keycloak-admin 1.1.2 → 1.1.4

data/spec/representation/client_representation_spec.rb

@@ -1,119 +1,119 @@
-RSpec.describe KeycloakAdmin::ClientRepresentation do
-  describe "#to_json" do
-    before(:each) do
-      @client = KeycloakAdmin::ClientRepresentation.from_hash(
-        {
-          "id" => "c9104bc7-04d8-4348-b4df-8d883f9f6095",
-          "clientId" => "clien-test",
-          "name" => "Client TEST",
-          "description" => "Test to parse a client repsentation",
-          "surrogateAuthRequired" => false,
-          "enabled" => true,
-          "alwaysDisplayInConsole" => false,
-          "clientAuthenticatorType" => "client-secret",
-          "redirectUris" => [],
-          "webOrigins" => [],
-          "notBefore" => 0,
-          "bearerOnly" => false,
-          "consentRequired" => false,
-          "standardFlowEnabled" => false,
-          "implicitFlowEnabled" => false,
-          "directAccessGrantsEnabled" => false,
-          "serviceAccountsEnabled" => true,
-          "publicClient" => false,
-          "frontchannelLogout" => false,
-          "protocol" => "openid-connect",
-          "attributes" => {
-            "saml.assertion.signature" => "false",
-            "access.token.lifespan" => "86400",
-            "saml.multivalued.roles" => "false",
-            "saml.force.post.binding" => "false",
-            "saml.encrypt" => "false",
-            "saml.server.signature" => "false",
-            "backchannel.logout.revoke.offline.tokens" => "false",
-            "saml.server.signature.keyinfo.ext" => "false",
-            "exclude.session.state.from.auth.response" => "false",
-            "backchannel.logout.session.required" => "true",
-            "saml_force_name_id_format" => "false",
-            "saml.client.signature" => "false",
-            "tls.client.certificate.bound.access.tokens" => "false",
-            "saml.authnstatement" => "false",
-            "display.on.consent.screen" => "false",
-            "saml.onetimeuse.condition" => "false"
-          },
-          "authenticationFlowBindingOverrides" => {},
-          "fullScopeAllowed" => true,
-          "nodeReRegistrationTimeout" => -1,
-          "protocolMappers" => [
-            {
-              "id" => "2220432a-e953-422c-b176-62b65e085fe5",
-              "name" => "Client Host",
-              "protocol" => "openid-connect",
-              "protocolMapper" => "oidc-usersessionmodel-note-mapper",
-              "consentRequired" => false,
-              "config" => {
-                "user.session.note" => "clientHost",
-                "userinfo.token.claim" => "true",
-                "id.token.claim" => "true",
-                "access.token.claim" => "true",
-                "claim.name" => "clientHost",
-                "jsonType.label" => "String"
-              }
-            },
-            {
-              "id" => "5509e428-574d-4137-b396-9108244f31ee",
-              "name" => "Client IP Address",
-              "protocol" => "openid-connect",
-              "protocolMapper" => "oidc-usersessionmodel-note-mapper",
-              "consentRequired" => false,
-              "config" => {
-                "user.session.note" => "clientAddress",
-                "userinfo.token.claim" => "true",
-                "id.token.claim" => "true",
-                "access.token.claim" => "true",
-                "claim.name" => "clientAddress",
-                "jsonType.label" => "String"
-              }
-            },
-            {
-              "id" => "44504b93-dbce-48b8-9570-9a48d5421ae9",
-              "name" => "Client ID",
-              "protocol" => "openid-connect",
-              "protocolMapper" => "oidc-usersessionmodel-note-mapper",
-              "consentRequired" => false,
-              "config" => {
-                "user.session.note" => "clientId",
-                "userinfo.token.claim" => "true",
-                "id.token.claim" => "true",
-                "access.token.claim" => "true",
-                "claim.name" => "clientId",
-                "jsonType.label" => "String"
-              }
-            }
-          ],
-          "defaultClientScopes" => [
-            "web-origins",
-            "roles",
-            "profile",
-            "email"
-          ],
-          "optionalClientScopes" => [
-            "address",
-            "phone",
-            "offline_access",
-            "microprofile-jwt"
-          ],
-          "access" => {
-            "view" => true,
-            "configure" => true,
-            "manage" => true
-          }
-        }
-      )
-    end
-
-    it "can convert to json" do
-      expect(@client.to_json).to eq "{\"id\":\"c9104bc7-04d8-4348-b4df-8d883f9f6095\",\"name\":\"Client TEST\",\"clientId\":\"clien-test\",\"description\":\"Test to parse a client repsentation\",\"clientAuthenticatorType\":\"client-secret\",\"alwaysDisplayInConsole\":false,\"surrogateAuthRequired\":false,\"redirectUris\":[],\"webOrigins\":[],\"notBefore\":0,\"bearerOnly\":false,\"consentRequired\":false,\"standardFlowEnabled\":false,\"implicitFlowEnabled\":false,\"directAccessGrantsEnabled\":false,\"serviceAccountsEnabled\":true,\"authorizationServicesEnabled\":false,\"publicClient\":false,\"frontchannelLogout\":false,\"protocol\":\"openid-connect\",\"baseUrl\":null,\"rootUrl\":null,\"attributes\":{\"saml.assertion.signature\":\"false\",\"access.token.lifespan\":\"86400\",\"saml.multivalued.roles\":\"false\",\"saml.force.post.binding\":\"false\",\"saml.encrypt\":\"false\",\"saml.server.signature\":\"false\",\"backchannel.logout.revoke.offline.tokens\":\"false\",\"saml.server.signature.keyinfo.ext\":\"false\",\"exclude.session.state.from.auth.response\":\"false\",\"backchannel.logout.session.required\":\"true\",\"saml_force_name_id_format\":\"false\",\"saml.client.signature\":\"false\",\"tls.client.certificate.bound.access.tokens\":\"false\",\"saml.authnstatement\":\"false\",\"display.on.consent.screen\":\"false\",\"saml.onetimeuse.condition\":\"false\"},\"authenticationFlowBindingOverrides\":{},\"fullScopeAllowed\":true,\"nodeReRegistrationTimeout\":-1,\"protocolMappers\":[{\"id\":\"2220432a-e953-422c-b176-62b65e085fe5\",\"config\":{\"user.session.note\":\"clientHost\",\"userinfo.token.claim\":\"true\",\"id.token.claim\":\"true\",\"access.token.claim\":\"true\",\"claim.name\":\"clientHost\",\"jsonType.label\":\"String\"},\"name\":\"Client Host\",\"protocol\":\"openid-connect\",\"protocolMapper\":\"oidc-usersessionmodel-note-mapper\"},{\"id\":\"5509e428-574d-4137-b396-9108244f31ee\",\"config\":{\"user.session.note\":\"clientAddress\",\"userinfo.token.claim\":\"true\",\"id.token.claim\":\"true\",\"access.token.claim\":\"true\",\"claim.name\":\"clientAddress\",\"jsonType.label\":\"String\"},\"name\":\"Client IP Address\",\"protocol\":\"openid-connect\",\"protocolMapper\":\"oidc-usersessionmodel-note-mapper\"},{\"id\":\"44504b93-dbce-48b8-9570-9a48d5421ae9\",\"config\":{\"user.session.note\":\"clientId\",\"userinfo.token.claim\":\"true\",\"id.token.claim\":\"true\",\"access.token.claim\":\"true\",\"claim.name\":\"clientId\",\"jsonType.label\":\"String\"},\"name\":\"Client ID\",\"protocol\":\"openid-connect\",\"protocolMapper\":\"oidc-usersessionmodel-note-mapper\"}],\"defaultClientScopes\":[\"web-origins\",\"roles\",\"profile\",\"email\"],\"optionalClientScopes\":[\"address\",\"phone\",\"offline_access\",\"microprofile-jwt\"],\"access\":{\"view\":true,\"configure\":true,\"manage\":true}}"
-    end
-  end
-end
+RSpec.describe KeycloakAdmin::ClientRepresentation do
+  describe "#to_json" do
+    before(:each) do
+      @client = KeycloakAdmin::ClientRepresentation.from_hash(
+        {
+          "id" => "c9104bc7-04d8-4348-b4df-8d883f9f6095",
+          "clientId" => "clien-test",
+          "name" => "Client TEST",
+          "description" => "Test to parse a client repsentation",
+          "surrogateAuthRequired" => false,
+          "enabled" => true,
+          "alwaysDisplayInConsole" => false,
+          "clientAuthenticatorType" => "client-secret",
+          "redirectUris" => [],
+          "webOrigins" => [],
+          "notBefore" => 0,
+          "bearerOnly" => false,
+          "consentRequired" => false,
+          "standardFlowEnabled" => false,
+          "implicitFlowEnabled" => false,
+          "directAccessGrantsEnabled" => false,
+          "serviceAccountsEnabled" => true,
+          "publicClient" => false,
+          "frontchannelLogout" => false,
+          "protocol" => "openid-connect",
+          "attributes" => {
+            "saml.assertion.signature" => "false",
+            "access.token.lifespan" => "86400",
+            "saml.multivalued.roles" => "false",
+            "saml.force.post.binding" => "false",
+            "saml.encrypt" => "false",
+            "saml.server.signature" => "false",
+            "backchannel.logout.revoke.offline.tokens" => "false",
+            "saml.server.signature.keyinfo.ext" => "false",
+            "exclude.session.state.from.auth.response" => "false",
+            "backchannel.logout.session.required" => "true",
+            "saml_force_name_id_format" => "false",
+            "saml.client.signature" => "false",
+            "tls.client.certificate.bound.access.tokens" => "false",
+            "saml.authnstatement" => "false",
+            "display.on.consent.screen" => "false",
+            "saml.onetimeuse.condition" => "false"
+          },
+          "authenticationFlowBindingOverrides" => {},
+          "fullScopeAllowed" => true,
+          "nodeReRegistrationTimeout" => -1,
+          "protocolMappers" => [
+            {
+              "id" => "2220432a-e953-422c-b176-62b65e085fe5",
+              "name" => "Client Host",
+              "protocol" => "openid-connect",
+              "protocolMapper" => "oidc-usersessionmodel-note-mapper",
+              "consentRequired" => false,
+              "config" => {
+                "user.session.note" => "clientHost",
+                "userinfo.token.claim" => "true",
+                "id.token.claim" => "true",
+                "access.token.claim" => "true",
+                "claim.name" => "clientHost",
+                "jsonType.label" => "String"
+              }
+            },
+            {
+              "id" => "5509e428-574d-4137-b396-9108244f31ee",
+              "name" => "Client IP Address",
+              "protocol" => "openid-connect",
+              "protocolMapper" => "oidc-usersessionmodel-note-mapper",
+              "consentRequired" => false,
+              "config" => {
+                "user.session.note" => "clientAddress",
+                "userinfo.token.claim" => "true",
+                "id.token.claim" => "true",
+                "access.token.claim" => "true",
+                "claim.name" => "clientAddress",
+                "jsonType.label" => "String"
+              }
+            },
+            {
+              "id" => "44504b93-dbce-48b8-9570-9a48d5421ae9",
+              "name" => "Client ID",
+              "protocol" => "openid-connect",
+              "protocolMapper" => "oidc-usersessionmodel-note-mapper",
+              "consentRequired" => false,
+              "config" => {
+                "user.session.note" => "clientId",
+                "userinfo.token.claim" => "true",
+                "id.token.claim" => "true",
+                "access.token.claim" => "true",
+                "claim.name" => "clientId",
+                "jsonType.label" => "String"
+              }
+            }
+          ],
+          "defaultClientScopes" => [
+            "web-origins",
+            "roles",
+            "profile",
+            "email"
+          ],
+          "optionalClientScopes" => [
+            "address",
+            "phone",
+            "offline_access",
+            "microprofile-jwt"
+          ],
+          "access" => {
+            "view" => true,
+            "configure" => true,
+            "manage" => true
+          }
+        }
+      )
+    end
+
+    it "can convert to json" do
+      expect(@client.to_json).to eq "{\"id\":\"c9104bc7-04d8-4348-b4df-8d883f9f6095\",\"name\":\"Client TEST\",\"clientId\":\"clien-test\",\"description\":\"Test to parse a client repsentation\",\"clientAuthenticatorType\":\"client-secret\",\"alwaysDisplayInConsole\":false,\"surrogateAuthRequired\":false,\"redirectUris\":[],\"webOrigins\":[],\"notBefore\":0,\"bearerOnly\":false,\"consentRequired\":false,\"standardFlowEnabled\":false,\"implicitFlowEnabled\":false,\"directAccessGrantsEnabled\":false,\"serviceAccountsEnabled\":true,\"authorizationServicesEnabled\":false,\"publicClient\":false,\"frontchannelLogout\":false,\"protocol\":\"openid-connect\",\"baseUrl\":null,\"rootUrl\":null,\"attributes\":{\"saml.assertion.signature\":\"false\",\"access.token.lifespan\":\"86400\",\"saml.multivalued.roles\":\"false\",\"saml.force.post.binding\":\"false\",\"saml.encrypt\":\"false\",\"saml.server.signature\":\"false\",\"backchannel.logout.revoke.offline.tokens\":\"false\",\"saml.server.signature.keyinfo.ext\":\"false\",\"exclude.session.state.from.auth.response\":\"false\",\"backchannel.logout.session.required\":\"true\",\"saml_force_name_id_format\":\"false\",\"saml.client.signature\":\"false\",\"tls.client.certificate.bound.access.tokens\":\"false\",\"saml.authnstatement\":\"false\",\"display.on.consent.screen\":\"false\",\"saml.onetimeuse.condition\":\"false\"},\"authenticationFlowBindingOverrides\":{},\"fullScopeAllowed\":true,\"nodeReRegistrationTimeout\":-1,\"protocolMappers\":[{\"id\":\"2220432a-e953-422c-b176-62b65e085fe5\",\"config\":{\"user.session.note\":\"clientHost\",\"userinfo.token.claim\":\"true\",\"id.token.claim\":\"true\",\"access.token.claim\":\"true\",\"claim.name\":\"clientHost\",\"jsonType.label\":\"String\"},\"name\":\"Client Host\",\"protocol\":\"openid-connect\",\"protocolMapper\":\"oidc-usersessionmodel-note-mapper\"},{\"id\":\"5509e428-574d-4137-b396-9108244f31ee\",\"config\":{\"user.session.note\":\"clientAddress\",\"userinfo.token.claim\":\"true\",\"id.token.claim\":\"true\",\"access.token.claim\":\"true\",\"claim.name\":\"clientAddress\",\"jsonType.label\":\"String\"},\"name\":\"Client IP Address\",\"protocol\":\"openid-connect\",\"protocolMapper\":\"oidc-usersessionmodel-note-mapper\"},{\"id\":\"44504b93-dbce-48b8-9570-9a48d5421ae9\",\"config\":{\"user.session.note\":\"clientId\",\"userinfo.token.claim\":\"true\",\"id.token.claim\":\"true\",\"access.token.claim\":\"true\",\"claim.name\":\"clientId\",\"jsonType.label\":\"String\"},\"name\":\"Client ID\",\"protocol\":\"openid-connect\",\"protocolMapper\":\"oidc-usersessionmodel-note-mapper\"}],\"defaultClientScopes\":[\"web-origins\",\"roles\",\"profile\",\"email\"],\"optionalClientScopes\":[\"address\",\"phone\",\"offline_access\",\"microprofile-jwt\"],\"access\":{\"view\":true,\"configure\":true,\"manage\":true}}"
+    end
+  end
+end

data/spec/representation/group_representation_spec.rb

@@ -1,22 +1,22 @@
-
-RSpec.describe KeycloakAdmin::GroupRepresentation do
-  describe ".from_hash" do
-    it "parses the sub groups into group representations" do
-      group = described_class.from_hash({
-        "name" => "group a",
-        "attributes" => {
-          "key" => ["value"]
-        },
-        "subGroupCount" => 1,
-        "subGroups" => [{
-          "name" => "subgroup b"
-        }]
-      })
-
-      expect(group.attributes).to eq(key: ["value"])
-      expect(group.sub_group_count).to eq 1
-      expect(group.sub_groups.length).to eq 1
-      expect(group.sub_groups.first).to be_a described_class
-    end
-  end
-end
+
+RSpec.describe KeycloakAdmin::GroupRepresentation do
+  describe ".from_hash" do
+    it "parses the sub groups into group representations" do
+      group = described_class.from_hash({
+        "name" => "group a",
+        "attributes" => {
+          "key" => ["value"]
+        },
+        "subGroupCount" => 1,
+        "subGroups" => [{
+          "name" => "subgroup b"
+        }]
+      })
+
+      expect(group.attributes).to eq(key: ["value"])
+      expect(group.sub_group_count).to eq 1
+      expect(group.sub_groups.length).to eq 1
+      expect(group.sub_groups.first).to be_a described_class
+    end
+  end
+end

data/spec/representation/identity_provider_mapper_representation_spec.rb

@@ -1,24 +1,24 @@
-RSpec.describe KeycloakAdmin::IdentityProviderMapperRepresentation do
-  describe "#to_json" do
-    before(:each) do
-      @mapper = KeycloakAdmin::IdentityProviderMapperRepresentation.from_hash(
-        {
-          "id" => "91895ce9-b225-4274-993e-c8e6b8e490f0",
-          "name" => "IDP",
-          "identityProviderAlias" => "test",
-          "identityProviderMapper" => "hardcoded-attribute-idp-mapper",
-          "config" => {
-            "syncMode" => "INHERIT",
-            "attribute.value" => "test",
-            "attributes" => "[]",
-            "attribute" => "keycloak.idp"
-          }
-        }
-      )
-    end
-
-    it "can convert to json" do
-      expect(@mapper.to_json).to eq "{\"id\":\"91895ce9-b225-4274-993e-c8e6b8e490f0\",\"name\":\"IDP\",\"identityProviderAlias\":\"test\",\"identityProviderMapper\":\"hardcoded-attribute-idp-mapper\",\"config\":{\"syncMode\":\"INHERIT\",\"attribute.value\":\"test\",\"attributes\":\"[]\",\"attribute\":\"keycloak.idp\"}}"
-    end
-  end
-end
+RSpec.describe KeycloakAdmin::IdentityProviderMapperRepresentation do
+  describe "#to_json" do
+    before(:each) do
+      @mapper = KeycloakAdmin::IdentityProviderMapperRepresentation.from_hash(
+        {
+          "id" => "91895ce9-b225-4274-993e-c8e6b8e490f0",
+          "name" => "IDP",
+          "identityProviderAlias" => "test",
+          "identityProviderMapper" => "hardcoded-attribute-idp-mapper",
+          "config" => {
+            "syncMode" => "INHERIT",
+            "attribute.value" => "test",
+            "attributes" => "[]",
+            "attribute" => "keycloak.idp"
+          }
+        }
+      )
+    end
+
+    it "can convert to json" do
+      expect(@mapper.to_json).to eq "{\"id\":\"91895ce9-b225-4274-993e-c8e6b8e490f0\",\"name\":\"IDP\",\"identityProviderAlias\":\"test\",\"identityProviderMapper\":\"hardcoded-attribute-idp-mapper\",\"config\":{\"syncMode\":\"INHERIT\",\"attribute.value\":\"test\",\"attributes\":\"[]\",\"attribute\":\"keycloak.idp\"}}"
+    end
+  end
+end

data/spec/representation/identity_provider_representation_spec.rb

@@ -1,113 +1,113 @@
-RSpec.describe KeycloakAdmin::IdentityProviderRepresentation do
-  describe "#from_hash" do
-    before(:each) do
-      json = <<-JSON
-      {
-        "alias": "acme",
-        "displayName": "ACME",
-        "internalId": "20fea77e-ae3d-411e-9467-2b3a20cd3e6d",
-        "providerId": "saml",
-        "enabled": true,
-        "updateProfileFirstLoginMode": "on",
-        "trustEmail": true,
-        "storeToken": false,
-        "addReadTokenRoleOnCreate": false,
-        "authenticateByDefault": false,
-        "linkOnly": false,
-        "firstBrokerLoginFlowAlias": "first broker login",
-        "config": {
-          "hideOnLoginPage": "",
-          "validateSignature": "true",
-          "samlXmlKeyNameTranformer": "KEY_ID",
-          "signingCertificate": "",
-          "postBindingLogout": "false",
-          "nameIDPolicyFormat": "urn:oasis:names:tc:SAML:2.0:nameid-format:persistent",
-          "postBindingResponse": "true",
-          "backchannelSupported": "",
-          "signatureAlgorithm": "RSA_SHA256",
-          "wantAssertionsEncrypted": "false",
-          "xmlSigKeyInfoKeyNameTransformer": "CERT_SUBJECT",
-          "useJwksUrl": "true",
-          "wantAssertionsSigned": "true",
-          "postBindingAuthnRequest": "true",
-          "forceAuthn": "",
-          "wantAuthnRequestsSigned": "true",
-          "singleSignOnServiceUrl": "https://login.microsoftonline.com/test/saml2",
-          "addExtensionsElementWithKeyInfo": "false"
-        }
-      }
-      JSON
-      payload            = JSON.parse(json)
-      @identity_provider = KeycloakAdmin::IdentityProviderRepresentation.from_hash(payload)
-    end
-
-    it "parses the alias" do
-      expect(@identity_provider.alias).to eq "acme"
-    end
-
-    it "parses the display name" do
-      expect(@identity_provider.display_name).to eq "ACME"
-    end
-
-    it "parses the internalId" do
-      expect(@identity_provider.internal_id).to eq "20fea77e-ae3d-411e-9467-2b3a20cd3e6d"
-    end
-
-    it "parses the provider id" do
-      expect(@identity_provider.provider_id).to eq "saml"
-    end
-
-    it "parses the enabled" do
-      expect(@identity_provider.enabled).to eq true
-    end
-
-    it "parses the update_profile_first_login_mode" do
-      expect(@identity_provider.update_profile_first_login_mode).to eq "on"
-    end
-
-    it "parses the trust_email" do
-      expect(@identity_provider.trust_email).to eq true
-    end
-
-    it "parses the store_token" do
-      expect(@identity_provider.store_token).to eq false
-    end
-
-    it "parses the add_read_token_role_on_create" do
-      expect(@identity_provider.add_read_token_role_on_create).to eq false
-    end
-
-    it "parses the authenticate_by_default" do
-      expect(@identity_provider.authenticate_by_default).to eq false
-    end
-
-    it "parses the link_only" do
-      expect(@identity_provider.link_only).to eq false
-    end
-    
-    it "parses the first_broker_login_flow_alias" do
-      expect(@identity_provider.first_broker_login_flow_alias).to eq "first broker login"
-    end
-
-    it "parses the configuration as a hash with camel properties" do
-      expect(@identity_provider.config["hideOnLoginPage"]).to eq ""
-      expect(@identity_provider.config["validateSignature"]).to eq "true"
-      expect(@identity_provider.config["samlXmlKeyNameTranformer"]).to eq "KEY_ID"
-      expect(@identity_provider.config["signingCertificate"]).to eq ""
-      expect(@identity_provider.config["postBindingLogout"]).to eq "false"
-      expect(@identity_provider.config["nameIDPolicyFormat"]).to eq "urn:oasis:names:tc:SAML:2.0:nameid-format:persistent"
-      expect(@identity_provider.config["postBindingResponse"]).to eq "true"
-      expect(@identity_provider.config["backchannelSupported"]).to eq ""
-      expect(@identity_provider.config["signatureAlgorithm"]).to eq "RSA_SHA256"
-      expect(@identity_provider.config["wantAssertionsEncrypted"]).to eq "false"
-      expect(@identity_provider.config["xmlSigKeyInfoKeyNameTransformer"]).to eq "CERT_SUBJECT"
-      expect(@identity_provider.config["useJwksUrl"]).to eq "true"
-      expect(@identity_provider.config["wantAssertionsSigned"]).to eq "true"
-      expect(@identity_provider.config["postBindingAuthnRequest"]).to eq "true"
-      expect(@identity_provider.config["forceAuthn"]).to eq ""
-      expect(@identity_provider.config["wantAuthnRequestsSigned"]).to eq "true"
-      expect(@identity_provider.config["singleSignOnServiceUrl"]).to eq "https://login.microsoftonline.com/test/saml2"
-      expect(@identity_provider.config["addExtensionsElementWithKeyInfo"]).to eq "false"
-    end
-  end
-end
+RSpec.describe KeycloakAdmin::IdentityProviderRepresentation do
+  describe "#from_hash" do
+    before(:each) do
+      json = <<-JSON
+      {
+        "alias": "acme",
+        "displayName": "ACME",
+        "internalId": "20fea77e-ae3d-411e-9467-2b3a20cd3e6d",
+        "providerId": "saml",
+        "enabled": true,
+        "updateProfileFirstLoginMode": "on",
+        "trustEmail": true,
+        "storeToken": false,
+        "addReadTokenRoleOnCreate": false,
+        "authenticateByDefault": false,
+        "linkOnly": false,
+        "firstBrokerLoginFlowAlias": "first broker login",
+        "config": {
+          "hideOnLoginPage": "",
+          "validateSignature": "true",
+          "samlXmlKeyNameTranformer": "KEY_ID",
+          "signingCertificate": "",
+          "postBindingLogout": "false",
+          "nameIDPolicyFormat": "urn:oasis:names:tc:SAML:2.0:nameid-format:persistent",
+          "postBindingResponse": "true",
+          "backchannelSupported": "",
+          "signatureAlgorithm": "RSA_SHA256",
+          "wantAssertionsEncrypted": "false",
+          "xmlSigKeyInfoKeyNameTransformer": "CERT_SUBJECT",
+          "useJwksUrl": "true",
+          "wantAssertionsSigned": "true",
+          "postBindingAuthnRequest": "true",
+          "forceAuthn": "",
+          "wantAuthnRequestsSigned": "true",
+          "singleSignOnServiceUrl": "https://login.microsoftonline.com/test/saml2",
+          "addExtensionsElementWithKeyInfo": "false"
+        }
+      }
+      JSON
+      payload            = JSON.parse(json)
+      @identity_provider = KeycloakAdmin::IdentityProviderRepresentation.from_hash(payload)
+    end
+
+    it "parses the alias" do
+      expect(@identity_provider.alias).to eq "acme"
+    end
+
+    it "parses the display name" do
+      expect(@identity_provider.display_name).to eq "ACME"
+    end
+
+    it "parses the internalId" do
+      expect(@identity_provider.internal_id).to eq "20fea77e-ae3d-411e-9467-2b3a20cd3e6d"
+    end
+
+    it "parses the provider id" do
+      expect(@identity_provider.provider_id).to eq "saml"
+    end
+
+    it "parses the enabled" do
+      expect(@identity_provider.enabled).to eq true
+    end
+
+    it "parses the update_profile_first_login_mode" do
+      expect(@identity_provider.update_profile_first_login_mode).to eq "on"
+    end
+
+    it "parses the trust_email" do
+      expect(@identity_provider.trust_email).to eq true
+    end
+
+    it "parses the store_token" do
+      expect(@identity_provider.store_token).to eq false
+    end
+
+    it "parses the add_read_token_role_on_create" do
+      expect(@identity_provider.add_read_token_role_on_create).to eq false
+    end
+
+    it "parses the authenticate_by_default" do
+      expect(@identity_provider.authenticate_by_default).to eq false
+    end
+
+    it "parses the link_only" do
+      expect(@identity_provider.link_only).to eq false
+    end
+    
+    it "parses the first_broker_login_flow_alias" do
+      expect(@identity_provider.first_broker_login_flow_alias).to eq "first broker login"
+    end
+
+    it "parses the configuration as a hash with camel properties" do
+      expect(@identity_provider.config["hideOnLoginPage"]).to eq ""
+      expect(@identity_provider.config["validateSignature"]).to eq "true"
+      expect(@identity_provider.config["samlXmlKeyNameTranformer"]).to eq "KEY_ID"
+      expect(@identity_provider.config["signingCertificate"]).to eq ""
+      expect(@identity_provider.config["postBindingLogout"]).to eq "false"
+      expect(@identity_provider.config["nameIDPolicyFormat"]).to eq "urn:oasis:names:tc:SAML:2.0:nameid-format:persistent"
+      expect(@identity_provider.config["postBindingResponse"]).to eq "true"
+      expect(@identity_provider.config["backchannelSupported"]).to eq ""
+      expect(@identity_provider.config["signatureAlgorithm"]).to eq "RSA_SHA256"
+      expect(@identity_provider.config["wantAssertionsEncrypted"]).to eq "false"
+      expect(@identity_provider.config["xmlSigKeyInfoKeyNameTransformer"]).to eq "CERT_SUBJECT"
+      expect(@identity_provider.config["useJwksUrl"]).to eq "true"
+      expect(@identity_provider.config["wantAssertionsSigned"]).to eq "true"
+      expect(@identity_provider.config["postBindingAuthnRequest"]).to eq "true"
+      expect(@identity_provider.config["forceAuthn"]).to eq ""
+      expect(@identity_provider.config["wantAuthnRequestsSigned"]).to eq "true"
+      expect(@identity_provider.config["singleSignOnServiceUrl"]).to eq "https://login.microsoftonline.com/test/saml2"
+      expect(@identity_provider.config["addExtensionsElementWithKeyInfo"]).to eq "false"
+    end
+  end
+end