@pulumi/keycloak 4.9.0 → 4.10.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/authentication/bindings.d.ts +157 -0
- package/authentication/bindings.js +101 -0
- package/authentication/bindings.js.map +1 -0
- package/authentication/index.d.ts +1 -0
- package/authentication/index.js +5 -0
- package/authentication/index.js.map +1 -1
- package/index.d.ts +1 -0
- package/index.js +5 -0
- package/index.js.map +1 -1
- package/openid/clientPolicy.d.ts +101 -0
- package/openid/clientPolicy.js +38 -0
- package/openid/clientPolicy.js.map +1 -1
- package/openid/scriptProtocolMapper.d.ts +2 -0
- package/openid/scriptProtocolMapper.js +2 -0
- package/openid/scriptProtocolMapper.js.map +1 -1
- package/package.json +2 -2
- package/package.json.dev +2 -2
- package/realmUserProfile.d.ts +157 -0
- package/realmUserProfile.js +140 -0
- package/realmUserProfile.js.map +1 -0
- package/types/input.d.ts +95 -13
- package/types/output.d.ts +82 -0
|
@@ -0,0 +1,157 @@
|
|
|
1
|
+
import * as pulumi from "@pulumi/pulumi";
|
|
2
|
+
/**
|
|
3
|
+
* ## Example Usage
|
|
4
|
+
*
|
|
5
|
+
* ```typescript
|
|
6
|
+
* import * as pulumi from "@pulumi/pulumi";
|
|
7
|
+
* import * as keycloak from "@pulumi/keycloak";
|
|
8
|
+
*
|
|
9
|
+
* const realm = new keycloak.Realm("realm", {
|
|
10
|
+
* realm: "my-realm",
|
|
11
|
+
* enabled: true,
|
|
12
|
+
* });
|
|
13
|
+
* const flow = new keycloak.authentication.Flow("flow", {
|
|
14
|
+
* realmId: realm.id,
|
|
15
|
+
* alias: "my-flow-alias",
|
|
16
|
+
* });
|
|
17
|
+
* // first execution
|
|
18
|
+
* const executionOne = new keycloak.authentication.Execution("executionOne", {
|
|
19
|
+
* realmId: realm.id,
|
|
20
|
+
* parentFlowAlias: flow.alias,
|
|
21
|
+
* authenticator: "auth-cookie",
|
|
22
|
+
* requirement: "ALTERNATIVE",
|
|
23
|
+
* });
|
|
24
|
+
* // second execution
|
|
25
|
+
* const executionTwo = new keycloak.authentication.Execution("executionTwo", {
|
|
26
|
+
* realmId: realm.id,
|
|
27
|
+
* parentFlowAlias: flow.alias,
|
|
28
|
+
* authenticator: "identity-provider-redirector",
|
|
29
|
+
* requirement: "ALTERNATIVE",
|
|
30
|
+
* }, {
|
|
31
|
+
* dependsOn: [executionOne],
|
|
32
|
+
* });
|
|
33
|
+
* const browserAuthenticationBinding = new keycloak.authentication.Bindings("browserAuthenticationBinding", {
|
|
34
|
+
* realmId: realm.id,
|
|
35
|
+
* browserFlow: flow.alias,
|
|
36
|
+
* });
|
|
37
|
+
* ```
|
|
38
|
+
*/
|
|
39
|
+
export declare class Bindings extends pulumi.CustomResource {
|
|
40
|
+
/**
|
|
41
|
+
* Get an existing Bindings resource's state with the given name, ID, and optional extra
|
|
42
|
+
* properties used to qualify the lookup.
|
|
43
|
+
*
|
|
44
|
+
* @param name The _unique_ name of the resulting resource.
|
|
45
|
+
* @param id The _unique_ provider ID of the resource to lookup.
|
|
46
|
+
* @param state Any extra arguments used during the lookup.
|
|
47
|
+
* @param opts Optional settings to control the behavior of the CustomResource.
|
|
48
|
+
*/
|
|
49
|
+
static get(name: string, id: pulumi.Input<pulumi.ID>, state?: BindingsState, opts?: pulumi.CustomResourceOptions): Bindings;
|
|
50
|
+
/**
|
|
51
|
+
* Returns true if the given object is an instance of Bindings. This is designed to work even
|
|
52
|
+
* when multiple copies of the Pulumi SDK have been loaded into the same process.
|
|
53
|
+
*/
|
|
54
|
+
static isInstance(obj: any): obj is Bindings;
|
|
55
|
+
/**
|
|
56
|
+
* The alias of the flow to assign to the realm BrowserFlow.
|
|
57
|
+
*/
|
|
58
|
+
readonly browserFlow: pulumi.Output<string>;
|
|
59
|
+
/**
|
|
60
|
+
* The alias of the flow to assign to the realm ClientAuthenticationFlow.
|
|
61
|
+
*/
|
|
62
|
+
readonly clientAuthenticationFlow: pulumi.Output<string>;
|
|
63
|
+
/**
|
|
64
|
+
* The alias of the flow to assign to the realm DirectGrantFlow.
|
|
65
|
+
*/
|
|
66
|
+
readonly directGrantFlow: pulumi.Output<string>;
|
|
67
|
+
/**
|
|
68
|
+
* The alias of the flow to assign to the realm DockerAuthenticationFlow.
|
|
69
|
+
*/
|
|
70
|
+
readonly dockerAuthenticationFlow: pulumi.Output<string>;
|
|
71
|
+
/**
|
|
72
|
+
* The realm the authentication flow binding exists in.
|
|
73
|
+
*/
|
|
74
|
+
readonly realmId: pulumi.Output<string>;
|
|
75
|
+
/**
|
|
76
|
+
* The alias of the flow to assign to the realm RegistrationFlow.
|
|
77
|
+
*/
|
|
78
|
+
readonly registrationFlow: pulumi.Output<string>;
|
|
79
|
+
/**
|
|
80
|
+
* The alias of the flow to assign to the realm ResetCredentialsFlow.
|
|
81
|
+
*/
|
|
82
|
+
readonly resetCredentialsFlow: pulumi.Output<string>;
|
|
83
|
+
/**
|
|
84
|
+
* Create a Bindings resource with the given unique name, arguments, and options.
|
|
85
|
+
*
|
|
86
|
+
* @param name The _unique_ name of the resource.
|
|
87
|
+
* @param args The arguments to use to populate this resource's properties.
|
|
88
|
+
* @param opts A bag of options that control this resource's behavior.
|
|
89
|
+
*/
|
|
90
|
+
constructor(name: string, args: BindingsArgs, opts?: pulumi.CustomResourceOptions);
|
|
91
|
+
}
|
|
92
|
+
/**
|
|
93
|
+
* Input properties used for looking up and filtering Bindings resources.
|
|
94
|
+
*/
|
|
95
|
+
export interface BindingsState {
|
|
96
|
+
/**
|
|
97
|
+
* The alias of the flow to assign to the realm BrowserFlow.
|
|
98
|
+
*/
|
|
99
|
+
browserFlow?: pulumi.Input<string>;
|
|
100
|
+
/**
|
|
101
|
+
* The alias of the flow to assign to the realm ClientAuthenticationFlow.
|
|
102
|
+
*/
|
|
103
|
+
clientAuthenticationFlow?: pulumi.Input<string>;
|
|
104
|
+
/**
|
|
105
|
+
* The alias of the flow to assign to the realm DirectGrantFlow.
|
|
106
|
+
*/
|
|
107
|
+
directGrantFlow?: pulumi.Input<string>;
|
|
108
|
+
/**
|
|
109
|
+
* The alias of the flow to assign to the realm DockerAuthenticationFlow.
|
|
110
|
+
*/
|
|
111
|
+
dockerAuthenticationFlow?: pulumi.Input<string>;
|
|
112
|
+
/**
|
|
113
|
+
* The realm the authentication flow binding exists in.
|
|
114
|
+
*/
|
|
115
|
+
realmId?: pulumi.Input<string>;
|
|
116
|
+
/**
|
|
117
|
+
* The alias of the flow to assign to the realm RegistrationFlow.
|
|
118
|
+
*/
|
|
119
|
+
registrationFlow?: pulumi.Input<string>;
|
|
120
|
+
/**
|
|
121
|
+
* The alias of the flow to assign to the realm ResetCredentialsFlow.
|
|
122
|
+
*/
|
|
123
|
+
resetCredentialsFlow?: pulumi.Input<string>;
|
|
124
|
+
}
|
|
125
|
+
/**
|
|
126
|
+
* The set of arguments for constructing a Bindings resource.
|
|
127
|
+
*/
|
|
128
|
+
export interface BindingsArgs {
|
|
129
|
+
/**
|
|
130
|
+
* The alias of the flow to assign to the realm BrowserFlow.
|
|
131
|
+
*/
|
|
132
|
+
browserFlow?: pulumi.Input<string>;
|
|
133
|
+
/**
|
|
134
|
+
* The alias of the flow to assign to the realm ClientAuthenticationFlow.
|
|
135
|
+
*/
|
|
136
|
+
clientAuthenticationFlow?: pulumi.Input<string>;
|
|
137
|
+
/**
|
|
138
|
+
* The alias of the flow to assign to the realm DirectGrantFlow.
|
|
139
|
+
*/
|
|
140
|
+
directGrantFlow?: pulumi.Input<string>;
|
|
141
|
+
/**
|
|
142
|
+
* The alias of the flow to assign to the realm DockerAuthenticationFlow.
|
|
143
|
+
*/
|
|
144
|
+
dockerAuthenticationFlow?: pulumi.Input<string>;
|
|
145
|
+
/**
|
|
146
|
+
* The realm the authentication flow binding exists in.
|
|
147
|
+
*/
|
|
148
|
+
realmId: pulumi.Input<string>;
|
|
149
|
+
/**
|
|
150
|
+
* The alias of the flow to assign to the realm RegistrationFlow.
|
|
151
|
+
*/
|
|
152
|
+
registrationFlow?: pulumi.Input<string>;
|
|
153
|
+
/**
|
|
154
|
+
* The alias of the flow to assign to the realm ResetCredentialsFlow.
|
|
155
|
+
*/
|
|
156
|
+
resetCredentialsFlow?: pulumi.Input<string>;
|
|
157
|
+
}
|
|
@@ -0,0 +1,101 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
// *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
|
|
3
|
+
// *** Do not edit by hand unless you're certain you know what you are doing! ***
|
|
4
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
5
|
+
exports.Bindings = void 0;
|
|
6
|
+
const pulumi = require("@pulumi/pulumi");
|
|
7
|
+
const utilities = require("../utilities");
|
|
8
|
+
/**
|
|
9
|
+
* ## Example Usage
|
|
10
|
+
*
|
|
11
|
+
* ```typescript
|
|
12
|
+
* import * as pulumi from "@pulumi/pulumi";
|
|
13
|
+
* import * as keycloak from "@pulumi/keycloak";
|
|
14
|
+
*
|
|
15
|
+
* const realm = new keycloak.Realm("realm", {
|
|
16
|
+
* realm: "my-realm",
|
|
17
|
+
* enabled: true,
|
|
18
|
+
* });
|
|
19
|
+
* const flow = new keycloak.authentication.Flow("flow", {
|
|
20
|
+
* realmId: realm.id,
|
|
21
|
+
* alias: "my-flow-alias",
|
|
22
|
+
* });
|
|
23
|
+
* // first execution
|
|
24
|
+
* const executionOne = new keycloak.authentication.Execution("executionOne", {
|
|
25
|
+
* realmId: realm.id,
|
|
26
|
+
* parentFlowAlias: flow.alias,
|
|
27
|
+
* authenticator: "auth-cookie",
|
|
28
|
+
* requirement: "ALTERNATIVE",
|
|
29
|
+
* });
|
|
30
|
+
* // second execution
|
|
31
|
+
* const executionTwo = new keycloak.authentication.Execution("executionTwo", {
|
|
32
|
+
* realmId: realm.id,
|
|
33
|
+
* parentFlowAlias: flow.alias,
|
|
34
|
+
* authenticator: "identity-provider-redirector",
|
|
35
|
+
* requirement: "ALTERNATIVE",
|
|
36
|
+
* }, {
|
|
37
|
+
* dependsOn: [executionOne],
|
|
38
|
+
* });
|
|
39
|
+
* const browserAuthenticationBinding = new keycloak.authentication.Bindings("browserAuthenticationBinding", {
|
|
40
|
+
* realmId: realm.id,
|
|
41
|
+
* browserFlow: flow.alias,
|
|
42
|
+
* });
|
|
43
|
+
* ```
|
|
44
|
+
*/
|
|
45
|
+
class Bindings extends pulumi.CustomResource {
|
|
46
|
+
constructor(name, argsOrState, opts) {
|
|
47
|
+
let resourceInputs = {};
|
|
48
|
+
opts = opts || {};
|
|
49
|
+
if (opts.id) {
|
|
50
|
+
const state = argsOrState;
|
|
51
|
+
resourceInputs["browserFlow"] = state ? state.browserFlow : undefined;
|
|
52
|
+
resourceInputs["clientAuthenticationFlow"] = state ? state.clientAuthenticationFlow : undefined;
|
|
53
|
+
resourceInputs["directGrantFlow"] = state ? state.directGrantFlow : undefined;
|
|
54
|
+
resourceInputs["dockerAuthenticationFlow"] = state ? state.dockerAuthenticationFlow : undefined;
|
|
55
|
+
resourceInputs["realmId"] = state ? state.realmId : undefined;
|
|
56
|
+
resourceInputs["registrationFlow"] = state ? state.registrationFlow : undefined;
|
|
57
|
+
resourceInputs["resetCredentialsFlow"] = state ? state.resetCredentialsFlow : undefined;
|
|
58
|
+
}
|
|
59
|
+
else {
|
|
60
|
+
const args = argsOrState;
|
|
61
|
+
if ((!args || args.realmId === undefined) && !opts.urn) {
|
|
62
|
+
throw new Error("Missing required property 'realmId'");
|
|
63
|
+
}
|
|
64
|
+
resourceInputs["browserFlow"] = args ? args.browserFlow : undefined;
|
|
65
|
+
resourceInputs["clientAuthenticationFlow"] = args ? args.clientAuthenticationFlow : undefined;
|
|
66
|
+
resourceInputs["directGrantFlow"] = args ? args.directGrantFlow : undefined;
|
|
67
|
+
resourceInputs["dockerAuthenticationFlow"] = args ? args.dockerAuthenticationFlow : undefined;
|
|
68
|
+
resourceInputs["realmId"] = args ? args.realmId : undefined;
|
|
69
|
+
resourceInputs["registrationFlow"] = args ? args.registrationFlow : undefined;
|
|
70
|
+
resourceInputs["resetCredentialsFlow"] = args ? args.resetCredentialsFlow : undefined;
|
|
71
|
+
}
|
|
72
|
+
opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
|
|
73
|
+
super(Bindings.__pulumiType, name, resourceInputs, opts);
|
|
74
|
+
}
|
|
75
|
+
/**
|
|
76
|
+
* Get an existing Bindings resource's state with the given name, ID, and optional extra
|
|
77
|
+
* properties used to qualify the lookup.
|
|
78
|
+
*
|
|
79
|
+
* @param name The _unique_ name of the resulting resource.
|
|
80
|
+
* @param id The _unique_ provider ID of the resource to lookup.
|
|
81
|
+
* @param state Any extra arguments used during the lookup.
|
|
82
|
+
* @param opts Optional settings to control the behavior of the CustomResource.
|
|
83
|
+
*/
|
|
84
|
+
static get(name, id, state, opts) {
|
|
85
|
+
return new Bindings(name, state, Object.assign(Object.assign({}, opts), { id: id }));
|
|
86
|
+
}
|
|
87
|
+
/**
|
|
88
|
+
* Returns true if the given object is an instance of Bindings. This is designed to work even
|
|
89
|
+
* when multiple copies of the Pulumi SDK have been loaded into the same process.
|
|
90
|
+
*/
|
|
91
|
+
static isInstance(obj) {
|
|
92
|
+
if (obj === undefined || obj === null) {
|
|
93
|
+
return false;
|
|
94
|
+
}
|
|
95
|
+
return obj['__pulumiType'] === Bindings.__pulumiType;
|
|
96
|
+
}
|
|
97
|
+
}
|
|
98
|
+
exports.Bindings = Bindings;
|
|
99
|
+
/** @internal */
|
|
100
|
+
Bindings.__pulumiType = 'keycloak:authentication/bindings:Bindings';
|
|
101
|
+
//# sourceMappingURL=bindings.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"bindings.js","sourceRoot":"","sources":["../../authentication/bindings.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAoCG;AACH,MAAa,QAAS,SAAQ,MAAM,CAAC,cAAc;IAiE/C,YAAY,IAAY,EAAE,WAA0C,EAAE,IAAmC;QACrG,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAwC,CAAC;YACvD,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,0BAA0B,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,wBAAwB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChG,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,0BAA0B,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,wBAAwB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChG,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,sBAAsB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,oBAAoB,CAAC,CAAC,CAAC,SAAS,CAAC;SAC3F;aAAM;YACH,MAAM,IAAI,GAAG,WAAuC,CAAC;YACrD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,OAAO,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACpD,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;aAC1D;YACD,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,0BAA0B,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9F,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,0BAA0B,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9F,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,sBAAsB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC,CAAC,SAAS,CAAC;SACzF;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,QAAQ,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC7D,CAAC;IA3FD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAqB,EAAE,IAAmC;QACnH,OAAO,IAAI,QAAQ,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAC/D,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,QAAQ,CAAC,YAAY,CAAC;IACzD,CAAC;;AA1BL,4BA6FC;AA/EG,gBAAgB;AACO,qBAAY,GAAG,2CAA2C,CAAC"}
|
package/authentication/index.js
CHANGED
|
@@ -19,11 +19,13 @@ Object.defineProperty(exports, "__esModule", { value: true });
|
|
|
19
19
|
const pulumi = require("@pulumi/pulumi");
|
|
20
20
|
const utilities = require("../utilities");
|
|
21
21
|
// Export members:
|
|
22
|
+
__exportStar(require("./bindings"), exports);
|
|
22
23
|
__exportStar(require("./execution"), exports);
|
|
23
24
|
__exportStar(require("./executionConfig"), exports);
|
|
24
25
|
__exportStar(require("./flow"), exports);
|
|
25
26
|
__exportStar(require("./subflow"), exports);
|
|
26
27
|
// Import resources to register:
|
|
28
|
+
const bindings_1 = require("./bindings");
|
|
27
29
|
const execution_1 = require("./execution");
|
|
28
30
|
const executionConfig_1 = require("./executionConfig");
|
|
29
31
|
const flow_1 = require("./flow");
|
|
@@ -32,6 +34,8 @@ const _module = {
|
|
|
32
34
|
version: utilities.getVersion(),
|
|
33
35
|
construct: (name, type, urn) => {
|
|
34
36
|
switch (type) {
|
|
37
|
+
case "keycloak:authentication/bindings:Bindings":
|
|
38
|
+
return new bindings_1.Bindings(name, undefined, { urn });
|
|
35
39
|
case "keycloak:authentication/execution:Execution":
|
|
36
40
|
return new execution_1.Execution(name, undefined, { urn });
|
|
37
41
|
case "keycloak:authentication/executionConfig:ExecutionConfig":
|
|
@@ -45,6 +49,7 @@ const _module = {
|
|
|
45
49
|
}
|
|
46
50
|
},
|
|
47
51
|
};
|
|
52
|
+
pulumi.runtime.registerResourceModule("keycloak", "authentication/bindings", _module);
|
|
48
53
|
pulumi.runtime.registerResourceModule("keycloak", "authentication/execution", _module);
|
|
49
54
|
pulumi.runtime.registerResourceModule("keycloak", "authentication/executionConfig", _module);
|
|
50
55
|
pulumi.runtime.registerResourceModule("keycloak", "authentication/flow", _module);
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../authentication/index.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;;;;;;;;;;;;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C,kBAAkB;AAClB,8CAA4B;AAC5B,oDAAkC;AAClC,yCAAuB;AACvB,4CAA0B;AAE1B,gCAAgC;AAChC,2CAAwC;AACxC,uDAAoD;AACpD,iCAA8B;AAC9B,uCAAoC;AAEpC,MAAM,OAAO,GAAG;IACZ,OAAO,EAAE,SAAS,CAAC,UAAU,EAAE;IAC/B,SAAS,EAAE,CAAC,IAAY,EAAE,IAAY,EAAE,GAAW,EAAmB,EAAE;QACpE,QAAQ,IAAI,EAAE;YACV,KAAK,6CAA6C;gBAC9C,OAAO,IAAI,qBAAS,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACvD,KAAK,yDAAyD;gBAC1D,OAAO,IAAI,iCAAe,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC7D,KAAK,mCAAmC;gBACpC,OAAO,IAAI,WAAI,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAClD,KAAK,yCAAyC;gBAC1C,OAAO,IAAI,iBAAO,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACrD;gBACI,MAAM,IAAI,KAAK,CAAC,yBAAyB,IAAI,EAAE,CAAC,CAAC;SACxD;IACL,CAAC;CACJ,CAAC;AACF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,0BAA0B,EAAE,OAAO,CAAC,CAAA;AACtF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,gCAAgC,EAAE,OAAO,CAAC,CAAA;AAC5F,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,qBAAqB,EAAE,OAAO,CAAC,CAAA;AACjF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,wBAAwB,EAAE,OAAO,CAAC,CAAA"}
|
|
1
|
+
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../authentication/index.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;;;;;;;;;;;;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C,kBAAkB;AAClB,6CAA2B;AAC3B,8CAA4B;AAC5B,oDAAkC;AAClC,yCAAuB;AACvB,4CAA0B;AAE1B,gCAAgC;AAChC,yCAAsC;AACtC,2CAAwC;AACxC,uDAAoD;AACpD,iCAA8B;AAC9B,uCAAoC;AAEpC,MAAM,OAAO,GAAG;IACZ,OAAO,EAAE,SAAS,CAAC,UAAU,EAAE;IAC/B,SAAS,EAAE,CAAC,IAAY,EAAE,IAAY,EAAE,GAAW,EAAmB,EAAE;QACpE,QAAQ,IAAI,EAAE;YACV,KAAK,2CAA2C;gBAC5C,OAAO,IAAI,mBAAQ,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACtD,KAAK,6CAA6C;gBAC9C,OAAO,IAAI,qBAAS,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACvD,KAAK,yDAAyD;gBAC1D,OAAO,IAAI,iCAAe,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC7D,KAAK,mCAAmC;gBACpC,OAAO,IAAI,WAAI,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAClD,KAAK,yCAAyC;gBAC1C,OAAO,IAAI,iBAAO,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACrD;gBACI,MAAM,IAAI,KAAK,CAAC,yBAAyB,IAAI,EAAE,CAAC,CAAC;SACxD;IACL,CAAC;CACJ,CAAC;AACF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,yBAAyB,EAAE,OAAO,CAAC,CAAA;AACrF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,0BAA0B,EAAE,OAAO,CAAC,CAAA;AACtF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,gCAAgC,EAAE,OAAO,CAAC,CAAA;AAC5F,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,qBAAqB,EAAE,OAAO,CAAC,CAAA;AACjF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,wBAAwB,EAAE,OAAO,CAAC,CAAA"}
|
package/index.d.ts
CHANGED
|
@@ -31,6 +31,7 @@ export * from "./realmKeystoreHmacGenerated";
|
|
|
31
31
|
export * from "./realmKeystoreJavaGenerated";
|
|
32
32
|
export * from "./realmKeystoreRsa";
|
|
33
33
|
export * from "./realmKeystoreRsaGenerated";
|
|
34
|
+
export * from "./realmUserProfile";
|
|
34
35
|
export * from "./requiredAction";
|
|
35
36
|
export * from "./role";
|
|
36
37
|
export * from "./user";
|
package/index.js
CHANGED
|
@@ -53,6 +53,7 @@ __exportStar(require("./realmKeystoreHmacGenerated"), exports);
|
|
|
53
53
|
__exportStar(require("./realmKeystoreJavaGenerated"), exports);
|
|
54
54
|
__exportStar(require("./realmKeystoreRsa"), exports);
|
|
55
55
|
__exportStar(require("./realmKeystoreRsaGenerated"), exports);
|
|
56
|
+
__exportStar(require("./realmUserProfile"), exports);
|
|
56
57
|
__exportStar(require("./requiredAction"), exports);
|
|
57
58
|
__exportStar(require("./role"), exports);
|
|
58
59
|
__exportStar(require("./user"), exports);
|
|
@@ -99,6 +100,7 @@ const realmKeystoreHmacGenerated_1 = require("./realmKeystoreHmacGenerated");
|
|
|
99
100
|
const realmKeystoreJavaGenerated_1 = require("./realmKeystoreJavaGenerated");
|
|
100
101
|
const realmKeystoreRsa_1 = require("./realmKeystoreRsa");
|
|
101
102
|
const realmKeystoreRsaGenerated_1 = require("./realmKeystoreRsaGenerated");
|
|
103
|
+
const realmUserProfile_1 = require("./realmUserProfile");
|
|
102
104
|
const requiredAction_1 = require("./requiredAction");
|
|
103
105
|
const role_1 = require("./role");
|
|
104
106
|
const user_1 = require("./user");
|
|
@@ -156,6 +158,8 @@ const _module = {
|
|
|
156
158
|
return new realmKeystoreRsa_1.RealmKeystoreRsa(name, undefined, { urn });
|
|
157
159
|
case "keycloak:index/realmKeystoreRsaGenerated:RealmKeystoreRsaGenerated":
|
|
158
160
|
return new realmKeystoreRsaGenerated_1.RealmKeystoreRsaGenerated(name, undefined, { urn });
|
|
161
|
+
case "keycloak:index/realmUserProfile:RealmUserProfile":
|
|
162
|
+
return new realmUserProfile_1.RealmUserProfile(name, undefined, { urn });
|
|
159
163
|
case "keycloak:index/requiredAction:RequiredAction":
|
|
160
164
|
return new requiredAction_1.RequiredAction(name, undefined, { urn });
|
|
161
165
|
case "keycloak:index/role:Role":
|
|
@@ -198,6 +202,7 @@ pulumi.runtime.registerResourceModule("keycloak", "index/realmKeystoreHmacGenera
|
|
|
198
202
|
pulumi.runtime.registerResourceModule("keycloak", "index/realmKeystoreJavaGenerated", _module);
|
|
199
203
|
pulumi.runtime.registerResourceModule("keycloak", "index/realmKeystoreRsa", _module);
|
|
200
204
|
pulumi.runtime.registerResourceModule("keycloak", "index/realmKeystoreRsaGenerated", _module);
|
|
205
|
+
pulumi.runtime.registerResourceModule("keycloak", "index/realmUserProfile", _module);
|
|
201
206
|
pulumi.runtime.registerResourceModule("keycloak", "index/requiredAction", _module);
|
|
202
207
|
pulumi.runtime.registerResourceModule("keycloak", "index/role", _module);
|
|
203
208
|
pulumi.runtime.registerResourceModule("keycloak", "index/user", _module);
|
package/index.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.js","sourceRoot":"","sources":["../index.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;;;;;;;;;;;;;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC,kBAAkB;AAClB,4EAA0D;AAC1D,kEAAgD;AAChD,kEAAgD;AAChD,yDAAuC;AACvC,kDAAgC;AAChC,iDAA+B;AAC/B,gEAA8C;AAC9C,4DAA0C;AAC1C,+DAA6C;AAC7C,0DAAwC;AACxC,kEAAgD;AAChD,6CAA2B;AAC3B,6CAA2B;AAC3B,iDAA+B;AAC/B,4CAA0B;AAC1B,4CAA0B;AAC1B,sDAAoC;AACpC,0CAAwB;AACxB,qDAAmC;AACnC,qDAAmC;AACnC,+CAA6B;AAC7B,6EAA2D;AAC3D,gEAA8C;AAC9C,iFAA+D;AAC/D,6CAA2B;AAC3B,0CAAwB;AACxB,gDAA8B;AAC9B,8DAA4C;AAC5C,gEAA8C;AAC9C,+DAA6C;AAC7C,+DAA6C;AAC7C,qDAAmC;AACnC,8DAA4C;AAC5C,mDAAiC;AACjC,yCAAuB;AACvB,yCAAuB;AACvB,+CAA6B;AAC7B,8CAA4B;AAC5B,+EAA6D;AAC7D,qDAAmC;AAEnC,sBAAsB;AACtB,mDAAmD;AAS/C,wCAAc;AARlB,mCAAmC;AAS/B,wBAAM;AARV,+BAA+B;AAS3B,oBAAI;AARR,+BAA+B;AAS3B,oBAAI;AARR,mCAAmC;AAS/B,wBAAM;AARV,+BAA+B;AAS3B,oBAAI;AARR,iCAAiC;AAS7B,sBAAK;AAGT,gCAAgC;AAChC,uGAAoG;AACpG,mFAAgF;AAChF,mFAAgF;AAChF,iEAA8D;AAC9D,mDAAgD;AAChD,iDAA8C;AAC9C,+EAA4E;AAC5E,uEAAoE;AACpE,mCAAgC;AAChC,yDAAsD;AACtD,yDAAsD;AACtD,6CAA0C;AAC1C,yGAAsG;AACtG,+EAA4E;AAC5E,iHAA8G;AAC9G,mCAAgC;AAChC,+CAA4C;AAC5C,2EAAwE;AACxE,+EAA4E;AAC5E,6EAA0E;AAC1E,6EAA0E;AAC1E,yDAAsD;AACtD,2EAAwE;AACxE,qDAAkD;AAClD,iCAA8B;AAC9B,iCAA8B;AAC9B,6CAA0C;AAC1C,2CAAwC;AACxC,6GAA0G;AAC1G,yDAAsD;AAEtD,MAAM,OAAO,GAAG;IACZ,OAAO,EAAE,SAAS,CAAC,UAAU,EAAE;IAC/B,SAAS,EAAE,CAAC,IAAY,EAAE,IAAY,EAAE,GAAW,EAAmB,EAAE;QACpE,QAAQ,IAAI,EAAE;YACV,KAAK,gGAAgG;gBACjG,OAAO,IAAI,iFAAuC,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACrF,KAAK,4EAA4E;gBAC7E,OAAO,IAAI,6DAA6B,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC3E,KAAK,4EAA4E;gBAC7E,OAAO,IAAI,6DAA6B,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC3E,KAAK,0DAA0D;gBAC3D,OAAO,IAAI,2CAAoB,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAClE,KAAK,4CAA4C;gBAC7C,OAAO,IAAI,6BAAa,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC3D,KAAK,0CAA0C;gBAC3C,OAAO,IAAI,2BAAY,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC1D,KAAK,wEAAwE;gBACzE,OAAO,IAAI,yDAA2B,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACzE,KAAK,gEAAgE;gBACjE,OAAO,IAAI,iDAAuB,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACrE,KAAK,4BAA4B;gBAC7B,OAAO,IAAI,aAAK,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACnD,KAAK,kDAAkD;gBACnD,OAAO,IAAI,mCAAgB,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC9D,KAAK,kDAAkD;gBACnD,OAAO,IAAI,mCAAgB,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC9D,KAAK,sCAAsC;gBACvC,OAAO,IAAI,uBAAU,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACxD,KAAK,kGAAkG;gBACnG,OAAO,IAAI,mFAAwC,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACtF,KAAK,wEAAwE;gBACzE,OAAO,IAAI,yDAA2B,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACzE,KAAK,0GAA0G;gBAC3G,OAAO,IAAI,2FAA4C,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC1F,KAAK,4BAA4B;gBAC7B,OAAO,IAAI,aAAK,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACnD,KAAK,wCAAwC;gBACzC,OAAO,IAAI,yBAAW,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACzD,KAAK,oEAAoE;gBACrE,OAAO,IAAI,qDAAyB,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACvE,KAAK,wEAAwE;gBACzE,OAAO,IAAI,yDAA2B,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACzE,KAAK,sEAAsE;gBACvE,OAAO,IAAI,uDAA0B,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACxE,KAAK,sEAAsE;gBACvE,OAAO,IAAI,uDAA0B,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACxE,KAAK,kDAAkD;gBACnD,OAAO,IAAI,mCAAgB,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC9D,KAAK,oEAAoE;gBACrE,OAAO,IAAI,qDAAyB,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACvE,KAAK,8CAA8C;gBAC/C,OAAO,IAAI,+BAAc,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC5D,KAAK,0BAA0B;gBAC3B,OAAO,IAAI,WAAI,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAClD,KAAK,0BAA0B;gBAC3B,OAAO,IAAI,WAAI,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAClD,KAAK,sCAAsC;gBACvC,OAAO,IAAI,uBAAU,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACxD,KAAK,oCAAoC;gBACrC,OAAO,IAAI,qBAAS,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACvD,KAAK,sGAAsG;gBACvG,OAAO,IAAI,uFAA0C,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACxF,KAAK,kDAAkD;gBACnD,OAAO,IAAI,mCAAgB,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC9D;gBACI,MAAM,IAAI,KAAK,CAAC,yBAAyB,IAAI,EAAE,CAAC,CAAC;SACxD;IACL,CAAC;CACJ,CAAC;AACF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,+CAA+C,EAAE,OAAO,CAAC,CAAA;AAC3G,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,qCAAqC,EAAE,OAAO,CAAC,CAAA;AACjG,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,qCAAqC,EAAE,OAAO,CAAC,CAAA;AACjG,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,4BAA4B,EAAE,OAAO,CAAC,CAAA;AACxF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,qBAAqB,EAAE,OAAO,CAAC,CAAA;AACjF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,oBAAoB,EAAE,OAAO,CAAC,CAAA;AAChF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,mCAAmC,EAAE,OAAO,CAAC,CAAA;AAC/F,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,+BAA+B,EAAE,OAAO,CAAC,CAAA;AAC3F,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,aAAa,EAAE,OAAO,CAAC,CAAA;AACzE,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,wBAAwB,EAAE,OAAO,CAAC,CAAA;AACpF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,wBAAwB,EAAE,OAAO,CAAC,CAAA;AACpF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,kBAAkB,EAAE,OAAO,CAAC,CAAA;AAC9E,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,gDAAgD,EAAE,OAAO,CAAC,CAAA;AAC5G,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,mCAAmC,EAAE,OAAO,CAAC,CAAA;AAC/F,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,oDAAoD,EAAE,OAAO,CAAC,CAAA;AAChH,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,aAAa,EAAE,OAAO,CAAC,CAAA;AACzE,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,mBAAmB,EAAE,OAAO,CAAC,CAAA;AAC/E,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,iCAAiC,EAAE,OAAO,CAAC,CAAA;AAC7F,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,mCAAmC,EAAE,OAAO,CAAC,CAAA;AAC/F,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,kCAAkC,EAAE,OAAO,CAAC,CAAA;AAC9F,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,kCAAkC,EAAE,OAAO,CAAC,CAAA;AAC9F,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,wBAAwB,EAAE,OAAO,CAAC,CAAA;AACpF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,iCAAiC,EAAE,OAAO,CAAC,CAAA;AAC7F,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,sBAAsB,EAAE,OAAO,CAAC,CAAA;AAClF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,YAAY,EAAE,OAAO,CAAC,CAAA;AACxE,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,YAAY,EAAE,OAAO,CAAC,CAAA;AACxE,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,kBAAkB,EAAE,OAAO,CAAC,CAAA;AAC9E,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,iBAAiB,EAAE,OAAO,CAAC,CAAA;AAC7E,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,kDAAkD,EAAE,OAAO,CAAC,CAAA;AAC9G,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,wBAAwB,EAAE,OAAO,CAAC,CAAA;AAEpF,yCAAsC;AAEtC,MAAM,CAAC,OAAO,CAAC,uBAAuB,CAAC,UAAU,EAAE;IAC/C,OAAO,EAAE,SAAS,CAAC,UAAU,EAAE;IAC/B,iBAAiB,EAAE,CAAC,IAAY,EAAE,IAAY,EAAE,GAAW,EAA2B,EAAE;QACpF,IAAI,IAAI,KAAK,2BAA2B,EAAE;YACtC,MAAM,IAAI,KAAK,CAAC,yBAAyB,IAAI,EAAE,CAAC,CAAC;SACpD;QACD,OAAO,IAAI,mBAAQ,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAC;IACvD,CAAC;CACJ,CAAC,CAAC"}
|
|
1
|
+
{"version":3,"file":"index.js","sourceRoot":"","sources":["../index.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;;;;;;;;;;;;;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC,kBAAkB;AAClB,4EAA0D;AAC1D,kEAAgD;AAChD,kEAAgD;AAChD,yDAAuC;AACvC,kDAAgC;AAChC,iDAA+B;AAC/B,gEAA8C;AAC9C,4DAA0C;AAC1C,+DAA6C;AAC7C,0DAAwC;AACxC,kEAAgD;AAChD,6CAA2B;AAC3B,6CAA2B;AAC3B,iDAA+B;AAC/B,4CAA0B;AAC1B,4CAA0B;AAC1B,sDAAoC;AACpC,0CAAwB;AACxB,qDAAmC;AACnC,qDAAmC;AACnC,+CAA6B;AAC7B,6EAA2D;AAC3D,gEAA8C;AAC9C,iFAA+D;AAC/D,6CAA2B;AAC3B,0CAAwB;AACxB,gDAA8B;AAC9B,8DAA4C;AAC5C,gEAA8C;AAC9C,+DAA6C;AAC7C,+DAA6C;AAC7C,qDAAmC;AACnC,8DAA4C;AAC5C,qDAAmC;AACnC,mDAAiC;AACjC,yCAAuB;AACvB,yCAAuB;AACvB,+CAA6B;AAC7B,8CAA4B;AAC5B,+EAA6D;AAC7D,qDAAmC;AAEnC,sBAAsB;AACtB,mDAAmD;AAS/C,wCAAc;AARlB,mCAAmC;AAS/B,wBAAM;AARV,+BAA+B;AAS3B,oBAAI;AARR,+BAA+B;AAS3B,oBAAI;AARR,mCAAmC;AAS/B,wBAAM;AARV,+BAA+B;AAS3B,oBAAI;AARR,iCAAiC;AAS7B,sBAAK;AAGT,gCAAgC;AAChC,uGAAoG;AACpG,mFAAgF;AAChF,mFAAgF;AAChF,iEAA8D;AAC9D,mDAAgD;AAChD,iDAA8C;AAC9C,+EAA4E;AAC5E,uEAAoE;AACpE,mCAAgC;AAChC,yDAAsD;AACtD,yDAAsD;AACtD,6CAA0C;AAC1C,yGAAsG;AACtG,+EAA4E;AAC5E,iHAA8G;AAC9G,mCAAgC;AAChC,+CAA4C;AAC5C,2EAAwE;AACxE,+EAA4E;AAC5E,6EAA0E;AAC1E,6EAA0E;AAC1E,yDAAsD;AACtD,2EAAwE;AACxE,yDAAsD;AACtD,qDAAkD;AAClD,iCAA8B;AAC9B,iCAA8B;AAC9B,6CAA0C;AAC1C,2CAAwC;AACxC,6GAA0G;AAC1G,yDAAsD;AAEtD,MAAM,OAAO,GAAG;IACZ,OAAO,EAAE,SAAS,CAAC,UAAU,EAAE;IAC/B,SAAS,EAAE,CAAC,IAAY,EAAE,IAAY,EAAE,GAAW,EAAmB,EAAE;QACpE,QAAQ,IAAI,EAAE;YACV,KAAK,gGAAgG;gBACjG,OAAO,IAAI,iFAAuC,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACrF,KAAK,4EAA4E;gBAC7E,OAAO,IAAI,6DAA6B,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC3E,KAAK,4EAA4E;gBAC7E,OAAO,IAAI,6DAA6B,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC3E,KAAK,0DAA0D;gBAC3D,OAAO,IAAI,2CAAoB,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAClE,KAAK,4CAA4C;gBAC7C,OAAO,IAAI,6BAAa,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC3D,KAAK,0CAA0C;gBAC3C,OAAO,IAAI,2BAAY,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC1D,KAAK,wEAAwE;gBACzE,OAAO,IAAI,yDAA2B,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACzE,KAAK,gEAAgE;gBACjE,OAAO,IAAI,iDAAuB,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACrE,KAAK,4BAA4B;gBAC7B,OAAO,IAAI,aAAK,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACnD,KAAK,kDAAkD;gBACnD,OAAO,IAAI,mCAAgB,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC9D,KAAK,kDAAkD;gBACnD,OAAO,IAAI,mCAAgB,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC9D,KAAK,sCAAsC;gBACvC,OAAO,IAAI,uBAAU,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACxD,KAAK,kGAAkG;gBACnG,OAAO,IAAI,mFAAwC,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACtF,KAAK,wEAAwE;gBACzE,OAAO,IAAI,yDAA2B,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACzE,KAAK,0GAA0G;gBAC3G,OAAO,IAAI,2FAA4C,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC1F,KAAK,4BAA4B;gBAC7B,OAAO,IAAI,aAAK,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACnD,KAAK,wCAAwC;gBACzC,OAAO,IAAI,yBAAW,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACzD,KAAK,oEAAoE;gBACrE,OAAO,IAAI,qDAAyB,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACvE,KAAK,wEAAwE;gBACzE,OAAO,IAAI,yDAA2B,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACzE,KAAK,sEAAsE;gBACvE,OAAO,IAAI,uDAA0B,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACxE,KAAK,sEAAsE;gBACvE,OAAO,IAAI,uDAA0B,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACxE,KAAK,kDAAkD;gBACnD,OAAO,IAAI,mCAAgB,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC9D,KAAK,oEAAoE;gBACrE,OAAO,IAAI,qDAAyB,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACvE,KAAK,kDAAkD;gBACnD,OAAO,IAAI,mCAAgB,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC9D,KAAK,8CAA8C;gBAC/C,OAAO,IAAI,+BAAc,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC5D,KAAK,0BAA0B;gBAC3B,OAAO,IAAI,WAAI,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAClD,KAAK,0BAA0B;gBAC3B,OAAO,IAAI,WAAI,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAClD,KAAK,sCAAsC;gBACvC,OAAO,IAAI,uBAAU,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACxD,KAAK,oCAAoC;gBACrC,OAAO,IAAI,qBAAS,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACvD,KAAK,sGAAsG;gBACvG,OAAO,IAAI,uFAA0C,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YACxF,KAAK,kDAAkD;gBACnD,OAAO,IAAI,mCAAgB,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAA;YAC9D;gBACI,MAAM,IAAI,KAAK,CAAC,yBAAyB,IAAI,EAAE,CAAC,CAAC;SACxD;IACL,CAAC;CACJ,CAAC;AACF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,+CAA+C,EAAE,OAAO,CAAC,CAAA;AAC3G,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,qCAAqC,EAAE,OAAO,CAAC,CAAA;AACjG,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,qCAAqC,EAAE,OAAO,CAAC,CAAA;AACjG,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,4BAA4B,EAAE,OAAO,CAAC,CAAA;AACxF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,qBAAqB,EAAE,OAAO,CAAC,CAAA;AACjF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,oBAAoB,EAAE,OAAO,CAAC,CAAA;AAChF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,mCAAmC,EAAE,OAAO,CAAC,CAAA;AAC/F,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,+BAA+B,EAAE,OAAO,CAAC,CAAA;AAC3F,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,aAAa,EAAE,OAAO,CAAC,CAAA;AACzE,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,wBAAwB,EAAE,OAAO,CAAC,CAAA;AACpF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,wBAAwB,EAAE,OAAO,CAAC,CAAA;AACpF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,kBAAkB,EAAE,OAAO,CAAC,CAAA;AAC9E,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,gDAAgD,EAAE,OAAO,CAAC,CAAA;AAC5G,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,mCAAmC,EAAE,OAAO,CAAC,CAAA;AAC/F,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,oDAAoD,EAAE,OAAO,CAAC,CAAA;AAChH,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,aAAa,EAAE,OAAO,CAAC,CAAA;AACzE,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,mBAAmB,EAAE,OAAO,CAAC,CAAA;AAC/E,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,iCAAiC,EAAE,OAAO,CAAC,CAAA;AAC7F,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,mCAAmC,EAAE,OAAO,CAAC,CAAA;AAC/F,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,kCAAkC,EAAE,OAAO,CAAC,CAAA;AAC9F,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,kCAAkC,EAAE,OAAO,CAAC,CAAA;AAC9F,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,wBAAwB,EAAE,OAAO,CAAC,CAAA;AACpF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,iCAAiC,EAAE,OAAO,CAAC,CAAA;AAC7F,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,wBAAwB,EAAE,OAAO,CAAC,CAAA;AACpF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,sBAAsB,EAAE,OAAO,CAAC,CAAA;AAClF,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,YAAY,EAAE,OAAO,CAAC,CAAA;AACxE,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,YAAY,EAAE,OAAO,CAAC,CAAA;AACxE,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,kBAAkB,EAAE,OAAO,CAAC,CAAA;AAC9E,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,iBAAiB,EAAE,OAAO,CAAC,CAAA;AAC7E,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,kDAAkD,EAAE,OAAO,CAAC,CAAA;AAC9G,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAC,UAAU,EAAE,wBAAwB,EAAE,OAAO,CAAC,CAAA;AAEpF,yCAAsC;AAEtC,MAAM,CAAC,OAAO,CAAC,uBAAuB,CAAC,UAAU,EAAE;IAC/C,OAAO,EAAE,SAAS,CAAC,UAAU,EAAE;IAC/B,iBAAiB,EAAE,CAAC,IAAY,EAAE,IAAY,EAAE,GAAW,EAA2B,EAAE;QACpF,IAAI,IAAI,KAAK,2BAA2B,EAAE;YACtC,MAAM,IAAI,KAAK,CAAC,yBAAyB,IAAI,EAAE,CAAC,CAAC;SACpD;QACD,OAAO,IAAI,mBAAQ,CAAC,IAAI,EAAO,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,CAAC;IACvD,CAAC;CACJ,CAAC,CAAC"}
|
package/openid/clientPolicy.d.ts
CHANGED
|
@@ -1,4 +1,42 @@
|
|
|
1
1
|
import * as pulumi from "@pulumi/pulumi";
|
|
2
|
+
/**
|
|
3
|
+
* This resource can be used to create client policy.
|
|
4
|
+
*
|
|
5
|
+
* ## Example Usage
|
|
6
|
+
*
|
|
7
|
+
* In this example, we'll create a new OpenID client, then enabled permissions for the client. A client without permissions disabled cannot be assigned by a client policy. We'll use the `keycloak.openid.ClientPolicy` resource to create a new client policy, which could be applied to many clients, for a realm and a resource_server_id.
|
|
8
|
+
*
|
|
9
|
+
* ```typescript
|
|
10
|
+
* import * as pulumi from "@pulumi/pulumi";
|
|
11
|
+
* import * as keycloak from "@pulumi/keycloak";
|
|
12
|
+
*
|
|
13
|
+
* const realm = new keycloak.Realm("realm", {
|
|
14
|
+
* realm: "my-realm",
|
|
15
|
+
* enabled: true,
|
|
16
|
+
* });
|
|
17
|
+
* const openidClient = new keycloak.openid.Client("openidClient", {
|
|
18
|
+
* clientId: "openid_client",
|
|
19
|
+
* realmId: realm.id,
|
|
20
|
+
* accessType: "CONFIDENTIAL",
|
|
21
|
+
* serviceAccountsEnabled: true,
|
|
22
|
+
* });
|
|
23
|
+
* const myPermission = new keycloak.openid.ClientPermissions("myPermission", {
|
|
24
|
+
* realmId: realm.id,
|
|
25
|
+
* clientId: openidClient.id,
|
|
26
|
+
* });
|
|
27
|
+
* const realmManagement = keycloak.openid.getClient({
|
|
28
|
+
* realmId: "my-realm",
|
|
29
|
+
* clientId: "realm-management",
|
|
30
|
+
* });
|
|
31
|
+
* const tokenExchange = new keycloak.openid.ClientPolicy("tokenExchange", {
|
|
32
|
+
* resourceServerId: realmManagement.then(realmManagement => realmManagement.id),
|
|
33
|
+
* realmId: realm.id,
|
|
34
|
+
* logic: "POSITIVE",
|
|
35
|
+
* decisionStrategy: "UNANIMOUS",
|
|
36
|
+
* clients: [openidClient.id],
|
|
37
|
+
* });
|
|
38
|
+
* ```
|
|
39
|
+
*/
|
|
2
40
|
export declare class ClientPolicy extends pulumi.CustomResource {
|
|
3
41
|
/**
|
|
4
42
|
* Get an existing ClientPolicy resource's state with the given name, ID, and optional extra
|
|
@@ -15,12 +53,33 @@ export declare class ClientPolicy extends pulumi.CustomResource {
|
|
|
15
53
|
* when multiple copies of the Pulumi SDK have been loaded into the same process.
|
|
16
54
|
*/
|
|
17
55
|
static isInstance(obj: any): obj is ClientPolicy;
|
|
56
|
+
/**
|
|
57
|
+
* The clients allowed by this client policy.
|
|
58
|
+
*/
|
|
18
59
|
readonly clients: pulumi.Output<string[]>;
|
|
60
|
+
/**
|
|
61
|
+
* (Computed) Dictates how the policies associated with a given permission are evaluated and how a final decision is obtained. Could be one of `AFFIRMATIVE`, `CONSENSUS`, or `UNANIMOUS`. Applies to permissions.
|
|
62
|
+
*/
|
|
19
63
|
readonly decisionStrategy: pulumi.Output<string | undefined>;
|
|
64
|
+
/**
|
|
65
|
+
* The description of this client policy.
|
|
66
|
+
*/
|
|
20
67
|
readonly description: pulumi.Output<string | undefined>;
|
|
68
|
+
/**
|
|
69
|
+
* (Computed) Dictates how the policy decision should be made. Can be either `POSITIVE` or `NEGATIVE`. Applies to policies.
|
|
70
|
+
*/
|
|
21
71
|
readonly logic: pulumi.Output<string | undefined>;
|
|
72
|
+
/**
|
|
73
|
+
* The name of this client policy.
|
|
74
|
+
*/
|
|
22
75
|
readonly name: pulumi.Output<string>;
|
|
76
|
+
/**
|
|
77
|
+
* The realm this client policy exists within.
|
|
78
|
+
*/
|
|
23
79
|
readonly realmId: pulumi.Output<string>;
|
|
80
|
+
/**
|
|
81
|
+
* The ID of the resource server this client policy is attached to.
|
|
82
|
+
*/
|
|
24
83
|
readonly resourceServerId: pulumi.Output<string>;
|
|
25
84
|
/**
|
|
26
85
|
* Create a ClientPolicy resource with the given unique name, arguments, and options.
|
|
@@ -35,23 +94,65 @@ export declare class ClientPolicy extends pulumi.CustomResource {
|
|
|
35
94
|
* Input properties used for looking up and filtering ClientPolicy resources.
|
|
36
95
|
*/
|
|
37
96
|
export interface ClientPolicyState {
|
|
97
|
+
/**
|
|
98
|
+
* The clients allowed by this client policy.
|
|
99
|
+
*/
|
|
38
100
|
clients?: pulumi.Input<pulumi.Input<string>[]>;
|
|
101
|
+
/**
|
|
102
|
+
* (Computed) Dictates how the policies associated with a given permission are evaluated and how a final decision is obtained. Could be one of `AFFIRMATIVE`, `CONSENSUS`, or `UNANIMOUS`. Applies to permissions.
|
|
103
|
+
*/
|
|
39
104
|
decisionStrategy?: pulumi.Input<string>;
|
|
105
|
+
/**
|
|
106
|
+
* The description of this client policy.
|
|
107
|
+
*/
|
|
40
108
|
description?: pulumi.Input<string>;
|
|
109
|
+
/**
|
|
110
|
+
* (Computed) Dictates how the policy decision should be made. Can be either `POSITIVE` or `NEGATIVE`. Applies to policies.
|
|
111
|
+
*/
|
|
41
112
|
logic?: pulumi.Input<string>;
|
|
113
|
+
/**
|
|
114
|
+
* The name of this client policy.
|
|
115
|
+
*/
|
|
42
116
|
name?: pulumi.Input<string>;
|
|
117
|
+
/**
|
|
118
|
+
* The realm this client policy exists within.
|
|
119
|
+
*/
|
|
43
120
|
realmId?: pulumi.Input<string>;
|
|
121
|
+
/**
|
|
122
|
+
* The ID of the resource server this client policy is attached to.
|
|
123
|
+
*/
|
|
44
124
|
resourceServerId?: pulumi.Input<string>;
|
|
45
125
|
}
|
|
46
126
|
/**
|
|
47
127
|
* The set of arguments for constructing a ClientPolicy resource.
|
|
48
128
|
*/
|
|
49
129
|
export interface ClientPolicyArgs {
|
|
130
|
+
/**
|
|
131
|
+
* The clients allowed by this client policy.
|
|
132
|
+
*/
|
|
50
133
|
clients: pulumi.Input<pulumi.Input<string>[]>;
|
|
134
|
+
/**
|
|
135
|
+
* (Computed) Dictates how the policies associated with a given permission are evaluated and how a final decision is obtained. Could be one of `AFFIRMATIVE`, `CONSENSUS`, or `UNANIMOUS`. Applies to permissions.
|
|
136
|
+
*/
|
|
51
137
|
decisionStrategy?: pulumi.Input<string>;
|
|
138
|
+
/**
|
|
139
|
+
* The description of this client policy.
|
|
140
|
+
*/
|
|
52
141
|
description?: pulumi.Input<string>;
|
|
142
|
+
/**
|
|
143
|
+
* (Computed) Dictates how the policy decision should be made. Can be either `POSITIVE` or `NEGATIVE`. Applies to policies.
|
|
144
|
+
*/
|
|
53
145
|
logic?: pulumi.Input<string>;
|
|
146
|
+
/**
|
|
147
|
+
* The name of this client policy.
|
|
148
|
+
*/
|
|
54
149
|
name?: pulumi.Input<string>;
|
|
150
|
+
/**
|
|
151
|
+
* The realm this client policy exists within.
|
|
152
|
+
*/
|
|
55
153
|
realmId: pulumi.Input<string>;
|
|
154
|
+
/**
|
|
155
|
+
* The ID of the resource server this client policy is attached to.
|
|
156
|
+
*/
|
|
56
157
|
resourceServerId: pulumi.Input<string>;
|
|
57
158
|
}
|
package/openid/clientPolicy.js
CHANGED
|
@@ -5,6 +5,44 @@ Object.defineProperty(exports, "__esModule", { value: true });
|
|
|
5
5
|
exports.ClientPolicy = void 0;
|
|
6
6
|
const pulumi = require("@pulumi/pulumi");
|
|
7
7
|
const utilities = require("../utilities");
|
|
8
|
+
/**
|
|
9
|
+
* This resource can be used to create client policy.
|
|
10
|
+
*
|
|
11
|
+
* ## Example Usage
|
|
12
|
+
*
|
|
13
|
+
* In this example, we'll create a new OpenID client, then enabled permissions for the client. A client without permissions disabled cannot be assigned by a client policy. We'll use the `keycloak.openid.ClientPolicy` resource to create a new client policy, which could be applied to many clients, for a realm and a resource_server_id.
|
|
14
|
+
*
|
|
15
|
+
* ```typescript
|
|
16
|
+
* import * as pulumi from "@pulumi/pulumi";
|
|
17
|
+
* import * as keycloak from "@pulumi/keycloak";
|
|
18
|
+
*
|
|
19
|
+
* const realm = new keycloak.Realm("realm", {
|
|
20
|
+
* realm: "my-realm",
|
|
21
|
+
* enabled: true,
|
|
22
|
+
* });
|
|
23
|
+
* const openidClient = new keycloak.openid.Client("openidClient", {
|
|
24
|
+
* clientId: "openid_client",
|
|
25
|
+
* realmId: realm.id,
|
|
26
|
+
* accessType: "CONFIDENTIAL",
|
|
27
|
+
* serviceAccountsEnabled: true,
|
|
28
|
+
* });
|
|
29
|
+
* const myPermission = new keycloak.openid.ClientPermissions("myPermission", {
|
|
30
|
+
* realmId: realm.id,
|
|
31
|
+
* clientId: openidClient.id,
|
|
32
|
+
* });
|
|
33
|
+
* const realmManagement = keycloak.openid.getClient({
|
|
34
|
+
* realmId: "my-realm",
|
|
35
|
+
* clientId: "realm-management",
|
|
36
|
+
* });
|
|
37
|
+
* const tokenExchange = new keycloak.openid.ClientPolicy("tokenExchange", {
|
|
38
|
+
* resourceServerId: realmManagement.then(realmManagement => realmManagement.id),
|
|
39
|
+
* realmId: realm.id,
|
|
40
|
+
* logic: "POSITIVE",
|
|
41
|
+
* decisionStrategy: "UNANIMOUS",
|
|
42
|
+
* clients: [openidClient.id],
|
|
43
|
+
* });
|
|
44
|
+
* ```
|
|
45
|
+
*/
|
|
8
46
|
class ClientPolicy extends pulumi.CustomResource {
|
|
9
47
|
constructor(name, argsOrState, opts) {
|
|
10
48
|
let resourceInputs = {};
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"clientPolicy.js","sourceRoot":"","sources":["../../openid/clientPolicy.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C,MAAa,YAAa,SAAQ,MAAM,CAAC,cAAc;
|
|
1
|
+
{"version":3,"file":"clientPolicy.js","sourceRoot":"","sources":["../../openid/clientPolicy.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAqCG;AACH,MAAa,YAAa,SAAQ,MAAM,CAAC,cAAc;IAiEnD,YAAY,IAAY,EAAE,WAAkD,EAAE,IAAmC;QAC7G,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAA4C,CAAC;YAC3D,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;SACnF;aAAM;YACH,MAAM,IAAI,GAAG,WAA2C,CAAC;YACzD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,OAAO,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACpD,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;aAC1D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,OAAO,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACpD,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;aAC1D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,gBAAgB,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC7D,MAAM,IAAI,KAAK,CAAC,8CAA8C,CAAC,CAAC;aACnE;YACD,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACtD,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;SACjF;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,YAAY,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IACjE,CAAC;IAjGD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAyB,EAAE,IAAmC;QACvH,OAAO,IAAI,YAAY,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IACnE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,YAAY,CAAC,YAAY,CAAC;IAC7D,CAAC;;AA1BL,oCAmGC;AArFG,gBAAgB;AACO,yBAAY,GAAG,2CAA2C,CAAC"}
|
|
@@ -7,6 +7,8 @@ import * as pulumi from "@pulumi/pulumi";
|
|
|
7
7
|
* Protocol mappers can be defined for a single client, or they can be defined for a client scope which can be shared between
|
|
8
8
|
* multiple different clients.
|
|
9
9
|
*
|
|
10
|
+
* > Support for this protocol mapper was removed in Keycloak 18.
|
|
11
|
+
*
|
|
10
12
|
* ## Example Usage
|
|
11
13
|
* ### Client)
|
|
12
14
|
*
|
|
@@ -13,6 +13,8 @@ const utilities = require("../utilities");
|
|
|
13
13
|
* Protocol mappers can be defined for a single client, or they can be defined for a client scope which can be shared between
|
|
14
14
|
* multiple different clients.
|
|
15
15
|
*
|
|
16
|
+
* > Support for this protocol mapper was removed in Keycloak 18.
|
|
17
|
+
*
|
|
16
18
|
* ## Example Usage
|
|
17
19
|
* ### Client)
|
|
18
20
|
*
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"scriptProtocolMapper.js","sourceRoot":"","sources":["../../openid/scriptProtocolMapper.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C
|
|
1
|
+
{"version":3,"file":"scriptProtocolMapper.js","sourceRoot":"","sources":["../../openid/scriptProtocolMapper.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,0CAA0C;AAE1C;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAiEG;AACH,MAAa,oBAAqB,SAAQ,MAAM,CAAC,cAAc;IAiF3D,YAAY,IAAY,EAAE,WAAkE,EAAE,IAAmC;QAC7H,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAoD,CAAC;YACnE,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;SAC/D;aAAM;YACH,MAAM,IAAI,GAAG,WAAmD,CAAC;YACjE,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,SAAS,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACtD,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;aAC5D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,OAAO,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACpD,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;aAC1D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,MAAM,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACnD,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAC;aACzD;YACD,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACtD,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;SAC7D;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,oBAAoB,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IACzE,CAAC;IAzHD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAiC,EAAE,IAAmC;QAC/H,OAAO,IAAI,oBAAoB,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAC3E,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,oBAAoB,CAAC,YAAY,CAAC;IACrE,CAAC;;AA1BL,oDA2HC;AA7GG,gBAAgB;AACO,iCAAY,GAAG,2DAA2D,CAAC"}
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@pulumi/keycloak",
|
|
3
|
-
"version": "v4.
|
|
3
|
+
"version": "v4.10.0",
|
|
4
4
|
"description": "A Pulumi package for creating and managing keycloak cloud resources.",
|
|
5
5
|
"keywords": [
|
|
6
6
|
"pulumi",
|
|
@@ -11,7 +11,7 @@
|
|
|
11
11
|
"license": "Apache-2.0",
|
|
12
12
|
"scripts": {
|
|
13
13
|
"build": "tsc",
|
|
14
|
-
"install": "node scripts/install-pulumi-plugin.js resource keycloak v4.
|
|
14
|
+
"install": "node scripts/install-pulumi-plugin.js resource keycloak v4.10.0"
|
|
15
15
|
},
|
|
16
16
|
"dependencies": {
|
|
17
17
|
"@pulumi/pulumi": "^3.0.0"
|
package/package.json.dev
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@pulumi/keycloak",
|
|
3
|
-
"version": "v4.
|
|
3
|
+
"version": "v4.10.0",
|
|
4
4
|
"description": "A Pulumi package for creating and managing keycloak cloud resources.",
|
|
5
5
|
"keywords": [
|
|
6
6
|
"pulumi",
|
|
@@ -11,7 +11,7 @@
|
|
|
11
11
|
"license": "Apache-2.0",
|
|
12
12
|
"scripts": {
|
|
13
13
|
"build": "tsc",
|
|
14
|
-
"install": "node scripts/install-pulumi-plugin.js resource keycloak v4.
|
|
14
|
+
"install": "node scripts/install-pulumi-plugin.js resource keycloak v4.10.0"
|
|
15
15
|
},
|
|
16
16
|
"dependencies": {
|
|
17
17
|
"@pulumi/pulumi": "^3.0.0"
|
|
@@ -0,0 +1,157 @@
|
|
|
1
|
+
import * as pulumi from "@pulumi/pulumi";
|
|
2
|
+
import { input as inputs, output as outputs } from "./types";
|
|
3
|
+
/**
|
|
4
|
+
* Allows for managing Realm User Profiles within Keycloak.
|
|
5
|
+
*
|
|
6
|
+
* A user profile defines a schema for representing user attributes and how they are managed within a realm.
|
|
7
|
+
* This is a preview feature, hence not fully supported and disabled by default.
|
|
8
|
+
* To enable it, start the server with one of the following flags:
|
|
9
|
+
* - WildFly distribution: `-Dkeycloak.profile.feature.declarative_user_profile=enabled`
|
|
10
|
+
* - Quarkus distribution: `--features=preview` or `--features=declarative-user-profile`
|
|
11
|
+
*
|
|
12
|
+
* The realm linked to the `keycloak.RealmUserProfile` resource must have the user profile feature enabled.
|
|
13
|
+
* It can be done via the administration UI, or by setting the `userProfileEnabled` realm attribute to `true`.
|
|
14
|
+
*
|
|
15
|
+
* ## Example Usage
|
|
16
|
+
*
|
|
17
|
+
* ```typescript
|
|
18
|
+
* import * as pulumi from "@pulumi/pulumi";
|
|
19
|
+
* import * as keycloak from "@pulumi/keycloak";
|
|
20
|
+
*
|
|
21
|
+
* const realm = new keycloak.Realm("realm", {
|
|
22
|
+
* realm: "my-realm",
|
|
23
|
+
* attributes: {
|
|
24
|
+
* userProfileEnabled: true,
|
|
25
|
+
* },
|
|
26
|
+
* });
|
|
27
|
+
* const userprofile = new keycloak.RealmUserProfile("userprofile", {
|
|
28
|
+
* realmId: keycloak_realm.my_realm.id,
|
|
29
|
+
* attributes: [
|
|
30
|
+
* {
|
|
31
|
+
* name: "field1",
|
|
32
|
+
* displayName: "Field 1",
|
|
33
|
+
* group: "group1",
|
|
34
|
+
* enabledWhenScopes: ["offline_access"],
|
|
35
|
+
* requiredForRoles: ["user"],
|
|
36
|
+
* requiredForScopes: ["offline_access"],
|
|
37
|
+
* permissions: {
|
|
38
|
+
* views: [
|
|
39
|
+
* "admin",
|
|
40
|
+
* "user",
|
|
41
|
+
* ],
|
|
42
|
+
* edits: [
|
|
43
|
+
* "admin",
|
|
44
|
+
* "user",
|
|
45
|
+
* ],
|
|
46
|
+
* },
|
|
47
|
+
* validators: [
|
|
48
|
+
* {
|
|
49
|
+
* name: "person-name-prohibited-characters",
|
|
50
|
+
* },
|
|
51
|
+
* {
|
|
52
|
+
* name: "pattern",
|
|
53
|
+
* config: {
|
|
54
|
+
* pattern: `^[a-z]+$`,
|
|
55
|
+
* error_message: "Nope",
|
|
56
|
+
* },
|
|
57
|
+
* },
|
|
58
|
+
* ],
|
|
59
|
+
* annotations: {
|
|
60
|
+
* foo: "bar",
|
|
61
|
+
* },
|
|
62
|
+
* },
|
|
63
|
+
* {
|
|
64
|
+
* name: "field2",
|
|
65
|
+
* },
|
|
66
|
+
* ],
|
|
67
|
+
* groups: [
|
|
68
|
+
* {
|
|
69
|
+
* name: "group1",
|
|
70
|
+
* displayHeader: "Group 1",
|
|
71
|
+
* displayDescription: "A first group",
|
|
72
|
+
* annotations: {
|
|
73
|
+
* foo: "bar",
|
|
74
|
+
* },
|
|
75
|
+
* },
|
|
76
|
+
* {
|
|
77
|
+
* name: "group2",
|
|
78
|
+
* },
|
|
79
|
+
* ],
|
|
80
|
+
* });
|
|
81
|
+
* ```
|
|
82
|
+
*
|
|
83
|
+
* ## Import
|
|
84
|
+
*
|
|
85
|
+
* This resource currently does not support importing.
|
|
86
|
+
*/
|
|
87
|
+
export declare class RealmUserProfile extends pulumi.CustomResource {
|
|
88
|
+
/**
|
|
89
|
+
* Get an existing RealmUserProfile resource's state with the given name, ID, and optional extra
|
|
90
|
+
* properties used to qualify the lookup.
|
|
91
|
+
*
|
|
92
|
+
* @param name The _unique_ name of the resulting resource.
|
|
93
|
+
* @param id The _unique_ provider ID of the resource to lookup.
|
|
94
|
+
* @param state Any extra arguments used during the lookup.
|
|
95
|
+
* @param opts Optional settings to control the behavior of the CustomResource.
|
|
96
|
+
*/
|
|
97
|
+
static get(name: string, id: pulumi.Input<pulumi.ID>, state?: RealmUserProfileState, opts?: pulumi.CustomResourceOptions): RealmUserProfile;
|
|
98
|
+
/**
|
|
99
|
+
* Returns true if the given object is an instance of RealmUserProfile. This is designed to work even
|
|
100
|
+
* when multiple copies of the Pulumi SDK have been loaded into the same process.
|
|
101
|
+
*/
|
|
102
|
+
static isInstance(obj: any): obj is RealmUserProfile;
|
|
103
|
+
/**
|
|
104
|
+
* An ordered list of attributes.
|
|
105
|
+
*/
|
|
106
|
+
readonly attributes: pulumi.Output<outputs.RealmUserProfileAttribute[] | undefined>;
|
|
107
|
+
/**
|
|
108
|
+
* The group that the attribute belong to.
|
|
109
|
+
*/
|
|
110
|
+
readonly groups: pulumi.Output<outputs.RealmUserProfileGroup[] | undefined>;
|
|
111
|
+
/**
|
|
112
|
+
* The ID of the realm the user profile applies to.
|
|
113
|
+
*/
|
|
114
|
+
readonly realmId: pulumi.Output<string>;
|
|
115
|
+
/**
|
|
116
|
+
* Create a RealmUserProfile resource with the given unique name, arguments, and options.
|
|
117
|
+
*
|
|
118
|
+
* @param name The _unique_ name of the resource.
|
|
119
|
+
* @param args The arguments to use to populate this resource's properties.
|
|
120
|
+
* @param opts A bag of options that control this resource's behavior.
|
|
121
|
+
*/
|
|
122
|
+
constructor(name: string, args: RealmUserProfileArgs, opts?: pulumi.CustomResourceOptions);
|
|
123
|
+
}
|
|
124
|
+
/**
|
|
125
|
+
* Input properties used for looking up and filtering RealmUserProfile resources.
|
|
126
|
+
*/
|
|
127
|
+
export interface RealmUserProfileState {
|
|
128
|
+
/**
|
|
129
|
+
* An ordered list of attributes.
|
|
130
|
+
*/
|
|
131
|
+
attributes?: pulumi.Input<pulumi.Input<inputs.RealmUserProfileAttribute>[]>;
|
|
132
|
+
/**
|
|
133
|
+
* The group that the attribute belong to.
|
|
134
|
+
*/
|
|
135
|
+
groups?: pulumi.Input<pulumi.Input<inputs.RealmUserProfileGroup>[]>;
|
|
136
|
+
/**
|
|
137
|
+
* The ID of the realm the user profile applies to.
|
|
138
|
+
*/
|
|
139
|
+
realmId?: pulumi.Input<string>;
|
|
140
|
+
}
|
|
141
|
+
/**
|
|
142
|
+
* The set of arguments for constructing a RealmUserProfile resource.
|
|
143
|
+
*/
|
|
144
|
+
export interface RealmUserProfileArgs {
|
|
145
|
+
/**
|
|
146
|
+
* An ordered list of attributes.
|
|
147
|
+
*/
|
|
148
|
+
attributes?: pulumi.Input<pulumi.Input<inputs.RealmUserProfileAttribute>[]>;
|
|
149
|
+
/**
|
|
150
|
+
* The group that the attribute belong to.
|
|
151
|
+
*/
|
|
152
|
+
groups?: pulumi.Input<pulumi.Input<inputs.RealmUserProfileGroup>[]>;
|
|
153
|
+
/**
|
|
154
|
+
* The ID of the realm the user profile applies to.
|
|
155
|
+
*/
|
|
156
|
+
realmId: pulumi.Input<string>;
|
|
157
|
+
}
|
|
@@ -0,0 +1,140 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
// *** WARNING: this file was generated by the Pulumi Terraform Bridge (tfgen) Tool. ***
|
|
3
|
+
// *** Do not edit by hand unless you're certain you know what you are doing! ***
|
|
4
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
5
|
+
exports.RealmUserProfile = void 0;
|
|
6
|
+
const pulumi = require("@pulumi/pulumi");
|
|
7
|
+
const utilities = require("./utilities");
|
|
8
|
+
/**
|
|
9
|
+
* Allows for managing Realm User Profiles within Keycloak.
|
|
10
|
+
*
|
|
11
|
+
* A user profile defines a schema for representing user attributes and how they are managed within a realm.
|
|
12
|
+
* This is a preview feature, hence not fully supported and disabled by default.
|
|
13
|
+
* To enable it, start the server with one of the following flags:
|
|
14
|
+
* - WildFly distribution: `-Dkeycloak.profile.feature.declarative_user_profile=enabled`
|
|
15
|
+
* - Quarkus distribution: `--features=preview` or `--features=declarative-user-profile`
|
|
16
|
+
*
|
|
17
|
+
* The realm linked to the `keycloak.RealmUserProfile` resource must have the user profile feature enabled.
|
|
18
|
+
* It can be done via the administration UI, or by setting the `userProfileEnabled` realm attribute to `true`.
|
|
19
|
+
*
|
|
20
|
+
* ## Example Usage
|
|
21
|
+
*
|
|
22
|
+
* ```typescript
|
|
23
|
+
* import * as pulumi from "@pulumi/pulumi";
|
|
24
|
+
* import * as keycloak from "@pulumi/keycloak";
|
|
25
|
+
*
|
|
26
|
+
* const realm = new keycloak.Realm("realm", {
|
|
27
|
+
* realm: "my-realm",
|
|
28
|
+
* attributes: {
|
|
29
|
+
* userProfileEnabled: true,
|
|
30
|
+
* },
|
|
31
|
+
* });
|
|
32
|
+
* const userprofile = new keycloak.RealmUserProfile("userprofile", {
|
|
33
|
+
* realmId: keycloak_realm.my_realm.id,
|
|
34
|
+
* attributes: [
|
|
35
|
+
* {
|
|
36
|
+
* name: "field1",
|
|
37
|
+
* displayName: "Field 1",
|
|
38
|
+
* group: "group1",
|
|
39
|
+
* enabledWhenScopes: ["offline_access"],
|
|
40
|
+
* requiredForRoles: ["user"],
|
|
41
|
+
* requiredForScopes: ["offline_access"],
|
|
42
|
+
* permissions: {
|
|
43
|
+
* views: [
|
|
44
|
+
* "admin",
|
|
45
|
+
* "user",
|
|
46
|
+
* ],
|
|
47
|
+
* edits: [
|
|
48
|
+
* "admin",
|
|
49
|
+
* "user",
|
|
50
|
+
* ],
|
|
51
|
+
* },
|
|
52
|
+
* validators: [
|
|
53
|
+
* {
|
|
54
|
+
* name: "person-name-prohibited-characters",
|
|
55
|
+
* },
|
|
56
|
+
* {
|
|
57
|
+
* name: "pattern",
|
|
58
|
+
* config: {
|
|
59
|
+
* pattern: `^[a-z]+$`,
|
|
60
|
+
* error_message: "Nope",
|
|
61
|
+
* },
|
|
62
|
+
* },
|
|
63
|
+
* ],
|
|
64
|
+
* annotations: {
|
|
65
|
+
* foo: "bar",
|
|
66
|
+
* },
|
|
67
|
+
* },
|
|
68
|
+
* {
|
|
69
|
+
* name: "field2",
|
|
70
|
+
* },
|
|
71
|
+
* ],
|
|
72
|
+
* groups: [
|
|
73
|
+
* {
|
|
74
|
+
* name: "group1",
|
|
75
|
+
* displayHeader: "Group 1",
|
|
76
|
+
* displayDescription: "A first group",
|
|
77
|
+
* annotations: {
|
|
78
|
+
* foo: "bar",
|
|
79
|
+
* },
|
|
80
|
+
* },
|
|
81
|
+
* {
|
|
82
|
+
* name: "group2",
|
|
83
|
+
* },
|
|
84
|
+
* ],
|
|
85
|
+
* });
|
|
86
|
+
* ```
|
|
87
|
+
*
|
|
88
|
+
* ## Import
|
|
89
|
+
*
|
|
90
|
+
* This resource currently does not support importing.
|
|
91
|
+
*/
|
|
92
|
+
class RealmUserProfile extends pulumi.CustomResource {
|
|
93
|
+
constructor(name, argsOrState, opts) {
|
|
94
|
+
let resourceInputs = {};
|
|
95
|
+
opts = opts || {};
|
|
96
|
+
if (opts.id) {
|
|
97
|
+
const state = argsOrState;
|
|
98
|
+
resourceInputs["attributes"] = state ? state.attributes : undefined;
|
|
99
|
+
resourceInputs["groups"] = state ? state.groups : undefined;
|
|
100
|
+
resourceInputs["realmId"] = state ? state.realmId : undefined;
|
|
101
|
+
}
|
|
102
|
+
else {
|
|
103
|
+
const args = argsOrState;
|
|
104
|
+
if ((!args || args.realmId === undefined) && !opts.urn) {
|
|
105
|
+
throw new Error("Missing required property 'realmId'");
|
|
106
|
+
}
|
|
107
|
+
resourceInputs["attributes"] = args ? args.attributes : undefined;
|
|
108
|
+
resourceInputs["groups"] = args ? args.groups : undefined;
|
|
109
|
+
resourceInputs["realmId"] = args ? args.realmId : undefined;
|
|
110
|
+
}
|
|
111
|
+
opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
|
|
112
|
+
super(RealmUserProfile.__pulumiType, name, resourceInputs, opts);
|
|
113
|
+
}
|
|
114
|
+
/**
|
|
115
|
+
* Get an existing RealmUserProfile resource's state with the given name, ID, and optional extra
|
|
116
|
+
* properties used to qualify the lookup.
|
|
117
|
+
*
|
|
118
|
+
* @param name The _unique_ name of the resulting resource.
|
|
119
|
+
* @param id The _unique_ provider ID of the resource to lookup.
|
|
120
|
+
* @param state Any extra arguments used during the lookup.
|
|
121
|
+
* @param opts Optional settings to control the behavior of the CustomResource.
|
|
122
|
+
*/
|
|
123
|
+
static get(name, id, state, opts) {
|
|
124
|
+
return new RealmUserProfile(name, state, Object.assign(Object.assign({}, opts), { id: id }));
|
|
125
|
+
}
|
|
126
|
+
/**
|
|
127
|
+
* Returns true if the given object is an instance of RealmUserProfile. This is designed to work even
|
|
128
|
+
* when multiple copies of the Pulumi SDK have been loaded into the same process.
|
|
129
|
+
*/
|
|
130
|
+
static isInstance(obj) {
|
|
131
|
+
if (obj === undefined || obj === null) {
|
|
132
|
+
return false;
|
|
133
|
+
}
|
|
134
|
+
return obj['__pulumiType'] === RealmUserProfile.__pulumiType;
|
|
135
|
+
}
|
|
136
|
+
}
|
|
137
|
+
exports.RealmUserProfile = RealmUserProfile;
|
|
138
|
+
/** @internal */
|
|
139
|
+
RealmUserProfile.__pulumiType = 'keycloak:index/realmUserProfile:RealmUserProfile';
|
|
140
|
+
//# sourceMappingURL=realmUserProfile.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"realmUserProfile.js","sourceRoot":"","sources":["../realmUserProfile.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AAEzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAmFG;AACH,MAAa,gBAAiB,SAAQ,MAAM,CAAC,cAAc;IAiDvD,YAAY,IAAY,EAAE,WAA0D,EAAE,IAAmC;QACrH,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAgD,CAAC;YAC/D,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;SACjE;aAAM;YACH,MAAM,IAAI,GAAG,WAA+C,CAAC;YAC7D,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,OAAO,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACpD,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;aAC1D;YACD,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;SAC/D;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,gBAAgB,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IACrE,CAAC;IAnED;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAA6B,EAAE,IAAmC;QAC3H,OAAO,IAAI,gBAAgB,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IACvE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,gBAAgB,CAAC,YAAY,CAAC;IACjE,CAAC;;AA1BL,4CAqEC;AAvDG,gBAAgB;AACO,6BAAY,GAAG,kDAAkD,CAAC"}
|
package/types/input.d.ts
CHANGED
|
@@ -24,14 +24,14 @@ export interface GetRealmOtpPolicyArgs {
|
|
|
24
24
|
period?: pulumi.Input<number>;
|
|
25
25
|
type?: pulumi.Input<string>;
|
|
26
26
|
}
|
|
27
|
-
export interface GetRealmSecurityDefense {
|
|
28
|
-
bruteForceDetections?: inputs.GetRealmSecurityDefenseBruteForceDetection[];
|
|
29
|
-
headers?: inputs.GetRealmSecurityDefenseHeader[];
|
|
30
|
-
}
|
|
31
27
|
export interface GetRealmSecurityDefenseArgs {
|
|
32
28
|
bruteForceDetections?: pulumi.Input<pulumi.Input<inputs.GetRealmSecurityDefenseBruteForceDetectionArgs>[]>;
|
|
33
29
|
headers?: pulumi.Input<pulumi.Input<inputs.GetRealmSecurityDefenseHeaderArgs>[]>;
|
|
34
30
|
}
|
|
31
|
+
export interface GetRealmSecurityDefense {
|
|
32
|
+
bruteForceDetections?: inputs.GetRealmSecurityDefenseBruteForceDetection[];
|
|
33
|
+
headers?: inputs.GetRealmSecurityDefenseHeader[];
|
|
34
|
+
}
|
|
35
35
|
export interface GetRealmSecurityDefenseBruteForceDetection {
|
|
36
36
|
failureResetTimeSeconds?: number;
|
|
37
37
|
maxFailureWaitSeconds?: number;
|
|
@@ -50,15 +50,6 @@ export interface GetRealmSecurityDefenseBruteForceDetectionArgs {
|
|
|
50
50
|
quickLoginCheckMilliSeconds?: pulumi.Input<number>;
|
|
51
51
|
waitIncrementSeconds?: pulumi.Input<number>;
|
|
52
52
|
}
|
|
53
|
-
export interface GetRealmSecurityDefenseHeader {
|
|
54
|
-
contentSecurityPolicy?: string;
|
|
55
|
-
contentSecurityPolicyReportOnly?: string;
|
|
56
|
-
strictTransportSecurity?: string;
|
|
57
|
-
xContentTypeOptions?: string;
|
|
58
|
-
xFrameOptions?: string;
|
|
59
|
-
xRobotsTag?: string;
|
|
60
|
-
xXssProtection?: string;
|
|
61
|
-
}
|
|
62
53
|
export interface GetRealmSecurityDefenseHeaderArgs {
|
|
63
54
|
contentSecurityPolicy?: pulumi.Input<string>;
|
|
64
55
|
contentSecurityPolicyReportOnly?: pulumi.Input<string>;
|
|
@@ -68,6 +59,15 @@ export interface GetRealmSecurityDefenseHeaderArgs {
|
|
|
68
59
|
xRobotsTag?: pulumi.Input<string>;
|
|
69
60
|
xXssProtection?: pulumi.Input<string>;
|
|
70
61
|
}
|
|
62
|
+
export interface GetRealmSecurityDefenseHeader {
|
|
63
|
+
contentSecurityPolicy?: string;
|
|
64
|
+
contentSecurityPolicyReportOnly?: string;
|
|
65
|
+
strictTransportSecurity?: string;
|
|
66
|
+
xContentTypeOptions?: string;
|
|
67
|
+
xFrameOptions?: string;
|
|
68
|
+
xRobotsTag?: string;
|
|
69
|
+
xXssProtection?: string;
|
|
70
|
+
}
|
|
71
71
|
export interface GetRealmSmtpServerArgs {
|
|
72
72
|
auths?: pulumi.Input<pulumi.Input<inputs.GetRealmSmtpServerAuthArgs>[]>;
|
|
73
73
|
envelopeFrom?: pulumi.Input<string>;
|
|
@@ -323,6 +323,88 @@ export interface RealmSmtpServerAuth {
|
|
|
323
323
|
*/
|
|
324
324
|
username: pulumi.Input<string>;
|
|
325
325
|
}
|
|
326
|
+
export interface RealmUserProfileAttribute {
|
|
327
|
+
/**
|
|
328
|
+
* A map of annotations for the group.
|
|
329
|
+
*/
|
|
330
|
+
annotations?: pulumi.Input<{
|
|
331
|
+
[key: string]: pulumi.Input<string>;
|
|
332
|
+
}>;
|
|
333
|
+
/**
|
|
334
|
+
* The display name of the attribute.
|
|
335
|
+
*/
|
|
336
|
+
displayName?: pulumi.Input<string>;
|
|
337
|
+
/**
|
|
338
|
+
* A list of scopes. The attribute will only be enabled when these scopes are requested by clients.
|
|
339
|
+
*/
|
|
340
|
+
enabledWhenScopes?: pulumi.Input<pulumi.Input<string>[]>;
|
|
341
|
+
/**
|
|
342
|
+
* The group that the attribute belong to.
|
|
343
|
+
*/
|
|
344
|
+
group?: pulumi.Input<string>;
|
|
345
|
+
/**
|
|
346
|
+
* The name of the group.
|
|
347
|
+
*/
|
|
348
|
+
name: pulumi.Input<string>;
|
|
349
|
+
/**
|
|
350
|
+
* The permissions configuration information.
|
|
351
|
+
*/
|
|
352
|
+
permissions?: pulumi.Input<inputs.RealmUserProfileAttributePermissions>;
|
|
353
|
+
/**
|
|
354
|
+
* A list of roles for which the attribute will be required.
|
|
355
|
+
*/
|
|
356
|
+
requiredForRoles?: pulumi.Input<pulumi.Input<string>[]>;
|
|
357
|
+
/**
|
|
358
|
+
* A list of scopes for which the attribute will be required.
|
|
359
|
+
*/
|
|
360
|
+
requiredForScopes?: pulumi.Input<pulumi.Input<string>[]>;
|
|
361
|
+
/**
|
|
362
|
+
* A list of validators for the attribute.
|
|
363
|
+
*/
|
|
364
|
+
validators?: pulumi.Input<pulumi.Input<inputs.RealmUserProfileAttributeValidator>[]>;
|
|
365
|
+
}
|
|
366
|
+
export interface RealmUserProfileAttributePermissions {
|
|
367
|
+
/**
|
|
368
|
+
* A list of profiles that will be able to edit the attribute. One of `admin`, `user`.
|
|
369
|
+
*/
|
|
370
|
+
edits: pulumi.Input<pulumi.Input<string>[]>;
|
|
371
|
+
/**
|
|
372
|
+
* A list of profiles that will be able to view the attribute. One of `admin`, `user`.
|
|
373
|
+
*/
|
|
374
|
+
views: pulumi.Input<pulumi.Input<string>[]>;
|
|
375
|
+
}
|
|
376
|
+
export interface RealmUserProfileAttributeValidator {
|
|
377
|
+
/**
|
|
378
|
+
* A map defining the configuration of the validator.
|
|
379
|
+
*/
|
|
380
|
+
config?: pulumi.Input<{
|
|
381
|
+
[key: string]: pulumi.Input<string>;
|
|
382
|
+
}>;
|
|
383
|
+
/**
|
|
384
|
+
* The name of the group.
|
|
385
|
+
*/
|
|
386
|
+
name: pulumi.Input<string>;
|
|
387
|
+
}
|
|
388
|
+
export interface RealmUserProfileGroup {
|
|
389
|
+
/**
|
|
390
|
+
* A map of annotations for the group.
|
|
391
|
+
*/
|
|
392
|
+
annotations?: pulumi.Input<{
|
|
393
|
+
[key: string]: pulumi.Input<string>;
|
|
394
|
+
}>;
|
|
395
|
+
/**
|
|
396
|
+
* The display description of the group.
|
|
397
|
+
*/
|
|
398
|
+
displayDescription?: pulumi.Input<string>;
|
|
399
|
+
/**
|
|
400
|
+
* The display header of the group.
|
|
401
|
+
*/
|
|
402
|
+
displayHeader?: pulumi.Input<string>;
|
|
403
|
+
/**
|
|
404
|
+
* The name of the group.
|
|
405
|
+
*/
|
|
406
|
+
name: pulumi.Input<string>;
|
|
407
|
+
}
|
|
326
408
|
export interface RealmWebAuthnPasswordlessPolicy {
|
|
327
409
|
/**
|
|
328
410
|
* A set of AAGUIDs for which an authenticator can be registered.
|
package/types/output.d.ts
CHANGED
|
@@ -291,6 +291,88 @@ export interface RealmSmtpServerAuth {
|
|
|
291
291
|
*/
|
|
292
292
|
username: string;
|
|
293
293
|
}
|
|
294
|
+
export interface RealmUserProfileAttribute {
|
|
295
|
+
/**
|
|
296
|
+
* A map of annotations for the group.
|
|
297
|
+
*/
|
|
298
|
+
annotations?: {
|
|
299
|
+
[key: string]: string;
|
|
300
|
+
};
|
|
301
|
+
/**
|
|
302
|
+
* The display name of the attribute.
|
|
303
|
+
*/
|
|
304
|
+
displayName?: string;
|
|
305
|
+
/**
|
|
306
|
+
* A list of scopes. The attribute will only be enabled when these scopes are requested by clients.
|
|
307
|
+
*/
|
|
308
|
+
enabledWhenScopes?: string[];
|
|
309
|
+
/**
|
|
310
|
+
* The group that the attribute belong to.
|
|
311
|
+
*/
|
|
312
|
+
group?: string;
|
|
313
|
+
/**
|
|
314
|
+
* The name of the group.
|
|
315
|
+
*/
|
|
316
|
+
name: string;
|
|
317
|
+
/**
|
|
318
|
+
* The permissions configuration information.
|
|
319
|
+
*/
|
|
320
|
+
permissions?: outputs.RealmUserProfileAttributePermissions;
|
|
321
|
+
/**
|
|
322
|
+
* A list of roles for which the attribute will be required.
|
|
323
|
+
*/
|
|
324
|
+
requiredForRoles?: string[];
|
|
325
|
+
/**
|
|
326
|
+
* A list of scopes for which the attribute will be required.
|
|
327
|
+
*/
|
|
328
|
+
requiredForScopes?: string[];
|
|
329
|
+
/**
|
|
330
|
+
* A list of validators for the attribute.
|
|
331
|
+
*/
|
|
332
|
+
validators?: outputs.RealmUserProfileAttributeValidator[];
|
|
333
|
+
}
|
|
334
|
+
export interface RealmUserProfileAttributePermissions {
|
|
335
|
+
/**
|
|
336
|
+
* A list of profiles that will be able to edit the attribute. One of `admin`, `user`.
|
|
337
|
+
*/
|
|
338
|
+
edits: string[];
|
|
339
|
+
/**
|
|
340
|
+
* A list of profiles that will be able to view the attribute. One of `admin`, `user`.
|
|
341
|
+
*/
|
|
342
|
+
views: string[];
|
|
343
|
+
}
|
|
344
|
+
export interface RealmUserProfileAttributeValidator {
|
|
345
|
+
/**
|
|
346
|
+
* A map defining the configuration of the validator.
|
|
347
|
+
*/
|
|
348
|
+
config?: {
|
|
349
|
+
[key: string]: string;
|
|
350
|
+
};
|
|
351
|
+
/**
|
|
352
|
+
* The name of the group.
|
|
353
|
+
*/
|
|
354
|
+
name: string;
|
|
355
|
+
}
|
|
356
|
+
export interface RealmUserProfileGroup {
|
|
357
|
+
/**
|
|
358
|
+
* A map of annotations for the group.
|
|
359
|
+
*/
|
|
360
|
+
annotations?: {
|
|
361
|
+
[key: string]: string;
|
|
362
|
+
};
|
|
363
|
+
/**
|
|
364
|
+
* The display description of the group.
|
|
365
|
+
*/
|
|
366
|
+
displayDescription?: string;
|
|
367
|
+
/**
|
|
368
|
+
* The display header of the group.
|
|
369
|
+
*/
|
|
370
|
+
displayHeader?: string;
|
|
371
|
+
/**
|
|
372
|
+
* The name of the group.
|
|
373
|
+
*/
|
|
374
|
+
name: string;
|
|
375
|
+
}
|
|
294
376
|
export interface RealmWebAuthnPasswordlessPolicy {
|
|
295
377
|
/**
|
|
296
378
|
* A set of AAGUIDs for which an authenticator can be registered.
|