@pulumi/keycloak 5.3.0 → 5.3.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/attributeImporterIdentityProviderMapper.d.ts +46 -63
- package/attributeImporterIdentityProviderMapper.js +25 -33
- package/attributeImporterIdentityProviderMapper.js.map +1 -1
- package/attributeToRoleIdentityMapper.d.ts +10 -2
- package/attributeToRoleIdentityMapper.js +10 -2
- package/attributeToRoleIdentityMapper.js.map +1 -1
- package/authentication/bindings.d.ts +2 -0
- package/authentication/bindings.js +2 -0
- package/authentication/bindings.js.map +1 -1
- package/authentication/execution.d.ts +8 -2
- package/authentication/execution.js +8 -2
- package/authentication/execution.js.map +1 -1
- package/authentication/executionConfig.d.ts +12 -2
- package/authentication/executionConfig.js +12 -2
- package/authentication/executionConfig.js.map +1 -1
- package/authentication/flow.d.ts +16 -2
- package/authentication/flow.js +16 -2
- package/authentication/flow.js.map +1 -1
- package/authentication/subflow.d.ts +18 -2
- package/authentication/subflow.js +18 -2
- package/authentication/subflow.js.map +1 -1
- package/customIdentityProviderMapping.d.ts +13 -5
- package/customIdentityProviderMapping.js +10 -2
- package/customIdentityProviderMapping.js.map +1 -1
- package/customUserFederation.d.ts +51 -50
- package/customUserFederation.js +27 -14
- package/customUserFederation.js.map +1 -1
- package/defaultGroups.d.ts +19 -27
- package/defaultGroups.js +19 -9
- package/defaultGroups.js.map +1 -1
- package/defaultRoles.d.ts +13 -2
- package/defaultRoles.js +13 -2
- package/defaultRoles.js.map +1 -1
- package/genericClientProtocolMapper.d.ts +40 -37
- package/genericClientProtocolMapper.js +25 -13
- package/genericClientProtocolMapper.js.map +1 -1
- package/genericClientRoleMapper.d.ts +22 -2
- package/genericClientRoleMapper.js +22 -2
- package/genericClientRoleMapper.js.map +1 -1
- package/genericProtocolMapper.d.ts +8 -2
- package/genericProtocolMapper.js +8 -2
- package/genericProtocolMapper.js.map +1 -1
- package/genericRoleMapper.d.ts +22 -2
- package/genericRoleMapper.js +22 -2
- package/genericRoleMapper.js.map +1 -1
- package/getAuthenticationExecution.d.ts +4 -0
- package/getAuthenticationExecution.js +4 -0
- package/getAuthenticationExecution.js.map +1 -1
- package/getAuthenticationFlow.d.ts +4 -0
- package/getAuthenticationFlow.js +4 -0
- package/getAuthenticationFlow.js.map +1 -1
- package/getClientDescriptionConverter.d.ts +4 -0
- package/getClientDescriptionConverter.js +4 -0
- package/getClientDescriptionConverter.js.map +1 -1
- package/getGroup.d.ts +4 -62
- package/getGroup.js +4 -50
- package/getGroup.js.map +1 -1
- package/getRealm.d.ts +32 -10
- package/getRealm.js +32 -4
- package/getRealm.js.map +1 -1
- package/getRealmKeys.d.ts +8 -28
- package/getRealmKeys.js +8 -4
- package/getRealmKeys.js.map +1 -1
- package/getRole.d.ts +4 -65
- package/getRole.js +4 -44
- package/getRole.js.map +1 -1
- package/getUser.d.ts +4 -0
- package/getUser.js +4 -0
- package/getUser.js.map +1 -1
- package/getUserRealmRoles.d.ts +4 -0
- package/getUserRealmRoles.js +4 -0
- package/getUserRealmRoles.js.map +1 -1
- package/group.d.ts +35 -58
- package/group.js +35 -16
- package/group.js.map +1 -1
- package/groupMemberships.d.ts +27 -43
- package/groupMemberships.js +27 -16
- package/groupMemberships.js.map +1 -1
- package/groupPermissions.d.ts +13 -0
- package/groupPermissions.js +13 -0
- package/groupPermissions.js.map +1 -1
- package/groupRoles.d.ts +32 -91
- package/groupRoles.js +32 -55
- package/groupRoles.js.map +1 -1
- package/hardcodedAttributeIdentityProviderMapper.d.ts +2 -0
- package/hardcodedAttributeIdentityProviderMapper.js +2 -0
- package/hardcodedAttributeIdentityProviderMapper.js.map +1 -1
- package/hardcodedRoleIdentityMapper.d.ts +2 -0
- package/hardcodedRoleIdentityMapper.js +2 -0
- package/hardcodedRoleIdentityMapper.js.map +1 -1
- package/identityProviderTokenExchangeScopePermission.d.ts +10 -2
- package/identityProviderTokenExchangeScopePermission.js +10 -2
- package/identityProviderTokenExchangeScopePermission.js.map +1 -1
- package/ldap/customMapper.d.ts +10 -2
- package/ldap/customMapper.js +10 -2
- package/ldap/customMapper.js.map +1 -1
- package/ldap/fullNameMapper.d.ts +41 -54
- package/ldap/fullNameMapper.js +32 -18
- package/ldap/fullNameMapper.js.map +1 -1
- package/ldap/groupMapper.d.ts +55 -164
- package/ldap/groupMapper.js +46 -20
- package/ldap/groupMapper.js.map +1 -1
- package/ldap/hardcodedAttributeMapper.d.ts +10 -2
- package/ldap/hardcodedAttributeMapper.js +10 -2
- package/ldap/hardcodedAttributeMapper.js.map +1 -1
- package/ldap/hardcodedGroupMapper.d.ts +10 -2
- package/ldap/hardcodedGroupMapper.js +10 -2
- package/ldap/hardcodedGroupMapper.js.map +1 -1
- package/ldap/hardcodedRoleMapper.d.ts +29 -64
- package/ldap/hardcodedRoleMapper.js +17 -52
- package/ldap/hardcodedRoleMapper.js.map +1 -1
- package/ldap/msadLdsUserAccountControlMapper.d.ts +10 -2
- package/ldap/msadLdsUserAccountControlMapper.js +10 -2
- package/ldap/msadLdsUserAccountControlMapper.js.map +1 -1
- package/ldap/msadUserAccountControlMapper.d.ts +34 -32
- package/ldap/msadUserAccountControlMapper.js +25 -14
- package/ldap/msadUserAccountControlMapper.js.map +1 -1
- package/ldap/roleMapper.d.ts +10 -2
- package/ldap/roleMapper.js +10 -2
- package/ldap/roleMapper.js.map +1 -1
- package/ldap/userAttributeMapper.d.ts +60 -45
- package/ldap/userAttributeMapper.js +30 -15
- package/ldap/userAttributeMapper.js.map +1 -1
- package/ldap/userFederation.d.ts +125 -95
- package/ldap/userFederation.js +53 -20
- package/ldap/userFederation.js.map +1 -1
- package/oidc/googleIdentityProvider.d.ts +8 -2
- package/oidc/googleIdentityProvider.js +8 -2
- package/oidc/googleIdentityProvider.js.map +1 -1
- package/oidc/identityProvider.d.ts +8 -2
- package/oidc/identityProvider.js +8 -2
- package/oidc/identityProvider.js.map +1 -1
- package/openid/audienceProtocolMapper.d.ts +62 -45
- package/openid/audienceProtocolMapper.js +38 -21
- package/openid/audienceProtocolMapper.js.map +1 -1
- package/openid/audienceResolveProtocolMapper.d.ts +17 -3
- package/openid/audienceResolveProtocolMapper.js +17 -3
- package/openid/audienceResolveProtocolMapper.js.map +1 -1
- package/openid/audienceResolveProtocolMappter.d.ts +17 -3
- package/openid/audienceResolveProtocolMappter.js +17 -3
- package/openid/audienceResolveProtocolMappter.js.map +1 -1
- package/openid/client.d.ts +48 -431
- package/openid/client.js +48 -14
- package/openid/client.js.map +1 -1
- package/openid/clientAuthorizationPermission.d.ts +6 -2
- package/openid/clientAuthorizationPermission.js +6 -2
- package/openid/clientAuthorizationPermission.js.map +1 -1
- package/openid/clientDefaultScopes.d.ts +17 -33
- package/openid/clientDefaultScopes.js +17 -6
- package/openid/clientDefaultScopes.js.map +1 -1
- package/openid/clientOptionalScopes.d.ts +17 -34
- package/openid/clientOptionalScopes.js +17 -7
- package/openid/clientOptionalScopes.js.map +1 -1
- package/openid/clientPolicy.d.ts +2 -0
- package/openid/clientPolicy.js +2 -0
- package/openid/clientPolicy.js.map +1 -1
- package/openid/clientScope.d.ts +27 -67
- package/openid/clientScope.js +27 -13
- package/openid/clientScope.js.map +1 -1
- package/openid/clientServiceAccountRealmRole.d.ts +8 -2
- package/openid/clientServiceAccountRealmRole.js +8 -2
- package/openid/clientServiceAccountRealmRole.js.map +1 -1
- package/openid/clientServiceAccountRole.d.ts +8 -2
- package/openid/clientServiceAccountRole.js +8 -2
- package/openid/clientServiceAccountRole.js.map +1 -1
- package/openid/fullNameProtocolMapper.d.ts +49 -61
- package/openid/fullNameProtocolMapper.js +37 -22
- package/openid/fullNameProtocolMapper.js.map +1 -1
- package/openid/getClient.d.ts +32 -14
- package/openid/getClient.js +32 -2
- package/openid/getClient.js.map +1 -1
- package/openid/getClientAuthorizationPolicy.d.ts +4 -0
- package/openid/getClientAuthorizationPolicy.js +4 -0
- package/openid/getClientAuthorizationPolicy.js.map +1 -1
- package/openid/getClientScope.d.ts +4 -0
- package/openid/getClientScope.js +4 -0
- package/openid/getClientScope.js.map +1 -1
- package/openid/getClientServiceAccountUser.d.ts +4 -0
- package/openid/getClientServiceAccountUser.js +4 -0
- package/openid/getClientServiceAccountUser.js.map +1 -1
- package/openid/groupMembershipProtocolMapper.d.ts +53 -81
- package/openid/groupMembershipProtocolMapper.js +41 -24
- package/openid/groupMembershipProtocolMapper.js.map +1 -1
- package/openid/hardcodedClaimProtocolMapper.d.ts +66 -66
- package/openid/hardcodedClaimProtocolMapper.js +42 -24
- package/openid/hardcodedClaimProtocolMapper.js.map +1 -1
- package/openid/hardcodedRoleProtocolMapper.d.ts +48 -43
- package/openid/hardcodedRoleProtocolMapper.js +36 -22
- package/openid/hardcodedRoleProtocolMapper.js.map +1 -1
- package/openid/scriptProtocolMapper.d.ts +17 -3
- package/openid/scriptProtocolMapper.js +17 -3
- package/openid/scriptProtocolMapper.js.map +1 -1
- package/openid/userAttributeProtocolMapper.d.ts +73 -72
- package/openid/userAttributeProtocolMapper.js +43 -24
- package/openid/userAttributeProtocolMapper.js.map +1 -1
- package/openid/userClientRoleProtocolMapper.d.ts +17 -3
- package/openid/userClientRoleProtocolMapper.js +17 -3
- package/openid/userClientRoleProtocolMapper.js.map +1 -1
- package/openid/userPropertyProtocolMapper.d.ts +66 -67
- package/openid/userPropertyProtocolMapper.js +42 -25
- package/openid/userPropertyProtocolMapper.js.map +1 -1
- package/openid/userRealmRoleProtocolMapper.d.ts +73 -63
- package/openid/userRealmRoleProtocolMapper.js +43 -24
- package/openid/userRealmRoleProtocolMapper.js.map +1 -1
- package/openid/userSessionNoteProtocolMapper.d.ts +17 -3
- package/openid/userSessionNoteProtocolMapper.js +17 -3
- package/openid/userSessionNoteProtocolMapper.js.map +1 -1
- package/package.json +1 -1
- package/realm.d.ts +30 -509
- package/realm.js +0 -83
- package/realm.js.map +1 -1
- package/realmEvents.d.ts +20 -74
- package/realmEvents.js +20 -11
- package/realmEvents.js.map +1 -1
- package/realmKeystoreAesGenerated.d.ts +8 -2
- package/realmKeystoreAesGenerated.js +8 -2
- package/realmKeystoreAesGenerated.js.map +1 -1
- package/realmKeystoreEcdsaGenerated.d.ts +8 -2
- package/realmKeystoreEcdsaGenerated.js +8 -2
- package/realmKeystoreEcdsaGenerated.js.map +1 -1
- package/realmKeystoreHmacGenerated.d.ts +8 -2
- package/realmKeystoreHmacGenerated.js +8 -2
- package/realmKeystoreHmacGenerated.js.map +1 -1
- package/realmKeystoreJavaGenerated.d.ts +8 -2
- package/realmKeystoreJavaGenerated.js +8 -2
- package/realmKeystoreJavaGenerated.js.map +1 -1
- package/realmKeystoreRsa.d.ts +6 -2
- package/realmKeystoreRsa.js +6 -2
- package/realmKeystoreRsa.js.map +1 -1
- package/realmKeystoreRsaGenerated.d.ts +8 -2
- package/realmKeystoreRsaGenerated.js +8 -2
- package/realmKeystoreRsaGenerated.js.map +1 -1
- package/realmUserProfile.d.ts +2 -0
- package/realmUserProfile.js +2 -0
- package/realmUserProfile.js.map +1 -1
- package/requiredAction.d.ts +8 -2
- package/requiredAction.js +8 -2
- package/requiredAction.js.map +1 -1
- package/role.d.ts +58 -125
- package/role.js +58 -71
- package/role.js.map +1 -1
- package/saml/client.d.ts +46 -327
- package/saml/client.js +46 -12
- package/saml/client.js.map +1 -1
- package/saml/clientDefaultScope.d.ts +5 -1
- package/saml/clientDefaultScope.js +5 -1
- package/saml/clientDefaultScope.js.map +1 -1
- package/saml/clientScope.d.ts +10 -2
- package/saml/clientScope.js +10 -2
- package/saml/clientScope.js.map +1 -1
- package/saml/getClient.d.ts +4 -0
- package/saml/getClient.js +4 -0
- package/saml/getClient.js.map +1 -1
- package/saml/getClientInstallationProvider.d.ts +4 -0
- package/saml/getClientInstallationProvider.js +4 -0
- package/saml/getClientInstallationProvider.js.map +1 -1
- package/saml/identityProvider.d.ts +163 -117
- package/saml/identityProvider.js +52 -21
- package/saml/identityProvider.js.map +1 -1
- package/saml/scriptProtocolMapper.d.ts +13 -3
- package/saml/scriptProtocolMapper.js +13 -3
- package/saml/scriptProtocolMapper.js.map +1 -1
- package/saml/userAttributeProtocolMapper.d.ts +32 -91
- package/saml/userAttributeProtocolMapper.js +32 -19
- package/saml/userAttributeProtocolMapper.js.map +1 -1
- package/saml/userPropertyProtocolMapper.d.ts +32 -91
- package/saml/userPropertyProtocolMapper.js +32 -19
- package/saml/userPropertyProtocolMapper.js.map +1 -1
- package/types/input.d.ts +74 -183
- package/types/output.d.ts +44 -207
- package/user.d.ts +36 -112
- package/user.js +36 -22
- package/user.js.map +1 -1
- package/userGroups.d.ts +9 -1
- package/userGroups.js +9 -1
- package/userGroups.js.map +1 -1
- package/userRoles.d.ts +11 -2
- package/userRoles.js +11 -2
- package/userRoles.js.map +1 -1
- package/userTemplateImporterIdentityProviderMapper.d.ts +10 -2
- package/userTemplateImporterIdentityProviderMapper.js +10 -2
- package/userTemplateImporterIdentityProviderMapper.js.map +1 -1
- package/usersPermissions.d.ts +10 -25
- package/usersPermissions.js +10 -25
- package/usersPermissions.js.map +1 -1
package/defaultGroups.js
CHANGED
|
@@ -6,34 +6,44 @@ exports.DefaultGroups = void 0;
|
|
|
6
6
|
const pulumi = require("@pulumi/pulumi");
|
|
7
7
|
const utilities = require("./utilities");
|
|
8
8
|
/**
|
|
9
|
+
* ## # keycloak.DefaultGroups
|
|
10
|
+
*
|
|
9
11
|
* Allows for managing a realm's default groups.
|
|
10
12
|
*
|
|
11
|
-
*
|
|
13
|
+
* Note that you should not use `keycloak.DefaultGroups` with a group with memberships managed
|
|
14
|
+
* by `keycloak.GroupMemberships`.
|
|
12
15
|
*
|
|
13
|
-
*
|
|
16
|
+
* ### Example Usage
|
|
14
17
|
*
|
|
18
|
+
* <!--Start PulumiCodeChooser -->
|
|
15
19
|
* ```typescript
|
|
16
20
|
* import * as pulumi from "@pulumi/pulumi";
|
|
17
21
|
* import * as keycloak from "@pulumi/keycloak";
|
|
18
22
|
*
|
|
19
23
|
* const realm = new keycloak.Realm("realm", {
|
|
20
|
-
* realm: "my-realm",
|
|
21
24
|
* enabled: true,
|
|
25
|
+
* realm: "my-realm",
|
|
22
26
|
* });
|
|
23
27
|
* const group = new keycloak.Group("group", {realmId: realm.id});
|
|
24
28
|
* const _default = new keycloak.DefaultGroups("default", {
|
|
25
|
-
* realmId: realm.id,
|
|
26
29
|
* groupIds: [group.id],
|
|
30
|
+
* realmId: realm.id,
|
|
27
31
|
* });
|
|
28
32
|
* ```
|
|
33
|
+
* <!--End PulumiCodeChooser -->
|
|
29
34
|
*
|
|
30
|
-
*
|
|
35
|
+
* ### Argument Reference
|
|
31
36
|
*
|
|
32
|
-
*
|
|
37
|
+
* The following arguments are supported:
|
|
33
38
|
*
|
|
34
|
-
*
|
|
35
|
-
*
|
|
36
|
-
*
|
|
39
|
+
* - `realmId` - (Required) The realm this group exists in.
|
|
40
|
+
* - `groupIds` - (Required) A set of group ids that should be default groups on the realm referenced by `realmId`.
|
|
41
|
+
*
|
|
42
|
+
* ### Import
|
|
43
|
+
*
|
|
44
|
+
* Groups can be imported using the format `{{realm_id}}` where `realmId` is the realm the group exists in.
|
|
45
|
+
*
|
|
46
|
+
* Example:
|
|
37
47
|
*/
|
|
38
48
|
class DefaultGroups extends pulumi.CustomResource {
|
|
39
49
|
/**
|
package/defaultGroups.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"defaultGroups.js","sourceRoot":"","sources":["../defaultGroups.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC
|
|
1
|
+
{"version":3,"file":"defaultGroups.js","sourceRoot":"","sources":["../defaultGroups.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAuCG;AACH,MAAa,aAAc,SAAQ,MAAM,CAAC,cAAc;IACpD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAA0B,EAAE,IAAmC;QACxH,OAAO,IAAI,aAAa,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IACpE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,aAAa,CAAC,YAAY,CAAC;IAC9D,CAAC;IAaD,YAAY,IAAY,EAAE,WAAoD,EAAE,IAAmC;QAC/G,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAA6C,CAAC;YAC5D,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;SACjE;aAAM;YACH,MAAM,IAAI,GAAG,WAA4C,CAAC;YAC1D,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,QAAQ,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACrD,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;aAC3D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,OAAO,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACpD,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;aAC1D;YACD,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;SAC/D;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,aAAa,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAClE,CAAC;;AA3DL,sCA4DC;AA9CG,gBAAgB;AACO,0BAAY,GAAG,4CAA4C,CAAC"}
|
package/defaultRoles.d.ts
CHANGED
|
@@ -5,8 +5,10 @@ import * as pulumi from "@pulumi/pulumi";
|
|
|
5
5
|
* Note: This feature was added in Keycloak v13, so this resource will not work on older versions of Keycloak.
|
|
6
6
|
*
|
|
7
7
|
* ## Example Usage
|
|
8
|
+
*
|
|
8
9
|
* ### Realm Role)
|
|
9
10
|
*
|
|
11
|
+
* <!--Start PulumiCodeChooser -->
|
|
10
12
|
* ```typescript
|
|
11
13
|
* import * as pulumi from "@pulumi/pulumi";
|
|
12
14
|
* import * as keycloak from "@pulumi/keycloak";
|
|
@@ -20,13 +22,22 @@ import * as pulumi from "@pulumi/pulumi";
|
|
|
20
22
|
* defaultRoles: ["uma_authorization"],
|
|
21
23
|
* });
|
|
22
24
|
* ```
|
|
25
|
+
* <!--End PulumiCodeChooser -->
|
|
23
26
|
*
|
|
24
27
|
* ## Import
|
|
25
28
|
*
|
|
26
|
-
* Default roles can be imported using the format `{{realm_id}}/{{default_role_id}}`, where `default_role_id` is the unique ID of the composite
|
|
29
|
+
* Default roles can be imported using the format `{{realm_id}}/{{default_role_id}}`, where `default_role_id` is the unique ID of the composite
|
|
30
|
+
*
|
|
31
|
+
* role that Keycloak uses to control default realm level roles. The ID is not easy to find in the GUI, but it appears in the dev tools when editing
|
|
32
|
+
*
|
|
33
|
+
* the default roles.
|
|
34
|
+
*
|
|
35
|
+
* Example:
|
|
36
|
+
*
|
|
37
|
+
* bash
|
|
27
38
|
*
|
|
28
39
|
* ```sh
|
|
29
|
-
*
|
|
40
|
+
* $ pulumi import keycloak:index/defaultRoles:DefaultRoles default_roles my-realm/a04c35c2-e95a-4dc5-bd32-e83a21be9e7d
|
|
30
41
|
* ```
|
|
31
42
|
*/
|
|
32
43
|
export declare class DefaultRoles extends pulumi.CustomResource {
|
package/defaultRoles.js
CHANGED
|
@@ -11,8 +11,10 @@ const utilities = require("./utilities");
|
|
|
11
11
|
* Note: This feature was added in Keycloak v13, so this resource will not work on older versions of Keycloak.
|
|
12
12
|
*
|
|
13
13
|
* ## Example Usage
|
|
14
|
+
*
|
|
14
15
|
* ### Realm Role)
|
|
15
16
|
*
|
|
17
|
+
* <!--Start PulumiCodeChooser -->
|
|
16
18
|
* ```typescript
|
|
17
19
|
* import * as pulumi from "@pulumi/pulumi";
|
|
18
20
|
* import * as keycloak from "@pulumi/keycloak";
|
|
@@ -26,13 +28,22 @@ const utilities = require("./utilities");
|
|
|
26
28
|
* defaultRoles: ["uma_authorization"],
|
|
27
29
|
* });
|
|
28
30
|
* ```
|
|
31
|
+
* <!--End PulumiCodeChooser -->
|
|
29
32
|
*
|
|
30
33
|
* ## Import
|
|
31
34
|
*
|
|
32
|
-
* Default roles can be imported using the format `{{realm_id}}/{{default_role_id}}`, where `default_role_id` is the unique ID of the composite
|
|
35
|
+
* Default roles can be imported using the format `{{realm_id}}/{{default_role_id}}`, where `default_role_id` is the unique ID of the composite
|
|
36
|
+
*
|
|
37
|
+
* role that Keycloak uses to control default realm level roles. The ID is not easy to find in the GUI, but it appears in the dev tools when editing
|
|
38
|
+
*
|
|
39
|
+
* the default roles.
|
|
40
|
+
*
|
|
41
|
+
* Example:
|
|
42
|
+
*
|
|
43
|
+
* bash
|
|
33
44
|
*
|
|
34
45
|
* ```sh
|
|
35
|
-
*
|
|
46
|
+
* $ pulumi import keycloak:index/defaultRoles:DefaultRoles default_roles my-realm/a04c35c2-e95a-4dc5-bd32-e83a21be9e7d
|
|
36
47
|
* ```
|
|
37
48
|
*/
|
|
38
49
|
class DefaultRoles extends pulumi.CustomResource {
|
package/defaultRoles.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"defaultRoles.js","sourceRoot":"","sources":["../defaultRoles.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC
|
|
1
|
+
{"version":3,"file":"defaultRoles.js","sourceRoot":"","sources":["../defaultRoles.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAwCG;AACH,MAAa,YAAa,SAAQ,MAAM,CAAC,cAAc;IACnD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAyB,EAAE,IAAmC;QACvH,OAAO,IAAI,YAAY,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IACnE,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,YAAY,CAAC,YAAY,CAAC;IAC7D,CAAC;IAmBD,YAAY,IAAY,EAAE,WAAkD,EAAE,IAAmC;QAC7G,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAA4C,CAAC;YAC3D,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;SACjE;aAAM;YACH,MAAM,IAAI,GAAG,WAA2C,CAAC;YACzD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,YAAY,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACzD,MAAM,IAAI,KAAK,CAAC,0CAA0C,CAAC,CAAC;aAC/D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,OAAO,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACpD,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;aAC1D;YACD,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;SAC/D;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,YAAY,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IACjE,CAAC;;AAjEL,oCAkEC;AApDG,gBAAgB;AACO,yBAAY,GAAG,0CAA0C,CAAC"}
|
|
@@ -1,8 +1,8 @@
|
|
|
1
1
|
import * as pulumi from "@pulumi/pulumi";
|
|
2
2
|
/**
|
|
3
|
-
*
|
|
3
|
+
* ## # keycloak.GenericClientProtocolMapper
|
|
4
4
|
*
|
|
5
|
-
* Allows for creating and managing protocol
|
|
5
|
+
* Allows for creating and managing protocol mapper for both types of clients (openid-connect and saml) within Keycloak.
|
|
6
6
|
*
|
|
7
7
|
* There are two uses cases for using this resource:
|
|
8
8
|
* * If you implemented a custom protocol mapper, this resource can be used to configure it
|
|
@@ -11,41 +11,53 @@ import * as pulumi from "@pulumi/pulumi";
|
|
|
11
11
|
* Due to the generic nature of this mapper, it is less user-friendly and more prone to configuration errors.
|
|
12
12
|
* Therefore, if possible, a specific mapper should be used.
|
|
13
13
|
*
|
|
14
|
-
*
|
|
14
|
+
* ### Example Usage
|
|
15
15
|
*
|
|
16
|
+
* <!--Start PulumiCodeChooser -->
|
|
16
17
|
* ```typescript
|
|
17
18
|
* import * as pulumi from "@pulumi/pulumi";
|
|
18
19
|
* import * as keycloak from "@pulumi/keycloak";
|
|
19
20
|
*
|
|
20
21
|
* const realm = new keycloak.Realm("realm", {
|
|
21
|
-
* realm: "my-realm",
|
|
22
22
|
* enabled: true,
|
|
23
|
+
* realm: "my-realm",
|
|
23
24
|
* });
|
|
24
25
|
* const samlClient = new keycloak.saml.Client("samlClient", {
|
|
25
|
-
* realmId: realm.id,
|
|
26
26
|
* clientId: "test-client",
|
|
27
|
+
* realmId: realm.id,
|
|
27
28
|
* });
|
|
28
29
|
* const samlHardcodeAttributeMapper = new keycloak.GenericClientProtocolMapper("samlHardcodeAttributeMapper", {
|
|
29
|
-
* realmId: realm.id,
|
|
30
30
|
* clientId: samlClient.id,
|
|
31
|
-
* protocol: "saml",
|
|
32
|
-
* protocolMapper: "saml-hardcode-attribute-mapper",
|
|
33
31
|
* config: {
|
|
34
32
|
* "attribute.name": "name",
|
|
35
33
|
* "attribute.nameformat": "Basic",
|
|
36
34
|
* "attribute.value": "value",
|
|
37
35
|
* "friendly.name": "display name",
|
|
38
36
|
* },
|
|
37
|
+
* protocol: "saml",
|
|
38
|
+
* protocolMapper: "saml-hardcode-attribute-mapper",
|
|
39
|
+
* realmId: realm.id,
|
|
39
40
|
* });
|
|
40
41
|
* ```
|
|
42
|
+
* <!--End PulumiCodeChooser -->
|
|
41
43
|
*
|
|
42
|
-
*
|
|
44
|
+
* ### Argument Reference
|
|
43
45
|
*
|
|
44
|
-
*
|
|
46
|
+
* The following arguments are supported:
|
|
45
47
|
*
|
|
46
|
-
*
|
|
47
|
-
*
|
|
48
|
-
*
|
|
48
|
+
* - `realmId` - (Required) The realm this protocol mapper exists within.
|
|
49
|
+
* - `clientId` - (Required) The client this protocol mapper is attached to.
|
|
50
|
+
* - `name` - (Required) The display name of this protocol mapper in the GUI.
|
|
51
|
+
* - `protocol` - (Required) The type of client (either `openid-connect` or `saml`). The type must match the type of the client.
|
|
52
|
+
* - `protocolMapper` - (Required) The name of the protocol mapper. The protocol mapper must be
|
|
53
|
+
* compatible with the specified client.
|
|
54
|
+
* - `config` - (Required) A map with key / value pairs for configuring the protocol mapper. The supported keys depends on the protocol mapper.
|
|
55
|
+
*
|
|
56
|
+
* ### Import
|
|
57
|
+
*
|
|
58
|
+
* Protocol mappers can be imported using the following format: `{{realm_id}}/client/{{client_keycloak_id}}/{{protocol_mapper_id}}`
|
|
59
|
+
*
|
|
60
|
+
* Example:
|
|
49
61
|
*/
|
|
50
62
|
export declare class GenericClientProtocolMapper extends pulumi.CustomResource {
|
|
51
63
|
/**
|
|
@@ -64,33 +76,30 @@ export declare class GenericClientProtocolMapper extends pulumi.CustomResource {
|
|
|
64
76
|
*/
|
|
65
77
|
static isInstance(obj: any): obj is GenericClientProtocolMapper;
|
|
66
78
|
/**
|
|
67
|
-
* The client
|
|
79
|
+
* The mapper's associated client. Cannot be used at the same time as client_scope_id.
|
|
68
80
|
*/
|
|
69
81
|
readonly clientId: pulumi.Output<string | undefined>;
|
|
70
82
|
/**
|
|
71
83
|
* The mapper's associated client scope. Cannot be used at the same time as client_id.
|
|
72
84
|
*/
|
|
73
85
|
readonly clientScopeId: pulumi.Output<string | undefined>;
|
|
74
|
-
/**
|
|
75
|
-
* A map with key / value pairs for configuring the protocol mapper. The supported keys depends on the protocol mapper.
|
|
76
|
-
*/
|
|
77
86
|
readonly config: pulumi.Output<{
|
|
78
87
|
[key: string]: any;
|
|
79
88
|
}>;
|
|
80
89
|
/**
|
|
81
|
-
*
|
|
90
|
+
* A human-friendly name that will appear in the Keycloak console.
|
|
82
91
|
*/
|
|
83
92
|
readonly name: pulumi.Output<string>;
|
|
84
93
|
/**
|
|
85
|
-
* The
|
|
94
|
+
* The protocol of the client (openid-connect / saml).
|
|
86
95
|
*/
|
|
87
96
|
readonly protocol: pulumi.Output<string>;
|
|
88
97
|
/**
|
|
89
|
-
* The
|
|
98
|
+
* The type of the protocol mapper.
|
|
90
99
|
*/
|
|
91
100
|
readonly protocolMapper: pulumi.Output<string>;
|
|
92
101
|
/**
|
|
93
|
-
* The realm
|
|
102
|
+
* The realm id where the associated client or client scope exists.
|
|
94
103
|
*/
|
|
95
104
|
readonly realmId: pulumi.Output<string>;
|
|
96
105
|
/**
|
|
@@ -107,33 +116,30 @@ export declare class GenericClientProtocolMapper extends pulumi.CustomResource {
|
|
|
107
116
|
*/
|
|
108
117
|
export interface GenericClientProtocolMapperState {
|
|
109
118
|
/**
|
|
110
|
-
* The client
|
|
119
|
+
* The mapper's associated client. Cannot be used at the same time as client_scope_id.
|
|
111
120
|
*/
|
|
112
121
|
clientId?: pulumi.Input<string>;
|
|
113
122
|
/**
|
|
114
123
|
* The mapper's associated client scope. Cannot be used at the same time as client_id.
|
|
115
124
|
*/
|
|
116
125
|
clientScopeId?: pulumi.Input<string>;
|
|
117
|
-
/**
|
|
118
|
-
* A map with key / value pairs for configuring the protocol mapper. The supported keys depends on the protocol mapper.
|
|
119
|
-
*/
|
|
120
126
|
config?: pulumi.Input<{
|
|
121
127
|
[key: string]: any;
|
|
122
128
|
}>;
|
|
123
129
|
/**
|
|
124
|
-
*
|
|
130
|
+
* A human-friendly name that will appear in the Keycloak console.
|
|
125
131
|
*/
|
|
126
132
|
name?: pulumi.Input<string>;
|
|
127
133
|
/**
|
|
128
|
-
* The
|
|
134
|
+
* The protocol of the client (openid-connect / saml).
|
|
129
135
|
*/
|
|
130
136
|
protocol?: pulumi.Input<string>;
|
|
131
137
|
/**
|
|
132
|
-
* The
|
|
138
|
+
* The type of the protocol mapper.
|
|
133
139
|
*/
|
|
134
140
|
protocolMapper?: pulumi.Input<string>;
|
|
135
141
|
/**
|
|
136
|
-
* The realm
|
|
142
|
+
* The realm id where the associated client or client scope exists.
|
|
137
143
|
*/
|
|
138
144
|
realmId?: pulumi.Input<string>;
|
|
139
145
|
}
|
|
@@ -142,33 +148,30 @@ export interface GenericClientProtocolMapperState {
|
|
|
142
148
|
*/
|
|
143
149
|
export interface GenericClientProtocolMapperArgs {
|
|
144
150
|
/**
|
|
145
|
-
* The client
|
|
151
|
+
* The mapper's associated client. Cannot be used at the same time as client_scope_id.
|
|
146
152
|
*/
|
|
147
153
|
clientId?: pulumi.Input<string>;
|
|
148
154
|
/**
|
|
149
155
|
* The mapper's associated client scope. Cannot be used at the same time as client_id.
|
|
150
156
|
*/
|
|
151
157
|
clientScopeId?: pulumi.Input<string>;
|
|
152
|
-
/**
|
|
153
|
-
* A map with key / value pairs for configuring the protocol mapper. The supported keys depends on the protocol mapper.
|
|
154
|
-
*/
|
|
155
158
|
config: pulumi.Input<{
|
|
156
159
|
[key: string]: any;
|
|
157
160
|
}>;
|
|
158
161
|
/**
|
|
159
|
-
*
|
|
162
|
+
* A human-friendly name that will appear in the Keycloak console.
|
|
160
163
|
*/
|
|
161
164
|
name?: pulumi.Input<string>;
|
|
162
165
|
/**
|
|
163
|
-
* The
|
|
166
|
+
* The protocol of the client (openid-connect / saml).
|
|
164
167
|
*/
|
|
165
168
|
protocol: pulumi.Input<string>;
|
|
166
169
|
/**
|
|
167
|
-
* The
|
|
170
|
+
* The type of the protocol mapper.
|
|
168
171
|
*/
|
|
169
172
|
protocolMapper: pulumi.Input<string>;
|
|
170
173
|
/**
|
|
171
|
-
* The realm
|
|
174
|
+
* The realm id where the associated client or client scope exists.
|
|
172
175
|
*/
|
|
173
176
|
realmId: pulumi.Input<string>;
|
|
174
177
|
}
|
|
@@ -6,9 +6,9 @@ exports.GenericClientProtocolMapper = void 0;
|
|
|
6
6
|
const pulumi = require("@pulumi/pulumi");
|
|
7
7
|
const utilities = require("./utilities");
|
|
8
8
|
/**
|
|
9
|
-
*
|
|
9
|
+
* ## # keycloak.GenericClientProtocolMapper
|
|
10
10
|
*
|
|
11
|
-
* Allows for creating and managing protocol
|
|
11
|
+
* Allows for creating and managing protocol mapper for both types of clients (openid-connect and saml) within Keycloak.
|
|
12
12
|
*
|
|
13
13
|
* There are two uses cases for using this resource:
|
|
14
14
|
* * If you implemented a custom protocol mapper, this resource can be used to configure it
|
|
@@ -17,41 +17,53 @@ const utilities = require("./utilities");
|
|
|
17
17
|
* Due to the generic nature of this mapper, it is less user-friendly and more prone to configuration errors.
|
|
18
18
|
* Therefore, if possible, a specific mapper should be used.
|
|
19
19
|
*
|
|
20
|
-
*
|
|
20
|
+
* ### Example Usage
|
|
21
21
|
*
|
|
22
|
+
* <!--Start PulumiCodeChooser -->
|
|
22
23
|
* ```typescript
|
|
23
24
|
* import * as pulumi from "@pulumi/pulumi";
|
|
24
25
|
* import * as keycloak from "@pulumi/keycloak";
|
|
25
26
|
*
|
|
26
27
|
* const realm = new keycloak.Realm("realm", {
|
|
27
|
-
* realm: "my-realm",
|
|
28
28
|
* enabled: true,
|
|
29
|
+
* realm: "my-realm",
|
|
29
30
|
* });
|
|
30
31
|
* const samlClient = new keycloak.saml.Client("samlClient", {
|
|
31
|
-
* realmId: realm.id,
|
|
32
32
|
* clientId: "test-client",
|
|
33
|
+
* realmId: realm.id,
|
|
33
34
|
* });
|
|
34
35
|
* const samlHardcodeAttributeMapper = new keycloak.GenericClientProtocolMapper("samlHardcodeAttributeMapper", {
|
|
35
|
-
* realmId: realm.id,
|
|
36
36
|
* clientId: samlClient.id,
|
|
37
|
-
* protocol: "saml",
|
|
38
|
-
* protocolMapper: "saml-hardcode-attribute-mapper",
|
|
39
37
|
* config: {
|
|
40
38
|
* "attribute.name": "name",
|
|
41
39
|
* "attribute.nameformat": "Basic",
|
|
42
40
|
* "attribute.value": "value",
|
|
43
41
|
* "friendly.name": "display name",
|
|
44
42
|
* },
|
|
43
|
+
* protocol: "saml",
|
|
44
|
+
* protocolMapper: "saml-hardcode-attribute-mapper",
|
|
45
|
+
* realmId: realm.id,
|
|
45
46
|
* });
|
|
46
47
|
* ```
|
|
48
|
+
* <!--End PulumiCodeChooser -->
|
|
47
49
|
*
|
|
48
|
-
*
|
|
50
|
+
* ### Argument Reference
|
|
49
51
|
*
|
|
50
|
-
*
|
|
52
|
+
* The following arguments are supported:
|
|
51
53
|
*
|
|
52
|
-
*
|
|
53
|
-
*
|
|
54
|
-
*
|
|
54
|
+
* - `realmId` - (Required) The realm this protocol mapper exists within.
|
|
55
|
+
* - `clientId` - (Required) The client this protocol mapper is attached to.
|
|
56
|
+
* - `name` - (Required) The display name of this protocol mapper in the GUI.
|
|
57
|
+
* - `protocol` - (Required) The type of client (either `openid-connect` or `saml`). The type must match the type of the client.
|
|
58
|
+
* - `protocolMapper` - (Required) The name of the protocol mapper. The protocol mapper must be
|
|
59
|
+
* compatible with the specified client.
|
|
60
|
+
* - `config` - (Required) A map with key / value pairs for configuring the protocol mapper. The supported keys depends on the protocol mapper.
|
|
61
|
+
*
|
|
62
|
+
* ### Import
|
|
63
|
+
*
|
|
64
|
+
* Protocol mappers can be imported using the following format: `{{realm_id}}/client/{{client_keycloak_id}}/{{protocol_mapper_id}}`
|
|
65
|
+
*
|
|
66
|
+
* Example:
|
|
55
67
|
*/
|
|
56
68
|
class GenericClientProtocolMapper extends pulumi.CustomResource {
|
|
57
69
|
/**
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"genericClientProtocolMapper.js","sourceRoot":"","sources":["../genericClientProtocolMapper.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC
|
|
1
|
+
{"version":3,"file":"genericClientProtocolMapper.js","sourceRoot":"","sources":["../genericClientProtocolMapper.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2DG;AACH,MAAa,2BAA4B,SAAQ,MAAM,CAAC,cAAc;IAClE;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAwC,EAAE,IAAmC;QACtI,OAAO,IAAI,2BAA2B,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAClF,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,2BAA2B,CAAC,YAAY,CAAC;IAC5E,CAAC;IAoCD,YAAY,IAAY,EAAE,WAAgF,EAAE,IAAmC;QAC3I,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAA2D,CAAC;YAC1E,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;SACjE;aAAM;YACH,MAAM,IAAI,GAAG,WAA0D,CAAC;YACxE,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,MAAM,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACnD,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAC;aACzD;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,QAAQ,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACrD,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;aAC3D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,cAAc,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBAC3D,MAAM,IAAI,KAAK,CAAC,4CAA4C,CAAC,CAAC;aACjE;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,OAAO,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACpD,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;aAC1D;YACD,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;YACtD,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;SAC/D;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,2BAA2B,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAChF,CAAC;;AAlGL,kEAmGC;AArFG,gBAAgB;AACO,wCAAY,GAAG,wEAAwE,CAAC"}
|
|
@@ -9,8 +9,10 @@ import * as pulumi from "@pulumi/pulumi";
|
|
|
9
9
|
* inside an access token for a client.
|
|
10
10
|
*
|
|
11
11
|
* ## Example Usage
|
|
12
|
+
*
|
|
12
13
|
* ### Realm Role To Client)
|
|
13
14
|
*
|
|
15
|
+
* <!--Start PulumiCodeChooser -->
|
|
14
16
|
* ```typescript
|
|
15
17
|
* import * as pulumi from "@pulumi/pulumi";
|
|
16
18
|
* import * as keycloak from "@pulumi/keycloak";
|
|
@@ -35,8 +37,11 @@ import * as pulumi from "@pulumi/pulumi";
|
|
|
35
37
|
* roleId: realmRole.id,
|
|
36
38
|
* });
|
|
37
39
|
* ```
|
|
40
|
+
* <!--End PulumiCodeChooser -->
|
|
41
|
+
*
|
|
38
42
|
* ### Client Role To Client)
|
|
39
43
|
*
|
|
44
|
+
* <!--Start PulumiCodeChooser -->
|
|
40
45
|
* ```typescript
|
|
41
46
|
* import * as pulumi from "@pulumi/pulumi";
|
|
42
47
|
* import * as keycloak from "@pulumi/keycloak";
|
|
@@ -74,8 +79,11 @@ import * as pulumi from "@pulumi/pulumi";
|
|
|
74
79
|
* roleId: clientRoleA.id,
|
|
75
80
|
* });
|
|
76
81
|
* ```
|
|
82
|
+
* <!--End PulumiCodeChooser -->
|
|
83
|
+
*
|
|
77
84
|
* ### Realm Role To Client Scope)
|
|
78
85
|
*
|
|
86
|
+
* <!--Start PulumiCodeChooser -->
|
|
79
87
|
* ```typescript
|
|
80
88
|
* import * as pulumi from "@pulumi/pulumi";
|
|
81
89
|
* import * as keycloak from "@pulumi/keycloak";
|
|
@@ -95,8 +103,11 @@ import * as pulumi from "@pulumi/pulumi";
|
|
|
95
103
|
* roleId: realmRole.id,
|
|
96
104
|
* });
|
|
97
105
|
* ```
|
|
106
|
+
* <!--End PulumiCodeChooser -->
|
|
107
|
+
*
|
|
98
108
|
* ### Client Role To Client Scope)
|
|
99
109
|
*
|
|
110
|
+
* <!--Start PulumiCodeChooser -->
|
|
100
111
|
* ```typescript
|
|
101
112
|
* import * as pulumi from "@pulumi/pulumi";
|
|
102
113
|
* import * as keycloak from "@pulumi/keycloak";
|
|
@@ -123,13 +134,22 @@ import * as pulumi from "@pulumi/pulumi";
|
|
|
123
134
|
* roleId: clientRole.id,
|
|
124
135
|
* });
|
|
125
136
|
* ```
|
|
137
|
+
* <!--End PulumiCodeChooser -->
|
|
126
138
|
*
|
|
127
139
|
* ## Import
|
|
128
140
|
*
|
|
129
|
-
* Generic client role mappers can be imported using one of the following two formats
|
|
141
|
+
* Generic client role mappers can be imported using one of the following two formats:
|
|
142
|
+
*
|
|
143
|
+
* - When mapping a role to a client, use the format `{{realmId}}/client/{{clientId}}/scope-mappings/{{roleClientId}}/{{roleId}}`
|
|
144
|
+
*
|
|
145
|
+
* - When mapping a role to a client scope, use the format `{{realmId}}/client-scope/{{clientScopeId}}/scope-mappings/{{roleClientId}}/{{roleId}}`
|
|
146
|
+
*
|
|
147
|
+
* Example:
|
|
148
|
+
*
|
|
149
|
+
* bash
|
|
130
150
|
*
|
|
131
151
|
* ```sh
|
|
132
|
-
*
|
|
152
|
+
* $ pulumi import keycloak:index/genericClientRoleMapper:GenericClientRoleMapper client_role_mapper my-realm/client/23888550-5dcd-41f6-85ba-554233021e9c/scope-mappings/ce51f004-bdfb-4dd5-a963-c4487d2dec5b/ff3aa49f-bc07-4030-8783-41918c3614a3
|
|
133
153
|
* ```
|
|
134
154
|
*/
|
|
135
155
|
export declare class GenericClientRoleMapper extends pulumi.CustomResource {
|
|
@@ -15,8 +15,10 @@ const utilities = require("./utilities");
|
|
|
15
15
|
* inside an access token for a client.
|
|
16
16
|
*
|
|
17
17
|
* ## Example Usage
|
|
18
|
+
*
|
|
18
19
|
* ### Realm Role To Client)
|
|
19
20
|
*
|
|
21
|
+
* <!--Start PulumiCodeChooser -->
|
|
20
22
|
* ```typescript
|
|
21
23
|
* import * as pulumi from "@pulumi/pulumi";
|
|
22
24
|
* import * as keycloak from "@pulumi/keycloak";
|
|
@@ -41,8 +43,11 @@ const utilities = require("./utilities");
|
|
|
41
43
|
* roleId: realmRole.id,
|
|
42
44
|
* });
|
|
43
45
|
* ```
|
|
46
|
+
* <!--End PulumiCodeChooser -->
|
|
47
|
+
*
|
|
44
48
|
* ### Client Role To Client)
|
|
45
49
|
*
|
|
50
|
+
* <!--Start PulumiCodeChooser -->
|
|
46
51
|
* ```typescript
|
|
47
52
|
* import * as pulumi from "@pulumi/pulumi";
|
|
48
53
|
* import * as keycloak from "@pulumi/keycloak";
|
|
@@ -80,8 +85,11 @@ const utilities = require("./utilities");
|
|
|
80
85
|
* roleId: clientRoleA.id,
|
|
81
86
|
* });
|
|
82
87
|
* ```
|
|
88
|
+
* <!--End PulumiCodeChooser -->
|
|
89
|
+
*
|
|
83
90
|
* ### Realm Role To Client Scope)
|
|
84
91
|
*
|
|
92
|
+
* <!--Start PulumiCodeChooser -->
|
|
85
93
|
* ```typescript
|
|
86
94
|
* import * as pulumi from "@pulumi/pulumi";
|
|
87
95
|
* import * as keycloak from "@pulumi/keycloak";
|
|
@@ -101,8 +109,11 @@ const utilities = require("./utilities");
|
|
|
101
109
|
* roleId: realmRole.id,
|
|
102
110
|
* });
|
|
103
111
|
* ```
|
|
112
|
+
* <!--End PulumiCodeChooser -->
|
|
113
|
+
*
|
|
104
114
|
* ### Client Role To Client Scope)
|
|
105
115
|
*
|
|
116
|
+
* <!--Start PulumiCodeChooser -->
|
|
106
117
|
* ```typescript
|
|
107
118
|
* import * as pulumi from "@pulumi/pulumi";
|
|
108
119
|
* import * as keycloak from "@pulumi/keycloak";
|
|
@@ -129,13 +140,22 @@ const utilities = require("./utilities");
|
|
|
129
140
|
* roleId: clientRole.id,
|
|
130
141
|
* });
|
|
131
142
|
* ```
|
|
143
|
+
* <!--End PulumiCodeChooser -->
|
|
132
144
|
*
|
|
133
145
|
* ## Import
|
|
134
146
|
*
|
|
135
|
-
* Generic client role mappers can be imported using one of the following two formats
|
|
147
|
+
* Generic client role mappers can be imported using one of the following two formats:
|
|
148
|
+
*
|
|
149
|
+
* - When mapping a role to a client, use the format `{{realmId}}/client/{{clientId}}/scope-mappings/{{roleClientId}}/{{roleId}}`
|
|
150
|
+
*
|
|
151
|
+
* - When mapping a role to a client scope, use the format `{{realmId}}/client-scope/{{clientScopeId}}/scope-mappings/{{roleClientId}}/{{roleId}}`
|
|
152
|
+
*
|
|
153
|
+
* Example:
|
|
154
|
+
*
|
|
155
|
+
* bash
|
|
136
156
|
*
|
|
137
157
|
* ```sh
|
|
138
|
-
*
|
|
158
|
+
* $ pulumi import keycloak:index/genericClientRoleMapper:GenericClientRoleMapper client_role_mapper my-realm/client/23888550-5dcd-41f6-85ba-554233021e9c/scope-mappings/ce51f004-bdfb-4dd5-a963-c4487d2dec5b/ff3aa49f-bc07-4030-8783-41918c3614a3
|
|
139
159
|
* ```
|
|
140
160
|
*/
|
|
141
161
|
class GenericClientRoleMapper extends pulumi.CustomResource {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"genericClientRoleMapper.js","sourceRoot":"","sources":["../genericClientRoleMapper.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC
|
|
1
|
+
{"version":3,"file":"genericClientRoleMapper.js","sourceRoot":"","sources":["../genericClientRoleMapper.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AACzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAwJG;AACH,MAAa,uBAAwB,SAAQ,MAAM,CAAC,cAAc;IAC9D;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAoC,EAAE,IAAmC;QAClI,OAAO,IAAI,uBAAuB,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAC9E,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,uBAAuB,CAAC,YAAY,CAAC;IACxE,CAAC;IA2BD,YAAY,IAAY,EAAE,WAAwE,EAAE,IAAmC;QACnI,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAuD,CAAC;YACtE,cAAc,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;SAC/D;aAAM;YACH,MAAM,IAAI,GAAG,WAAsD,CAAC;YACpE,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,OAAO,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACpD,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;aAC1D;YACD,IAAI,CAAC,CAAC,IAAI,IAAI,IAAI,CAAC,MAAM,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE;gBACnD,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAC;aACzD;YACD,cAAc,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9D,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5D,cAAc,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;SAC7D;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,uBAAuB,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC5E,CAAC;;AA7EL,0DA8EC;AAhEG,gBAAgB;AACO,oCAAY,GAAG,gEAAgE,CAAC"}
|
|
@@ -11,6 +11,7 @@ import * as pulumi from "@pulumi/pulumi";
|
|
|
11
11
|
*
|
|
12
12
|
* ## Example Usage
|
|
13
13
|
*
|
|
14
|
+
* <!--Start PulumiCodeChooser -->
|
|
14
15
|
* ```typescript
|
|
15
16
|
* import * as pulumi from "@pulumi/pulumi";
|
|
16
17
|
* import * as keycloak from "@pulumi/keycloak";
|
|
@@ -36,13 +37,18 @@ import * as pulumi from "@pulumi/pulumi";
|
|
|
36
37
|
* },
|
|
37
38
|
* });
|
|
38
39
|
* ```
|
|
40
|
+
* <!--End PulumiCodeChooser -->
|
|
39
41
|
*
|
|
40
42
|
* ## Import
|
|
41
43
|
*
|
|
42
|
-
* Protocol mappers can be imported using the following format`{{realm_id}}/client/{{client_keycloak_id}}/{{protocol_mapper_id}}`
|
|
44
|
+
* Protocol mappers can be imported using the following format: `{{realm_id}}/client/{{client_keycloak_id}}/{{protocol_mapper_id}}`
|
|
45
|
+
*
|
|
46
|
+
* Example:
|
|
47
|
+
*
|
|
48
|
+
* bash
|
|
43
49
|
*
|
|
44
50
|
* ```sh
|
|
45
|
-
*
|
|
51
|
+
* $ pulumi import keycloak:index/genericProtocolMapper:GenericProtocolMapper saml_hardcode_attribute_mapper my-realm/client/a7202154-8793-4656-b655-1dd18c181e14/71602afa-f7d1-4788-8c49-ef8fd00af0f4
|
|
46
52
|
* ```
|
|
47
53
|
*/
|
|
48
54
|
export declare class GenericProtocolMapper extends pulumi.CustomResource {
|
package/genericProtocolMapper.js
CHANGED
|
@@ -17,6 +17,7 @@ const utilities = require("./utilities");
|
|
|
17
17
|
*
|
|
18
18
|
* ## Example Usage
|
|
19
19
|
*
|
|
20
|
+
* <!--Start PulumiCodeChooser -->
|
|
20
21
|
* ```typescript
|
|
21
22
|
* import * as pulumi from "@pulumi/pulumi";
|
|
22
23
|
* import * as keycloak from "@pulumi/keycloak";
|
|
@@ -42,13 +43,18 @@ const utilities = require("./utilities");
|
|
|
42
43
|
* },
|
|
43
44
|
* });
|
|
44
45
|
* ```
|
|
46
|
+
* <!--End PulumiCodeChooser -->
|
|
45
47
|
*
|
|
46
48
|
* ## Import
|
|
47
49
|
*
|
|
48
|
-
* Protocol mappers can be imported using the following format`{{realm_id}}/client/{{client_keycloak_id}}/{{protocol_mapper_id}}`
|
|
50
|
+
* Protocol mappers can be imported using the following format: `{{realm_id}}/client/{{client_keycloak_id}}/{{protocol_mapper_id}}`
|
|
51
|
+
*
|
|
52
|
+
* Example:
|
|
53
|
+
*
|
|
54
|
+
* bash
|
|
49
55
|
*
|
|
50
56
|
* ```sh
|
|
51
|
-
*
|
|
57
|
+
* $ pulumi import keycloak:index/genericProtocolMapper:GenericProtocolMapper saml_hardcode_attribute_mapper my-realm/client/a7202154-8793-4656-b655-1dd18c181e14/71602afa-f7d1-4788-8c49-ef8fd00af0f4
|
|
52
58
|
* ```
|
|
53
59
|
*/
|
|
54
60
|
class GenericProtocolMapper extends pulumi.CustomResource {
|