| { |
| "id": "onap", |
| "realm": "onap", |
| "displayName": "O-RAN-SC SIM & OAM & NON-RT-RIC", |
| "displayNameHtml": "<div class=\"kc-logo-text\"><span>O-RAN-SC: SIM and OAM and Non-RT-RIC</span></div>", |
| "notBefore": 1606124502, |
| "revokeRefreshToken": false, |
| "refreshTokenMaxReuse": 0, |
| "accessTokenLifespan": 300, |
| "accessTokenLifespanForImplicitFlow": 900, |
| "ssoSessionIdleTimeout": 1800, |
| "ssoSessionMaxLifespan": 36000, |
| "ssoSessionIdleTimeoutRememberMe": 0, |
| "ssoSessionMaxLifespanRememberMe": 0, |
| "offlineSessionIdleTimeout": 2592000, |
| "offlineSessionMaxLifespanEnabled": false, |
| "offlineSessionMaxLifespan": 5184000, |
| "clientSessionIdleTimeout": 0, |
| "clientSessionMaxLifespan": 0, |
| "clientOfflineSessionIdleTimeout": 0, |
| "clientOfflineSessionMaxLifespan": 0, |
| "accessCodeLifespan": 60, |
| "accessCodeLifespanUserAction": 300, |
| "accessCodeLifespanLogin": 1800, |
| "actionTokenGeneratedByAdminLifespan": 43200, |
| "actionTokenGeneratedByUserLifespan": 300, |
| "enabled": true, |
| "sslRequired": "external", |
| "registrationAllowed": false, |
| "registrationEmailAsUsername": false, |
| "rememberMe": true, |
| "verifyEmail": false, |
| "loginWithEmailAllowed": true, |
| "duplicateEmailsAllowed": false, |
| "resetPasswordAllowed": false, |
| "editUsernameAllowed": false, |
| "bruteForceProtected": false, |
| "permanentLockout": false, |
| "maxFailureWaitSeconds": 900, |
| "minimumQuickLoginWaitSeconds": 60, |
| "waitIncrementSeconds": 60, |
| "quickLoginCheckMilliSeconds": 1000, |
| "maxDeltaTimeSeconds": 43200, |
| "failureFactor": 30, |
| "roles": { |
| "realm": [ |
| { |
| "id": "66f90a7a-3766-4f69-989d-c94910e0bad6", |
| "name": "administration", |
| "description": "Read/write access to all operations.", |
| "composite": false, |
| "clientRole": false, |
| "containerId": "onap", |
| "attributes": {} |
| }, |
| { |
| "id": "d2594199-99c2-4e0c-9b33-94b0a84b569a", |
| "name": "supervision", |
| "description": "In general no write access and also no read access to user-management.", |
| "composite": false, |
| "clientRole": false, |
| "containerId": "onap", |
| "attributes": {} |
| }, |
| { |
| "id": "db6e98ed-5fa8-4471-9522-ba12a8732e08", |
| "name": "uma_authorization", |
| "description": "${role_uma_authorization}", |
| "composite": false, |
| "clientRole": false, |
| "containerId": "onap", |
| "attributes": {} |
| }, |
| { |
| "id": "e344eb3a-8efe-4346-b5d4-93b9262cf0ec", |
| "name": "offline_access", |
| "description": "${role_offline-access}", |
| "composite": false, |
| "clientRole": false, |
| "containerId": "onap", |
| "attributes": {} |
| }, |
| { |
| "id": "7c6d7309-c7c1-4a51-8a85-bd6713af5ca7", |
| "name": "provision", |
| "description": "In general read/write access, expect write access to user-management.", |
| "composite": false, |
| "clientRole": false, |
| "containerId": "onap", |
| "attributes": {} |
| } |
| ], |
| "client": { |
| "realm-management": [ |
| { |
| "id": "48cf3c96-5ef0-4a91-a95f-149234d0b595", |
| "name": "manage-identity-providers", |
| "description": "${role_manage-identity-providers}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "048a9bfc-077a-42a2-afe8-1ec13d3a43a3", |
| "attributes": {} |
| }, |
| { |
| "id": "97066b13-50b7-4556-8c33-b06279ee26b7", |
| "name": "query-realms", |
| "description": "${role_query-realms}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "048a9bfc-077a-42a2-afe8-1ec13d3a43a3", |
| "attributes": {} |
| }, |
| { |
| "id": "120f58c7-3850-487e-9733-a9b98ac43921", |
| "name": "view-events", |
| "description": "${role_view-events}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "048a9bfc-077a-42a2-afe8-1ec13d3a43a3", |
| "attributes": {} |
| }, |
| { |
| "id": "4ab08158-f781-448f-a394-d0022957c2d8", |
| "name": "manage-users", |
| "description": "${role_manage-users}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "048a9bfc-077a-42a2-afe8-1ec13d3a43a3", |
| "attributes": {} |
| }, |
| { |
| "id": "a2aeee62-6cfa-4968-be7c-b861ca16d9ae", |
| "name": "impersonation", |
| "description": "${role_impersonation}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "048a9bfc-077a-42a2-afe8-1ec13d3a43a3", |
| "attributes": {} |
| }, |
| { |
| "id": "cddc6aa1-d8d8-4a4b-a6d0-15576ca147cc", |
| "name": "manage-authorization", |
| "description": "${role_manage-authorization}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "048a9bfc-077a-42a2-afe8-1ec13d3a43a3", |
| "attributes": {} |
| }, |
| { |
| "id": "f139916a-75d6-44e2-8fb2-818cabc9aa79", |
| "name": "query-users", |
| "description": "${role_query-users}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "048a9bfc-077a-42a2-afe8-1ec13d3a43a3", |
| "attributes": {} |
| }, |
| { |
| "id": "51216a0a-b1cb-4bbf-966a-6d6b9a430981", |
| "name": "query-clients", |
| "description": "${role_query-clients}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "048a9bfc-077a-42a2-afe8-1ec13d3a43a3", |
| "attributes": {} |
| }, |
| { |
| "id": "77174699-6e58-4515-a4de-fc0c5f1b84aa", |
| "name": "manage-events", |
| "description": "${role_manage-events}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "048a9bfc-077a-42a2-afe8-1ec13d3a43a3", |
| "attributes": {} |
| }, |
| { |
| "id": "34107e13-212e-4b07-a00a-0cb422cb1b18", |
| "name": "view-authorization", |
| "description": "${role_view-authorization}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "048a9bfc-077a-42a2-afe8-1ec13d3a43a3", |
| "attributes": {} |
| }, |
| { |
| "id": "b2460807-5207-4112-ae9d-931e1ea8e495", |
| "name": "manage-realm", |
| "description": "${role_manage-realm}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "048a9bfc-077a-42a2-afe8-1ec13d3a43a3", |
| "attributes": {} |
| }, |
| { |
| "id": "36454cac-a7b4-49a2-9202-7e9253680709", |
| "name": "view-clients", |
| "description": "${role_view-clients}", |
| "composite": true, |
| "composites": { |
| "client": { |
| "realm-management": [ |
| "query-clients" |
| ] |
| } |
| }, |
| "clientRole": true, |
| "containerId": "048a9bfc-077a-42a2-afe8-1ec13d3a43a3", |
| "attributes": {} |
| }, |
| { |
| "id": "bd6536a5-fb15-4d9d-acd4-05af2f5f0872", |
| "name": "manage-clients", |
| "description": "${role_manage-clients}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "048a9bfc-077a-42a2-afe8-1ec13d3a43a3", |
| "attributes": {} |
| }, |
| { |
| "id": "0413ee3e-5669-45e2-a62e-013e5fa9f95c", |
| "name": "view-identity-providers", |
| "description": "${role_view-identity-providers}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "048a9bfc-077a-42a2-afe8-1ec13d3a43a3", |
| "attributes": {} |
| }, |
| { |
| "id": "a7f035f6-bcb3-4a3e-9aba-b9d8151ae1e2", |
| "name": "create-client", |
| "description": "${role_create-client}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "048a9bfc-077a-42a2-afe8-1ec13d3a43a3", |
| "attributes": {} |
| }, |
| { |
| "id": "6f755449-81aa-413c-b9a2-f1a04a310216", |
| "name": "realm-admin", |
| "description": "${role_realm-admin}", |
| "composite": true, |
| "composites": { |
| "client": { |
| "realm-management": [ |
| "view-events", |
| "manage-identity-providers", |
| "query-realms", |
| "manage-users", |
| "impersonation", |
| "manage-authorization", |
| "query-users", |
| "query-clients", |
| "manage-events", |
| "view-authorization", |
| "manage-realm", |
| "view-clients", |
| "manage-clients", |
| "view-identity-providers", |
| "create-client", |
| "view-realm", |
| "view-users", |
| "query-groups" |
| ] |
| } |
| }, |
| "clientRole": true, |
| "containerId": "048a9bfc-077a-42a2-afe8-1ec13d3a43a3", |
| "attributes": {} |
| }, |
| { |
| "id": "b84067d9-c1a0-473b-9a8d-c9da11d702d0", |
| "name": "view-realm", |
| "description": "${role_view-realm}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "048a9bfc-077a-42a2-afe8-1ec13d3a43a3", |
| "attributes": {} |
| }, |
| { |
| "id": "f93e22e0-4777-4eed-8793-54344e3912b8", |
| "name": "view-users", |
| "description": "${role_view-users}", |
| "composite": true, |
| "composites": { |
| "client": { |
| "realm-management": [ |
| "query-users", |
| "query-groups" |
| ] |
| } |
| }, |
| "clientRole": true, |
| "containerId": "048a9bfc-077a-42a2-afe8-1ec13d3a43a3", |
| "attributes": {} |
| }, |
| { |
| "id": "0a21201d-d801-4905-bd24-15a0b6b672bd", |
| "name": "query-groups", |
| "description": "${role_query-groups}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "048a9bfc-077a-42a2-afe8-1ec13d3a43a3", |
| "attributes": {} |
| } |
| ], |
| "odlux.app": [], |
| "security-admin-console": [], |
| "admin-cli": [], |
| "account-console": [], |
| "broker": [ |
| { |
| "id": "0ffc5717-546e-4bc9-a5ac-402cf244b8ef", |
| "name": "read-token", |
| "description": "${role_read-token}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "03f925c3-3688-44fc-80da-57a15e48f9c6", |
| "attributes": {} |
| } |
| ], |
| "account": [ |
| { |
| "id": "73a6e64c-673d-41f8-891d-35cdf18530a2", |
| "name": "view-consent", |
| "description": "${role_view-consent}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "79520b16-34b6-4427-8c0f-40ef1e514d5e", |
| "attributes": {} |
| }, |
| { |
| "id": "ad1c45b0-c118-423c-932b-4d37a1e22169", |
| "name": "manage-account-links", |
| "description": "${role_manage-account-links}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "79520b16-34b6-4427-8c0f-40ef1e514d5e", |
| "attributes": {} |
| }, |
| { |
| "id": "5a945b4b-5982-4340-a2b9-464edacb5280", |
| "name": "manage-consent", |
| "description": "${role_manage-consent}", |
| "composite": true, |
| "composites": { |
| "client": { |
| "account": [ |
| "view-consent" |
| ] |
| } |
| }, |
| "clientRole": true, |
| "containerId": "79520b16-34b6-4427-8c0f-40ef1e514d5e", |
| "attributes": {} |
| }, |
| { |
| "id": "27c9a3d3-78e9-4ca3-940c-3a3c16cac97f", |
| "name": "view-profile", |
| "description": "${role_view-profile}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "79520b16-34b6-4427-8c0f-40ef1e514d5e", |
| "attributes": {} |
| }, |
| { |
| "id": "0dc10caf-b2f3-42e2-af88-c6c3d8f170ad", |
| "name": "delete-account", |
| "description": "${role_delete-account}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "79520b16-34b6-4427-8c0f-40ef1e514d5e", |
| "attributes": {} |
| }, |
| { |
| "id": "b3ff60e4-53e9-4a78-9855-3e7a13608a37", |
| "name": "manage-account", |
| "description": "${role_manage-account}", |
| "composite": true, |
| "composites": { |
| "client": { |
| "account": [ |
| "manage-account-links" |
| ] |
| } |
| }, |
| "clientRole": true, |
| "containerId": "79520b16-34b6-4427-8c0f-40ef1e514d5e", |
| "attributes": {} |
| }, |
| { |
| "id": "9fbd7ab1-300f-4bf4-8e3f-9de42ea841f4", |
| "name": "view-applications", |
| "description": "${role_view-applications}", |
| "composite": false, |
| "clientRole": true, |
| "containerId": "79520b16-34b6-4427-8c0f-40ef1e514d5e", |
| "attributes": {} |
| } |
| ] |
| } |
| }, |
| "groups": [ |
| { |
| "id": "53697740-dd18-4170-bcc7-5386d68bee12", |
| "name": "NetworkAdministration", |
| "path": "/NetworkAdministration", |
| "attributes": {}, |
| "realmRoles": [ |
| "administration" |
| ], |
| "clientRoles": {}, |
| "subGroups": [] |
| }, |
| { |
| "id": "7416392a-8a94-48a0-b2f4-32355df722ee", |
| "name": "NetworkOperation", |
| "path": "/NetworkOperation", |
| "attributes": {}, |
| "realmRoles": [ |
| "provision" |
| ], |
| "clientRoles": {}, |
| "subGroups": [] |
| }, |
| { |
| "id": "2627fd3e-5991-4464-8d46-5accfa7f49d9", |
| "name": "NetworkPlanning", |
| "path": "/NetworkPlanning", |
| "attributes": {}, |
| "realmRoles": [ |
| "supervision" |
| ], |
| "clientRoles": {}, |
| "subGroups": [] |
| } |
| ], |
| "defaultRoles": [ |
| "uma_authorization", |
| "offline_access" |
| ], |
| "requiredCredentials": [ |
| "password" |
| ], |
| "otpPolicyType": "totp", |
| "otpPolicyAlgorithm": "HmacSHA1", |
| "otpPolicyInitialCounter": 0, |
| "otpPolicyDigits": 6, |
| "otpPolicyLookAheadWindow": 1, |
| "otpPolicyPeriod": 30, |
| "otpSupportedApplications": [ |
| "FreeOTP", |
| "Google Authenticator" |
| ], |
| "webAuthnPolicyRpEntityName": "keycloak", |
| "webAuthnPolicySignatureAlgorithms": [ |
| "ES256" |
| ], |
| "webAuthnPolicyRpId": "", |
| "webAuthnPolicyAttestationConveyancePreference": "not specified", |
| "webAuthnPolicyAuthenticatorAttachment": "not specified", |
| "webAuthnPolicyRequireResidentKey": "not specified", |
| "webAuthnPolicyUserVerificationRequirement": "not specified", |
| "webAuthnPolicyCreateTimeout": 0, |
| "webAuthnPolicyAvoidSameAuthenticatorRegister": false, |
| "webAuthnPolicyAcceptableAaguids": [], |
| "webAuthnPolicyPasswordlessRpEntityName": "keycloak", |
| "webAuthnPolicyPasswordlessSignatureAlgorithms": [ |
| "ES256" |
| ], |
| "webAuthnPolicyPasswordlessRpId": "", |
| "webAuthnPolicyPasswordlessAttestationConveyancePreference": "not specified", |
| "webAuthnPolicyPasswordlessAuthenticatorAttachment": "not specified", |
| "webAuthnPolicyPasswordlessRequireResidentKey": "not specified", |
| "webAuthnPolicyPasswordlessUserVerificationRequirement": "not specified", |
| "webAuthnPolicyPasswordlessCreateTimeout": 0, |
| "webAuthnPolicyPasswordlessAvoidSameAuthenticatorRegister": false, |
| "webAuthnPolicyPasswordlessAcceptableAaguids": [], |
| "scopeMappings": [ |
| { |
| "clientScope": "offline_access", |
| "roles": [ |
| "offline_access" |
| ] |
| } |
| ], |
| "clientScopeMappings": { |
| "account": [ |
| { |
| "client": "account-console", |
| "roles": [ |
| "manage-account" |
| ] |
| } |
| ] |
| }, |
| "clients": [ |
| { |
| "id": "79520b16-34b6-4427-8c0f-40ef1e514d5e", |
| "clientId": "account", |
| "name": "${client_account}", |
| "rootUrl": "${authBaseUrl}", |
| "baseUrl": "/realms/onap-oam-joins-non-rt-ric/account/", |
| "surrogateAuthRequired": false, |
| "enabled": true, |
| "alwaysDisplayInConsole": false, |
| "clientAuthenticatorType": "client-secret", |
| "secret": "**********", |
| "defaultRoles": [ |
| "view-profile", |
| "manage-account" |
| ], |
| "redirectUris": [ |
| "/realms/onap-oam-joins-non-rt-ric/account/*" |
| ], |
| "webOrigins": [], |
| "notBefore": 0, |
| "bearerOnly": false, |
| "consentRequired": false, |
| "standardFlowEnabled": true, |
| "implicitFlowEnabled": false, |
| "directAccessGrantsEnabled": false, |
| "serviceAccountsEnabled": false, |
| "publicClient": false, |
| "frontchannelLogout": false, |
| "protocol": "openid-connect", |
| "attributes": {}, |
| "authenticationFlowBindingOverrides": {}, |
| "fullScopeAllowed": false, |
| "nodeReRegistrationTimeout": 0, |
| "defaultClientScopes": [ |
| "web-origins", |
| "role_list", |
| "roles", |
| "profile", |
| "email" |
| ], |
| "optionalClientScopes": [ |
| "address", |
| "phone", |
| "offline_access", |
| "microprofile-jwt" |
| ] |
| }, |
| { |
| "id": "9e6bfeba-bdd0-480f-b5a2-872613bc8f5c", |
| "clientId": "account-console", |
| "name": "${client_account-console}", |
| "rootUrl": "${authBaseUrl}", |
| "baseUrl": "/realms/onap-oam-joins-non-rt-ric/account/", |
| "surrogateAuthRequired": false, |
| "enabled": true, |
| "alwaysDisplayInConsole": false, |
| "clientAuthenticatorType": "client-secret", |
| "secret": "**********", |
| "redirectUris": [ |
| "/realms/onap-oam-joins-non-rt-ric/account/*" |
| ], |
| "webOrigins": [], |
| "notBefore": 0, |
| "bearerOnly": false, |
| "consentRequired": false, |
| "standardFlowEnabled": true, |
| "implicitFlowEnabled": false, |
| "directAccessGrantsEnabled": false, |
| "serviceAccountsEnabled": false, |
| "publicClient": true, |
| "frontchannelLogout": false, |
| "protocol": "openid-connect", |
| "attributes": { |
| "pkce.code.challenge.method": "S256" |
| }, |
| "authenticationFlowBindingOverrides": {}, |
| "fullScopeAllowed": false, |
| "nodeReRegistrationTimeout": 0, |
| "protocolMappers": [ |
| { |
| "id": "7c4d0074-59ac-48de-a13d-ff68f061b5aa", |
| "name": "audience resolve", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-audience-resolve-mapper", |
| "consentRequired": false, |
| "config": {} |
| } |
| ], |
| "defaultClientScopes": [ |
| "web-origins", |
| "role_list", |
| "roles", |
| "profile", |
| "email" |
| ], |
| "optionalClientScopes": [ |
| "address", |
| "phone", |
| "offline_access", |
| "microprofile-jwt" |
| ] |
| }, |
| { |
| "id": "42be94b8-40c9-4874-9d6e-9501d12f73a5", |
| "clientId": "admin-cli", |
| "name": "${client_admin-cli}", |
| "surrogateAuthRequired": false, |
| "enabled": true, |
| "alwaysDisplayInConsole": false, |
| "clientAuthenticatorType": "client-secret", |
| "secret": "**********", |
| "redirectUris": [], |
| "webOrigins": [], |
| "notBefore": 0, |
| "bearerOnly": false, |
| "consentRequired": false, |
| "standardFlowEnabled": false, |
| "implicitFlowEnabled": false, |
| "directAccessGrantsEnabled": true, |
| "serviceAccountsEnabled": false, |
| "publicClient": true, |
| "frontchannelLogout": false, |
| "protocol": "openid-connect", |
| "attributes": { |
| "saml.assertion.signature": "false", |
| "access.token.lifespan": "1200", |
| "saml.force.post.binding": "false", |
| "saml.multivalued.roles": "false", |
| "saml.encrypt": "false", |
| "saml.server.signature": "false", |
| "saml.server.signature.keyinfo.ext": "false", |
| "exclude.session.state.from.auth.response": "false", |
| "saml_force_name_id_format": "false", |
| "saml.client.signature": "false", |
| "tls.client.certificate.bound.access.tokens": "false", |
| "saml.authnstatement": "false", |
| "display.on.consent.screen": "false", |
| "saml.onetimeuse.condition": "false" |
| }, |
| "authenticationFlowBindingOverrides": {}, |
| "fullScopeAllowed": true, |
| "nodeReRegistrationTimeout": 0, |
| "defaultClientScopes": [ |
| "web-origins", |
| "role_list", |
| "roles", |
| "profile", |
| "email" |
| ], |
| "optionalClientScopes": [ |
| "address", |
| "phone", |
| "offline_access", |
| "microprofile-jwt" |
| ] |
| }, |
| { |
| "id": "03f925c3-3688-44fc-80da-57a15e48f9c6", |
| "clientId": "broker", |
| "name": "${client_broker}", |
| "surrogateAuthRequired": false, |
| "enabled": true, |
| "alwaysDisplayInConsole": false, |
| "clientAuthenticatorType": "client-secret", |
| "secret": "**********", |
| "redirectUris": [], |
| "webOrigins": [], |
| "notBefore": 0, |
| "bearerOnly": false, |
| "consentRequired": false, |
| "standardFlowEnabled": true, |
| "implicitFlowEnabled": false, |
| "directAccessGrantsEnabled": false, |
| "serviceAccountsEnabled": false, |
| "publicClient": false, |
| "frontchannelLogout": false, |
| "protocol": "openid-connect", |
| "attributes": {}, |
| "authenticationFlowBindingOverrides": {}, |
| "fullScopeAllowed": false, |
| "nodeReRegistrationTimeout": 0, |
| "defaultClientScopes": [ |
| "web-origins", |
| "role_list", |
| "roles", |
| "profile", |
| "email" |
| ], |
| "optionalClientScopes": [ |
| "address", |
| "phone", |
| "offline_access", |
| "microprofile-jwt" |
| ] |
| }, |
| { |
| "id": "dbd662ad-e959-44c9-bd18-859ca0142927", |
| "clientId": "odlux.app", |
| "surrogateAuthRequired": false, |
| "enabled": true, |
| "alwaysDisplayInConsole": false, |
| "clientAuthenticatorType": "client-secret", |
| "secret": "2a64fdca-c205-4b52-9f58-195ccc142ddb", |
| "redirectUris": [ |
| "https://sdnc-web:8453/*" |
| ], |
| "webOrigins": [], |
| "notBefore": 0, |
| "bearerOnly": false, |
| "consentRequired": false, |
| "standardFlowEnabled": true, |
| "implicitFlowEnabled": false, |
| "directAccessGrantsEnabled": true, |
| "serviceAccountsEnabled": false, |
| "publicClient": false, |
| "frontchannelLogout": false, |
| "protocol": "openid-connect", |
| "attributes": { |
| "saml.assertion.signature": "false", |
| "access.token.lifespan": "1800", |
| "saml.force.post.binding": "false", |
| "saml.multivalued.roles": "false", |
| "saml.encrypt": "false", |
| "backchannel.logout.revoke.offline.tokens": "false", |
| "saml.server.signature": "false", |
| "saml.server.signature.keyinfo.ext": "false", |
| "exclude.session.state.from.auth.response": "false", |
| "backchannel.logout.session.required": "false", |
| "client_credentials.use_refresh_token": "false", |
| "saml_force_name_id_format": "false", |
| "saml.client.signature": "false", |
| "tls.client.certificate.bound.access.tokens": "false", |
| "saml.authnstatement": "false", |
| "display.on.consent.screen": "false", |
| "saml.onetimeuse.condition": "false" |
| }, |
| "authenticationFlowBindingOverrides": { |
| "direct_grant": "dfb7f7d8-1260-4d25-ac2c-b04b029bc63f", |
| "browser": "158733a4-43f8-4cbc-922d-5017939ad0dc" |
| }, |
| "fullScopeAllowed": true, |
| "nodeReRegistrationTimeout": -1, |
| "defaultClientScopes": [ |
| "web-origins", |
| "role_list", |
| "roles", |
| "profile", |
| "email" |
| ], |
| "optionalClientScopes": [ |
| "address", |
| "phone", |
| "offline_access", |
| "microprofile-jwt" |
| ] |
| }, |
| { |
| "id": "048a9bfc-077a-42a2-afe8-1ec13d3a43a3", |
| "clientId": "realm-management", |
| "name": "${client_realm-management}", |
| "surrogateAuthRequired": false, |
| "enabled": true, |
| "alwaysDisplayInConsole": false, |
| "clientAuthenticatorType": "client-secret", |
| "secret": "**********", |
| "redirectUris": [], |
| "webOrigins": [], |
| "notBefore": 0, |
| "bearerOnly": true, |
| "consentRequired": false, |
| "standardFlowEnabled": true, |
| "implicitFlowEnabled": false, |
| "directAccessGrantsEnabled": false, |
| "serviceAccountsEnabled": false, |
| "publicClient": false, |
| "frontchannelLogout": false, |
| "protocol": "openid-connect", |
| "attributes": {}, |
| "authenticationFlowBindingOverrides": {}, |
| "fullScopeAllowed": false, |
| "nodeReRegistrationTimeout": 0, |
| "defaultClientScopes": [ |
| "web-origins", |
| "role_list", |
| "roles", |
| "profile", |
| "email" |
| ], |
| "optionalClientScopes": [ |
| "address", |
| "phone", |
| "offline_access", |
| "microprofile-jwt" |
| ] |
| }, |
| { |
| "id": "458df016-a86f-4750-979b-7f4bc20d9bed", |
| "clientId": "security-admin-console", |
| "name": "${client_security-admin-console}", |
| "rootUrl": "${authAdminUrl}", |
| "baseUrl": "/admin/onap-oam-joins-non-rt-ric/console/", |
| "surrogateAuthRequired": false, |
| "enabled": true, |
| "alwaysDisplayInConsole": false, |
| "clientAuthenticatorType": "client-secret", |
| "secret": "**********", |
| "redirectUris": [ |
| "/admin/onap-oam-joins-non-rt-ric/console/*" |
| ], |
| "webOrigins": [ |
| "+" |
| ], |
| "notBefore": 0, |
| "bearerOnly": false, |
| "consentRequired": false, |
| "standardFlowEnabled": true, |
| "implicitFlowEnabled": false, |
| "directAccessGrantsEnabled": false, |
| "serviceAccountsEnabled": false, |
| "publicClient": true, |
| "frontchannelLogout": false, |
| "protocol": "openid-connect", |
| "attributes": { |
| "pkce.code.challenge.method": "S256" |
| }, |
| "authenticationFlowBindingOverrides": {}, |
| "fullScopeAllowed": false, |
| "nodeReRegistrationTimeout": 0, |
| "protocolMappers": [ |
| { |
| "id": "7a2b5c79-4775-4f07-810f-f101774cd086", |
| "name": "locale", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "locale", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "locale", |
| "jsonType.label": "String" |
| } |
| } |
| ], |
| "defaultClientScopes": [ |
| "web-origins", |
| "role_list", |
| "roles", |
| "profile", |
| "email" |
| ], |
| "optionalClientScopes": [ |
| "address", |
| "phone", |
| "offline_access", |
| "microprofile-jwt" |
| ] |
| } |
| ], |
| "clientScopes": [ |
| { |
| "id": "6dd0bccf-179e-4d35-acd0-03aa6ef2153d", |
| "name": "address", |
| "description": "OpenID Connect built-in scope: address", |
| "protocol": "openid-connect", |
| "attributes": { |
| "include.in.token.scope": "true", |
| "display.on.consent.screen": "true", |
| "consent.screen.text": "${addressScopeConsentText}" |
| }, |
| "protocolMappers": [ |
| { |
| "id": "6c342dae-9652-49f9-8327-ec2c3ddcd159", |
| "name": "address", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-address-mapper", |
| "consentRequired": false, |
| "config": { |
| "user.attribute.formatted": "formatted", |
| "user.attribute.country": "country", |
| "user.attribute.postal_code": "postal_code", |
| "userinfo.token.claim": "true", |
| "user.attribute.street": "street", |
| "id.token.claim": "true", |
| "user.attribute.region": "region", |
| "access.token.claim": "true", |
| "user.attribute.locality": "locality" |
| } |
| } |
| ] |
| }, |
| { |
| "id": "452eb724-9c8c-4d5b-8e3a-c40dfab97fd6", |
| "name": "email", |
| "description": "OpenID Connect built-in scope: email", |
| "protocol": "openid-connect", |
| "attributes": { |
| "include.in.token.scope": "true", |
| "display.on.consent.screen": "true", |
| "consent.screen.text": "${emailScopeConsentText}" |
| }, |
| "protocolMappers": [ |
| { |
| "id": "e7e9a9b0-0aeb-4d44-bb6d-8d287050521c", |
| "name": "email verified", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-property-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "emailVerified", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "email_verified", |
| "jsonType.label": "boolean" |
| } |
| }, |
| { |
| "id": "b9fc29ad-dd40-42c5-939c-315f661ac889", |
| "name": "email", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-property-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "email", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "email", |
| "jsonType.label": "String" |
| } |
| } |
| ] |
| }, |
| { |
| "id": "49f39fbb-5b69-452a-b2b4-064f3e8f23e4", |
| "name": "microprofile-jwt", |
| "description": "Microprofile - JWT built-in scope", |
| "protocol": "openid-connect", |
| "attributes": { |
| "include.in.token.scope": "true", |
| "display.on.consent.screen": "false" |
| }, |
| "protocolMappers": [ |
| { |
| "id": "ed60115c-0fb1-4c4f-8134-11751957a241", |
| "name": "upn", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-property-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "username", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "upn", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "c88ed97f-9f0e-4d16-a1b2-1cb22e37fc46", |
| "name": "groups", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-realm-role-mapper", |
| "consentRequired": false, |
| "config": { |
| "multivalued": "true", |
| "userinfo.token.claim": "true", |
| "user.attribute": "foo", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "groups", |
| "jsonType.label": "String" |
| } |
| } |
| ] |
| }, |
| { |
| "id": "cf78afd0-da31-4e37-8503-618bf3f1da2b", |
| "name": "offline_access", |
| "description": "OpenID Connect built-in scope: offline_access", |
| "protocol": "openid-connect", |
| "attributes": { |
| "consent.screen.text": "${offlineAccessScopeConsentText}", |
| "display.on.consent.screen": "true" |
| } |
| }, |
| { |
| "id": "7b1e27d0-17c0-4358-9e15-ff3dd48afe74", |
| "name": "phone", |
| "description": "OpenID Connect built-in scope: phone", |
| "protocol": "openid-connect", |
| "attributes": { |
| "include.in.token.scope": "true", |
| "display.on.consent.screen": "true", |
| "consent.screen.text": "${phoneScopeConsentText}" |
| }, |
| "protocolMappers": [ |
| { |
| "id": "33ad6d44-00c7-4ef1-88aa-2d3929225806", |
| "name": "phone number verified", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "phoneNumberVerified", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "phone_number_verified", |
| "jsonType.label": "boolean" |
| } |
| }, |
| { |
| "id": "71d82f58-9411-4d7b-89a4-5f8e7cca6f7d", |
| "name": "phone number", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "phoneNumber", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "phone_number", |
| "jsonType.label": "String" |
| } |
| } |
| ] |
| }, |
| { |
| "id": "a226a318-27ab-472e-b53e-a8f6bb7fac28", |
| "name": "profile", |
| "description": "OpenID Connect built-in scope: profile", |
| "protocol": "openid-connect", |
| "attributes": { |
| "include.in.token.scope": "true", |
| "display.on.consent.screen": "true", |
| "consent.screen.text": "${profileScopeConsentText}" |
| }, |
| "protocolMappers": [ |
| { |
| "id": "5e8ecd21-c433-4b17-aacc-a01586532fd9", |
| "name": "gender", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "gender", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "gender", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "cf587792-5813-4fe3-a16d-4ce4d4c92b50", |
| "name": "updated at", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "updatedAt", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "updated_at", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "65b516e5-e573-46a7-a721-141647220ae2", |
| "name": "birthdate", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "birthdate", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "birthdate", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "d6e02648-07f1-4e6e-940a-f0a6997af1ec", |
| "name": "full name", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-full-name-mapper", |
| "consentRequired": false, |
| "config": { |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "userinfo.token.claim": "true" |
| } |
| }, |
| { |
| "id": "957e23f0-14fa-4959-b44d-7ee628302664", |
| "name": "nickname", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "nickname", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "nickname", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "8f73eeed-e3fe-4086-8d56-ed488939bf7a", |
| "name": "given name", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-property-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "firstName", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "given_name", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "987d88f4-0803-4bf1-96d4-ba0badf95656", |
| "name": "username", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-property-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "username", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "preferred_username", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "de495b80-7a8c-47b6-bba5-534f59431156", |
| "name": "middle name", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "middleName", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "middle_name", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "176751a4-b631-4521-a9b4-0275d55c0846", |
| "name": "locale", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "locale", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "locale", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "37a41d7d-3f1b-4290-8885-2fbe197297eb", |
| "name": "zoneinfo", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "zoneinfo", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "zoneinfo", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "f639ac53-4c08-416b-828f-b06e6f5f59cf", |
| "name": "website", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "website", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "website", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "acac2472-8d13-4c22-929d-9c364e3af1dc", |
| "name": "family name", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-property-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "lastName", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "family_name", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "b748d016-ce62-4cf2-bf0f-78482f90c4e0", |
| "name": "picture", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "picture", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "picture", |
| "jsonType.label": "String" |
| } |
| }, |
| { |
| "id": "e8d61aee-2580-4aec-9c99-9310e0b10637", |
| "name": "profile", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-attribute-mapper", |
| "consentRequired": false, |
| "config": { |
| "userinfo.token.claim": "true", |
| "user.attribute": "profile", |
| "id.token.claim": "true", |
| "access.token.claim": "true", |
| "claim.name": "profile", |
| "jsonType.label": "String" |
| } |
| } |
| ] |
| }, |
| { |
| "id": "7b6ec9ac-c5b6-4096-8b48-5a27d9a4b3fd", |
| "name": "role_list", |
| "description": "SAML role list", |
| "protocol": "saml", |
| "attributes": { |
| "consent.screen.text": "${samlRoleListScopeConsentText}", |
| "display.on.consent.screen": "true" |
| }, |
| "protocolMappers": [ |
| { |
| "id": "924fba2b-b443-4160-96dd-5a8d7b5fe685", |
| "name": "role list", |
| "protocol": "saml", |
| "protocolMapper": "saml-role-list-mapper", |
| "consentRequired": false, |
| "config": { |
| "single": "false", |
| "attribute.nameformat": "Basic", |
| "attribute.name": "Role" |
| } |
| } |
| ] |
| }, |
| { |
| "id": "6ccb6ae1-d28c-42a0-a59d-2c3d8429e96f", |
| "name": "roles", |
| "description": "OpenID Connect scope for add user roles to the access token", |
| "protocol": "openid-connect", |
| "attributes": { |
| "include.in.token.scope": "false", |
| "display.on.consent.screen": "true", |
| "consent.screen.text": "${rolesScopeConsentText}" |
| }, |
| "protocolMappers": [ |
| { |
| "id": "1968a6ac-cf1c-4d15-a4fe-f5206f73e0b9", |
| "name": "client roles", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-client-role-mapper", |
| "consentRequired": false, |
| "config": { |
| "user.attribute": "foo", |
| "access.token.claim": "true", |
| "claim.name": "resource_access.${client_id}.roles", |
| "jsonType.label": "String", |
| "multivalued": "true" |
| } |
| }, |
| { |
| "id": "800d0b8f-42f0-4990-81a6-4cc513097ba7", |
| "name": "realm roles", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-usermodel-realm-role-mapper", |
| "consentRequired": false, |
| "config": { |
| "user.attribute": "foo", |
| "access.token.claim": "true", |
| "claim.name": "realm_access.roles", |
| "jsonType.label": "String", |
| "multivalued": "true" |
| } |
| }, |
| { |
| "id": "ccaf8f4b-1050-4aca-a54f-5832873a7cfe", |
| "name": "audience resolve", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-audience-resolve-mapper", |
| "consentRequired": false, |
| "config": {} |
| } |
| ] |
| }, |
| { |
| "id": "04affd50-f5ca-476a-960f-21935af0ab5d", |
| "name": "web-origins", |
| "description": "OpenID Connect scope for add allowed web origins to the access token", |
| "protocol": "openid-connect", |
| "attributes": { |
| "include.in.token.scope": "false", |
| "display.on.consent.screen": "false", |
| "consent.screen.text": "" |
| }, |
| "protocolMappers": [ |
| { |
| "id": "f4e1fc1e-454a-46b6-a660-5066aecbb363", |
| "name": "allowed web origins", |
| "protocol": "openid-connect", |
| "protocolMapper": "oidc-allowed-origins-mapper", |
| "consentRequired": false, |
| "config": {} |
| } |
| ] |
| } |
| ], |
| "defaultDefaultClientScopes": [ |
| "web-origins", |
| "email", |
| "roles", |
| "role_list", |
| "profile" |
| ], |
| "defaultOptionalClientScopes": [ |
| "microprofile-jwt", |
| "address", |
| "phone", |
| "offline_access" |
| ], |
| "browserSecurityHeaders": { |
| "contentSecurityPolicyReportOnly": "", |
| "xContentTypeOptions": "nosniff", |
| "xRobotsTag": "none", |
| "xFrameOptions": "SAMEORIGIN", |
| "contentSecurityPolicy": "frame-src 'self'; frame-ancestors 'self'; object-src 'none';", |
| "xXSSProtection": "1; mode=block", |
| "strictTransportSecurity": "max-age=31536000; includeSubDomains" |
| }, |
| "smtpServer": {}, |
| "eventsEnabled": false, |
| "eventsListeners": [ |
| "jboss-logging" |
| ], |
| "enabledEventTypes": [], |
| "adminEventsEnabled": false, |
| "adminEventsDetailsEnabled": false, |
| "identityProviders": [], |
| "identityProviderMappers": [], |
| "components": { |
| "org.keycloak.services.clientregistration.policy.ClientRegistrationPolicy": [ |
| { |
| "id": "0c44905c-8894-4af1-8e5b-75370102ebc7", |
| "name": "Max Clients Limit", |
| "providerId": "max-clients", |
| "subType": "anonymous", |
| "subComponents": {}, |
| "config": { |
| "max-clients": [ |
| "200" |
| ] |
| } |
| }, |
| { |
| "id": "b191c0f5-a3b0-4f59-bd83-070d3b6c2b28", |
| "name": "Allowed Protocol Mapper Types", |
| "providerId": "allowed-protocol-mappers", |
| "subType": "anonymous", |
| "subComponents": {}, |
| "config": { |
| "allowed-protocol-mapper-types": [ |
| "saml-role-list-mapper", |
| "oidc-sha256-pairwise-sub-mapper", |
| "saml-user-attribute-mapper", |
| "oidc-usermodel-property-mapper", |
| "oidc-address-mapper", |
| "oidc-full-name-mapper", |
| "saml-user-property-mapper", |
| "oidc-usermodel-attribute-mapper" |
| ] |
| } |
| }, |
| { |
| "id": "d152b7b9-d519-48bc-ac78-1dc3c08c4569", |
| "name": "Trusted Hosts", |
| "providerId": "trusted-hosts", |
| "subType": "anonymous", |
| "subComponents": {}, |
| "config": { |
| "host-sending-registration-request-must-match": [ |
| "true" |
| ], |
| "client-uris-must-match": [ |
| "true" |
| ] |
| } |
| }, |
| { |
| "id": "724d468e-c5da-4189-b51e-0c43ee65ef90", |
| "name": "Consent Required", |
| "providerId": "consent-required", |
| "subType": "anonymous", |
| "subComponents": {}, |
| "config": {} |
| }, |
| { |
| "id": "409f70ab-abe9-4f3e-873f-ae3c717af73e", |
| "name": "Allowed Client Scopes", |
| "providerId": "allowed-client-templates", |
| "subType": "authenticated", |
| "subComponents": {}, |
| "config": { |
| "allow-default-scopes": [ |
| "true" |
| ] |
| } |
| }, |
| { |
| "id": "46ebd6ed-3ad9-433f-b8e1-9a87d971f490", |
| "name": "Full Scope Disabled", |
| "providerId": "scope", |
| "subType": "anonymous", |
| "subComponents": {}, |
| "config": {} |
| }, |
| { |
| "id": "61c5003c-94ee-44de-8e1c-f892f5e09488", |
| "name": "Allowed Protocol Mapper Types", |
| "providerId": "allowed-protocol-mappers", |
| "subType": "authenticated", |
| "subComponents": {}, |
| "config": { |
| "allowed-protocol-mapper-types": [ |
| "oidc-usermodel-property-mapper", |
| "oidc-full-name-mapper", |
| "saml-role-list-mapper", |
| "oidc-address-mapper", |
| "oidc-sha256-pairwise-sub-mapper", |
| "oidc-usermodel-attribute-mapper", |
| "saml-user-attribute-mapper", |
| "saml-user-property-mapper" |
| ] |
| } |
| }, |
| { |
| "id": "da534621-02b7-4ccc-b14b-6a9a3648961d", |
| "name": "Allowed Client Scopes", |
| "providerId": "allowed-client-templates", |
| "subType": "anonymous", |
| "subComponents": {}, |
| "config": { |
| "allow-default-scopes": [ |
| "true" |
| ] |
| } |
| } |
| ], |
| "org.keycloak.keys.KeyProvider": [ |
| { |
| "id": "9890b674-2409-4e30-95e8-0c66775d0dec", |
| "name": "rsa-generated", |
| "providerId": "rsa-generated", |
| "subComponents": {}, |
| "config": { |
| "priority": [ |
| "100" |
| ] |
| } |
| }, |
| { |
| "id": "447f9685-f16b-463c-9ee1-ed1ae487fa06", |
| "name": "aes-generated", |
| "providerId": "aes-generated", |
| "subComponents": {}, |
| "config": { |
| "priority": [ |
| "100" |
| ] |
| } |
| }, |
| { |
| "id": "198c0d7e-ee71-4b28-86ab-3cd3b0f45231", |
| "name": "hmac-generated", |
| "providerId": "hmac-generated", |
| "subComponents": {}, |
| "config": { |
| "priority": [ |
| "100" |
| ], |
| "algorithm": [ |
| "HS256" |
| ] |
| } |
| } |
| ] |
| }, |
| "internationalizationEnabled": false, |
| "supportedLocales": [], |
| "authenticationFlows": [ |
| { |
| "id": "0ee220ce-108a-409c-83c2-a5686323b9ee", |
| "alias": "Account verification options", |
| "description": "Method with which to verity the existing account", |
| "providerId": "basic-flow", |
| "topLevel": false, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "idp-email-verification", |
| "requirement": "ALTERNATIVE", |
| "priority": 10, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "requirement": "ALTERNATIVE", |
| "priority": 20, |
| "flowAlias": "Verify Existing Account by Re-authentication", |
| "userSetupAllowed": false, |
| "autheticatorFlow": true |
| } |
| ] |
| }, |
| { |
| "id": "d21dab1e-44d5-4e02-ad5d-544ac4fb6c3c", |
| "alias": "Authentication Options", |
| "description": "Authentication options.", |
| "providerId": "basic-flow", |
| "topLevel": false, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "basic-auth", |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "authenticator": "basic-auth-otp", |
| "requirement": "DISABLED", |
| "priority": 20, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "authenticator": "auth-spnego", |
| "requirement": "DISABLED", |
| "priority": 30, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| } |
| ] |
| }, |
| { |
| "id": "ec170205-9818-4cd2-9aff-d57c3c47a0a8", |
| "alias": "Browser - Conditional OTP", |
| "description": "Flow to determine if the OTP is required for the authentication", |
| "providerId": "basic-flow", |
| "topLevel": false, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "conditional-user-configured", |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "authenticator": "auth-otp-form", |
| "requirement": "REQUIRED", |
| "priority": 20, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| } |
| ] |
| }, |
| { |
| "id": "7867cf39-84c1-4061-8d7a-000ffd974a06", |
| "alias": "Direct Grant - Conditional OTP", |
| "description": "Flow to determine if the OTP is required for the authentication", |
| "providerId": "basic-flow", |
| "topLevel": false, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "conditional-user-configured", |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "authenticator": "direct-grant-validate-otp", |
| "requirement": "REQUIRED", |
| "priority": 20, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| } |
| ] |
| }, |
| { |
| "id": "eb496420-e54b-41e4-abdb-c5179dc345af", |
| "alias": "First broker login - Conditional OTP", |
| "description": "Flow to determine if the OTP is required for the authentication", |
| "providerId": "basic-flow", |
| "topLevel": false, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "conditional-user-configured", |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "authenticator": "auth-otp-form", |
| "requirement": "REQUIRED", |
| "priority": 20, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| } |
| ] |
| }, |
| { |
| "id": "bbf7a7ae-352b-44f4-83ab-1b3adcc0470c", |
| "alias": "Handle Existing Account", |
| "description": "Handle what to do if there is existing account with same email/username like authenticated identity provider", |
| "providerId": "basic-flow", |
| "topLevel": false, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "idp-confirm-link", |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "requirement": "REQUIRED", |
| "priority": 20, |
| "flowAlias": "Account verification options", |
| "userSetupAllowed": false, |
| "autheticatorFlow": true |
| } |
| ] |
| }, |
| { |
| "id": "74ec31d4-b70d-45db-817d-998ca47dca3f", |
| "alias": "Reset - Conditional OTP", |
| "description": "Flow to determine if the OTP should be reset or not. Set to REQUIRED to force.", |
| "providerId": "basic-flow", |
| "topLevel": false, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "conditional-user-configured", |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "authenticator": "reset-otp", |
| "requirement": "REQUIRED", |
| "priority": 20, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| } |
| ] |
| }, |
| { |
| "id": "f0f868e5-da82-4ab3-8a39-4b02417ec001", |
| "alias": "User creation or linking", |
| "description": "Flow for the existing/non-existing user alternatives", |
| "providerId": "basic-flow", |
| "topLevel": false, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticatorConfig": "create unique user config", |
| "authenticator": "idp-create-user-if-unique", |
| "requirement": "ALTERNATIVE", |
| "priority": 10, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "requirement": "ALTERNATIVE", |
| "priority": 20, |
| "flowAlias": "Handle Existing Account", |
| "userSetupAllowed": false, |
| "autheticatorFlow": true |
| } |
| ] |
| }, |
| { |
| "id": "78059620-abd8-4e1c-97a5-dd25bf456a29", |
| "alias": "Verify Existing Account by Re-authentication", |
| "description": "Reauthentication of existing account", |
| "providerId": "basic-flow", |
| "topLevel": false, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "idp-username-password-form", |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "requirement": "CONDITIONAL", |
| "priority": 20, |
| "flowAlias": "First broker login - Conditional OTP", |
| "userSetupAllowed": false, |
| "autheticatorFlow": true |
| } |
| ] |
| }, |
| { |
| "id": "158733a4-43f8-4cbc-922d-5017939ad0dc", |
| "alias": "browser", |
| "description": "browser based authentication", |
| "providerId": "basic-flow", |
| "topLevel": true, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "auth-cookie", |
| "requirement": "ALTERNATIVE", |
| "priority": 10, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "authenticator": "auth-spnego", |
| "requirement": "DISABLED", |
| "priority": 20, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "authenticator": "identity-provider-redirector", |
| "requirement": "ALTERNATIVE", |
| "priority": 25, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "requirement": "ALTERNATIVE", |
| "priority": 30, |
| "flowAlias": "forms", |
| "userSetupAllowed": false, |
| "autheticatorFlow": true |
| } |
| ] |
| }, |
| { |
| "id": "9027d460-c6c3-49d9-869d-108acba1609c", |
| "alias": "clients", |
| "description": "Base authentication for clients", |
| "providerId": "client-flow", |
| "topLevel": true, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "client-secret", |
| "requirement": "ALTERNATIVE", |
| "priority": 10, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "authenticator": "client-jwt", |
| "requirement": "ALTERNATIVE", |
| "priority": 20, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "authenticator": "client-secret-jwt", |
| "requirement": "ALTERNATIVE", |
| "priority": 30, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "authenticator": "client-x509", |
| "requirement": "ALTERNATIVE", |
| "priority": 40, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| } |
| ] |
| }, |
| { |
| "id": "dfb7f7d8-1260-4d25-ac2c-b04b029bc63f", |
| "alias": "direct grant", |
| "description": "OpenID Connect Resource Owner Grant", |
| "providerId": "basic-flow", |
| "topLevel": true, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "direct-grant-validate-username", |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "authenticator": "direct-grant-validate-password", |
| "requirement": "REQUIRED", |
| "priority": 20, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "requirement": "CONDITIONAL", |
| "priority": 30, |
| "flowAlias": "Direct Grant - Conditional OTP", |
| "userSetupAllowed": false, |
| "autheticatorFlow": true |
| } |
| ] |
| }, |
| { |
| "id": "58f57ccc-d878-4670-bffa-be9f4754df62", |
| "alias": "docker auth", |
| "description": "Used by Docker clients to authenticate against the IDP", |
| "providerId": "basic-flow", |
| "topLevel": true, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "docker-http-basic-authenticator", |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| } |
| ] |
| }, |
| { |
| "id": "c5d1f9d8-1d25-4654-adf8-0a83f0c98303", |
| "alias": "first broker login", |
| "description": "Actions taken after first broker login with identity provider account, which is not yet linked to any Keycloak account", |
| "providerId": "basic-flow", |
| "topLevel": true, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticatorConfig": "review profile config", |
| "authenticator": "idp-review-profile", |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "requirement": "REQUIRED", |
| "priority": 20, |
| "flowAlias": "User creation or linking", |
| "userSetupAllowed": false, |
| "autheticatorFlow": true |
| } |
| ] |
| }, |
| { |
| "id": "84eccfe4-1192-4a02-a5ed-f4ff7a5a1442", |
| "alias": "forms", |
| "description": "Username, password, otp and other auth forms.", |
| "providerId": "basic-flow", |
| "topLevel": false, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "auth-username-password-form", |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "requirement": "CONDITIONAL", |
| "priority": 20, |
| "flowAlias": "Browser - Conditional OTP", |
| "userSetupAllowed": false, |
| "autheticatorFlow": true |
| } |
| ] |
| }, |
| { |
| "id": "a2f8ce9d-0206-4ea5-b09a-e660e551c2c0", |
| "alias": "http challenge", |
| "description": "An authentication flow based on challenge-response HTTP Authentication Schemes", |
| "providerId": "basic-flow", |
| "topLevel": true, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "no-cookie-redirect", |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "requirement": "REQUIRED", |
| "priority": 20, |
| "flowAlias": "Authentication Options", |
| "userSetupAllowed": false, |
| "autheticatorFlow": true |
| } |
| ] |
| }, |
| { |
| "id": "112ed8a8-631c-455e-9dbc-34935b74b237", |
| "alias": "registration", |
| "description": "registration flow", |
| "providerId": "basic-flow", |
| "topLevel": true, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "registration-page-form", |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "flowAlias": "registration form", |
| "userSetupAllowed": false, |
| "autheticatorFlow": true |
| } |
| ] |
| }, |
| { |
| "id": "f15cdba2-4e59-4c06-9819-604f9eb811d0", |
| "alias": "registration form", |
| "description": "registration form", |
| "providerId": "form-flow", |
| "topLevel": false, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "registration-user-creation", |
| "requirement": "REQUIRED", |
| "priority": 20, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "authenticator": "registration-profile-action", |
| "requirement": "REQUIRED", |
| "priority": 40, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "authenticator": "registration-password-action", |
| "requirement": "REQUIRED", |
| "priority": 50, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "authenticator": "registration-recaptcha-action", |
| "requirement": "DISABLED", |
| "priority": 60, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| } |
| ] |
| }, |
| { |
| "id": "182c33c2-1b63-4a77-bbde-54af459f94b6", |
| "alias": "reset credentials", |
| "description": "Reset credentials for a user if they forgot their password or something", |
| "providerId": "basic-flow", |
| "topLevel": true, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "reset-credentials-choose-user", |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "authenticator": "reset-credential-email", |
| "requirement": "REQUIRED", |
| "priority": 20, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "authenticator": "reset-password", |
| "requirement": "REQUIRED", |
| "priority": 30, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| }, |
| { |
| "requirement": "CONDITIONAL", |
| "priority": 40, |
| "flowAlias": "Reset - Conditional OTP", |
| "userSetupAllowed": false, |
| "autheticatorFlow": true |
| } |
| ] |
| }, |
| { |
| "id": "bd4486c6-1f69-45fd-b0c7-cbeeaf9e4f21", |
| "alias": "saml ecp", |
| "description": "SAML ECP Profile Authentication Flow", |
| "providerId": "basic-flow", |
| "topLevel": true, |
| "builtIn": true, |
| "authenticationExecutions": [ |
| { |
| "authenticator": "http-basic-authenticator", |
| "requirement": "REQUIRED", |
| "priority": 10, |
| "userSetupAllowed": false, |
| "autheticatorFlow": false |
| } |
| ] |
| } |
| ], |
| "authenticatorConfig": [ |
| { |
| "id": "476c8235-6510-4a4f-ae77-dc711b1792ac", |
| "alias": "create unique user config", |
| "config": { |
| "require.password.update.after.registration": "false" |
| } |
| }, |
| { |
| "id": "6e78f8d6-1611-441a-b0da-df6570583564", |
| "alias": "review profile config", |
| "config": { |
| "update.profile.on.first.login": "missing" |
| } |
| } |
| ], |
| "requiredActions": [ |
| { |
| "alias": "CONFIGURE_TOTP", |
| "name": "Configure OTP", |
| "providerId": "CONFIGURE_TOTP", |
| "enabled": true, |
| "defaultAction": false, |
| "priority": 10, |
| "config": {} |
| }, |
| { |
| "alias": "terms_and_conditions", |
| "name": "Terms and Conditions", |
| "providerId": "terms_and_conditions", |
| "enabled": false, |
| "defaultAction": false, |
| "priority": 20, |
| "config": {} |
| }, |
| { |
| "alias": "UPDATE_PASSWORD", |
| "name": "Update Password", |
| "providerId": "UPDATE_PASSWORD", |
| "enabled": true, |
| "defaultAction": false, |
| "priority": 30, |
| "config": {} |
| }, |
| { |
| "alias": "UPDATE_PROFILE", |
| "name": "Update Profile", |
| "providerId": "UPDATE_PROFILE", |
| "enabled": true, |
| "defaultAction": false, |
| "priority": 40, |
| "config": {} |
| }, |
| { |
| "alias": "VERIFY_EMAIL", |
| "name": "Verify Email", |
| "providerId": "VERIFY_EMAIL", |
| "enabled": true, |
| "defaultAction": false, |
| "priority": 50, |
| "config": {} |
| }, |
| { |
| "alias": "delete_account", |
| "name": "Delete Account", |
| "providerId": "delete_account", |
| "enabled": false, |
| "defaultAction": false, |
| "priority": 60, |
| "config": {} |
| }, |
| { |
| "alias": "update_user_locale", |
| "name": "Update User Locale", |
| "providerId": "update_user_locale", |
| "enabled": true, |
| "defaultAction": false, |
| "priority": 1000, |
| "config": {} |
| } |
| ], |
| "browserFlow": "browser", |
| "registrationFlow": "registration", |
| "directGrantFlow": "direct grant", |
| "resetCredentialsFlow": "reset credentials", |
| "clientAuthenticationFlow": "clients", |
| "dockerAuthenticationFlow": "docker auth", |
| "attributes": { |
| "clientOfflineSessionMaxLifespan": "0", |
| "clientSessionIdleTimeout": "0", |
| "clientSessionMaxLifespan": "0", |
| "clientOfflineSessionIdleTimeout": "0" |
| }, |
| "keycloakVersion": "12.0.4", |
| "userManagedAccessAllowed": false |
| } |