Changeset View
Changeset View
Standalone View
Standalone View
docker/conf/keycloak/swh-realm.json
- This file was added.
{ | |||||
"id": "SoftwareHeritage", | |||||
"realm": "SoftwareHeritage", | |||||
"notBefore": 0, | |||||
"defaultSignatureAlgorithm": "RS256", | |||||
"revokeRefreshToken": false, | |||||
"refreshTokenMaxReuse": 0, | |||||
"accessTokenLifespan": 600, | |||||
"accessTokenLifespanForImplicitFlow": 900, | |||||
"ssoSessionIdleTimeout": 1800, | |||||
"ssoSessionMaxLifespan": 36000, | |||||
"ssoSessionIdleTimeoutRememberMe": 0, | |||||
"ssoSessionMaxLifespanRememberMe": 0, | |||||
"offlineSessionIdleTimeout": 2592000, | |||||
"offlineSessionMaxLifespanEnabled": true, | |||||
"offlineSessionMaxLifespan": 5184000, | |||||
"accessCodeLifespan": 60, | |||||
"accessCodeLifespanUserAction": 300, | |||||
"accessCodeLifespanLogin": 1800, | |||||
"actionTokenGeneratedByAdminLifespan": 43200, | |||||
"actionTokenGeneratedByUserLifespan": 300, | |||||
"enabled": true, | |||||
"sslRequired": "external", | |||||
"registrationAllowed": false, | |||||
"registrationEmailAsUsername": false, | |||||
"rememberMe": false, | |||||
"verifyEmail": false, | |||||
"loginWithEmailAllowed": true, | |||||
"duplicateEmailsAllowed": false, | |||||
"resetPasswordAllowed": false, | |||||
"editUsernameAllowed": false, | |||||
"bruteForceProtected": false, | |||||
"permanentLockout": false, | |||||
"maxFailureWaitSeconds": 900, | |||||
"minimumQuickLoginWaitSeconds": 60, | |||||
"waitIncrementSeconds": 60, | |||||
"quickLoginCheckMilliSeconds": 1000, | |||||
"maxDeltaTimeSeconds": 43200, | |||||
"failureFactor": 30, | |||||
"roles": { | |||||
"realm": [ | |||||
{ | |||||
"id": "7b3f4e43-9452-43e9-a0cd-79a3407f1322", | |||||
"name": "offline_access", | |||||
"description": "${role_offline-access}", | |||||
"composite": false, | |||||
"clientRole": false, | |||||
"containerId": "SoftwareHeritage", | |||||
"attributes": {} | |||||
}, | |||||
{ | |||||
"id": "a76bd910-e61e-4b33-8944-55eb9e572690", | |||||
"name": "uma_authorization", | |||||
"description": "${role_uma_authorization}", | |||||
"composite": false, | |||||
"clientRole": false, | |||||
"containerId": "SoftwareHeritage", | |||||
"attributes": {} | |||||
} | |||||
], | |||||
"client": { | |||||
"realm-management": [ | |||||
{ | |||||
"id": "df0f7bb3-7f49-420a-b70c-6591bb145c40", | |||||
"name": "view-users", | |||||
"description": "${role_view-users}", | |||||
"composite": true, | |||||
"composites": { | |||||
"client": { | |||||
"realm-management": [ | |||||
"query-users", | |||||
"query-groups" | |||||
] | |||||
} | |||||
}, | |||||
"clientRole": true, | |||||
"containerId": "dab29929-cf51-4dc8-932b-0a4b83754dab", | |||||
"attributes": {} | |||||
}, | |||||
{ | |||||
"id": "f988dca6-fa3b-49d3-ae17-05dd3a8e536c", | |||||
"name": "view-events", | |||||
"description": "${role_view-events}", | |||||
"composite": false, | |||||
"clientRole": true, | |||||
"containerId": "dab29929-cf51-4dc8-932b-0a4b83754dab", | |||||
"attributes": {} | |||||
}, | |||||
{ | |||||
"id": "546717d8-685e-4bc2-86d7-9ed3b4bb18fb", | |||||
"name": "view-identity-providers", | |||||
"description": "${role_view-identity-providers}", | |||||
"composite": false, | |||||
"clientRole": true, | |||||
"containerId": "dab29929-cf51-4dc8-932b-0a4b83754dab", | |||||
"attributes": {} | |||||
}, | |||||
{ | |||||
"id": "ff405dc7-990e-4128-87ad-d03d1f84ab69", | |||||
"name": "manage-identity-providers", | |||||
"description": "${role_manage-identity-providers}", | |||||
"composite": false, | |||||
"clientRole": true, | |||||
"containerId": "dab29929-cf51-4dc8-932b-0a4b83754dab", | |||||
"attributes": {} | |||||
}, | |||||
{ | |||||
"id": "a498b566-5b8f-409c-8319-d99bae34f790", | |||||
"name": "create-client", | |||||
"description": "${role_create-client}", | |||||
"composite": false, | |||||
"clientRole": true, | |||||
"containerId": "dab29929-cf51-4dc8-932b-0a4b83754dab", | |||||
"attributes": {} | |||||
}, | |||||
{ | |||||
"id": "67f8f2b0-dfe9-4bbe-bcc6-d8d8b4935d0d", | |||||
"name": "query-clients", | |||||
"description": "${role_query-clients}", | |||||
"composite": false, | |||||
"clientRole": true, | |||||
"containerId": "dab29929-cf51-4dc8-932b-0a4b83754dab", | |||||
"attributes": {} | |||||
}, | |||||
{ | |||||
"id": "ae6feccb-194a-4eb4-96b4-75bee2a1815f", | |||||
"name": "query-realms", | |||||
"description": "${role_query-realms}", | |||||
"composite": false, | |||||
"clientRole": true, | |||||
"containerId": "dab29929-cf51-4dc8-932b-0a4b83754dab", | |||||
"attributes": {} | |||||
}, | |||||
{ | |||||
"id": "19161555-ecb6-4f61-8863-bcdacf8db90a", | |||||
"name": "realm-admin", | |||||
"description": "${role_realm-admin}", | |||||
"composite": true, | |||||
"composites": { | |||||
"client": { | |||||
"realm-management": [ | |||||
"view-users", | |||||
"view-events", | |||||
"view-identity-providers", | |||||
"manage-identity-providers", | |||||
"create-client", | |||||
"query-clients", | |||||
"query-realms", | |||||
"manage-events", | |||||
"view-clients", | |||||
"manage-realm", | |||||
"impersonation", | |||||
"manage-clients", | |||||
"view-authorization", | |||||
"query-users", | |||||
"view-realm", | |||||
"manage-authorization", | |||||
"manage-users", | |||||
"query-groups" | |||||
] | |||||
} | |||||
}, | |||||
"clientRole": true, | |||||
"containerId": "dab29929-cf51-4dc8-932b-0a4b83754dab", | |||||
"attributes": {} | |||||
}, | |||||
{ | |||||
"id": "0d59cfea-87e0-48b6-9163-b46aae33a5d0", | |||||
"name": "manage-events", | |||||
"description": "${role_manage-events}", | |||||
"composite": false, | |||||
"clientRole": true, | |||||
"containerId": "dab29929-cf51-4dc8-932b-0a4b83754dab", | |||||
"attributes": {} | |||||
}, | |||||
{ | |||||
"id": "3f46938c-7f8a-4b76-9e8c-4dd60e753d8d", | |||||
"name": "view-clients", | |||||
"description": "${role_view-clients}", | |||||
"composite": true, | |||||
"composites": { | |||||
"client": { | |||||
"realm-management": [ | |||||
"query-clients" | |||||
] | |||||
} | |||||
}, | |||||
"clientRole": true, | |||||
"containerId": "dab29929-cf51-4dc8-932b-0a4b83754dab", | |||||
"attributes": {} | |||||
}, | |||||
{ | |||||
"id": "ff5dec7d-9b84-4ccb-acb6-083babe1e7fc", | |||||
"name": "manage-realm", | |||||
"description": "${role_manage-realm}", | |||||
"composite": false, | |||||
"clientRole": true, | |||||
"containerId": "dab29929-cf51-4dc8-932b-0a4b83754dab", | |||||
"attributes": {} | |||||
}, | |||||
{ | |||||
"id": "3dad9fcf-71ad-429d-bb5b-aaa4b31485e3", | |||||
"name": "impersonation", | |||||
"description": "${role_impersonation}", | |||||
"composite": false, | |||||
"clientRole": true, | |||||
"containerId": "dab29929-cf51-4dc8-932b-0a4b83754dab", | |||||
"attributes": {} | |||||
}, | |||||
{ | |||||
"id": "25d4c2f4-5163-496e-901d-15c668ced462", | |||||
"name": "manage-clients", | |||||
"description": "${role_manage-clients}", | |||||
"composite": false, | |||||
"clientRole": true, | |||||
"containerId": "dab29929-cf51-4dc8-932b-0a4b83754dab", | |||||
"attributes": {} | |||||
}, | |||||
{ | |||||
"id": "4340a075-f781-4455-9a1b-784f49f3c6ba", | |||||
"name": "view-authorization", | |||||
"description": "${role_view-authorization}", | |||||
"composite": false, | |||||
"clientRole": true, | |||||
"containerId": "dab29929-cf51-4dc8-932b-0a4b83754dab", | |||||
"attributes": {} | |||||
}, | |||||
{ | |||||
"id": "d52c6616-a65b-4628-9d1f-96309c0cf7c8", | |||||
"name": "view-realm", | |||||
"description": "${role_view-realm}", | |||||
"composite": false, | |||||
"clientRole": true, | |||||
"containerId": "dab29929-cf51-4dc8-932b-0a4b83754dab", | |||||
"attributes": {} | |||||
}, | |||||
{ | |||||
"id": "63f18b95-2024-45c6-931c-bfb4dddfed60", | |||||
"name": "query-users", | |||||
"description": "${role_query-users}", | |||||
"composite": false, | |||||
"clientRole": true, | |||||
"containerId": "dab29929-cf51-4dc8-932b-0a4b83754dab", | |||||
"attributes": {} | |||||
}, | |||||
{ | |||||
"id": "dc004eef-6ead-45f1-9fc7-91c38465ce6f", | |||||
"name": "manage-authorization", | |||||
"description": "${role_manage-authorization}", | |||||
"composite": false, | |||||
"clientRole": true, | |||||
"containerId": "dab29929-cf51-4dc8-932b-0a4b83754dab", | |||||
"attributes": {} | |||||
}, | |||||
{ | |||||
"id": "a6d09a9b-5536-4cd9-8e2a-0eb9b0a23925", | |||||
"name": "manage-users", | |||||
"description": "${role_manage-users}", | |||||
"composite": false, | |||||
"clientRole": true, | |||||
"containerId": "dab29929-cf51-4dc8-932b-0a4b83754dab", | |||||
"attributes": {} | |||||
}, | |||||
{ | |||||
"id": "6ea5f00b-f508-4fa4-979e-2dbb69b7793f", | |||||
"name": "query-groups", | |||||
"description": "${role_query-groups}", | |||||
"composite": false, | |||||
"clientRole": true, | |||||
"containerId": "dab29929-cf51-4dc8-932b-0a4b83754dab", | |||||
"attributes": {} | |||||
} | |||||
], | |||||
"security-admin-console": [], | |||||
"swh-web": [], | |||||
"admin-cli": [], | |||||
"broker": [ | |||||
{ | |||||
"id": "a01885da-7396-40b7-8f7b-1efdcee2d8be", | |||||
"name": "read-token", | |||||
"description": "${role_read-token}", | |||||
"composite": false, | |||||
"clientRole": true, | |||||
"containerId": "7ed32ab4-f567-411a-8c94-3dec90cbb404", | |||||
"attributes": {} | |||||
} | |||||
], | |||||
"account": [ | |||||
{ | |||||
"id": "b146afd2-65f6-4dc1-bea9-fc79d2dbeba1", | |||||
"name": "manage-account-links", | |||||
"description": "${role_manage-account-links}", | |||||
"composite": false, | |||||
"clientRole": true, | |||||
"containerId": "8c5474f0-dab5-488a-aa28-68e7e877283c", | |||||
"attributes": {} | |||||
}, | |||||
{ | |||||
"id": "65a5a0e1-25c7-445b-a7f5-e7174d01e4cf", | |||||
"name": "view-profile", | |||||
"description": "${role_view-profile}", | |||||
"composite": false, | |||||
"clientRole": true, | |||||
"containerId": "8c5474f0-dab5-488a-aa28-68e7e877283c", | |||||
"attributes": {} | |||||
}, | |||||
{ | |||||
"id": "0f598cad-1841-4a1d-96fe-4fac7d7acfee", | |||||
"name": "manage-account", | |||||
"description": "${role_manage-account}", | |||||
"composite": true, | |||||
"composites": { | |||||
"client": { | |||||
"account": [ | |||||
"manage-account-links" | |||||
] | |||||
} | |||||
}, | |||||
"clientRole": true, | |||||
"containerId": "8c5474f0-dab5-488a-aa28-68e7e877283c", | |||||
"attributes": {} | |||||
} | |||||
] | |||||
} | |||||
}, | |||||
"groups": [ | |||||
{ | |||||
"id": "738da969-689b-4c2f-98ba-e47444f66341", | |||||
"name": "staff", | |||||
"path": "/staff", | |||||
"attributes": {}, | |||||
"realmRoles": [], | |||||
"clientRoles": {}, | |||||
"subGroups": [] | |||||
} | |||||
], | |||||
"defaultRoles": [ | |||||
"offline_access", | |||||
"uma_authorization" | |||||
], | |||||
"requiredCredentials": [ | |||||
"password" | |||||
], | |||||
"otpPolicyType": "totp", | |||||
"otpPolicyAlgorithm": "HmacSHA1", | |||||
"otpPolicyInitialCounter": 0, | |||||
"otpPolicyDigits": 6, | |||||
"otpPolicyLookAheadWindow": 1, | |||||
"otpPolicyPeriod": 30, | |||||
"otpSupportedApplications": [ | |||||
"FreeOTP", | |||||
"Google Authenticator" | |||||
], | |||||
"webAuthnPolicyRpEntityName": "keycloak", | |||||
"webAuthnPolicySignatureAlgorithms": [ | |||||
"ES256" | |||||
], | |||||
"webAuthnPolicyRpId": "", | |||||
"webAuthnPolicyAttestationConveyancePreference": "not specified", | |||||
"webAuthnPolicyAuthenticatorAttachment": "not specified", | |||||
"webAuthnPolicyRequireResidentKey": "not specified", | |||||
"webAuthnPolicyUserVerificationRequirement": "not specified", | |||||
"webAuthnPolicyCreateTimeout": 0, | |||||
"webAuthnPolicyAvoidSameAuthenticatorRegister": false, | |||||
"webAuthnPolicyAcceptableAaguids": [], | |||||
"scopeMappings": [ | |||||
{ | |||||
"clientScope": "offline_access", | |||||
"roles": [ | |||||
"offline_access" | |||||
] | |||||
} | |||||
], | |||||
"clients": [ | |||||
{ | |||||
"id": "8c5474f0-dab5-488a-aa28-68e7e877283c", | |||||
"clientId": "account", | |||||
"name": "${client_account}", | |||||
"rootUrl": "${authBaseUrl}", | |||||
"baseUrl": "/realms/SoftwareHeritage/account/", | |||||
"surrogateAuthRequired": false, | |||||
"enabled": true, | |||||
"clientAuthenticatorType": "client-secret", | |||||
"secret": "**********", | |||||
"defaultRoles": [ | |||||
"manage-account", | |||||
"view-profile" | |||||
], | |||||
"redirectUris": [ | |||||
"/realms/SoftwareHeritage/account/*" | |||||
], | |||||
"webOrigins": [], | |||||
"notBefore": 0, | |||||
"bearerOnly": false, | |||||
"consentRequired": false, | |||||
"standardFlowEnabled": true, | |||||
"implicitFlowEnabled": false, | |||||
"directAccessGrantsEnabled": false, | |||||
"serviceAccountsEnabled": false, | |||||
"publicClient": false, | |||||
"frontchannelLogout": false, | |||||
"protocol": "openid-connect", | |||||
"attributes": {}, | |||||
"authenticationFlowBindingOverrides": {}, | |||||
"fullScopeAllowed": false, | |||||
"nodeReRegistrationTimeout": 0, | |||||
"defaultClientScopes": [ | |||||
"web-origins", | |||||
"role_list", | |||||
"profile", | |||||
"roles", | |||||
"email" | |||||
], | |||||
"optionalClientScopes": [ | |||||
"address", | |||||
"phone", | |||||
"offline_access", | |||||
"microprofile-jwt" | |||||
] | |||||
}, | |||||
{ | |||||
"id": "1a6ecc53-9a1a-48e1-89c4-7f4cd410e9e8", | |||||
"clientId": "admin-cli", | |||||
"name": "${client_admin-cli}", | |||||
"surrogateAuthRequired": false, | |||||
"enabled": true, | |||||
"clientAuthenticatorType": "client-secret", | |||||
"secret": "**********", | |||||
"redirectUris": [], | |||||
"webOrigins": [], | |||||
"notBefore": 0, | |||||
"bearerOnly": false, | |||||
"consentRequired": false, | |||||
"standardFlowEnabled": false, | |||||
"implicitFlowEnabled": false, | |||||
"directAccessGrantsEnabled": true, | |||||
"serviceAccountsEnabled": false, | |||||
"publicClient": true, | |||||
"frontchannelLogout": false, | |||||
"protocol": "openid-connect", | |||||
"attributes": {}, | |||||
"authenticationFlowBindingOverrides": {}, | |||||
"fullScopeAllowed": false, | |||||
"nodeReRegistrationTimeout": 0, | |||||
"defaultClientScopes": [ | |||||
"web-origins", | |||||
"role_list", | |||||
"profile", | |||||
"roles", | |||||
"email" | |||||
], | |||||
"optionalClientScopes": [ | |||||
"address", | |||||
"phone", | |||||
"offline_access", | |||||
"microprofile-jwt" | |||||
] | |||||
}, | |||||
{ | |||||
"id": "7ed32ab4-f567-411a-8c94-3dec90cbb404", | |||||
"clientId": "broker", | |||||
"name": "${client_broker}", | |||||
"surrogateAuthRequired": false, | |||||
"enabled": true, | |||||
"clientAuthenticatorType": "client-secret", | |||||
"secret": "**********", | |||||
"redirectUris": [], | |||||
"webOrigins": [], | |||||
"notBefore": 0, | |||||
"bearerOnly": false, | |||||
"consentRequired": false, | |||||
"standardFlowEnabled": true, | |||||
"implicitFlowEnabled": false, | |||||
"directAccessGrantsEnabled": false, | |||||
"serviceAccountsEnabled": false, | |||||
"publicClient": false, | |||||
"frontchannelLogout": false, | |||||
"protocol": "openid-connect", | |||||
"attributes": {}, | |||||
"authenticationFlowBindingOverrides": {}, | |||||
"fullScopeAllowed": false, | |||||
"nodeReRegistrationTimeout": 0, | |||||
"defaultClientScopes": [ | |||||
"web-origins", | |||||
"role_list", | |||||
"profile", | |||||
"roles", | |||||
"email" | |||||
], | |||||
"optionalClientScopes": [ | |||||
"address", | |||||
"phone", | |||||
"offline_access", | |||||
"microprofile-jwt" | |||||
] | |||||
}, | |||||
{ | |||||
"id": "dab29929-cf51-4dc8-932b-0a4b83754dab", | |||||
"clientId": "realm-management", | |||||
"name": "${client_realm-management}", | |||||
"surrogateAuthRequired": false, | |||||
"enabled": true, | |||||
"clientAuthenticatorType": "client-secret", | |||||
"secret": "**********", | |||||
"redirectUris": [], | |||||
"webOrigins": [], | |||||
"notBefore": 0, | |||||
"bearerOnly": true, | |||||
"consentRequired": false, | |||||
"standardFlowEnabled": true, | |||||
"implicitFlowEnabled": false, | |||||
"directAccessGrantsEnabled": false, | |||||
"serviceAccountsEnabled": false, | |||||
"publicClient": false, | |||||
"frontchannelLogout": false, | |||||
"protocol": "openid-connect", | |||||
"attributes": {}, | |||||
"authenticationFlowBindingOverrides": {}, | |||||
"fullScopeAllowed": false, | |||||
"nodeReRegistrationTimeout": 0, | |||||
"defaultClientScopes": [ | |||||
"web-origins", | |||||
"role_list", | |||||
"profile", | |||||
"roles", | |||||
"email" | |||||
], | |||||
"optionalClientScopes": [ | |||||
"address", | |||||
"phone", | |||||
"offline_access", | |||||
"microprofile-jwt" | |||||
] | |||||
}, | |||||
{ | |||||
"id": "1ce67379-b869-4394-9c63-6662a3a888b3", | |||||
"clientId": "security-admin-console", | |||||
"name": "${client_security-admin-console}", | |||||
"rootUrl": "${authAdminUrl}", | |||||
"baseUrl": "/admin/SoftwareHeritage/console/", | |||||
"surrogateAuthRequired": false, | |||||
"enabled": true, | |||||
"clientAuthenticatorType": "client-secret", | |||||
"secret": "**********", | |||||
"redirectUris": [ | |||||
"/admin/SoftwareHeritage/console/*" | |||||
], | |||||
"webOrigins": [ | |||||
"+" | |||||
], | |||||
"notBefore": 0, | |||||
"bearerOnly": false, | |||||
"consentRequired": false, | |||||
"standardFlowEnabled": true, | |||||
"implicitFlowEnabled": false, | |||||
"directAccessGrantsEnabled": false, | |||||
"serviceAccountsEnabled": false, | |||||
"publicClient": true, | |||||
"frontchannelLogout": false, | |||||
"protocol": "openid-connect", | |||||
"attributes": {}, | |||||
"authenticationFlowBindingOverrides": {}, | |||||
"fullScopeAllowed": false, | |||||
"nodeReRegistrationTimeout": 0, | |||||
"protocolMappers": [ | |||||
{ | |||||
"id": "0055821a-5bfc-4f7d-b1f2-8f82c062b189", | |||||
"name": "locale", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-usermodel-attribute-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"userinfo.token.claim": "true", | |||||
"user.attribute": "locale", | |||||
"id.token.claim": "true", | |||||
"access.token.claim": "true", | |||||
"claim.name": "locale", | |||||
"jsonType.label": "String" | |||||
} | |||||
} | |||||
], | |||||
"defaultClientScopes": [ | |||||
"web-origins", | |||||
"role_list", | |||||
"profile", | |||||
"roles", | |||||
"email" | |||||
], | |||||
"optionalClientScopes": [ | |||||
"address", | |||||
"phone", | |||||
"offline_access", | |||||
"microprofile-jwt" | |||||
] | |||||
}, | |||||
{ | |||||
"id": "86d7ba1e-a4ca-4fe0-8769-b6e10fd255ed", | |||||
"clientId": "swh-web", | |||||
"baseUrl": "http://localhost:5004/", | |||||
"surrogateAuthRequired": false, | |||||
"enabled": true, | |||||
"clientAuthenticatorType": "client-secret", | |||||
"secret": "**********", | |||||
"redirectUris": [ | |||||
"http://localhost:5004/*" | |||||
], | |||||
"webOrigins": [ | |||||
"*" | |||||
], | |||||
"notBefore": 0, | |||||
"bearerOnly": false, | |||||
"consentRequired": false, | |||||
"standardFlowEnabled": true, | |||||
"implicitFlowEnabled": false, | |||||
"directAccessGrantsEnabled": true, | |||||
"serviceAccountsEnabled": false, | |||||
"publicClient": true, | |||||
"frontchannelLogout": false, | |||||
"protocol": "openid-connect", | |||||
"attributes": { | |||||
"saml.assertion.signature": "false", | |||||
"saml.force.post.binding": "false", | |||||
"saml.multivalued.roles": "false", | |||||
"saml.encrypt": "false", | |||||
"saml.server.signature": "false", | |||||
"saml.server.signature.keyinfo.ext": "false", | |||||
"exclude.session.state.from.auth.response": "false", | |||||
"saml_force_name_id_format": "false", | |||||
"saml.client.signature": "false", | |||||
"tls.client.certificate.bound.access.tokens": "false", | |||||
"saml.authnstatement": "false", | |||||
"display.on.consent.screen": "false", | |||||
"saml.onetimeuse.condition": "false" | |||||
}, | |||||
"authenticationFlowBindingOverrides": {}, | |||||
"fullScopeAllowed": true, | |||||
"nodeReRegistrationTimeout": -1, | |||||
"protocolMappers": [ | |||||
{ | |||||
"id": "c1b07079-1020-4919-af16-4cf1e39701af", | |||||
"name": "swh-web audience mapper", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-audience-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"included.client.audience": "swh-web", | |||||
"id.token.claim": "false", | |||||
"access.token.claim": "true" | |||||
} | |||||
}, | |||||
{ | |||||
"id": "1fc70caa-f614-4b9c-b1f9-7431029c0eba", | |||||
"name": "swh-web group mapper", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-group-membership-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"full.path": "true", | |||||
"id.token.claim": "true", | |||||
"access.token.claim": "true", | |||||
"claim.name": "groups", | |||||
"userinfo.token.claim": "true" | |||||
} | |||||
} | |||||
], | |||||
"defaultClientScopes": [ | |||||
"web-origins", | |||||
"role_list", | |||||
"profile", | |||||
"roles", | |||||
"email" | |||||
], | |||||
"optionalClientScopes": [ | |||||
"address", | |||||
"phone", | |||||
"offline_access", | |||||
"microprofile-jwt" | |||||
] | |||||
} | |||||
], | |||||
"clientScopes": [ | |||||
{ | |||||
"id": "4ad2f987-fd9c-4bf6-b2c9-ca34434dc057", | |||||
"name": "address", | |||||
"description": "OpenID Connect built-in scope: address", | |||||
"protocol": "openid-connect", | |||||
"attributes": { | |||||
"include.in.token.scope": "true", | |||||
"display.on.consent.screen": "true", | |||||
"consent.screen.text": "${addressScopeConsentText}" | |||||
}, | |||||
"protocolMappers": [ | |||||
{ | |||||
"id": "65233398-740b-4091-b840-5deddb6b30f7", | |||||
"name": "address", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-address-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"user.attribute.formatted": "formatted", | |||||
"user.attribute.country": "country", | |||||
"user.attribute.postal_code": "postal_code", | |||||
"userinfo.token.claim": "true", | |||||
"user.attribute.street": "street", | |||||
"id.token.claim": "true", | |||||
"user.attribute.region": "region", | |||||
"access.token.claim": "true", | |||||
"user.attribute.locality": "locality" | |||||
} | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "c87e6c1e-fe96-4451-be91-40fdd871a3c1", | |||||
"name": "email", | |||||
"description": "OpenID Connect built-in scope: email", | |||||
"protocol": "openid-connect", | |||||
"attributes": { | |||||
"include.in.token.scope": "true", | |||||
"display.on.consent.screen": "true", | |||||
"consent.screen.text": "${emailScopeConsentText}" | |||||
}, | |||||
"protocolMappers": [ | |||||
{ | |||||
"id": "f2f43c09-0e4f-4791-ace7-97ee695c400c", | |||||
"name": "email", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-usermodel-property-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"userinfo.token.claim": "true", | |||||
"user.attribute": "email", | |||||
"id.token.claim": "true", | |||||
"access.token.claim": "true", | |||||
"claim.name": "email", | |||||
"jsonType.label": "String" | |||||
} | |||||
}, | |||||
{ | |||||
"id": "d5c9d023-8d19-4b9b-9dc0-cdd488263f5f", | |||||
"name": "email verified", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-usermodel-property-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"userinfo.token.claim": "true", | |||||
"user.attribute": "emailVerified", | |||||
"id.token.claim": "true", | |||||
"access.token.claim": "true", | |||||
"claim.name": "email_verified", | |||||
"jsonType.label": "boolean" | |||||
} | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "bbc50e66-2fbe-4110-9843-d61204f260c3", | |||||
"name": "microprofile-jwt", | |||||
"description": "Microprofile - JWT built-in scope", | |||||
"protocol": "openid-connect", | |||||
"attributes": { | |||||
"include.in.token.scope": "true", | |||||
"display.on.consent.screen": "false" | |||||
}, | |||||
"protocolMappers": [ | |||||
{ | |||||
"id": "40c84407-47d1-44cb-b727-83c091a1b007", | |||||
"name": "groups", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-usermodel-realm-role-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"multivalued": "true", | |||||
"user.attribute": "foo", | |||||
"id.token.claim": "true", | |||||
"access.token.claim": "true", | |||||
"claim.name": "groups", | |||||
"jsonType.label": "String" | |||||
} | |||||
}, | |||||
{ | |||||
"id": "f74aa38d-3aee-45ed-88b1-dd9e8f0dc28b", | |||||
"name": "upn", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-usermodel-property-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"userinfo.token.claim": "true", | |||||
"user.attribute": "username", | |||||
"id.token.claim": "true", | |||||
"access.token.claim": "true", | |||||
"claim.name": "upn", | |||||
"jsonType.label": "String" | |||||
} | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "84225fc7-34eb-420f-95fc-482eb050d762", | |||||
"name": "offline_access", | |||||
"description": "OpenID Connect built-in scope: offline_access", | |||||
"protocol": "openid-connect", | |||||
"attributes": { | |||||
"consent.screen.text": "${offlineAccessScopeConsentText}", | |||||
"display.on.consent.screen": "true" | |||||
} | |||||
}, | |||||
{ | |||||
"id": "08bae679-8ad2-4a10-be18-6c239a1ecd98", | |||||
"name": "phone", | |||||
"description": "OpenID Connect built-in scope: phone", | |||||
"protocol": "openid-connect", | |||||
"attributes": { | |||||
"include.in.token.scope": "true", | |||||
"display.on.consent.screen": "true", | |||||
"consent.screen.text": "${phoneScopeConsentText}" | |||||
}, | |||||
"protocolMappers": [ | |||||
{ | |||||
"id": "02affbbf-f851-465f-851a-527bb8916380", | |||||
"name": "phone number verified", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-usermodel-attribute-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"userinfo.token.claim": "true", | |||||
"user.attribute": "phoneNumberVerified", | |||||
"id.token.claim": "true", | |||||
"access.token.claim": "true", | |||||
"claim.name": "phone_number_verified", | |||||
"jsonType.label": "boolean" | |||||
} | |||||
}, | |||||
{ | |||||
"id": "9e71d2c2-14e5-41ee-8b60-69e7eeb27d94", | |||||
"name": "phone number", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-usermodel-attribute-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"userinfo.token.claim": "true", | |||||
"user.attribute": "phoneNumber", | |||||
"id.token.claim": "true", | |||||
"access.token.claim": "true", | |||||
"claim.name": "phone_number", | |||||
"jsonType.label": "String" | |||||
} | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "2e611756-8ebc-418b-9b50-ec490a658eb9", | |||||
"name": "profile", | |||||
"description": "OpenID Connect built-in scope: profile", | |||||
"protocol": "openid-connect", | |||||
"attributes": { | |||||
"include.in.token.scope": "true", | |||||
"display.on.consent.screen": "true", | |||||
"consent.screen.text": "${profileScopeConsentText}" | |||||
}, | |||||
"protocolMappers": [ | |||||
{ | |||||
"id": "88066d20-1ef6-479c-b3fc-7dd9fbd1d7b8", | |||||
"name": "given name", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-usermodel-property-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"userinfo.token.claim": "true", | |||||
"user.attribute": "firstName", | |||||
"id.token.claim": "true", | |||||
"access.token.claim": "true", | |||||
"claim.name": "given_name", | |||||
"jsonType.label": "String" | |||||
} | |||||
}, | |||||
{ | |||||
"id": "945ff2e8-ad43-4575-8d0b-08b03b7ef7c1", | |||||
"name": "website", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-usermodel-attribute-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"userinfo.token.claim": "true", | |||||
"user.attribute": "website", | |||||
"id.token.claim": "true", | |||||
"access.token.claim": "true", | |||||
"claim.name": "website", | |||||
"jsonType.label": "String" | |||||
} | |||||
}, | |||||
{ | |||||
"id": "e0dcfe90-1322-4f3f-a410-275eb60c690b", | |||||
"name": "username", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-usermodel-property-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"userinfo.token.claim": "true", | |||||
"user.attribute": "username", | |||||
"id.token.claim": "true", | |||||
"access.token.claim": "true", | |||||
"claim.name": "preferred_username", | |||||
"jsonType.label": "String" | |||||
} | |||||
}, | |||||
{ | |||||
"id": "f553480d-c2e2-440c-b784-085d1c347be9", | |||||
"name": "middle name", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-usermodel-attribute-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"userinfo.token.claim": "true", | |||||
"user.attribute": "middleName", | |||||
"id.token.claim": "true", | |||||
"access.token.claim": "true", | |||||
"claim.name": "middle_name", | |||||
"jsonType.label": "String" | |||||
} | |||||
}, | |||||
{ | |||||
"id": "c123e90b-f038-42b2-9dfe-32b8f200dfdd", | |||||
"name": "zoneinfo", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-usermodel-attribute-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"userinfo.token.claim": "true", | |||||
"user.attribute": "zoneinfo", | |||||
"id.token.claim": "true", | |||||
"access.token.claim": "true", | |||||
"claim.name": "zoneinfo", | |||||
"jsonType.label": "String" | |||||
} | |||||
}, | |||||
{ | |||||
"id": "0ee2e925-1a73-43a2-a740-3a344b1b3f12", | |||||
"name": "birthdate", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-usermodel-attribute-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"userinfo.token.claim": "true", | |||||
"user.attribute": "birthdate", | |||||
"id.token.claim": "true", | |||||
"access.token.claim": "true", | |||||
"claim.name": "birthdate", | |||||
"jsonType.label": "String" | |||||
} | |||||
}, | |||||
{ | |||||
"id": "30221378-13ee-40cf-adc3-649682ae0572", | |||||
"name": "locale", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-usermodel-attribute-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"userinfo.token.claim": "true", | |||||
"user.attribute": "locale", | |||||
"id.token.claim": "true", | |||||
"access.token.claim": "true", | |||||
"claim.name": "locale", | |||||
"jsonType.label": "String" | |||||
} | |||||
}, | |||||
{ | |||||
"id": "d8e3f1f2-2919-4b64-8e9c-e3c10d4c8041", | |||||
"name": "nickname", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-usermodel-attribute-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"userinfo.token.claim": "true", | |||||
"user.attribute": "nickname", | |||||
"id.token.claim": "true", | |||||
"access.token.claim": "true", | |||||
"claim.name": "nickname", | |||||
"jsonType.label": "String" | |||||
} | |||||
}, | |||||
{ | |||||
"id": "f1cd4ffc-55ad-4919-9196-5d3e3f5b05a2", | |||||
"name": "family name", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-usermodel-property-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"userinfo.token.claim": "true", | |||||
"user.attribute": "lastName", | |||||
"id.token.claim": "true", | |||||
"access.token.claim": "true", | |||||
"claim.name": "family_name", | |||||
"jsonType.label": "String" | |||||
} | |||||
}, | |||||
{ | |||||
"id": "824a0d08-f996-4dcd-8fdc-75064319e510", | |||||
"name": "picture", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-usermodel-attribute-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"userinfo.token.claim": "true", | |||||
"user.attribute": "picture", | |||||
"id.token.claim": "true", | |||||
"access.token.claim": "true", | |||||
"claim.name": "picture", | |||||
"jsonType.label": "String" | |||||
} | |||||
}, | |||||
{ | |||||
"id": "e83e6fee-d8c7-4873-80b0-7cd9dffc8e2e", | |||||
"name": "gender", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-usermodel-attribute-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"userinfo.token.claim": "true", | |||||
"user.attribute": "gender", | |||||
"id.token.claim": "true", | |||||
"access.token.claim": "true", | |||||
"claim.name": "gender", | |||||
"jsonType.label": "String" | |||||
} | |||||
}, | |||||
{ | |||||
"id": "eae328bd-1f10-4931-b39d-cd2a6098d77f", | |||||
"name": "updated at", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-usermodel-attribute-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"userinfo.token.claim": "true", | |||||
"user.attribute": "updatedAt", | |||||
"id.token.claim": "true", | |||||
"access.token.claim": "true", | |||||
"claim.name": "updated_at", | |||||
"jsonType.label": "String" | |||||
} | |||||
}, | |||||
{ | |||||
"id": "f6f76ec1-77fb-44ef-9d99-1d908b2d2f43", | |||||
"name": "full name", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-full-name-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"id.token.claim": "true", | |||||
"access.token.claim": "true", | |||||
"userinfo.token.claim": "true" | |||||
} | |||||
}, | |||||
{ | |||||
"id": "2c477c75-bdc3-4a0e-94c8-fa8018f69de9", | |||||
"name": "profile", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-usermodel-attribute-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"userinfo.token.claim": "true", | |||||
"user.attribute": "profile", | |||||
"id.token.claim": "true", | |||||
"access.token.claim": "true", | |||||
"claim.name": "profile", | |||||
"jsonType.label": "String" | |||||
} | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "71528047-b2ea-417b-b81f-28d9c4b164d8", | |||||
"name": "role_list", | |||||
"description": "SAML role list", | |||||
"protocol": "saml", | |||||
"attributes": { | |||||
"consent.screen.text": "${samlRoleListScopeConsentText}", | |||||
"display.on.consent.screen": "true" | |||||
}, | |||||
"protocolMappers": [ | |||||
{ | |||||
"id": "6b07e80f-113a-4de9-8bff-fd7212721642", | |||||
"name": "role list", | |||||
"protocol": "saml", | |||||
"protocolMapper": "saml-role-list-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"single": "false", | |||||
"attribute.nameformat": "Basic", | |||||
"attribute.name": "Role" | |||||
} | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "dc8c85c2-a83c-461b-9d0c-7dad516669ea", | |||||
"name": "roles", | |||||
"description": "OpenID Connect scope for add user roles to the access token", | |||||
"protocol": "openid-connect", | |||||
"attributes": { | |||||
"include.in.token.scope": "false", | |||||
"display.on.consent.screen": "true", | |||||
"consent.screen.text": "${rolesScopeConsentText}" | |||||
}, | |||||
"protocolMappers": [ | |||||
{ | |||||
"id": "58bf5529-4eea-4ec3-aa91-356faa154ed0", | |||||
"name": "realm roles", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-usermodel-realm-role-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"user.attribute": "foo", | |||||
"access.token.claim": "true", | |||||
"claim.name": "realm_access.roles", | |||||
"jsonType.label": "String", | |||||
"multivalued": "true" | |||||
} | |||||
}, | |||||
{ | |||||
"id": "a3b77a34-4515-40e7-9fc3-dedc17b5e1b4", | |||||
"name": "client roles", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-usermodel-client-role-mapper", | |||||
"consentRequired": false, | |||||
"config": { | |||||
"user.attribute": "foo", | |||||
"access.token.claim": "true", | |||||
"claim.name": "resource_access.${client_id}.roles", | |||||
"jsonType.label": "String", | |||||
"multivalued": "true" | |||||
} | |||||
}, | |||||
{ | |||||
"id": "86bbc202-449d-4eff-9f38-e0584eacd76a", | |||||
"name": "audience resolve", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-audience-resolve-mapper", | |||||
"consentRequired": false, | |||||
"config": {} | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "c92a5a7a-d86f-4ccd-960f-7893897c1c49", | |||||
"name": "web-origins", | |||||
"description": "OpenID Connect scope for add allowed web origins to the access token", | |||||
"protocol": "openid-connect", | |||||
"attributes": { | |||||
"include.in.token.scope": "false", | |||||
"display.on.consent.screen": "false", | |||||
"consent.screen.text": "" | |||||
}, | |||||
"protocolMappers": [ | |||||
{ | |||||
"id": "9a939cc3-3354-4327-a044-c1e7b3f2ae7d", | |||||
"name": "allowed web origins", | |||||
"protocol": "openid-connect", | |||||
"protocolMapper": "oidc-allowed-origins-mapper", | |||||
"consentRequired": false, | |||||
"config": {} | |||||
} | |||||
] | |||||
} | |||||
], | |||||
"defaultDefaultClientScopes": [ | |||||
"role_list", | |||||
"profile", | |||||
"email", | |||||
"roles", | |||||
"web-origins" | |||||
], | |||||
"defaultOptionalClientScopes": [ | |||||
"offline_access", | |||||
"address", | |||||
"phone", | |||||
"microprofile-jwt" | |||||
], | |||||
"browserSecurityHeaders": { | |||||
"contentSecurityPolicyReportOnly": "", | |||||
"xContentTypeOptions": "nosniff", | |||||
"xRobotsTag": "none", | |||||
"xFrameOptions": "SAMEORIGIN", | |||||
"contentSecurityPolicy": "frame-src 'self'; frame-ancestors 'self'; object-src 'none';", | |||||
"xXSSProtection": "1; mode=block", | |||||
"strictTransportSecurity": "max-age=31536000; includeSubDomains" | |||||
}, | |||||
"smtpServer": {}, | |||||
"eventsEnabled": false, | |||||
"eventsListeners": [ | |||||
"jboss-logging" | |||||
], | |||||
"enabledEventTypes": [], | |||||
"adminEventsEnabled": false, | |||||
"adminEventsDetailsEnabled": false, | |||||
"components": { | |||||
"org.keycloak.services.clientregistration.policy.ClientRegistrationPolicy": [ | |||||
{ | |||||
"id": "1b44ba62-65f0-4771-bd11-bfc87edfbf90", | |||||
"name": "Allowed Client Scopes", | |||||
"providerId": "allowed-client-templates", | |||||
"subType": "authenticated", | |||||
"subComponents": {}, | |||||
"config": { | |||||
"allow-default-scopes": [ | |||||
"true" | |||||
] | |||||
} | |||||
}, | |||||
{ | |||||
"id": "629ba995-9b62-4c2a-80fe-1d24337f1713", | |||||
"name": "Trusted Hosts", | |||||
"providerId": "trusted-hosts", | |||||
"subType": "anonymous", | |||||
"subComponents": {}, | |||||
"config": { | |||||
"host-sending-registration-request-must-match": [ | |||||
"true" | |||||
], | |||||
"client-uris-must-match": [ | |||||
"true" | |||||
] | |||||
} | |||||
}, | |||||
{ | |||||
"id": "4265e539-998d-4471-ad80-adfea944b266", | |||||
"name": "Allowed Protocol Mapper Types", | |||||
"providerId": "allowed-protocol-mappers", | |||||
"subType": "anonymous", | |||||
"subComponents": {}, | |||||
"config": { | |||||
"allowed-protocol-mapper-types": [ | |||||
"saml-user-property-mapper", | |||||
"saml-user-attribute-mapper", | |||||
"saml-role-list-mapper", | |||||
"oidc-address-mapper", | |||||
"oidc-full-name-mapper", | |||||
"oidc-sha256-pairwise-sub-mapper", | |||||
"oidc-usermodel-property-mapper", | |||||
"oidc-usermodel-attribute-mapper" | |||||
] | |||||
} | |||||
}, | |||||
{ | |||||
"id": "1a5085dc-f8d6-4ac7-a678-c3345621441b", | |||||
"name": "Max Clients Limit", | |||||
"providerId": "max-clients", | |||||
"subType": "anonymous", | |||||
"subComponents": {}, | |||||
"config": { | |||||
"max-clients": [ | |||||
"200" | |||||
] | |||||
} | |||||
}, | |||||
{ | |||||
"id": "0ea2b95a-b92b-42db-8755-7e0da93bc70e", | |||||
"name": "Consent Required", | |||||
"providerId": "consent-required", | |||||
"subType": "anonymous", | |||||
"subComponents": {}, | |||||
"config": {} | |||||
}, | |||||
{ | |||||
"id": "798e9a8c-518d-41cf-99f9-be4d7a3f4e14", | |||||
"name": "Allowed Protocol Mapper Types", | |||||
"providerId": "allowed-protocol-mappers", | |||||
"subType": "authenticated", | |||||
"subComponents": {}, | |||||
"config": { | |||||
"allowed-protocol-mapper-types": [ | |||||
"saml-user-attribute-mapper", | |||||
"oidc-full-name-mapper", | |||||
"oidc-usermodel-attribute-mapper", | |||||
"oidc-sha256-pairwise-sub-mapper", | |||||
"saml-user-property-mapper", | |||||
"oidc-usermodel-property-mapper", | |||||
"oidc-address-mapper", | |||||
"saml-role-list-mapper" | |||||
] | |||||
} | |||||
}, | |||||
{ | |||||
"id": "8e39a271-4bf2-4b80-a8c6-5376a9ccd18f", | |||||
"name": "Allowed Client Scopes", | |||||
"providerId": "allowed-client-templates", | |||||
"subType": "anonymous", | |||||
"subComponents": {}, | |||||
"config": { | |||||
"allow-default-scopes": [ | |||||
"true" | |||||
] | |||||
} | |||||
}, | |||||
{ | |||||
"id": "867310a6-d5db-44f1-829e-c27b0ac94408", | |||||
"name": "Full Scope Disabled", | |||||
"providerId": "scope", | |||||
"subType": "anonymous", | |||||
"subComponents": {}, | |||||
"config": {} | |||||
} | |||||
], | |||||
"org.keycloak.keys.KeyProvider": [ | |||||
{ | |||||
"id": "cb0b2cdf-9dfe-4777-a419-3180276426bf", | |||||
"name": "rsa-generated", | |||||
"providerId": "rsa-generated", | |||||
"subComponents": {}, | |||||
"config": { | |||||
"priority": [ | |||||
"100" | |||||
] | |||||
} | |||||
}, | |||||
{ | |||||
"id": "f8a88205-b0e7-4961-a175-cb49c9e8c53f", | |||||
"name": "aes-generated", | |||||
"providerId": "aes-generated", | |||||
"subComponents": {}, | |||||
"config": { | |||||
"priority": [ | |||||
"100" | |||||
] | |||||
} | |||||
}, | |||||
{ | |||||
"id": "5a7bd524-75ae-4570-afa4-a337e4337bf4", | |||||
"name": "hmac-generated", | |||||
"providerId": "hmac-generated", | |||||
"subComponents": {}, | |||||
"config": { | |||||
"priority": [ | |||||
"100" | |||||
], | |||||
"algorithm": [ | |||||
"HS256" | |||||
] | |||||
} | |||||
} | |||||
] | |||||
}, | |||||
"internationalizationEnabled": false, | |||||
"supportedLocales": [], | |||||
"authenticationFlows": [ | |||||
{ | |||||
"id": "8067b515-ed76-41a4-863b-e92318722109", | |||||
"alias": "Account verification options", | |||||
"description": "Method with which to verity the existing account", | |||||
"providerId": "basic-flow", | |||||
"topLevel": false, | |||||
"builtIn": true, | |||||
"authenticationExecutions": [ | |||||
{ | |||||
"authenticator": "idp-email-verification", | |||||
"requirement": "ALTERNATIVE", | |||||
"priority": 10, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"requirement": "ALTERNATIVE", | |||||
"priority": 20, | |||||
"flowAlias": "Verify Existing Account by Re-authentication", | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": true | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "6fe995cb-7b39-4648-a197-88e360feb4d7", | |||||
"alias": "Authentication Options", | |||||
"description": "Authentication options.", | |||||
"providerId": "basic-flow", | |||||
"topLevel": false, | |||||
"builtIn": true, | |||||
"authenticationExecutions": [ | |||||
{ | |||||
"authenticator": "basic-auth", | |||||
"requirement": "REQUIRED", | |||||
"priority": 10, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"authenticator": "basic-auth-otp", | |||||
"requirement": "DISABLED", | |||||
"priority": 20, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"authenticator": "auth-spnego", | |||||
"requirement": "DISABLED", | |||||
"priority": 30, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "b18b5875-6286-4aa2-a8ce-bd58efb333e3", | |||||
"alias": "Browser - Conditional OTP", | |||||
"description": "Flow to determine if the OTP is required for the authentication", | |||||
"providerId": "basic-flow", | |||||
"topLevel": false, | |||||
"builtIn": true, | |||||
"authenticationExecutions": [ | |||||
{ | |||||
"authenticator": "conditional-user-configured", | |||||
"requirement": "REQUIRED", | |||||
"priority": 10, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"authenticator": "auth-otp-form", | |||||
"requirement": "REQUIRED", | |||||
"priority": 20, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "26811473-1d51-41b8-ba6d-e861dd6d5fec", | |||||
"alias": "Direct Grant - Conditional OTP", | |||||
"description": "Flow to determine if the OTP is required for the authentication", | |||||
"providerId": "basic-flow", | |||||
"topLevel": false, | |||||
"builtIn": true, | |||||
"authenticationExecutions": [ | |||||
{ | |||||
"authenticator": "conditional-user-configured", | |||||
"requirement": "REQUIRED", | |||||
"priority": 10, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"authenticator": "direct-grant-validate-otp", | |||||
"requirement": "REQUIRED", | |||||
"priority": 20, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "3633ad47-e0d7-45bd-b69b-734e4395a803", | |||||
"alias": "First broker login - Conditional OTP", | |||||
"description": "Flow to determine if the OTP is required for the authentication", | |||||
"providerId": "basic-flow", | |||||
"topLevel": false, | |||||
"builtIn": true, | |||||
"authenticationExecutions": [ | |||||
{ | |||||
"authenticator": "conditional-user-configured", | |||||
"requirement": "REQUIRED", | |||||
"priority": 10, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"authenticator": "auth-otp-form", | |||||
"requirement": "REQUIRED", | |||||
"priority": 20, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "e027af83-e35d-4d54-8c95-95043d99d050", | |||||
"alias": "Handle Existing Account", | |||||
"description": "Handle what to do if there is existing account with same email/username like authenticated identity provider", | |||||
"providerId": "basic-flow", | |||||
"topLevel": false, | |||||
"builtIn": true, | |||||
"authenticationExecutions": [ | |||||
{ | |||||
"authenticator": "idp-confirm-link", | |||||
"requirement": "REQUIRED", | |||||
"priority": 10, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"requirement": "REQUIRED", | |||||
"priority": 20, | |||||
"flowAlias": "Account verification options", | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": true | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "96a2ea5c-88d7-44a6-a325-88c8ebb516b7", | |||||
"alias": "Reset - Conditional OTP", | |||||
"description": "Flow to determine if the OTP should be reset or not. Set to REQUIRED to force.", | |||||
"providerId": "basic-flow", | |||||
"topLevel": false, | |||||
"builtIn": true, | |||||
"authenticationExecutions": [ | |||||
{ | |||||
"authenticator": "conditional-user-configured", | |||||
"requirement": "REQUIRED", | |||||
"priority": 10, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"authenticator": "reset-otp", | |||||
"requirement": "REQUIRED", | |||||
"priority": 20, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "5bb86bb8-4fd4-4516-9850-256321640b07", | |||||
"alias": "User creation or linking", | |||||
"description": "Flow for the existing/non-existing user alternatives", | |||||
"providerId": "basic-flow", | |||||
"topLevel": false, | |||||
"builtIn": true, | |||||
"authenticationExecutions": [ | |||||
{ | |||||
"authenticatorConfig": "create unique user config", | |||||
"authenticator": "idp-create-user-if-unique", | |||||
"requirement": "ALTERNATIVE", | |||||
"priority": 10, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"requirement": "ALTERNATIVE", | |||||
"priority": 20, | |||||
"flowAlias": "Handle Existing Account", | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": true | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "acbe1221-b040-4947-8cb7-18659f26928d", | |||||
"alias": "Verify Existing Account by Re-authentication", | |||||
"description": "Reauthentication of existing account", | |||||
"providerId": "basic-flow", | |||||
"topLevel": false, | |||||
"builtIn": true, | |||||
"authenticationExecutions": [ | |||||
{ | |||||
"authenticator": "idp-username-password-form", | |||||
"requirement": "REQUIRED", | |||||
"priority": 10, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"requirement": "CONDITIONAL", | |||||
"priority": 20, | |||||
"flowAlias": "First broker login - Conditional OTP", | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": true | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "3d711aff-7168-4eee-94f1-e568f24ea2ff", | |||||
"alias": "browser", | |||||
"description": "browser based authentication", | |||||
"providerId": "basic-flow", | |||||
"topLevel": true, | |||||
"builtIn": true, | |||||
"authenticationExecutions": [ | |||||
{ | |||||
"authenticator": "auth-cookie", | |||||
"requirement": "ALTERNATIVE", | |||||
"priority": 10, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"authenticator": "auth-spnego", | |||||
"requirement": "DISABLED", | |||||
"priority": 20, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"authenticator": "identity-provider-redirector", | |||||
"requirement": "ALTERNATIVE", | |||||
"priority": 25, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"requirement": "ALTERNATIVE", | |||||
"priority": 30, | |||||
"flowAlias": "forms", | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": true | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "76550edf-9644-473d-b258-553fdc8e1a60", | |||||
"alias": "clients", | |||||
"description": "Base authentication for clients", | |||||
"providerId": "client-flow", | |||||
"topLevel": true, | |||||
"builtIn": true, | |||||
"authenticationExecutions": [ | |||||
{ | |||||
"authenticator": "client-secret", | |||||
"requirement": "ALTERNATIVE", | |||||
"priority": 10, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"authenticator": "client-jwt", | |||||
"requirement": "ALTERNATIVE", | |||||
"priority": 20, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"authenticator": "client-secret-jwt", | |||||
"requirement": "ALTERNATIVE", | |||||
"priority": 30, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"authenticator": "client-x509", | |||||
"requirement": "ALTERNATIVE", | |||||
"priority": 40, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "21708ba3-a5df-476f-b2d3-4b9983c11b18", | |||||
"alias": "direct grant", | |||||
"description": "OpenID Connect Resource Owner Grant", | |||||
"providerId": "basic-flow", | |||||
"topLevel": true, | |||||
"builtIn": true, | |||||
"authenticationExecutions": [ | |||||
{ | |||||
"authenticator": "direct-grant-validate-username", | |||||
"requirement": "REQUIRED", | |||||
"priority": 10, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"authenticator": "direct-grant-validate-password", | |||||
"requirement": "REQUIRED", | |||||
"priority": 20, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"requirement": "CONDITIONAL", | |||||
"priority": 30, | |||||
"flowAlias": "Direct Grant - Conditional OTP", | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": true | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "42df77b5-080a-4e05-8cdd-6c666730eabe", | |||||
"alias": "docker auth", | |||||
"description": "Used by Docker clients to authenticate against the IDP", | |||||
"providerId": "basic-flow", | |||||
"topLevel": true, | |||||
"builtIn": true, | |||||
"authenticationExecutions": [ | |||||
{ | |||||
"authenticator": "docker-http-basic-authenticator", | |||||
"requirement": "REQUIRED", | |||||
"priority": 10, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "d9a52b01-6f9f-440f-a267-8b378bdc180d", | |||||
"alias": "first broker login", | |||||
"description": "Actions taken after first broker login with identity provider account, which is not yet linked to any Keycloak account", | |||||
"providerId": "basic-flow", | |||||
"topLevel": true, | |||||
"builtIn": true, | |||||
"authenticationExecutions": [ | |||||
{ | |||||
"authenticatorConfig": "review profile config", | |||||
"authenticator": "idp-review-profile", | |||||
"requirement": "REQUIRED", | |||||
"priority": 10, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"requirement": "REQUIRED", | |||||
"priority": 20, | |||||
"flowAlias": "User creation or linking", | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": true | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "bbd9bff5-6123-41a3-bf16-1072a10faba6", | |||||
"alias": "forms", | |||||
"description": "Username, password, otp and other auth forms.", | |||||
"providerId": "basic-flow", | |||||
"topLevel": false, | |||||
"builtIn": true, | |||||
"authenticationExecutions": [ | |||||
{ | |||||
"authenticator": "auth-username-password-form", | |||||
"requirement": "REQUIRED", | |||||
"priority": 10, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"requirement": "CONDITIONAL", | |||||
"priority": 20, | |||||
"flowAlias": "Browser - Conditional OTP", | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": true | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "95d2ebd6-a09a-4458-afa1-2536cc7da001", | |||||
"alias": "http challenge", | |||||
"description": "An authentication flow based on challenge-response HTTP Authentication Schemes", | |||||
"providerId": "basic-flow", | |||||
"topLevel": true, | |||||
"builtIn": true, | |||||
"authenticationExecutions": [ | |||||
{ | |||||
"authenticator": "no-cookie-redirect", | |||||
"requirement": "REQUIRED", | |||||
"priority": 10, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"requirement": "REQUIRED", | |||||
"priority": 20, | |||||
"flowAlias": "Authentication Options", | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": true | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "cb053229-3b3a-4d0d-a442-052f3b917f5f", | |||||
"alias": "registration", | |||||
"description": "registration flow", | |||||
"providerId": "basic-flow", | |||||
"topLevel": true, | |||||
"builtIn": true, | |||||
"authenticationExecutions": [ | |||||
{ | |||||
"authenticator": "registration-page-form", | |||||
"requirement": "REQUIRED", | |||||
"priority": 10, | |||||
"flowAlias": "registration form", | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": true | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "b9cd6dda-82e3-4b5b-a1dc-faa0859bf616", | |||||
"alias": "registration form", | |||||
"description": "registration form", | |||||
"providerId": "form-flow", | |||||
"topLevel": false, | |||||
"builtIn": true, | |||||
"authenticationExecutions": [ | |||||
{ | |||||
"authenticator": "registration-user-creation", | |||||
"requirement": "REQUIRED", | |||||
"priority": 20, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"authenticator": "registration-profile-action", | |||||
"requirement": "REQUIRED", | |||||
"priority": 40, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"authenticator": "registration-password-action", | |||||
"requirement": "REQUIRED", | |||||
"priority": 50, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"authenticator": "registration-recaptcha-action", | |||||
"requirement": "DISABLED", | |||||
"priority": 60, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "db7f6b3c-2cf5-4640-9722-9087b3f8eb41", | |||||
"alias": "reset credentials", | |||||
"description": "Reset credentials for a user if they forgot their password or something", | |||||
"providerId": "basic-flow", | |||||
"topLevel": true, | |||||
"builtIn": true, | |||||
"authenticationExecutions": [ | |||||
{ | |||||
"authenticator": "reset-credentials-choose-user", | |||||
"requirement": "REQUIRED", | |||||
"priority": 10, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"authenticator": "reset-credential-email", | |||||
"requirement": "REQUIRED", | |||||
"priority": 20, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"authenticator": "reset-password", | |||||
"requirement": "REQUIRED", | |||||
"priority": 30, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
}, | |||||
{ | |||||
"requirement": "CONDITIONAL", | |||||
"priority": 40, | |||||
"flowAlias": "Reset - Conditional OTP", | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": true | |||||
} | |||||
] | |||||
}, | |||||
{ | |||||
"id": "80b86ef2-d008-44ae-9536-c9a0e39d4c92", | |||||
"alias": "saml ecp", | |||||
"description": "SAML ECP Profile Authentication Flow", | |||||
"providerId": "basic-flow", | |||||
"topLevel": true, | |||||
"builtIn": true, | |||||
"authenticationExecutions": [ | |||||
{ | |||||
"authenticator": "http-basic-authenticator", | |||||
"requirement": "REQUIRED", | |||||
"priority": 10, | |||||
"userSetupAllowed": false, | |||||
"autheticatorFlow": false | |||||
} | |||||
] | |||||
} | |||||
], | |||||
"authenticatorConfig": [ | |||||
{ | |||||
"id": "817e440b-0132-4644-a9d1-5cd99afbe36a", | |||||
"alias": "create unique user config", | |||||
"config": { | |||||
"require.password.update.after.registration": "false" | |||||
} | |||||
}, | |||||
{ | |||||
"id": "d7434a41-24b0-41c1-bfff-7d0784265915", | |||||
"alias": "review profile config", | |||||
"config": { | |||||
"update.profile.on.first.login": "missing" | |||||
} | |||||
} | |||||
], | |||||
"requiredActions": [ | |||||
{ | |||||
"alias": "CONFIGURE_TOTP", | |||||
"name": "Configure OTP", | |||||
"providerId": "CONFIGURE_TOTP", | |||||
"enabled": true, | |||||
"defaultAction": false, | |||||
"priority": 10, | |||||
"config": {} | |||||
}, | |||||
{ | |||||
"alias": "terms_and_conditions", | |||||
"name": "Terms and Conditions", | |||||
"providerId": "terms_and_conditions", | |||||
"enabled": false, | |||||
"defaultAction": false, | |||||
"priority": 20, | |||||
"config": {} | |||||
}, | |||||
{ | |||||
"alias": "UPDATE_PASSWORD", | |||||
"name": "Update Password", | |||||
"providerId": "UPDATE_PASSWORD", | |||||
"enabled": true, | |||||
"defaultAction": false, | |||||
"priority": 30, | |||||
"config": {} | |||||
}, | |||||
{ | |||||
"alias": "UPDATE_PROFILE", | |||||
"name": "Update Profile", | |||||
"providerId": "UPDATE_PROFILE", | |||||
"enabled": true, | |||||
"defaultAction": false, | |||||
"priority": 40, | |||||
"config": {} | |||||
}, | |||||
{ | |||||
"alias": "VERIFY_EMAIL", | |||||
"name": "Verify Email", | |||||
"providerId": "VERIFY_EMAIL", | |||||
"enabled": true, | |||||
"defaultAction": false, | |||||
"priority": 50, | |||||
"config": {} | |||||
} | |||||
], | |||||
"browserFlow": "browser", | |||||
"registrationFlow": "registration", | |||||
"directGrantFlow": "direct grant", | |||||
"resetCredentialsFlow": "reset credentials", | |||||
"clientAuthenticationFlow": "clients", | |||||
"dockerAuthenticationFlow": "docker auth", | |||||
"attributes": { | |||||
"webAuthnPolicyAuthenticatorAttachment": "not specified", | |||||
"_browser_header.xRobotsTag": "none", | |||||
"webAuthnPolicyRpEntityName": "keycloak", | |||||
"failureFactor": "30", | |||||
"actionTokenGeneratedByUserLifespan": "300", | |||||
"maxDeltaTimeSeconds": "43200", | |||||
"webAuthnPolicySignatureAlgorithms": "ES256", | |||||
"frontendUrl": "http://localhost:5080/keycloak/auth/", | |||||
"offlineSessionMaxLifespan": "5184000", | |||||
"_browser_header.contentSecurityPolicyReportOnly": "", | |||||
"bruteForceProtected": "false", | |||||
"_browser_header.contentSecurityPolicy": "frame-src 'self'; frame-ancestors 'self'; object-src 'none';", | |||||
"_browser_header.xXSSProtection": "1; mode=block", | |||||
"_browser_header.xFrameOptions": "SAMEORIGIN", | |||||
"_browser_header.strictTransportSecurity": "max-age=31536000; includeSubDomains", | |||||
"webAuthnPolicyUserVerificationRequirement": "not specified", | |||||
"permanentLockout": "false", | |||||
"quickLoginCheckMilliSeconds": "1000", | |||||
"webAuthnPolicyCreateTimeout": "0", | |||||
"webAuthnPolicyRequireResidentKey": "not specified", | |||||
"webAuthnPolicyRpId": "", | |||||
"webAuthnPolicyAttestationConveyancePreference": "not specified", | |||||
"maxFailureWaitSeconds": "900", | |||||
"minimumQuickLoginWaitSeconds": "60", | |||||
"defaultSignatureAlgorithm": "RS256", | |||||
"webAuthnPolicyAvoidSameAuthenticatorRegister": "false", | |||||
"_browser_header.xContentTypeOptions": "nosniff", | |||||
"actionTokenGeneratedByAdminLifespan": "43200", | |||||
"waitIncrementSeconds": "60", | |||||
"offlineSessionMaxLifespanEnabled": "true" | |||||
}, | |||||
"keycloakVersion": "8.0.1", | |||||
"userManagedAccessAllowed": false | |||||
} | |||||
No newline at end of file |