
{
"authenticator" : "auth-cookie" ,
"authenticatorFlow" : false ,
"requirement" : "ALTERNATIVE" ,
"priority" : 10 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
} ,
{
"authenticator" : "auth-spnego" ,
"authenticatorFlow" : false ,
"requirement" : "DISABLED" ,
"priority" : 20 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
} ,
{
"authenticator" : "identity-provider-redirector" ,
"authenticatorFlow" : false ,
"requirement" : "ALTERNATIVE" ,
"priority" : 25 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
} ,
{
"authenticatorFlow" : true ,
"requirement" : "ALTERNATIVE" ,
"priority" : 30 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : true ,
2024-07-04 12:42:13 +02:00
"flowAlias" : "forms" ,
2024-07-28 17:46:07 +02:00
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
}
]
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "6fb1b243-94c1-49c8-9804-76f6120c509b" ,
2024-07-04 12:42:13 +02:00
"alias" : "clients" ,
"description" : "Base authentication for clients" ,
"providerId" : "client-flow" ,
"topLevel" : true ,
"builtIn" : true ,
"authenticationExecutions" : [
{
"authenticator" : "client-secret" ,
"authenticatorFlow" : false ,
"requirement" : "ALTERNATIVE" ,
"priority" : 10 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
} ,
{
"authenticator" : "client-jwt" ,
"authenticatorFlow" : false ,
"requirement" : "ALTERNATIVE" ,
"priority" : 20 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
} ,
{
"authenticator" : "client-secret-jwt" ,
"authenticatorFlow" : false ,
"requirement" : "ALTERNATIVE" ,
"priority" : 30 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
} ,
{
"authenticator" : "client-x509" ,
"authenticatorFlow" : false ,
"requirement" : "ALTERNATIVE" ,
"priority" : 40 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
}
]
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "71daf21d-4a0d-49cf-a599-6aedb9d5e6a6" ,
2024-07-04 12:42:13 +02:00
"alias" : "direct grant" ,
"description" : "OpenID Connect Resource Owner Grant" ,
"providerId" : "basic-flow" ,
"topLevel" : true ,
"builtIn" : true ,
"authenticationExecutions" : [
{
"authenticator" : "direct-grant-validate-username" ,
"authenticatorFlow" : false ,
"requirement" : "REQUIRED" ,
"priority" : 10 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
} ,
{
"authenticator" : "direct-grant-validate-password" ,
"authenticatorFlow" : false ,
"requirement" : "REQUIRED" ,
"priority" : 20 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
} ,
{
"authenticatorFlow" : true ,
"requirement" : "CONDITIONAL" ,
"priority" : 30 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : true ,
2024-07-04 12:42:13 +02:00
"flowAlias" : "Direct Grant - Conditional OTP" ,
2024-07-28 17:46:07 +02:00
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
}
]
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "8cd7b199-c099-42a5-b7aa-bebfd443e713" ,
2024-07-04 12:42:13 +02:00
"alias" : "docker auth" ,
"description" : "Used by Docker clients to authenticate against the IDP" ,
"providerId" : "basic-flow" ,
"topLevel" : true ,
"builtIn" : true ,
"authenticationExecutions" : [
{
"authenticator" : "docker-http-basic-authenticator" ,
"authenticatorFlow" : false ,
"requirement" : "REQUIRED" ,
"priority" : 10 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
}
]
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "82d55b45-138b-44ac-a6f4-98e375a64e55" ,
2024-07-04 12:42:13 +02:00
"alias" : "first broker login" ,
"description" : "Actions taken after first broker login with identity provider account, which is not yet linked to any Keycloak account" ,
"providerId" : "basic-flow" ,
"topLevel" : true ,
"builtIn" : true ,
"authenticationExecutions" : [
{
"authenticatorConfig" : "review profile config" ,
"authenticator" : "idp-review-profile" ,
"authenticatorFlow" : false ,
"requirement" : "REQUIRED" ,
"priority" : 10 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
} ,
{
"authenticatorFlow" : true ,
"requirement" : "REQUIRED" ,
"priority" : 20 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : true ,
2024-07-04 12:42:13 +02:00
"flowAlias" : "User creation or linking" ,
2024-07-28 17:46:07 +02:00
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
}
]
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "ef13a8d2-0127-4dcd-825e-92a7ac61dbff" ,
2024-07-04 12:42:13 +02:00
"alias" : "forms" ,
"description" : "Username, password, otp and other auth forms." ,
"providerId" : "basic-flow" ,
"topLevel" : false ,
"builtIn" : true ,
"authenticationExecutions" : [
{
"authenticator" : "auth-username-password-form" ,
"authenticatorFlow" : false ,
"requirement" : "REQUIRED" ,
"priority" : 10 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
} ,
{
"authenticatorFlow" : true ,
"requirement" : "CONDITIONAL" ,
"priority" : 20 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : true ,
2024-07-04 12:42:13 +02:00
"flowAlias" : "Browser - Conditional OTP" ,
2024-07-28 17:46:07 +02:00
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
}
]
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "ecfe5882-7d96-4872-a818-3e5b3aa562b1" ,
2024-07-04 12:42:13 +02:00
"alias" : "registration" ,
"description" : "registration flow" ,
"providerId" : "basic-flow" ,
"topLevel" : true ,
"builtIn" : true ,
"authenticationExecutions" : [
{
"authenticator" : "registration-page-form" ,
"authenticatorFlow" : true ,
"requirement" : "REQUIRED" ,
"priority" : 10 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : true ,
2024-07-04 12:42:13 +02:00
"flowAlias" : "registration form" ,
2024-07-28 17:46:07 +02:00
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
}
]
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "40a98efb-f838-41a8-834d-48bc7d298ea7" ,
2024-07-04 12:42:13 +02:00
"alias" : "registration form" ,
"description" : "registration form" ,
"providerId" : "form-flow" ,
"topLevel" : false ,
"builtIn" : true ,
"authenticationExecutions" : [
{
"authenticator" : "registration-user-creation" ,
"authenticatorFlow" : false ,
"requirement" : "REQUIRED" ,
"priority" : 20 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
} ,
{
"authenticator" : "registration-password-action" ,
"authenticatorFlow" : false ,
"requirement" : "REQUIRED" ,
"priority" : 50 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
} ,
{
"authenticator" : "registration-recaptcha-action" ,
"authenticatorFlow" : false ,
"requirement" : "DISABLED" ,
"priority" : 60 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
} ,
{
"authenticator" : "registration-terms-and-conditions" ,
"authenticatorFlow" : false ,
"requirement" : "DISABLED" ,
"priority" : 70 ,
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
}
]
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "8afc69e8-84b3-40f9-b448-2dc69c8c79ca" ,
2024-07-04 12:42:13 +02:00
"alias" : "reset credentials" ,
"description" : "Reset credentials for a user if they forgot their password or something" ,
"providerId" : "basic-flow" ,
"topLevel" : true ,
"builtIn" : true ,
"authenticationExecutions" : [
{
"authenticator" : "reset-credentials-choose-user" ,
"authenticatorFlow" : false ,
"requirement" : "REQUIRED" ,
"priority" : 10 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
} ,
{
"authenticator" : "reset-credential-email" ,
"authenticatorFlow" : false ,
"requirement" : "REQUIRED" ,
"priority" : 20 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
} ,
{
"authenticator" : "reset-password" ,
"authenticatorFlow" : false ,
"requirement" : "REQUIRED" ,
"priority" : 30 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
} ,
{
"authenticatorFlow" : true ,
"requirement" : "CONDITIONAL" ,
"priority" : 40 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : true ,
2024-07-04 12:42:13 +02:00
"flowAlias" : "Reset - Conditional OTP" ,
2024-07-28 17:46:07 +02:00
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
}
]
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "d46af357-91e5-49bc-af7d-dd3e072caeca" ,
2024-07-04 12:42:13 +02:00
"alias" : "saml ecp" ,
"description" : "SAML ECP Profile Authentication Flow" ,
"providerId" : "basic-flow" ,
"topLevel" : true ,
"builtIn" : true ,
"authenticationExecutions" : [
{
"authenticator" : "http-basic-authenticator" ,
"authenticatorFlow" : false ,
"requirement" : "REQUIRED" ,
"priority" : 10 ,
2024-07-28 17:46:07 +02:00
"autheticatorFlow" : false ,
"userSetupAllowed" : false
2024-07-04 12:42:13 +02:00
}
]
}
] ,
"authenticatorConfig" : [
{
2024-07-31 09:09:48 +02:00
"id" : "1f02ebfc-cf2f-4ac0-9049-ce4227816999" ,
2024-07-04 12:42:13 +02:00
"alias" : "create unique user config" ,
"config" : {
"require.password.update.after.registration" : "false"
}
} ,
{
2024-07-31 09:09:48 +02:00
"id" : "6aa3b20f-9a1e-4e98-976e-ee941e638032" ,
2024-07-04 12:42:13 +02:00
"alias" : "review profile config" ,
"config" : {
"update.profile.on.first.login" : "missing"
}
}
] ,
"requiredActions" : [
{
"alias" : "CONFIGURE_TOTP" ,
"name" : "Configure OTP" ,
"providerId" : "CONFIGURE_TOTP" ,
"enabled" : true ,
"defaultAction" : false ,
"priority" : 10 ,
"config" : { }
} ,
{
2024-07-28 17:46:07 +02:00
"alias" : "TERMS_AND_CONDITIONS" ,
2024-07-04 12:42:13 +02:00
"name" : "Terms and Conditions" ,
2024-07-28 17:46:07 +02:00
"providerId" : "TERMS_AND_CONDITIONS" ,
2024-07-04 12:42:13 +02:00
"enabled" : false ,
"defaultAction" : false ,
"priority" : 20 ,
"config" : { }
} ,
{
"alias" : "UPDATE_PASSWORD" ,
"name" : "Update Password" ,
"providerId" : "UPDATE_PASSWORD" ,
"enabled" : true ,
"defaultAction" : false ,
"priority" : 30 ,
"config" : { }
} ,
{
"alias" : "UPDATE_PROFILE" ,
"name" : "Update Profile" ,
"providerId" : "UPDATE_PROFILE" ,
"enabled" : true ,
"defaultAction" : false ,
"priority" : 40 ,
"config" : { }
} ,
{
"alias" : "VERIFY_EMAIL" ,
"name" : "Verify Email" ,
"providerId" : "VERIFY_EMAIL" ,
"enabled" : true ,
"defaultAction" : false ,
"priority" : 50 ,
"config" : { }
} ,
{
"alias" : "delete_account" ,
"name" : "Delete Account" ,
"providerId" : "delete_account" ,
"enabled" : false ,
"defaultAction" : false ,
"priority" : 60 ,
"config" : { }
} ,
2024-07-28 17:46:07 +02:00
{
"alias" : "webauthn-register" ,
"name" : "Webauthn Register" ,
"providerId" : "webauthn-register" ,
"enabled" : true ,
"defaultAction" : false ,
"priority" : 70 ,
"config" : { }
} ,
{
"alias" : "webauthn-register-passwordless" ,
"name" : "Webauthn Register Passwordless" ,
"providerId" : "webauthn-register-passwordless" ,
"enabled" : true ,
"defaultAction" : false ,
"priority" : 80 ,
"config" : { }
} ,
{
"alias" : "VERIFY_PROFILE" ,
"name" : "Verify Profile" ,
"providerId" : "VERIFY_PROFILE" ,
"enabled" : true ,
"defaultAction" : false ,
"priority" : 90 ,
"config" : { }
} ,
{
"alias" : "delete_credential" ,
"name" : "Delete Credential" ,
"providerId" : "delete_credential" ,
"enabled" : true ,
"defaultAction" : false ,
"priority" : 100 ,
"config" : { }
} ,
2024-07-04 12:42:13 +02:00
{
"alias" : "update_user_locale" ,
"name" : "Update User Locale" ,
"providerId" : "update_user_locale" ,
"enabled" : true ,
"defaultAction" : false ,
"priority" : 1000 ,
"config" : { }
}
] ,
"browserFlow" : "browser" ,
"registrationFlow" : "registration" ,
"directGrantFlow" : "direct grant" ,
"resetCredentialsFlow" : "reset credentials" ,
"clientAuthenticationFlow" : "clients" ,
"dockerAuthenticationFlow" : "docker auth" ,
2024-07-28 17:46:07 +02:00
"firstBrokerLoginFlow" : "first broker login" ,
2024-07-04 12:42:13 +02:00
"attributes" : {
"cibaBackchannelTokenDeliveryMode" : "poll" ,
"cibaExpiresIn" : "120" ,
"cibaAuthRequestedUserHint" : "login_hint" ,
"parRequestUriLifespan" : "60" ,
2024-07-28 17:46:07 +02:00
"cibaInterval" : "5" ,
"realmReusableOtpCode" : "false"
2024-07-04 12:42:13 +02:00
} ,
2024-07-28 17:46:07 +02:00
"keycloakVersion" : "24.0.5" ,
2024-07-04 12:42:13 +02:00
"userManagedAccessAllowed" : false ,
"clientProfiles" : {
"profiles" : [ ]
} ,
"clientPolicies" : {
"policies" : [ ]
}
}
