keycloakify 11.4.4 → 11.5.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/account/i18n/withJsx/GenericI18n.d.ts +1 -1
- package/account/i18n/withJsx/GenericI18n.js.map +1 -1
- package/account/i18n/withJsx/useI18n.js.map +1 -1
- package/account/pages/PageProps.d.ts +1 -1
- package/bin/375.index.js +4089 -0
- package/bin/{20.index.js → 490.index.js} +378 -56
- package/bin/{36.index.js → 503.index.js} +53 -2
- package/bin/{450.index.js → 525.index.js} +2 -4085
- package/bin/653.index.js +108 -110
- package/bin/682.index.js +1885 -0
- package/bin/735.index.js +107 -109
- package/bin/921.index.js +1 -1
- package/bin/main.js +8 -2
- package/bin/shared/constants.d.ts +3 -0
- package/bin/shared/constants.js +3 -0
- package/bin/shared/constants.js.map +1 -1
- package/bin/start-keycloak/getSupportedDockerImageTags.d.ts +8 -0
- package/bin/start-keycloak/realmConfig/ParsedRealmJson.d.ts +38 -0
- package/bin/start-keycloak/realmConfig/defaultConfig/defaultConfig.d.ts +8 -0
- package/bin/start-keycloak/realmConfig/defaultConfig/index.d.ts +1 -0
- package/bin/start-keycloak/realmConfig/dumpContainerConfig.d.ts +9 -0
- package/bin/start-keycloak/realmConfig/index.d.ts +1 -0
- package/bin/start-keycloak/realmConfig/prepareRealmConfig.d.ts +15 -0
- package/bin/start-keycloak/realmConfig/realmConfig.d.ts +16 -0
- package/login/DefaultPage.d.ts +2 -1
- package/login/DefaultPage.js.map +1 -1
- package/login/UserProfileFormFields.d.ts +1 -1
- package/login/UserProfileFormFields.js.map +1 -1
- package/login/UserProfileFormFieldsProps.d.ts +1 -0
- package/login/i18n/withJsx/GenericI18n.d.ts +1 -1
- package/login/i18n/withJsx/GenericI18n.js.map +1 -1
- package/login/i18n/withJsx/useI18n.js.map +1 -1
- package/login/lib/useUserProfileForm.d.ts +1 -1
- package/login/lib/useUserProfileForm.js.map +1 -1
- package/login/pages/IdpReviewUserProfile.d.ts +2 -1
- package/login/pages/IdpReviewUserProfile.js.map +1 -1
- package/login/pages/Login.d.ts +1 -1
- package/login/pages/Login.js.map +1 -1
- package/login/pages/LoginPassword.d.ts +1 -1
- package/login/pages/LoginPassword.js.map +1 -1
- package/login/pages/LoginUpdatePassword.d.ts +1 -1
- package/login/pages/LoginUpdatePassword.js.map +1 -1
- package/login/pages/LoginUpdateProfile.d.ts +2 -1
- package/login/pages/LoginUpdateProfile.js.map +1 -1
- package/login/pages/PageProps.d.ts +1 -1
- package/login/pages/Register.d.ts +2 -1
- package/login/pages/Register.js.map +1 -1
- package/login/pages/UpdateEmail.d.ts +2 -1
- package/login/pages/UpdateEmail.js.map +1 -1
- package/package.json +35 -14
- package/src/account/i18n/withJsx/GenericI18n.tsx +1 -0
- package/src/account/i18n/withJsx/useI18n.tsx +1 -0
- package/src/account/pages/PageProps.ts +1 -0
- package/src/bin/shared/constants.ts +6 -0
- package/src/bin/start-keycloak/getSupportedDockerImageTags.ts +230 -0
- package/src/bin/start-keycloak/keycloakify-logging-1.0.3.jar +0 -0
- package/src/bin/start-keycloak/realmConfig/ParsedRealmJson.ts +118 -0
- package/src/bin/start-keycloak/realmConfig/defaultConfig/defaultConfig.ts +75 -0
- package/src/bin/start-keycloak/realmConfig/defaultConfig/index.ts +1 -0
- package/src/bin/start-keycloak/{myrealm-realm-18.json → realmConfig/defaultConfig/realm-kc-18.json} +123 -60
- package/src/bin/start-keycloak/{myrealm-realm-19.json → realmConfig/defaultConfig/realm-kc-19.json} +81 -41
- package/src/bin/start-keycloak/{myrealm-realm-20.json → realmConfig/defaultConfig/realm-kc-20.json} +83 -42
- package/src/bin/start-keycloak/{myrealm-realm-21.json → realmConfig/defaultConfig/realm-kc-21.json} +58 -17
- package/src/bin/start-keycloak/{myrealm-realm-23.json → realmConfig/defaultConfig/realm-kc-23.json} +64 -20
- package/src/bin/start-keycloak/{myrealm-realm-24.json → realmConfig/defaultConfig/realm-kc-24.json} +63 -19
- package/src/bin/start-keycloak/{myrealm-realm-25.json → realmConfig/defaultConfig/realm-kc-25.json} +75 -20
- package/src/bin/start-keycloak/{myrealm-realm-26.json → realmConfig/defaultConfig/realm-kc-26.json} +86 -20
- package/src/bin/start-keycloak/realmConfig/dumpContainerConfig.ts +147 -0
- package/src/bin/start-keycloak/realmConfig/index.ts +1 -0
- package/src/bin/start-keycloak/realmConfig/prepareRealmConfig.ts +302 -0
- package/src/bin/start-keycloak/realmConfig/realmConfig.ts +151 -0
- package/src/bin/start-keycloak/start-keycloak.ts +160 -184
- package/src/bin/start-keycloak/startViteDevServer.ts +1 -0
- package/src/login/DefaultPage.tsx +1 -0
- package/src/login/UserProfileFormFields.tsx +1 -0
- package/src/login/UserProfileFormFieldsProps.tsx +1 -0
- package/src/login/i18n/withJsx/GenericI18n.tsx +1 -0
- package/src/login/i18n/withJsx/useI18n.tsx +1 -0
- package/src/login/lib/useUserProfileForm.tsx +1 -0
- package/src/login/pages/IdpReviewUserProfile.tsx +1 -0
- package/src/login/pages/Login.tsx +1 -0
- package/src/login/pages/LoginPassword.tsx +1 -0
- package/src/login/pages/LoginUpdatePassword.tsx +1 -0
- package/src/login/pages/LoginUpdateProfile.tsx +1 -0
- package/src/login/pages/PageProps.ts +1 -0
- package/src/login/pages/Register.tsx +1 -0
- package/src/login/pages/UpdateEmail.tsx +1 -0
- package/src/tools/JSX.ts +5 -0
- package/tools/JSX.d.ts +5 -0
- package/tools/JSX.js +2 -0
- package/tools/JSX.js.map +1 -0
- package/vite-plugin/index.js +6 -0
- package/bin/392.index.js +0 -740
- package/bin/932.index.js +0 -327
package/src/bin/start-keycloak/{myrealm-realm-18.json → realmConfig/defaultConfig/realm-kc-18.json}
RENAMED
|
@@ -73,7 +73,7 @@
|
|
|
73
73
|
"composites": {
|
|
74
74
|
"realm": ["offline_access", "uma_authorization"],
|
|
75
75
|
"client": {
|
|
76
|
-
"account": ["
|
|
76
|
+
"account": ["view-profile", "manage-account", "delete-account"]
|
|
77
77
|
}
|
|
78
78
|
},
|
|
79
79
|
"clientRole": false,
|
|
@@ -398,6 +398,26 @@
|
|
|
398
398
|
"otpPolicyLookAheadWindow": 1,
|
|
399
399
|
"otpPolicyPeriod": 30,
|
|
400
400
|
"otpSupportedApplications": ["FreeOTP", "Google Authenticator"],
|
|
401
|
+
"webAuthnPolicyRpEntityName": "keycloak",
|
|
402
|
+
"webAuthnPolicySignatureAlgorithms": ["ES256"],
|
|
403
|
+
"webAuthnPolicyRpId": "",
|
|
404
|
+
"webAuthnPolicyAttestationConveyancePreference": "not specified",
|
|
405
|
+
"webAuthnPolicyAuthenticatorAttachment": "not specified",
|
|
406
|
+
"webAuthnPolicyRequireResidentKey": "not specified",
|
|
407
|
+
"webAuthnPolicyUserVerificationRequirement": "not specified",
|
|
408
|
+
"webAuthnPolicyCreateTimeout": 0,
|
|
409
|
+
"webAuthnPolicyAvoidSameAuthenticatorRegister": false,
|
|
410
|
+
"webAuthnPolicyAcceptableAaguids": [],
|
|
411
|
+
"webAuthnPolicyPasswordlessRpEntityName": "keycloak",
|
|
412
|
+
"webAuthnPolicyPasswordlessSignatureAlgorithms": ["ES256"],
|
|
413
|
+
"webAuthnPolicyPasswordlessRpId": "",
|
|
414
|
+
"webAuthnPolicyPasswordlessAttestationConveyancePreference": "not specified",
|
|
415
|
+
"webAuthnPolicyPasswordlessAuthenticatorAttachment": "not specified",
|
|
416
|
+
"webAuthnPolicyPasswordlessRequireResidentKey": "not specified",
|
|
417
|
+
"webAuthnPolicyPasswordlessUserVerificationRequirement": "not specified",
|
|
418
|
+
"webAuthnPolicyPasswordlessCreateTimeout": 0,
|
|
419
|
+
"webAuthnPolicyPasswordlessAvoidSameAuthenticatorRegister": false,
|
|
420
|
+
"webAuthnPolicyPasswordlessAcceptableAaguids": [],
|
|
401
421
|
"users": [
|
|
402
422
|
{
|
|
403
423
|
"id": "00a62e75-bcc1-419a-a292-63ee5d161ed3",
|
|
@@ -422,30 +442,43 @@
|
|
|
422
442
|
"disableableCredentialTypes": [],
|
|
423
443
|
"requiredActions": [],
|
|
424
444
|
"realmRoles": ["default-roles-myrealm"],
|
|
445
|
+
"clientRoles": {
|
|
446
|
+
"realm-management": [
|
|
447
|
+
"create-client",
|
|
448
|
+
"view-identity-providers",
|
|
449
|
+
"manage-realm",
|
|
450
|
+
"query-groups",
|
|
451
|
+
"manage-clients",
|
|
452
|
+
"query-users",
|
|
453
|
+
"realm-admin",
|
|
454
|
+
"view-authorization",
|
|
455
|
+
"view-events",
|
|
456
|
+
"view-clients",
|
|
457
|
+
"view-realm",
|
|
458
|
+
"manage-events",
|
|
459
|
+
"query-realms",
|
|
460
|
+
"query-clients",
|
|
461
|
+
"manage-identity-providers",
|
|
462
|
+
"manage-users",
|
|
463
|
+
"view-users",
|
|
464
|
+
"impersonation",
|
|
465
|
+
"manage-authorization"
|
|
466
|
+
],
|
|
467
|
+
"broker": ["read-token"],
|
|
468
|
+
"account": [
|
|
469
|
+
"view-profile",
|
|
470
|
+
"manage-account-links",
|
|
471
|
+
"view-applications",
|
|
472
|
+
"manage-consent",
|
|
473
|
+
"delete-account",
|
|
474
|
+
"manage-account",
|
|
475
|
+
"view-consent"
|
|
476
|
+
]
|
|
477
|
+
},
|
|
425
478
|
"notBefore": 0,
|
|
426
479
|
"groups": []
|
|
427
480
|
}
|
|
428
481
|
],
|
|
429
|
-
"webAuthnPolicyRpEntityName": "keycloak",
|
|
430
|
-
"webAuthnPolicySignatureAlgorithms": ["ES256"],
|
|
431
|
-
"webAuthnPolicyRpId": "",
|
|
432
|
-
"webAuthnPolicyAttestationConveyancePreference": "not specified",
|
|
433
|
-
"webAuthnPolicyAuthenticatorAttachment": "not specified",
|
|
434
|
-
"webAuthnPolicyRequireResidentKey": "not specified",
|
|
435
|
-
"webAuthnPolicyUserVerificationRequirement": "not specified",
|
|
436
|
-
"webAuthnPolicyCreateTimeout": 0,
|
|
437
|
-
"webAuthnPolicyAvoidSameAuthenticatorRegister": false,
|
|
438
|
-
"webAuthnPolicyAcceptableAaguids": [],
|
|
439
|
-
"webAuthnPolicyPasswordlessRpEntityName": "keycloak",
|
|
440
|
-
"webAuthnPolicyPasswordlessSignatureAlgorithms": ["ES256"],
|
|
441
|
-
"webAuthnPolicyPasswordlessRpId": "",
|
|
442
|
-
"webAuthnPolicyPasswordlessAttestationConveyancePreference": "not specified",
|
|
443
|
-
"webAuthnPolicyPasswordlessAuthenticatorAttachment": "not specified",
|
|
444
|
-
"webAuthnPolicyPasswordlessRequireResidentKey": "not specified",
|
|
445
|
-
"webAuthnPolicyPasswordlessUserVerificationRequirement": "not specified",
|
|
446
|
-
"webAuthnPolicyPasswordlessCreateTimeout": 0,
|
|
447
|
-
"webAuthnPolicyPasswordlessAvoidSameAuthenticatorRegister": false,
|
|
448
|
-
"webAuthnPolicyPasswordlessAcceptableAaguids": [],
|
|
449
482
|
"scopeMappings": [
|
|
450
483
|
{
|
|
451
484
|
"clientScope": "offline_access",
|
|
@@ -505,8 +538,12 @@
|
|
|
505
538
|
"enabled": true,
|
|
506
539
|
"alwaysDisplayInConsole": false,
|
|
507
540
|
"clientAuthenticatorType": "client-secret",
|
|
508
|
-
"redirectUris": [
|
|
509
|
-
|
|
541
|
+
"redirectUris": [
|
|
542
|
+
"http://localhost*",
|
|
543
|
+
"http://127.0.0.1*",
|
|
544
|
+
"/realms/myrealm/account/*"
|
|
545
|
+
],
|
|
546
|
+
"webOrigins": ["*"],
|
|
510
547
|
"notBefore": 0,
|
|
511
548
|
"bearerOnly": false,
|
|
512
549
|
"consentRequired": false,
|
|
@@ -518,6 +555,7 @@
|
|
|
518
555
|
"frontchannelLogout": false,
|
|
519
556
|
"protocol": "openid-connect",
|
|
520
557
|
"attributes": {
|
|
558
|
+
"post.logout.redirect.uris": "+",
|
|
521
559
|
"pkce.code.challenge.method": "S256"
|
|
522
560
|
},
|
|
523
561
|
"authenticationFlowBindingOverrides": {},
|
|
@@ -636,7 +674,7 @@
|
|
|
636
674
|
"attributes": {
|
|
637
675
|
"oidc.ciba.grant.enabled": "false",
|
|
638
676
|
"backchannel.logout.session.required": "true",
|
|
639
|
-
"
|
|
677
|
+
"post.logout.redirect.uris": "+",
|
|
640
678
|
"display.on.consent.screen": "false",
|
|
641
679
|
"oauth2.device.authorization.grant.enabled": "false",
|
|
642
680
|
"backchannel.logout.revoke.offline.tokens": "false"
|
|
@@ -694,8 +732,12 @@
|
|
|
694
732
|
"enabled": true,
|
|
695
733
|
"alwaysDisplayInConsole": false,
|
|
696
734
|
"clientAuthenticatorType": "client-secret",
|
|
697
|
-
"redirectUris": [
|
|
698
|
-
|
|
735
|
+
"redirectUris": [
|
|
736
|
+
"http://localhost*",
|
|
737
|
+
"http://127.0.0.1*",
|
|
738
|
+
"/admin/myrealm/console/*"
|
|
739
|
+
],
|
|
740
|
+
"webOrigins": ["*"],
|
|
699
741
|
"notBefore": 0,
|
|
700
742
|
"bearerOnly": false,
|
|
701
743
|
"consentRequired": false,
|
|
@@ -707,6 +749,7 @@
|
|
|
707
749
|
"frontchannelLogout": false,
|
|
708
750
|
"protocol": "openid-connect",
|
|
709
751
|
"attributes": {
|
|
752
|
+
"post.logout.redirect.uris": "+",
|
|
710
753
|
"pkce.code.challenge.method": "S256"
|
|
711
754
|
},
|
|
712
755
|
"authenticationFlowBindingOverrides": {},
|
|
@@ -757,7 +800,8 @@
|
|
|
757
800
|
"consentRequired": false,
|
|
758
801
|
"config": {
|
|
759
802
|
"id.token.claim": "true",
|
|
760
|
-
"access.token.claim": "true"
|
|
803
|
+
"access.token.claim": "true",
|
|
804
|
+
"userinfo.token.claim": "true"
|
|
761
805
|
}
|
|
762
806
|
}
|
|
763
807
|
]
|
|
@@ -1205,6 +1249,7 @@
|
|
|
1205
1249
|
"consentRequired": false,
|
|
1206
1250
|
"config": {
|
|
1207
1251
|
"multivalued": "true",
|
|
1252
|
+
"userinfo.token.claim": "true",
|
|
1208
1253
|
"user.attribute": "foo",
|
|
1209
1254
|
"id.token.claim": "true",
|
|
1210
1255
|
"access.token.claim": "true",
|
|
@@ -1271,11 +1316,11 @@
|
|
|
1271
1316
|
},
|
|
1272
1317
|
"smtpServer": {},
|
|
1273
1318
|
"loginTheme": "keycloakify-starter",
|
|
1274
|
-
"accountTheme": "
|
|
1319
|
+
"accountTheme": "",
|
|
1275
1320
|
"adminTheme": "",
|
|
1276
1321
|
"emailTheme": "",
|
|
1277
1322
|
"eventsEnabled": false,
|
|
1278
|
-
"eventsListeners": ["jboss-logging"],
|
|
1323
|
+
"eventsListeners": ["keycloakify-logging", "jboss-logging"],
|
|
1279
1324
|
"enabledEventTypes": [],
|
|
1280
1325
|
"adminEventsEnabled": false,
|
|
1281
1326
|
"adminEventsDetailsEnabled": false,
|
|
@@ -1291,14 +1336,14 @@
|
|
|
1291
1336
|
"subComponents": {},
|
|
1292
1337
|
"config": {
|
|
1293
1338
|
"allowed-protocol-mapper-types": [
|
|
1339
|
+
"saml-user-attribute-mapper",
|
|
1340
|
+
"oidc-usermodel-property-mapper",
|
|
1294
1341
|
"oidc-full-name-mapper",
|
|
1295
1342
|
"saml-user-property-mapper",
|
|
1296
1343
|
"oidc-usermodel-attribute-mapper",
|
|
1297
|
-
"saml-user-attribute-mapper",
|
|
1298
1344
|
"oidc-address-mapper",
|
|
1299
1345
|
"oidc-sha256-pairwise-sub-mapper",
|
|
1300
|
-
"saml-role-list-mapper"
|
|
1301
|
-
"oidc-usermodel-property-mapper"
|
|
1346
|
+
"saml-role-list-mapper"
|
|
1302
1347
|
]
|
|
1303
1348
|
}
|
|
1304
1349
|
},
|
|
@@ -1347,14 +1392,14 @@
|
|
|
1347
1392
|
"subComponents": {},
|
|
1348
1393
|
"config": {
|
|
1349
1394
|
"allowed-protocol-mapper-types": [
|
|
1350
|
-
"oidc-usermodel-property-mapper",
|
|
1351
|
-
"oidc-address-mapper",
|
|
1352
1395
|
"oidc-full-name-mapper",
|
|
1396
|
+
"oidc-usermodel-property-mapper",
|
|
1353
1397
|
"saml-user-property-mapper",
|
|
1354
|
-
"saml-user-attribute-mapper",
|
|
1355
|
-
"oidc-sha256-pairwise-sub-mapper",
|
|
1356
1398
|
"oidc-usermodel-attribute-mapper",
|
|
1357
|
-
"
|
|
1399
|
+
"oidc-sha256-pairwise-sub-mapper",
|
|
1400
|
+
"saml-role-list-mapper",
|
|
1401
|
+
"oidc-address-mapper",
|
|
1402
|
+
"saml-user-attribute-mapper"
|
|
1358
1403
|
]
|
|
1359
1404
|
}
|
|
1360
1405
|
},
|
|
@@ -1394,6 +1439,12 @@
|
|
|
1394
1439
|
"providerId": "rsa-generated",
|
|
1395
1440
|
"subComponents": {},
|
|
1396
1441
|
"config": {
|
|
1442
|
+
"privateKey": [
|
|
1443
|
+
"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"
|
|
1444
|
+
],
|
|
1445
|
+
"certificate": [
|
|
1446
|
+
"MIICnTCCAYUCBgGTy58etTANBgkqhkiG9w0BAQsFADASMRAwDgYDVQQDDAdteXJlYWxtMB4XDTI0MTIxNTE4Mzg0M1oXDTM0MTIxNTE4NDAyM1owEjEQMA4GA1UEAwwHbXlyZWFsbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAPlUAHLmkYr68y1SPB/7bfDym7Uc500CppsTnS0Ud+5XmP6Ye7BZxJmbeitNkb7re0dHcVBbU3YhB1CsYcjPAgAzM5xlIw2I/xF0My32dyxMG8Jkd/c6fn2S/x9uFAztN87dtzr/QvAJctLn12dSHNXN9ylulLVBCv9zOdqVPGNHWlnY8e5wY9XkZc1n1RvgWKLU01hJxSbhKGTxUDIl6ngOaG9c2XV4y+SQ7hhIgbGI7Yomimyi+eeOfhZhAZ6Apll6hrtKlsSNk871dnaIcX5eSozc0aCreNMna2olZOa7QaaDQ6XhAKbqYW6JB+XSVcCeXL1rtQkk52D1to13huMCAwEAATANBgkqhkiG9w0BAQsFAAOCAQEAH/nsEi88hFiNPCWYvTB3lERZpeUCbpDzAXQT/4TONmOw8zi7Cd2OlX8BGBFqjh/fESHv+adlzsY1mUdMvpVaYgHr3gYi8sBSrq5TMUfSYaWp4WCD7utiXXGprG08GCdbye1lpyyNnniWp12Bgjao+rtGamL/M1d6+WZTC+XL+H30u4VHURAiFBsAEoX6tlGV8ynhYOr/b8B43jy0/R0JfrzLjwSKEcA6RfKM7ozbZ0QZuQDALULymPIesrV4mvZ2Qwg4YgpAKaki9Sse45yiIhsIY0p5RnuNZRZnCbukyeBzIyDJobEBGhpui/KT2dqXBlRgRuOhCUf7OGCcPVHKNQ=="
|
|
1447
|
+
],
|
|
1397
1448
|
"priority": ["100"]
|
|
1398
1449
|
}
|
|
1399
1450
|
},
|
|
@@ -1403,6 +1454,12 @@
|
|
|
1403
1454
|
"providerId": "rsa-enc-generated",
|
|
1404
1455
|
"subComponents": {},
|
|
1405
1456
|
"config": {
|
|
1457
|
+
"privateKey": [
|
|
1458
|
+
"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"
|
|
1459
|
+
],
|
|
1460
|
+
"certificate": [
|
|
1461
|
+
"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"
|
|
1462
|
+
],
|
|
1406
1463
|
"priority": ["100"],
|
|
1407
1464
|
"algorithm": ["RSA-OAEP"]
|
|
1408
1465
|
}
|
|
@@ -1413,6 +1470,8 @@
|
|
|
1413
1470
|
"providerId": "aes-generated",
|
|
1414
1471
|
"subComponents": {},
|
|
1415
1472
|
"config": {
|
|
1473
|
+
"kid": ["132fb843-59e9-4f36-ad55-5ce2d3a13fb3"],
|
|
1474
|
+
"secret": ["ETyyqapnrkUsNXLQ-tBVKw"],
|
|
1416
1475
|
"priority": ["100"]
|
|
1417
1476
|
}
|
|
1418
1477
|
},
|
|
@@ -1422,6 +1481,10 @@
|
|
|
1422
1481
|
"providerId": "hmac-generated",
|
|
1423
1482
|
"subComponents": {},
|
|
1424
1483
|
"config": {
|
|
1484
|
+
"kid": ["5110d380-c930-49d9-b91b-87f338f6170b"],
|
|
1485
|
+
"secret": [
|
|
1486
|
+
"uCpQrJvP5OBuTxXfDb4JRL0bCKpXUgfGn5vb8UvL-Sfs_sZ9rtvBmd6vuFWARqyezjJQtpoNlMv7sXgxkN-yxQ"
|
|
1487
|
+
],
|
|
1425
1488
|
"priority": ["100"],
|
|
1426
1489
|
"algorithm": ["HS256"]
|
|
1427
1490
|
}
|
|
@@ -1454,7 +1517,7 @@
|
|
|
1454
1517
|
"defaultLocale": "en",
|
|
1455
1518
|
"authenticationFlows": [
|
|
1456
1519
|
{
|
|
1457
|
-
"id": "
|
|
1520
|
+
"id": "223ce532-2038-4f24-a606-2a5c73f7bd65",
|
|
1458
1521
|
"alias": "Account verification options",
|
|
1459
1522
|
"description": "Method with which to verity the existing account",
|
|
1460
1523
|
"providerId": "basic-flow",
|
|
@@ -1480,7 +1543,7 @@
|
|
|
1480
1543
|
]
|
|
1481
1544
|
},
|
|
1482
1545
|
{
|
|
1483
|
-
"id": "
|
|
1546
|
+
"id": "57e47732-79cc-4d60-bee7-4f0b8fd44540",
|
|
1484
1547
|
"alias": "Authentication Options",
|
|
1485
1548
|
"description": "Authentication options.",
|
|
1486
1549
|
"providerId": "basic-flow",
|
|
@@ -1514,7 +1577,7 @@
|
|
|
1514
1577
|
]
|
|
1515
1578
|
},
|
|
1516
1579
|
{
|
|
1517
|
-
"id": "
|
|
1580
|
+
"id": "c2735d89-60c0-45a4-9b3c-ae5df17df395",
|
|
1518
1581
|
"alias": "Browser - Conditional OTP",
|
|
1519
1582
|
"description": "Flow to determine if the OTP is required for the authentication",
|
|
1520
1583
|
"providerId": "basic-flow",
|
|
@@ -1540,7 +1603,7 @@
|
|
|
1540
1603
|
]
|
|
1541
1604
|
},
|
|
1542
1605
|
{
|
|
1543
|
-
"id": "
|
|
1606
|
+
"id": "11a5a507-2b9a-443f-961b-dffd66f4318d",
|
|
1544
1607
|
"alias": "Direct Grant - Conditional OTP",
|
|
1545
1608
|
"description": "Flow to determine if the OTP is required for the authentication",
|
|
1546
1609
|
"providerId": "basic-flow",
|
|
@@ -1566,7 +1629,7 @@
|
|
|
1566
1629
|
]
|
|
1567
1630
|
},
|
|
1568
1631
|
{
|
|
1569
|
-
"id": "
|
|
1632
|
+
"id": "963bd753-6ea7-4d93-ab56-30f9ab59d597",
|
|
1570
1633
|
"alias": "First broker login - Conditional OTP",
|
|
1571
1634
|
"description": "Flow to determine if the OTP is required for the authentication",
|
|
1572
1635
|
"providerId": "basic-flow",
|
|
@@ -1592,7 +1655,7 @@
|
|
|
1592
1655
|
]
|
|
1593
1656
|
},
|
|
1594
1657
|
{
|
|
1595
|
-
"id": "
|
|
1658
|
+
"id": "1db6a489-a3b4-44c4-b480-1d1e8c123d20",
|
|
1596
1659
|
"alias": "Handle Existing Account",
|
|
1597
1660
|
"description": "Handle what to do if there is existing account with same email/username like authenticated identity provider",
|
|
1598
1661
|
"providerId": "basic-flow",
|
|
@@ -1618,7 +1681,7 @@
|
|
|
1618
1681
|
]
|
|
1619
1682
|
},
|
|
1620
1683
|
{
|
|
1621
|
-
"id": "
|
|
1684
|
+
"id": "7a38f32d-4f34-450f-8f03-64802d7cb8f1",
|
|
1622
1685
|
"alias": "Reset - Conditional OTP",
|
|
1623
1686
|
"description": "Flow to determine if the OTP should be reset or not. Set to REQUIRED to force.",
|
|
1624
1687
|
"providerId": "basic-flow",
|
|
@@ -1644,7 +1707,7 @@
|
|
|
1644
1707
|
]
|
|
1645
1708
|
},
|
|
1646
1709
|
{
|
|
1647
|
-
"id": "
|
|
1710
|
+
"id": "0df88739-3739-4d70-8893-47c546f19003",
|
|
1648
1711
|
"alias": "User creation or linking",
|
|
1649
1712
|
"description": "Flow for the existing/non-existing user alternatives",
|
|
1650
1713
|
"providerId": "basic-flow",
|
|
@@ -1671,7 +1734,7 @@
|
|
|
1671
1734
|
]
|
|
1672
1735
|
},
|
|
1673
1736
|
{
|
|
1674
|
-
"id": "
|
|
1737
|
+
"id": "35025424-e291-4c54-8a29-70aadba549ce",
|
|
1675
1738
|
"alias": "Verify Existing Account by Re-authentication",
|
|
1676
1739
|
"description": "Reauthentication of existing account",
|
|
1677
1740
|
"providerId": "basic-flow",
|
|
@@ -1697,7 +1760,7 @@
|
|
|
1697
1760
|
]
|
|
1698
1761
|
},
|
|
1699
1762
|
{
|
|
1700
|
-
"id": "
|
|
1763
|
+
"id": "1813b7f2-c3c2-4b92-8ffc-9ff2d12186c6",
|
|
1701
1764
|
"alias": "browser",
|
|
1702
1765
|
"description": "browser based authentication",
|
|
1703
1766
|
"providerId": "basic-flow",
|
|
@@ -1739,7 +1802,7 @@
|
|
|
1739
1802
|
]
|
|
1740
1803
|
},
|
|
1741
1804
|
{
|
|
1742
|
-
"id": "
|
|
1805
|
+
"id": "954283ac-f1c2-40b6-a39f-bf23ff9f3ce8",
|
|
1743
1806
|
"alias": "clients",
|
|
1744
1807
|
"description": "Base authentication for clients",
|
|
1745
1808
|
"providerId": "client-flow",
|
|
@@ -1781,7 +1844,7 @@
|
|
|
1781
1844
|
]
|
|
1782
1845
|
},
|
|
1783
1846
|
{
|
|
1784
|
-
"id": "
|
|
1847
|
+
"id": "52a789ce-2cad-4f0f-93b2-295b7fd519f0",
|
|
1785
1848
|
"alias": "direct grant",
|
|
1786
1849
|
"description": "OpenID Connect Resource Owner Grant",
|
|
1787
1850
|
"providerId": "basic-flow",
|
|
@@ -1815,7 +1878,7 @@
|
|
|
1815
1878
|
]
|
|
1816
1879
|
},
|
|
1817
1880
|
{
|
|
1818
|
-
"id": "
|
|
1881
|
+
"id": "5a6a71e1-9105-45b6-b5f0-52538461357b",
|
|
1819
1882
|
"alias": "docker auth",
|
|
1820
1883
|
"description": "Used by Docker clients to authenticate against the IDP",
|
|
1821
1884
|
"providerId": "basic-flow",
|
|
@@ -1833,7 +1896,7 @@
|
|
|
1833
1896
|
]
|
|
1834
1897
|
},
|
|
1835
1898
|
{
|
|
1836
|
-
"id": "
|
|
1899
|
+
"id": "8392b6e7-bdbf-4d7f-97b6-885761c200db",
|
|
1837
1900
|
"alias": "first broker login",
|
|
1838
1901
|
"description": "Actions taken after first broker login with identity provider account, which is not yet linked to any Keycloak account",
|
|
1839
1902
|
"providerId": "basic-flow",
|
|
@@ -1860,7 +1923,7 @@
|
|
|
1860
1923
|
]
|
|
1861
1924
|
},
|
|
1862
1925
|
{
|
|
1863
|
-
"id": "
|
|
1926
|
+
"id": "52136d70-8d08-42ea-b04b-cf40ea2807aa",
|
|
1864
1927
|
"alias": "forms",
|
|
1865
1928
|
"description": "Username, password, otp and other auth forms.",
|
|
1866
1929
|
"providerId": "basic-flow",
|
|
@@ -1886,7 +1949,7 @@
|
|
|
1886
1949
|
]
|
|
1887
1950
|
},
|
|
1888
1951
|
{
|
|
1889
|
-
"id": "
|
|
1952
|
+
"id": "26bbc7e6-ef01-4cdb-9dba-520e2f3f8993",
|
|
1890
1953
|
"alias": "http challenge",
|
|
1891
1954
|
"description": "An authentication flow based on challenge-response HTTP Authentication Schemes",
|
|
1892
1955
|
"providerId": "basic-flow",
|
|
@@ -1912,7 +1975,7 @@
|
|
|
1912
1975
|
]
|
|
1913
1976
|
},
|
|
1914
1977
|
{
|
|
1915
|
-
"id": "
|
|
1978
|
+
"id": "f0887979-04eb-4033-8f19-0ffd8c8b7f6a",
|
|
1916
1979
|
"alias": "registration",
|
|
1917
1980
|
"description": "registration flow",
|
|
1918
1981
|
"providerId": "basic-flow",
|
|
@@ -1931,7 +1994,7 @@
|
|
|
1931
1994
|
]
|
|
1932
1995
|
},
|
|
1933
1996
|
{
|
|
1934
|
-
"id": "
|
|
1997
|
+
"id": "a3b7b94b-bfbf-4760-a8c9-7d9cd98d262e",
|
|
1935
1998
|
"alias": "registration form",
|
|
1936
1999
|
"description": "registration form",
|
|
1937
2000
|
"providerId": "form-flow",
|
|
@@ -1973,7 +2036,7 @@
|
|
|
1973
2036
|
]
|
|
1974
2037
|
},
|
|
1975
2038
|
{
|
|
1976
|
-
"id": "
|
|
2039
|
+
"id": "dc68a665-2e51-4a22-aaad-bd693ddc77cc",
|
|
1977
2040
|
"alias": "reset credentials",
|
|
1978
2041
|
"description": "Reset credentials for a user if they forgot their password or something",
|
|
1979
2042
|
"providerId": "basic-flow",
|
|
@@ -2015,7 +2078,7 @@
|
|
|
2015
2078
|
]
|
|
2016
2079
|
},
|
|
2017
2080
|
{
|
|
2018
|
-
"id": "
|
|
2081
|
+
"id": "ae6b73aa-1318-4ae8-a3d9-d01b5e7d957e",
|
|
2019
2082
|
"alias": "saml ecp",
|
|
2020
2083
|
"description": "SAML ECP Profile Authentication Flow",
|
|
2021
2084
|
"providerId": "basic-flow",
|
|
@@ -2035,14 +2098,14 @@
|
|
|
2035
2098
|
],
|
|
2036
2099
|
"authenticatorConfig": [
|
|
2037
2100
|
{
|
|
2038
|
-
"id": "
|
|
2101
|
+
"id": "0c18de7f-0714-41f4-9a3f-ed4edd53ae9c",
|
|
2039
2102
|
"alias": "create unique user config",
|
|
2040
2103
|
"config": {
|
|
2041
2104
|
"require.password.update.after.registration": "false"
|
|
2042
2105
|
}
|
|
2043
2106
|
},
|
|
2044
2107
|
{
|
|
2045
|
-
"id": "
|
|
2108
|
+
"id": "65b3c8bb-34a4-4d19-b578-245dc8ff53ea",
|
|
2046
2109
|
"alias": "review profile config",
|
|
2047
2110
|
"config": {
|
|
2048
2111
|
"update.profile.on.first.login": "missing"
|
|
@@ -2132,8 +2195,8 @@
|
|
|
2132
2195
|
"attributes": {
|
|
2133
2196
|
"cibaBackchannelTokenDeliveryMode": "poll",
|
|
2134
2197
|
"cibaAuthRequestedUserHint": "login_hint",
|
|
2135
|
-
"oauth2DevicePollingInterval": "5",
|
|
2136
2198
|
"clientOfflineSessionMaxLifespan": "0",
|
|
2199
|
+
"oauth2DevicePollingInterval": "5",
|
|
2137
2200
|
"clientSessionIdleTimeout": "0",
|
|
2138
2201
|
"userProfileEnabled": "true",
|
|
2139
2202
|
"clientOfflineSessionIdleTimeout": "0",
|