| { |
| "id": "quarkus", |
| "realm": "quarkus", |
| "notBefore": 0, |
| "defaultSignatureAlgorithm": "RS256", |
| "revokeRefreshToken": false, |
| "refreshTokenMaxReuse": 0, |
| "accessTokenLifespan": 300, |
| "accessTokenLifespanForImplicitFlow": 900, |
| "ssoSessionIdleTimeout": 1800, |
| "ssoSessionMaxLifespan": 36000, |
| "ssoSessionIdleTimeoutRememberMe": 0, |
| "ssoSessionMaxLifespanRememberMe": 0, |
| "offlineSessionIdleTimeout": 2592000, |
| "offlineSessionMaxLifespanEnabled": false, |
| "offlineSessionMaxLifespan": 5184000, |
| "clientSessionIdleTimeout": 0, |
| "clientSessionMaxLifespan": 0, |
| "clientOfflineSessionIdleTimeout": 0, |
| "clientOfflineSessionMaxLifespan": 0, |
| "accessCodeLifespan": 60, |
| "accessCodeLifespanUserAction": 300, |
| "accessCodeLifespanLogin": 1800, |
| "actionTokenGeneratedByAdminLifespan": 43200, |
| "actionTokenGeneratedByUserLifespan": 300, |
| "oauth2DeviceCodeLifespan": 600, |
| "oauth2DevicePollingInterval": 5, |
| "enabled": true, |
| "sslRequired": "external", |
| "registrationAllowed": false, |
| "registrationEmailAsUsername": false, |
| "rememberMe": false, |
| "verifyEmail": false, |
| "loginWithEmailAllowed": true, |
| "duplicateEmailsAllowed": false, |
| "resetPasswordAllowed": false, |
| "editUsernameAllowed": false, |
| "bruteForceProtected": false, |
| "permanentLockout": false, |
| "maxFailureWaitSeconds": 900, |
| "minimumQuickLoginWaitSeconds": 60, |
| "waitIncrementSeconds": 60, |
| "quickLoginCheckMilliSeconds": 1000, |
| "maxDeltaTimeSeconds": 43200, |
| "failureFactor": 30, |
| "roles": { |
| "realm": [ |
| { |
| "id": "ebf54dcb-1fe5-49f0-a4a7-c2e96ffe1129", |
| "name": "default-roles-quarkus", |
| "description": "${role_default-roles}", |
| "composite": true, |
| "composites": { |
| "realm": [ |
| "offline_access", |
| "uma_authorization" |
| ], |
| "client": { |
| "account": [ |
| "view-profile", |
| "manage-account" |
| ] |
| } |
| }, |
| "clientRole": false, |
| "containerId": "quarkus", |
| "attributes": {} |
| }, |
| { |
| "id": "2c01a1d8-8ad4-42b0-b5fb-9fd4d7ef161a", |
| "name": "offline_access", |
| "description": "${role_offline-access}", |
| "composite": false, |
| "clientRole": false, |
| "containerId": "quarkus", |
| "attributes": {} |
| }, |
| { |
| "id": "fc8afda2-b45a-4dac-af14-7d6e492a03bc", |
| "name": "uma_authorization", |
| "description": "${role_uma_authorization}", |
| "composite": false, |
| "clientRole": false, |
| "containerId": "quarkus", |
| "attributes": {} |
| }, |
| { |
| "id": "ce6a0e7d-9cd7-440b-a489-8a145c55e829", |
| "name": "admin-role", |
| "composite": false, |
| "clientRole": false, |
| "containerId": "quarkus", |
| "attributes": {} |
| }, |
| { |
| "id": "7dc16d79-419d-4750-b406-1bd4323de04c", |
| "name": "regular-role", |
| "composite": false, |
| "clientRole": false, |
| "containerId": "quarkus", |
| "attributes": {} |
| } |
| ], |
| "client": { |
| "realm-management": [ |
| { |
| "id": "49259f22-6e77-4395-a29d-ed35b380752b", |
| "name": "manage-events", |
| "description": "${role_manage-events}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "cbac7497-cee9-4580-953d-185c8994412c", |
| "attributes": {} |
| }, |
| { |
| "id": "1c218b3d-e31c-4421-bb47-21fdfdefe3f5", |
| "name": "query-users", |
| "description": "${role_query-users}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "cbac7497-cee9-4580-953d-185c8994412c", |
| "attributes": {} |
| }, |
| { |
| "id": "368d2354-f327-492e-ae98-0731aee18392", |
| "name": "create-client", |
| "description": "${role_create-client}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "cbac7497-cee9-4580-953d-185c8994412c", |
| "attributes": {} |
| }, |
| { |
| "id": "954d2f1e-f393-43af-a259-6942bbd5571f", |
| "name": "manage-realm", |
| "description": "${role_manage-realm}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "cbac7497-cee9-4580-953d-185c8994412c", |
| "attributes": {} |
| }, |
| { |
| "id": "9e890d18-1e93-4c40-ab6f-21475cbabf28", |
| "name": "impersonation", |
| "description": "${role_impersonation}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "cbac7497-cee9-4580-953d-185c8994412c", |
| "attributes": {} |
| }, |
| { |
| "id": "e2d6ea06-ef21-4ff1-a383-69121d46ec17", |
| "name": "manage-authorization", |
| "description": "${role_manage-authorization}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "cbac7497-cee9-4580-953d-185c8994412c", |
| "attributes": {} |
| }, |
| { |
| "id": "08cd9f9b-0699-47e8-963c-7d18f7c4cd08", |
| "name": "query-clients", |
| "description": "${role_query-clients}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "cbac7497-cee9-4580-953d-185c8994412c", |
| "attributes": {} |
| }, |
| { |
| "id": "c898f7d3-1da2-4740-8f0d-a089bc58ffb5", |
| "name": "manage-clients", |
| "description": "${role_manage-clients}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "cbac7497-cee9-4580-953d-185c8994412c", |
| "attributes": {} |
| }, |
| { |
| "id": "821c8ba7-bc71-406b-b21d-7d19146a4664", |
| "name": "view-users", |
| "description": "${role_view-users}", |
| "composite": true, |
| "composites": { |
| "client": { |
| "realm-management": [ |
| "query-users", |
| "query-groups" |
| ] |
| } |
| }, |
| "clientRole": true, |
| "containerId": "cbac7497-cee9-4580-953d-185c8994412c", |
| "attributes": {} |
| }, |
| { |
| "id": "34dba8ff-1df9-4d19-9178-7257b47e0a0d", |
| "name": "query-groups", |
| "description": "${role_query-groups}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "cbac7497-cee9-4580-953d-185c8994412c", |
| "attributes": {} |
| }, |
| { |
| "id": "f39e91ed-7c4f-43ad-855a-f317e5a90eab", |
| "name": "query-realms", |
| "description": "${role_query-realms}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "cbac7497-cee9-4580-953d-185c8994412c", |
| "attributes": {} |
| }, |
| { |
| "id": "40b97d13-3b7e-4391-9043-8cc5cd8bdc69", |
| "name": "view-identity-providers", |
| "description": "${role_view-identity-providers}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "cbac7497-cee9-4580-953d-185c8994412c", |
| "attributes": {} |
| }, |
| { |
| "id": "8d5a6b1c-9ad0-4684-8240-a610d518b6f5", |
| "name": "view-realm", |
| "description": "${role_view-realm}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "cbac7497-cee9-4580-953d-185c8994412c", |
| "attributes": {} |
| }, |
| { |
| "id": "dc26622e-0b3f-441a-b5d5-42cdaa3c206b", |
| "name": "realm-admin", |
| "description": "${role_realm-admin}", |
| "composite": true, |
| "composites": { |
| "client": { |
| "realm-management": [ |
| "manage-events", |
| "query-users", |
| "create-client", |
| "manage-realm", |
| "query-clients", |
| "impersonation", |
| "manage-authorization", |
| "manage-clients", |
| "view-users", |
| "query-groups", |
| "view-identity-providers", |
| "query-realms", |
| "view-realm", |
| "view-authorization", |
| "view-clients", |
| "manage-identity-providers", |
| "view-events", |
| "manage-users" |
| ] |
| } |
| }, |
| "clientRole": true, |
| "containerId": "cbac7497-cee9-4580-953d-185c8994412c", |
| "attributes": {} |
| }, |
| { |
| "id": "28255d42-d72b-4d82-b364-1b92eeff90da", |
| "name": "view-authorization", |
| "description": "${role_view-authorization}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "cbac7497-cee9-4580-953d-185c8994412c", |
| "attributes": {} |
| }, |
| { |
| "id": "c90e5949-f113-4db3-9b0c-0c2d85741f07", |
| "name": "view-clients", |
| "description": "${role_view-clients}", |
| "composite": true, |
| "composites": { |
| "client": { |
| "realm-management": [ |
| "query-clients" |
| ] |
| } |
| }, |
| "clientRole": true, |
| "containerId": "cbac7497-cee9-4580-953d-185c8994412c", |
| "attributes": {} |
| }, |
| { |
| "id": "3eb1682d-4001-4ab3-91eb-52074c970e81", |
| "name": "manage-identity-providers", |
| "description": "${role_manage-identity-providers}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "cbac7497-cee9-4580-953d-185c8994412c", |
| "attributes": {} |
| }, |
| { |
| "id": "fc2cc347-09e1-449e-8808-32e53081c266", |
| "name": "view-events", |
| "description": "${role_view-events}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "cbac7497-cee9-4580-953d-185c8994412c", |
| "attributes": {} |
| }, |
| { |
| "id": "4991915a-4e2a-44e8-bec6-11b2c9724c6a", |
| "name": "manage-users", |
| "description": "${role_manage-users}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "cbac7497-cee9-4580-953d-185c8994412c", |
| "attributes": {} |
| } |
| ], |
| "security-admin-console": [], |
| "admin-cli": [], |
| "account-console": [], |
| "broker": [ |
| { |
| "id": "75159b19-48f9-45d8-abb8-e0d294e20803", |
| "name": "read-token", |
| "description": "${role_read-token}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "f03d9f81-66fd-4867-b189-05df26abfa67", |
| "attributes": {} |
| } |
| ], |
| "account": [ |
| { |
| "id": "cb02b1d7-bc3c-42ff-8622-ccb85b27dbd8", |
| "name": "view-consent", |
| "description": "${role_view-consent}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "4006c66d-5ce2-43ec-bcd3-2d013d8e561f", |
| "attributes": {} |
| }, |
| { |
| "id": "42cbb725-006d-4c55-b6cc-f51ee2bc0a5b", |
| "name": "manage-consent", |
| "description": "${role_manage-consent}", |
| "composite": true, |
| "composites": { |
| "client": { |
| "account": [ |
| "view-consent" |
| ] |
| } |
| }, |
| "clientRole": true, |
| "containerId": "4006c66d-5ce2-43ec-bcd3-2d013d8e561f", |
| "attributes": {} |
| }, |
| { |
| "id": "2c29d9e8-101f-448c-97af-4ad7008b3ed4", |
| "name": "delete-account", |
| "description": "${role_delete-account}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "4006c66d-5ce2-43ec-bcd3-2d013d8e561f", |
| "attributes": {} |
| }, |
| { |
| "id": "92bd67a3-41e5-4710-9e7c-bf1723e66409", |
| "name": "manage-account-links", |
| "description": "${role_manage-account-links}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "4006c66d-5ce2-43ec-bcd3-2d013d8e561f", |
| "attributes": {} |
| }, |
| { |
| "id": "21f1cd48-e0e7-4b17-a2ee-9fc721352a9b", |
| "name": "view-profile", |
| "description": "${role_view-profile}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "4006c66d-5ce2-43ec-bcd3-2d013d8e561f", |
| "attributes": {} |
| }, |
| { |
| "id": "f395da29-ddfb-4132-a2d3-737b32355057", |
| "name": "view-applications", |
| "description": "${role_view-applications}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "4006c66d-5ce2-43ec-bcd3-2d013d8e561f", |
| "attributes": {} |
| }, |
| { |
| "id": "8ba333a5-d08e-4b22-8500-7473cca4f3c9", |
| "name": "manage-account", |
| "description": "${role_manage-account}", |
| "composite": true, |
| "composites": { |
| "client": { |
| "account": [ |
| "manage-account-links" |
| ] |
| } |
| }, |
| "clientRole": true, |
| "containerId": "4006c66d-5ce2-43ec-bcd3-2d013d8e561f", |
| "attributes": {} |
| } |
| ], |
| "quarkus-client": [] |
| } |
| }, |
| "groups": [], |
| "defaultRole": { |
| "id": "ebf54dcb-1fe5-49f0-a4a7-c2e96ffe1129", |
| "name": "default-roles-quarkus", |
| "description": "${role_default-roles}", |
| "composite": true, |
| "clientRole": false, |
| "containerId": "quarkus" |
| }, |
| "requiredCredentials": [ |
| "password" |
| ], |
| "otpPolicyType": "totp", |
| "otpPolicyAlgorithm": "HmacSHA1", |
| "otpPolicyInitialCounter": 0, |
| "otpPolicyDigits": 6, |
| "otpPolicyLookAheadWindow": 1, |
| "otpPolicyPeriod": 30, |
| "otpSupportedApplications": [ |
| "FreeOTP", |
| "Google Authenticator" |
| ], |
| "webAuthnPolicyRpEntityName": "keycloak", |
| "webAuthnPolicySignatureAlgorithms": [ |
| "ES256" |
| ], |
| "webAuthnPolicyRpId": "", |
| "webAuthnPolicyAttestationConveyancePreference": "not specified", |
| "webAuthnPolicyAuthenticatorAttachment": "not specified", |
| "webAuthnPolicyRequireResidentKey": "not specified", |
| "webAuthnPolicyUserVerificationRequirement": "not specified", |
| "webAuthnPolicyCreateTimeout": 0, |
| "webAuthnPolicyAvoidSameAuthenticatorRegister": false, |
| "webAuthnPolicyAcceptableAaguids": [], |
| "webAuthnPolicyPasswordlessRpEntityName": "keycloak", |
| "webAuthnPolicyPasswordlessSignatureAlgorithms": [ |
| "ES256" |
| ], |
| "webAuthnPolicyPasswordlessRpId": "", |
| "webAuthnPolicyPasswordlessAttestationConveyancePreference": "not specified", |
| "webAuthnPolicyPasswordlessAuthenticatorAttachment": "not specified", |
| "webAuthnPolicyPasswordlessRequireResidentKey": "not specified", |
| "webAuthnPolicyPasswordlessUserVerificationRequirement": "not specified", |
| "webAuthnPolicyPasswordlessCreateTimeout": 0, |
| "webAuthnPolicyPasswordlessAvoidSameAuthenticatorRegister": false, |
| "webAuthnPolicyPasswordlessAcceptableAaguids": [], |
| "scopeMappings": [ |
| { |
| "clientScope": "offline_access", |
| "roles": [ |
| "offline_access" |
| ] |
| } |
| ], |
| "clientScopeMappings": { |
| "account": [ |
| { |
| "client": "account-console", |
| "roles": [ |
| "manage-account" |
| ] |
| } |
| ] |
| }, |
| "clients": [ |
| { |
| "id": "4006c66d-5ce2-43ec-bcd3-2d013d8e561f", |
| "clientId": "account", |
| "name": "${client_account}", |
| "rootUrl": "${authBaseUrl}", |
| "baseUrl": "/realms/quarkus/account/", |
| "surrogateAuthRequired": false, |
| "enabled": true, |
| "alwaysDisplayInConsole": false, |
| "clientAuthenticatorType": "client-secret", |
| "redirectUris": [ |
| "/realms/quarkus/account/*" |
| ], |
| "webOrigins": [], |
| "notBefore": 0, |
| "bearerOnly": false, |
| "consentRequired": false, |
| "standardFlowEnabled": true, |
| "implicitFlowEnabled": false, |
| "directAccessGrantsEnabled": false, |
| "serviceAccountsEnabled": false, |
| "publicClient": true, |
| "frontchannelLogout": false, |
| "protocol": "openid-connect", |
| "attributes": {}, |
| "authenticationFlowBindingOverrides": {}, |
| "fullScopeAllowed": false, |
| "nodeReRegistrationTimeout": 0, |
| "defaultClientScopes": [ |
| "web-origins", |
| "acr", |
| "roles", |
| "profile", |
| "email" |
| ], |
| "optionalClientScopes": [ |
| "address", |
| "phone", |
| "offline_access", |
| "microprofile-jwt" |
| ] |
| }, |
| { |
| "id": "923be8bf-1125-4bf2-a054-bf99f03b39af", |
| "clientId": "account-console", |
| "name": "${client_account-console}", |
| "rootUrl": "${authBaseUrl}", |
| "baseUrl": "/realms/quarkus/account/", |
| "surrogateAuthRequired": false, |
| "enabled": true, |
| "alwaysDisplayInConsole": false, |
| "clientAuthenticatorType": "client-secret", |
| "redirectUris": [ |
| "/realms/quarkus/account/*" |
| ], |
| "webOrigins": [], |
| "notBefore": 0, |
| "bearerOnly": false, |
| "consentRequired": false, |
| "standardFlowEnabled": true, |
| "implicitFlowEnabled": false, |
| "directAccessGrantsEnabled": false, |
| "serviceAccountsEnabled": false, |
| "publicClient": true, |
| "frontchannelLogout": false, |
| "protocol": "openid-connect", |
| "attributes": { |
| "pkce.code.challenge.method": "S256" |
| }, |
| "authenticationFlowBindingOverrides": {}, |
| "fullScopeAllowed": false, |
| "nodeReRegistrationTimeout": 0, |
| "protocolMappers": [ |
| { |
| "id": "becce021-422f-4b5f-b91b-b7c8b5f18507", |
| "name": "audience resolve", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-audience-resolve-mapper", |
| "consentRequired": false, |
| "config": {} |
| } |
| ], |
| "defaultClientScopes": [ |
| "web-origins", |
| "acr", |
| "roles", |
| "profile", |
| "email" |
| ], |
| "optionalClientScopes": [ |
| "address", |
| "phone", |
| "offline_access", |
| "microprofile-jwt" |
| ] |
| }, |
| { |
| "id": "0ae37ff8-a9e5-48de-8d82-1233ce92c201", |
| "clientId": "admin-cli", |
| "name": "${client_admin-cli}", |
| "surrogateAuthRequired": false, |
| "enabled": true, |
| "alwaysDisplayInConsole": false, |
| "clientAuthenticatorType": "client-secret", |
| "redirectUris": [], |
| "webOrigins": [], |
| "notBefore": 0, |
| "bearerOnly": false, |
| "consentRequired": false, |
| "standardFlowEnabled": false, |
| "implicitFlowEnabled": false, |
| "directAccessGrantsEnabled": true, |
| "serviceAccountsEnabled": false, |
| "publicClient": true, |
| "frontchannelLogout": false, |
| "protocol": "openid-connect", |
| "attributes": {}, |
| "authenticationFlowBindingOverrides": {}, |
| "fullScopeAllowed": false, |
| "nodeReRegistrationTimeout": 0, |
| "defaultClientScopes": [ |
| "web-origins", |
| "acr", |
| "roles", |
| "profile", |
| "email" |
| ], |
| "optionalClientScopes": [ |
| "address", |
| "phone", |
| "offline_access", |
| "microprofile-jwt" |
| ] |
| }, |
| { |
| "id": "f03d9f81-66fd-4867-b189-05df26abfa67", |
| "clientId": "broker", |
| "name": "${client_broker}", |
| "surrogateAuthRequired": false, |
| "enabled": true, |
| "alwaysDisplayInConsole": false, |
| "clientAuthenticatorType": "client-secret", |
| "redirectUris": [], |
| "webOrigins": [], |
| "notBefore": 0, |
| "bearerOnly": true, |
| "consentRequired": false, |
| "standardFlowEnabled": true, |
| "implicitFlowEnabled": false, |
| "directAccessGrantsEnabled": false, |
| "serviceAccountsEnabled": false, |
| "publicClient": false, |
| "frontchannelLogout": false, |
| "protocol": "openid-connect", |
| "attributes": {}, |
| "authenticationFlowBindingOverrides": {}, |
| "fullScopeAllowed": false, |
| "nodeReRegistrationTimeout": 0, |
| "defaultClientScopes": [ |
| "web-origins", |
| "acr", |
| "roles", |
| "profile", |
| "email" |
| ], |
| "optionalClientScopes": [ |
| "address", |
| "phone", |
| "offline_access", |
| "microprofile-jwt" |
| ] |
| }, |
| { |
| "id": "ce82d5b0-f1d4-45df-a1dd-31b910f4cb48", |
| "clientId": "quarkus-client", |
| "rootUrl": "http://localhost:8080", |
| "adminUrl": "http://localhost:8080", |
| "surrogateAuthRequired": false, |
| "enabled": true, |
| "alwaysDisplayInConsole": false, |
| "clientAuthenticatorType": "client-secret", |
| "secret": "**********", |
| "redirectUris": [ |
| "http://localhost:8080/*" |
| ], |
| "webOrigins": [ |
| "http://localhost:8080" |
| ], |
| "notBefore": 0, |
| "bearerOnly": false, |
| "consentRequired": false, |
| "standardFlowEnabled": true, |
| "implicitFlowEnabled": false, |
| "directAccessGrantsEnabled": true, |
| "serviceAccountsEnabled": false, |
| "publicClient": false, |
| "frontchannelLogout": false, |
| "protocol": "openid-connect", |
| "attributes": { |
| "saml.force.post.binding": "false", |
| "saml.multivalued.roles": "false", |
| "frontchannel.logout.session.required": "false", |
| "oauth2.device.authorization.grant.enabled": "false", |
| "backchannel.logout.revoke.offline.tokens": "false", |
| "saml.server.signature.keyinfo.ext": "false", |
| "use.refresh.tokens": "true", |
| "oidc.ciba.grant.enabled": "false", |
| "backchannel.logout.session.required": "true", |
| "client_credentials.use_refresh_token": "false", |
| "require.pushed.authorization.requests": "false", |
| "saml.client.signature": "false", |
| "saml.allow.ecp.flow": "false", |
| "id.token.as.detached.signature": "false", |
| "saml.assertion.signature": "false", |
| "client.secret.creation.time": "1653307997", |
| "saml.encrypt": "false", |
| "saml.server.signature": "false", |
| "exclude.session.state.from.auth.response": "false", |
| "saml.artifact.binding": "false", |
| "saml_force_name_id_format": "false", |
| "acr.loa.map": "{}", |
| "tls.client.certificate.bound.access.tokens": "false", |
| "saml.authnstatement": "false", |
| "display.on.consent.screen": "false", |
| "token.response.type.bearer.lower-case": "false", |
| "saml.onetimeuse.condition": "false" |
| }, |
| "authenticationFlowBindingOverrides": {}, |
| "fullScopeAllowed": true, |
| "nodeReRegistrationTimeout": -1, |
| "defaultClientScopes": [ |
| "web-origins", |
| "acr", |
| "roles", |
| "profile", |
| "email" |
| ], |
| "optionalClientScopes": [ |
| "address", |
| "phone", |
| "offline_access", |
| "microprofile-jwt" |
| ] |
| }, |
| { |
| "id": "cbac7497-cee9-4580-953d-185c8994412c", |
| "clientId": "realm-management", |
| "name": "${client_realm-management}", |
| "surrogateAuthRequired": false, |
| "enabled": true, |
| "alwaysDisplayInConsole": false, |
| "clientAuthenticatorType": "client-secret", |
| "redirectUris": [], |
| "webOrigins": [], |
| "notBefore": 0, |
| "bearerOnly": true, |
| "consentRequired": false, |
| "standardFlowEnabled": true, |
| "implicitFlowEnabled": false, |
| "directAccessGrantsEnabled": false, |
| "serviceAccountsEnabled": false, |
| "publicClient": false, |
| "frontchannelLogout": false, |
| "protocol": "openid-connect", |
| "attributes": {}, |
| "authenticationFlowBindingOverrides": {}, |
| "fullScopeAllowed": false, |
| "nodeReRegistrationTimeout": 0, |
| "defaultClientScopes": [ |
| "web-origins", |
| "acr", |
| "roles", |
| "profile", |
| "email" |
| ], |
| "optionalClientScopes": [ |
| "address", |
| "phone", |
| "offline_access", |
| "microprofile-jwt" |
| ] |
| }, |
| { |
| "id": "85d60c30-0bc8-407a-8e25-e9f1a87a1fd8", |
| "clientId": "security-admin-console", |
| "name": "${client_security-admin-console}", |
| "rootUrl": "${authAdminUrl}", |
| "baseUrl": "/admin/quarkus/console/", |
| "surrogateAuthRequired": false, |
| "enabled": true, |
| "alwaysDisplayInConsole": false, |
| "clientAuthenticatorType": "client-secret", |
| "redirectUris": [ |
| "/admin/quarkus/console/*" |
| ], |
| "webOrigins": [ |
| "+" |
| ], |
| "notBefore": 0, |
| "bearerOnly": false, |
| "consentRequired": false, |
| "standardFlowEnabled": true, |
| "implicitFlowEnabled": false, |
| "directAccessGrantsEnabled": false, |
| "serviceAccountsEnabled": false, |
| "publicClient": true, |
| "frontchannelLogout": false, |
| "protocol": "openid-connect", |
| "attributes": { |
| "pkce.code.challenge.method": "S256" |
| }, |
| "authenticationFlowBindingOverrides": {}, |
| "fullScopeAllowed": false, |
| "nodeReRegistrationTimeout": 0, |
| "protocolMappers": [ |
| { |
| "id": "6bdd7d1f-b9fe-4bd2-b743-f1c31b39a84c", |
| "name": "locale", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "locale", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "locale", |
| "jsonType.label": "String" |
| } |
| } |
| ], |
| "defaultClientScopes": [ |
| "web-origins", |
| "acr", |
| "roles", |
| "profile", |
| "email" |
| ], |
| "optionalClientScopes": [ |
| "address", |
| "phone", |
| "offline_access", |
| "microprofile-jwt" |
| ] |
| } |
| ], |
| "clientScopes": [ |
| { |
| "id": "465efdfe-160f-41f0-8945-d3c1b7938145", |
| "name": "web-origins", |
| "description": "OpenID Connect scope for add allowed web origins to the access token", |
| "protocol": "openid-connect", |
| "attributes": { |
| "include.in.token.scope": "false", |
| "display.on.consent.screen": "false", |
| "consent.screen.text": "" |
| }, |
| "protocolMappers": [ |
| { |
| "id": "0d4e5717-dd58-4ce4-a3a3-504024bf3999", |
| "name": "allowed web origins", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-allowed-origins-mapper", |
| "consentRequired": false, |
| "config": {} |
| } |
| ] |
| }, |
| { |
| "id": "fc9b508d-9085-479d-b649-39e6b9a6b058", |
| "name": "acr", |
| "description": "OpenID Connect scope for add acr (authentication context class reference) to the token", |
| "protocol": "openid-connect", |
| "attributes": { |
| "include.in.token.scope": "false", |
| "display.on.consent.screen": "false" |
| }, |
| "protocolMappers": [ |
| { |
| "id": "6db81748-59e7-4fb8-9a69-76412d696e14", |
| "name": "acr loa level", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-acr-mapper", |
| "consentRequired": false, |
| "config": { |
| "id.token.claim": "true", |
| "access.token.claim": "true" |
| } |
| } |
| ] |
| }, |
| { |
| "id": "fa51f4bb-5c31-4ea0-9d61-615e06db1c32", |
| "name": "microprofile-jwt", |
| "description": "Microprofile - JWT built-in scope", |
| "protocol": "openid-connect", |
| "attributes": { |
| "include.in.token.scope": "true", |
| "display.on.consent.screen": "false" |
| }, |
| "protocolMappers": [ |
| { |
| "id": "fe2ff67c-3df0-4739-a7c1-8c70d9b37953", |
| "name": "groups", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-realm-role-mapper", |
| "consentRequired": false, |
| "config": { |
| "multivalued": "true", |
| "user.attribute": "foo", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "groups", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "ec46bf28-f472-4d2a-a7e6-a739e7b71487", |
| "name": "upn", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-property-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "username", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "upn", |
| "jsonType.label": "String" |
| } |
| } |
| ] |
| }, |
| { |
| "id": "f3d54a64-e48c-4e4d-94d9-0be2198b506d", |
| "name": "offline_access", |
| "description": "OpenID Connect built-in scope: offline_access", |
| "protocol": "openid-connect", |
| "attributes": { |
| "consent.screen.text": "${offlineAccessScopeConsentText}", |
| "display.on.consent.screen": "true" |
| } |
| }, |
| { |
| "id": "71755e0a-8ebe-41a8-b6c0-42d766c4a184", |
| "name": "email", |
| "description": "OpenID Connect built-in scope: email", |
| "protocol": "openid-connect", |
| "attributes": { |
| "include.in.token.scope": "true", |
| "display.on.consent.screen": "true", |
| "consent.screen.text": "${emailScopeConsentText}" |
| }, |
| "protocolMappers": [ |
| { |
| "id": "b12e8163-1dea-4cb1-ad4d-c33a910b671e", |
| "name": "email", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-property-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "email", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "email", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "895a0b4e-9a5d-461d-a204-8234a0bfe9b3", |
| "name": "email verified", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-property-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "emailVerified", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "email_verified", |
| "jsonType.label": "boolean" |
| } |
| } |
| ] |
| }, |
| { |
| "id": "fb121785-d0d8-46ad-91fe-d09cc5751d7e", |
| "name": "roles", |
| "description": "OpenID Connect scope for add user roles to the access token", |
| "protocol": "openid-connect", |
| "attributes": { |
| "include.in.token.scope": "false", |
| "display.on.consent.screen": "true", |
| "consent.screen.text": "${rolesScopeConsentText}" |
| }, |
| "protocolMappers": [ |
| { |
| "id": "77b8d57b-4a89-44e8-834f-ec7135ab248c", |
| "name": "audience resolve", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-audience-resolve-mapper", |
| "consentRequired": false, |
| "config": {} |
| }, |
| { |
| "id": "b912b61a-6680-4f07-aab8-d6b0d2020422", |
| "name": "realm roles", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-realm-role-mapper", |
| "consentRequired": false, |
| "config": { |
| "user.attribute": "foo", |
| "access.token.claim": "true", |
| "claim.name": "realm_access.roles", |
| "jsonType.label": "String", |
| "multivalued": "true" |
| } |
| }, |
| { |
| "id": "fb58bb7f-51bc-40b2-96b3-9fa12f917e13", |
| "name": "client roles", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-client-role-mapper", |
| "consentRequired": false, |
| "config": { |
| "user.attribute": "foo", |
| "access.token.claim": "true", |
| "claim.name": "resource_access.${client_id}.roles", |
| "jsonType.label": "String", |
| "multivalued": "true" |
| } |
| } |
| ] |
| }, |
| { |
| "id": "761c0d38-5846-4935-a78a-64ee1d614a50", |
| "name": "phone", |
| "description": "OpenID Connect built-in scope: phone", |
| "protocol": "openid-connect", |
| "attributes": { |
| "include.in.token.scope": "true", |
| "display.on.consent.screen": "true", |
| "consent.screen.text": "${phoneScopeConsentText}" |
| }, |
| "protocolMappers": [ |
| { |
| "id": "5faf2872-9c0e-4d55-96b3-d924e0258a81", |
| "name": "phone number verified", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "phoneNumberVerified", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "phone_number_verified", |
| "jsonType.label": "boolean" |
| } |
| }, |
| { |
| "id": "a4b13aed-a4ae-4f4e-b4d1-c20beead8478", |
| "name": "phone number", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "phoneNumber", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "phone_number", |
| "jsonType.label": "String" |
| } |
| } |
| ] |
| }, |
| { |
| "id": "d4d5cd56-4fe3-4077-946d-4abc81c9ed46", |
| "name": "address", |
| "description": "OpenID Connect built-in scope: address", |
| "protocol": "openid-connect", |
| "attributes": { |
| "include.in.token.scope": "true", |
| "display.on.consent.screen": "true", |
| "consent.screen.text": "${addressScopeConsentText}" |
| }, |
| "protocolMappers": [ |
| { |
| "id": "41357547-5fe2-47e8-a17d-d2da53705e0f", |
| "name": "address", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-address-mapper", |
| "consentRequired": false, |
| "config": { |
| "user.attribute.formatted": "formatted", |
| "user.attribute.country": "country", |
| "user.attribute.postal_code": "postal_code", |
| "userinfo.token.claim": "true", |
| "user.attribute.street": "street", |
| "id.token.claim": "true", |
| "user.attribute.region": "region", |
| "access.token.claim": "true", |
| "user.attribute.locality": "locality" |
| } |
| } |
| ] |
| }, |
| { |
| "id": "1bb64491-1703-4eeb-84e8-6da30a48f118", |
| "name": "role_list", |
| "description": "SAML role list", |
| "protocol": "saml", |
| "attributes": { |
| "consent.screen.text": "${samlRoleListScopeConsentText}", |
| "display.on.consent.screen": "true" |
| }, |
| "protocolMappers": [ |
| { |
| "id": "d788b1ee-3079-43eb-adcf-d89c084e6e93", |
| "name": "role list", |
| "protocol": "saml", |
| "protocolMapper": "saml-role-list-mapper", |
| "consentRequired": false, |
| "config": { |
| "single": "false", |
| "attribute.nameformat": "Basic", |
| "attribute.name": "Role" |
| } |
| } |
| ] |
| }, |
| { |
| "id": "076d39d7-2c44-4a63-b61d-d2645607a587", |
| "name": "profile", |
| "description": "OpenID Connect built-in scope: profile", |
| "protocol": "openid-connect", |
| "attributes": { |
| "include.in.token.scope": "true", |
| "display.on.consent.screen": "true", |
| "consent.screen.text": "${profileScopeConsentText}" |
| }, |
| "protocolMappers": [ |
| { |
| "id": "7f32d119-5689-41a1-9c74-52c6ae3f061f", |
| "name": "locale", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "locale", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "locale", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "faf98aa1-c506-4b72-9fb6-64da3407e4f6", |
| "name": "picture", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "picture", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "picture", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "db55d1c2-d352-43e0-bf1e-9a4a371de7fe", |
| "name": "nickname", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "nickname", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "nickname", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "1fdf3fa0-08a2-41a4-b8fc-aa1d431951c1", |
| "name": "middle name", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "middleName", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "middle_name", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "f14623d5-7e48-430c-91a7-12cc8d677d99", |
| "name": "updated at", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "updatedAt", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "updated_at", |
| "jsonType.label": "long" |
| } |
| }, |
| { |
| "id": "55e5baae-eafb-4285-a4b0-2038f059127d", |
| "name": "gender", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "gender", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "gender", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "df2e1ee6-9766-455b-832a-f5634f4dc76f", |
| "name": "profile", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "profile", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "profile", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "f4c8a16b-218e-4887-806c-8ed1103177ec", |
| "name": "full name", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-full-name-mapper", |
| "consentRequired": false, |
| "config": { |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "userinfo.token.claim": "true" |
| } |
| }, |
| { |
| "id": "e11aee68-e071-4601-bb9a-780876d0d589", |
| "name": "birthdate", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "birthdate", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "birthdate", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "303bf149-e516-481d-9d45-b96f3d2de55f", |
| "name": "website", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "website", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "website", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "10ba9141-c584-4675-a9bd-5a385e026069", |
| "name": "zoneinfo", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "zoneinfo", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "zoneinfo", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "3448a149-c0b2-4908-b4b2-b6a397a816f5", |
| "name": "username", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-property-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "username", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "preferred_username", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "b3e14476-71b9-421a-85f4-ec2753cd184a", |
| "name": "family name", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-property-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "lastName", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "family_name", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "b3e96f66-8ce5-4582-95ac-33e4d8e24862", |
| "name": "given name", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-property-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "firstName", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "given_name", |
| "jsonType.label": "String" |
| } |
| } |
| ] |
| } |
| ], |
| "defaultDefaultClientScopes": [ |
| "role_list", |
| "profile", |
| "email", |
| "roles", |
| "web-origins", |
| "acr" |
| ], |
| "defaultOptionalClientScopes": [ |
| "offline_access", |
| "address", |
| "phone", |
| "microprofile-jwt" |
| ], |
| "browserSecurityHeaders": { |
| "contentSecurityPolicyReportOnly": "", |
| "xContentTypeOptions": "nosniff", |
| "xRobotsTag": "none", |
| "xFrameOptions": "SAMEORIGIN", |
| "contentSecurityPolicy": "frame-src 'self'; frame-ancestors 'self'; object-src 'none';", |
| "xXSSProtection": "1; mode=block", |
| "strictTransportSecurity": "max-age=31536000; includeSubDomains" |
| }, |
| "smtpServer": {}, |
| "eventsEnabled": false, |
| "eventsListeners": [ |
| "jboss-logging" |
| ], |
| "enabledEventTypes": [], |
| "adminEventsEnabled": false, |
| "adminEventsDetailsEnabled": false, |
| "identityProviders": [], |
| "identityProviderMappers": [], |
| "components": { |
| "org.keycloak.services.clientregistration.policy.ClientRegistrationPolicy": [ |
| { |
| "id": "c1a99615-2282-46f1-85fd-f345f3fac718", |
| "name": "Allowed Protocol Mapper Types", |
| "providerId": "allowed-protocol-mappers", |
| "subType": "anonymous", |
| "subComponents": {}, |
| "config": { |
| "allowed-protocol-mapper-types": [ |
| "saml-user-attribute-mapper", |
| "saml-role-list-mapper", |
| "oidc-usermodel-property-mapper", |
| "saml-user-property-mapper", |
| "oidc-full-name-mapper", |
| "oidc-address-mapper", |
| "oidc-usermodel-attribute-mapper", |
| "oidc-sha256-pairwise-sub-mapper" |
| ] |
| } |
| }, |
| { |
| "id": "7547c52c-3824-4f54-940c-667c2e73a068", |
| "name": "Full Scope Disabled", |
| "providerId": "scope", |
| "subType": "anonymous", |
| "subComponents": {}, |
| "config": {} |
| }, |
| { |
| "id": "383a04ff-65f1-4f94-9f24-ab08c14262c1", |
| "name": "Trusted Hosts", |
| "providerId": "trusted-hosts", |
| "subType": "anonymous", |
| "subComponents": {}, |
| "config": { |
| "host-sending-registration-request-must-match": [ |
| "true" |
| ], |
| "client-uris-must-match": [ |
| "true" |
| ] |
| } |
| }, |
| { |
| "id": "d1f2da92-a604-4d2f-855e-840701a757ac", |
| "name": "Consent Required", |
| "providerId": "consent-required", |
| "subType": "anonymous", |
| "subComponents": {}, |
| "config": {} |
| }, |
| { |
| "id": "55e5a862-9e56-45f3-8581-5de8d6a43252", |
| "name": "Allowed Client Scopes", |
| "providerId": "allowed-client-templates", |
| "subType": "anonymous", |
| "subComponents": {}, |
| "config": { |
| "allow-default-scopes": [ |
| "true" |
| ] |
| } |
| }, |
| { |
| "id": "3e619b7f-4f8b-45a8-b450-7b3ab7e13f9e", |
| "name": "Max Clients Limit", |
| "providerId": "max-clients", |
| "subType": "anonymous", |
| "subComponents": {}, |
| "config": { |
| "max-clients": [ |
| "200" |
| ] |
| } |
| }, |
| { |
| "id": "dcae507b-02a4-4838-a6df-b19959152127", |
| "name": "Allowed Client Scopes", |
| "providerId": "allowed-client-templates", |
| "subType": "authenticated", |
| "subComponents": {}, |
| "config": { |
| "allow-default-scopes": [ |
| "true" |
| ] |
| } |
| }, |
| { |
| "id": "91412b29-28e7-4059-aae9-6508940502c8", |
| "name": "Allowed Protocol Mapper Types", |
| "providerId": "allowed-protocol-mappers", |
| "subType": "authenticated", |
| "subComponents": {}, |
| "config": { |
| "allowed-protocol-mapper-types": [ |
| "oidc-usermodel-attribute-mapper", |
| "oidc-full-name-mapper", |
| "oidc-address-mapper", |
| "saml-user-attribute-mapper", |
| "oidc-usermodel-property-mapper", |
| "saml-user-property-mapper", |
| "saml-role-list-mapper", |
| "oidc-sha256-pairwise-sub-mapper" |
| ] |
| } |
| } |
| ], |
| "org.keycloak.keys.KeyProvider": [ |
| { |
| "id": "4d1741f9-32df-4d05-a582-2ab88b19d5e5", |
| "name": "rsa-enc-generated", |
| "providerId": "rsa-enc-generated", |
| "subComponents": {}, |
| "config": { |
| "priority": [ |
| "100" |
| ], |
| "algorithm": [ |
| "RSA-OAEP" |
| ] |
| } |
| }, |
| { |
| "id": "039cbee3-8d31-46c3-a010-f60ee6d2019a", |
| "name": "rsa-generated", |
| "providerId": "rsa-generated", |
| "subComponents": {}, |
| "config": { |
| "priority": [ |
| "100" |
| ] |
| } |
| }, |
| { |
| "id": "3fb9fc8a-a778-478a-9d00-44b5c3073597", |
| "name": "hmac-generated", |
| "providerId": "hmac-generated", |
| "subComponents": {}, |
| "config": { |
| "priority": [ |
| "100" |
| ], |
| "algorithm": [ |
| "HS256" |
| ] |
| } |
| }, |
| { |
| "id": "83664347-a1f4-4cc9-9607-72a8e12eb262", |
| "name": "aes-generated", |
| "providerId": "aes-generated", |
| "subComponents": {}, |
| "config": { |
| "priority": [ |
| "100" |
| ] |
| } |
| } |
| ] |
| }, |
| "internationalizationEnabled": false, |
| "supportedLocales": [], |
| "authenticationFlows": [ |
| { |
| "id": "21bbf9cd-b5e6-48ca-8942-85558a9a17a9", |
| "alias": "Account verification options", |
| "description": "Method with which to verity the existing account", |
| "providerId": "basic-flow", |
| "topLevel": false, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "idp-email-verification", |
| "authenticatorFlow": false, |
| "requirement": "ALTERNATIVE", |
| "priority": 10, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticatorFlow": true, |
| "requirement": "ALTERNATIVE", |
| "priority": 20, |
| "autheticatorFlow": true, |
| "flowAlias": "Verify Existing Account by Re-authentication", |
| "userSetupAllowed": false |
| } |
| ] |
| }, |
| { |
| "id": "90248a31-9137-4893-9abe-5f5ea6f54778", |
| "alias": "Authentication Options", |
| "description": "Authentication options.", |
| "providerId": "basic-flow", |
| "topLevel": false, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "basic-auth", |
| "authenticatorFlow": false, |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticator": "basic-auth-otp", |
| "authenticatorFlow": false, |
| "requirement": "DISABLED", |
| "priority": 20, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticator": "auth-spnego", |
| "authenticatorFlow": false, |
| "requirement": "DISABLED", |
| "priority": 30, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| } |
| ] |
| }, |
| { |
| "id": "fd09b2d7-a1e7-4ada-a305-4d8a7660011d", |
| "alias": "Browser - Conditional OTP", |
| "description": "Flow to determine if the OTP is required for the authentication", |
| "providerId": "basic-flow", |
| "topLevel": false, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "conditional-user-configured", |
| "authenticatorFlow": false, |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticator": "auth-otp-form", |
| "authenticatorFlow": false, |
| "requirement": "REQUIRED", |
| "priority": 20, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| } |
| ] |
| }, |
| { |
| "id": "36302bef-7970-4600-af9e-33f5774731cf", |
| "alias": "Direct Grant - Conditional OTP", |
| "description": "Flow to determine if the OTP is required for the authentication", |
| "providerId": "basic-flow", |
| "topLevel": false, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "conditional-user-configured", |
| "authenticatorFlow": false, |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticator": "direct-grant-validate-otp", |
| "authenticatorFlow": false, |
| "requirement": "REQUIRED", |
| "priority": 20, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| } |
| ] |
| }, |
| { |
| "id": "36883b9b-25f5-4d49-bf5a-2f3ae1a39806", |
| "alias": "First broker login - Conditional OTP", |
| "description": "Flow to determine if the OTP is required for the authentication", |
| "providerId": "basic-flow", |
| "topLevel": false, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "conditional-user-configured", |
| "authenticatorFlow": false, |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticator": "auth-otp-form", |
| "authenticatorFlow": false, |
| "requirement": "REQUIRED", |
| "priority": 20, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| } |
| ] |
| }, |
| { |
| "id": "179cbb7a-22da-47eb-a4a6-7453280ebc0b", |
| "alias": "Handle Existing Account", |
| "description": "Handle what to do if there is existing account with same email/username like authenticated identity provider", |
| "providerId": "basic-flow", |
| "topLevel": false, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "idp-confirm-link", |
| "authenticatorFlow": false, |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticatorFlow": true, |
| "requirement": "REQUIRED", |
| "priority": 20, |
| "autheticatorFlow": true, |
| "flowAlias": "Account verification options", |
| "userSetupAllowed": false |
| } |
| ] |
| }, |
| { |
| "id": "e9ba1fd4-ffa7-4531-8e10-1b9162b458a4", |
| "alias": "Reset - Conditional OTP", |
| "description": "Flow to determine if the OTP should be reset or not. Set to REQUIRED to force.", |
| "providerId": "basic-flow", |
| "topLevel": false, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "conditional-user-configured", |
| "authenticatorFlow": false, |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticator": "reset-otp", |
| "authenticatorFlow": false, |
| "requirement": "REQUIRED", |
| "priority": 20, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| } |
| ] |
| }, |
| { |
| "id": "96c098f5-612f-43fd-a484-af239a1c8c5a", |
| "alias": "User creation or linking", |
| "description": "Flow for the existing/non-existing user alternatives", |
| "providerId": "basic-flow", |
| "topLevel": false, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticatorConfig": "create unique user config", |
| "authenticator": "idp-create-user-if-unique", |
| "authenticatorFlow": false, |
| "requirement": "ALTERNATIVE", |
| "priority": 10, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticatorFlow": true, |
| "requirement": "ALTERNATIVE", |
| "priority": 20, |
| "autheticatorFlow": true, |
| "flowAlias": "Handle Existing Account", |
| "userSetupAllowed": false |
| } |
| ] |
| }, |
| { |
| "id": "8ac62e6c-b3a3-47a9-a50c-0757908e7f8a", |
| "alias": "Verify Existing Account by Re-authentication", |
| "description": "Reauthentication of existing account", |
| "providerId": "basic-flow", |
| "topLevel": false, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "idp-username-password-form", |
| "authenticatorFlow": false, |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticatorFlow": true, |
| "requirement": "CONDITIONAL", |
| "priority": 20, |
| "autheticatorFlow": true, |
| "flowAlias": "First broker login - Conditional OTP", |
| "userSetupAllowed": false |
| } |
| ] |
| }, |
| { |
| "id": "8407a652-70c1-488c-a6c5-5881f80e2722", |
| "alias": "browser", |
| "description": "browser based authentication", |
| "providerId": "basic-flow", |
| "topLevel": true, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "auth-cookie", |
| "authenticatorFlow": false, |
| "requirement": "ALTERNATIVE", |
| "priority": 10, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticator": "auth-spnego", |
| "authenticatorFlow": false, |
| "requirement": "DISABLED", |
| "priority": 20, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticator": "identity-provider-redirector", |
| "authenticatorFlow": false, |
| "requirement": "ALTERNATIVE", |
| "priority": 25, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticatorFlow": true, |
| "requirement": "ALTERNATIVE", |
| "priority": 30, |
| "autheticatorFlow": true, |
| "flowAlias": "forms", |
| "userSetupAllowed": false |
| } |
| ] |
| }, |
| { |
| "id": "6e9b9071-68f1-45cd-80e9-29699c938a29", |
| "alias": "clients", |
| "description": "Base authentication for clients", |
| "providerId": "client-flow", |
| "topLevel": true, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "client-secret", |
| "authenticatorFlow": false, |
| "requirement": "ALTERNATIVE", |
| "priority": 10, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticator": "client-jwt", |
| "authenticatorFlow": false, |
| "requirement": "ALTERNATIVE", |
| "priority": 20, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticator": "client-secret-jwt", |
| "authenticatorFlow": false, |
| "requirement": "ALTERNATIVE", |
| "priority": 30, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticator": "client-x509", |
| "authenticatorFlow": false, |
| "requirement": "ALTERNATIVE", |
| "priority": 40, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| } |
| ] |
| }, |
| { |
| "id": "09b8c70e-be22-4e18-94a7-90518bdfcff5", |
| "alias": "direct grant", |
| "description": "OpenID Connect Resource Owner Grant", |
| "providerId": "basic-flow", |
| "topLevel": true, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "direct-grant-validate-username", |
| "authenticatorFlow": false, |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticator": "direct-grant-validate-password", |
| "authenticatorFlow": false, |
| "requirement": "REQUIRED", |
| "priority": 20, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticatorFlow": true, |
| "requirement": "CONDITIONAL", |
| "priority": 30, |
| "autheticatorFlow": true, |
| "flowAlias": "Direct Grant - Conditional OTP", |
| "userSetupAllowed": false |
| } |
| ] |
| }, |
| { |
| "id": "5f2b3389-41af-47cf-b248-a4cae3ebf3e0", |
| "alias": "docker auth", |
| "description": "Used by Docker clients to authenticate against the IDP", |
| "providerId": "basic-flow", |
| "topLevel": true, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "docker-http-basic-authenticator", |
| "authenticatorFlow": false, |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| } |
| ] |
| }, |
| { |
| "id": "6cb3a3f8-b2fb-4991-ba7f-02f02a98fc0c", |
| "alias": "first broker login", |
| "description": "Actions taken after first broker login with identity provider account, which is not yet linked to any Keycloak account", |
| "providerId": "basic-flow", |
| "topLevel": true, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticatorConfig": "review profile config", |
| "authenticator": "idp-review-profile", |
| "authenticatorFlow": false, |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticatorFlow": true, |
| "requirement": "REQUIRED", |
| "priority": 20, |
| "autheticatorFlow": true, |
| "flowAlias": "User creation or linking", |
| "userSetupAllowed": false |
| } |
| ] |
| }, |
| { |
| "id": "6f54d106-2edb-445b-b76a-ec933e551835", |
| "alias": "forms", |
| "description": "Username, password, otp and other auth forms.", |
| "providerId": "basic-flow", |
| "topLevel": false, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "auth-username-password-form", |
| "authenticatorFlow": false, |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticatorFlow": true, |
| "requirement": "CONDITIONAL", |
| "priority": 20, |
| "autheticatorFlow": true, |
| "flowAlias": "Browser - Conditional OTP", |
| "userSetupAllowed": false |
| } |
| ] |
| }, |
| { |
| "id": "5d2afda8-338b-4106-8afd-09f1d2d913be", |
| "alias": "http challenge", |
| "description": "An authentication flow based on challenge-response HTTP Authentication Schemes", |
| "providerId": "basic-flow", |
| "topLevel": true, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "no-cookie-redirect", |
| "authenticatorFlow": false, |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticatorFlow": true, |
| "requirement": "REQUIRED", |
| "priority": 20, |
| "autheticatorFlow": true, |
| "flowAlias": "Authentication Options", |
| "userSetupAllowed": false |
| } |
| ] |
| }, |
| { |
| "id": "843959ca-2f55-4847-8b56-e37973ad3ba0", |
| "alias": "registration", |
| "description": "registration flow", |
| "providerId": "basic-flow", |
| "topLevel": true, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "registration-page-form", |
| "authenticatorFlow": true, |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "autheticatorFlow": true, |
| "flowAlias": "registration form", |
| "userSetupAllowed": false |
| } |
| ] |
| }, |
| { |
| "id": "7aa5a276-f7ed-4a4e-a05d-626b2fa44e87", |
| "alias": "registration form", |
| "description": "registration form", |
| "providerId": "form-flow", |
| "topLevel": false, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "registration-user-creation", |
| "authenticatorFlow": false, |
| "requirement": "REQUIRED", |
| "priority": 20, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticator": "registration-profile-action", |
| "authenticatorFlow": false, |
| "requirement": "REQUIRED", |
| "priority": 40, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticator": "registration-password-action", |
| "authenticatorFlow": false, |
| "requirement": "REQUIRED", |
| "priority": 50, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticator": "registration-recaptcha-action", |
| "authenticatorFlow": false, |
| "requirement": "DISABLED", |
| "priority": 60, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| } |
| ] |
| }, |
| { |
| "id": "d67d1756-cbb8-44f5-bea1-15f988fab340", |
| "alias": "reset credentials", |
| "description": "Reset credentials for a user if they forgot their password or something", |
| "providerId": "basic-flow", |
| "topLevel": true, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "reset-credentials-choose-user", |
| "authenticatorFlow": false, |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticator": "reset-credential-email", |
| "authenticatorFlow": false, |
| "requirement": "REQUIRED", |
| "priority": 20, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticator": "reset-password", |
| "authenticatorFlow": false, |
| "requirement": "REQUIRED", |
| "priority": 30, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| }, |
| { |
| "authenticatorFlow": true, |
| "requirement": "CONDITIONAL", |
| "priority": 40, |
| "autheticatorFlow": true, |
| "flowAlias": "Reset - Conditional OTP", |
| "userSetupAllowed": false |
| } |
| ] |
| }, |
| { |
| "id": "9da2be4a-61a4-43a1-8833-e6e0a1ad1e42", |
| "alias": "saml ecp", |
| "description": "SAML ECP Profile Authentication Flow", |
| "providerId": "basic-flow", |
| "topLevel": true, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "http-basic-authenticator", |
| "authenticatorFlow": false, |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "autheticatorFlow": false, |
| "userSetupAllowed": false |
| } |
| ] |
| } |
| ], |
| "authenticatorConfig": [ |
| { |
| "id": "02d1fdf1-3e34-4941-a97b-e51dd439d56b", |
| "alias": "create unique user config", |
| "config": { |
| "require.password.update.after.registration": "false" |
| } |
| }, |
| { |
| "id": "88377733-8f79-4587-ba9b-a4754a50e1ff", |
| "alias": "review profile config", |
| "config": { |
| "update.profile.on.first.login": "missing" |
| } |
| } |
| ], |
| "requiredActions": [ |
| { |
| "alias": "CONFIGURE_TOTP", |
| "name": "Configure OTP", |
| "providerId": "CONFIGURE_TOTP", |
| "enabled": true, |
| "defaultAction": false, |
| "priority": 10, |
| "config": {} |
| }, |
| { |
| "alias": "terms_and_conditions", |
| "name": "Terms and Conditions", |
| "providerId": "terms_and_conditions", |
| "enabled": false, |
| "defaultAction": false, |
| "priority": 20, |
| "config": {} |
| }, |
| { |
| "alias": "UPDATE_PASSWORD", |
| "name": "Update Password", |
| "providerId": "UPDATE_PASSWORD", |
| "enabled": true, |
| "defaultAction": false, |
| "priority": 30, |
| "config": {} |
| }, |
| { |
| "alias": "UPDATE_PROFILE", |
| "name": "Update Profile", |
| "providerId": "UPDATE_PROFILE", |
| "enabled": true, |
| "defaultAction": false, |
| "priority": 40, |
| "config": {} |
| }, |
| { |
| "alias": "VERIFY_EMAIL", |
| "name": "Verify Email", |
| "providerId": "VERIFY_EMAIL", |
| "enabled": true, |
| "defaultAction": false, |
| "priority": 50, |
| "config": {} |
| }, |
| { |
| "alias": "delete_account", |
| "name": "Delete Account", |
| "providerId": "delete_account", |
| "enabled": false, |
| "defaultAction": false, |
| "priority": 60, |
| "config": {} |
| }, |
| { |
| "alias": "update_user_locale", |
| "name": "Update User Locale", |
| "providerId": "update_user_locale", |
| "enabled": true, |
| "defaultAction": false, |
| "priority": 1000, |
| "config": {} |
| } |
| ], |
| "browserFlow": "browser", |
| "registrationFlow": "registration", |
| "directGrantFlow": "direct grant", |
| "resetCredentialsFlow": "reset credentials", |
| "clientAuthenticationFlow": "clients", |
| "dockerAuthenticationFlow": "docker auth", |
| "attributes": { |
| "cibaBackchannelTokenDeliveryMode": "poll", |
| "cibaExpiresIn": "120", |
| "cibaAuthRequestedUserHint": "login_hint", |
| "oauth2DeviceCodeLifespan": "600", |
| "oauth2DevicePollingInterval": "5", |
| "parRequestUriLifespan": "60", |
| "cibaInterval": "5" |
| }, |
| "keycloakVersion": "18.0.0", |
| "userManagedAccessAllowed": false, |
| "clientProfiles": { |
| "profiles": [] |
| }, |
| "clientPolicies": { |
| "policies": [] |
| } |
| } |
