keycloakify 11.5.3 → 11.5.4
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/bin/{682.index.js → 153.index.js} +219 -24
- package/bin/main.js +1 -1
- package/bin/start-keycloak/realmConfig/{ParsedRealmJson.d.ts → ParsedRealmJson/ParsedRealmJson.d.ts} +2 -3
- package/bin/start-keycloak/realmConfig/ParsedRealmJson/index.d.ts +3 -0
- package/bin/start-keycloak/realmConfig/ParsedRealmJson/readRealmJsonFile.d.ts +4 -0
- package/bin/start-keycloak/realmConfig/ParsedRealmJson/writeRealmJsonFile.d.ts +6 -0
- package/bin/start-keycloak/realmConfig/defaultConfig/defaultConfig.d.ts +1 -4
- package/bin/tools/Stringifyable.d.ts +13 -0
- package/bin/tools/canonicalStringify.d.ts +5 -0
- package/package.json +14 -4
- package/src/bin/start-keycloak/realmConfig/{ParsedRealmJson.ts → ParsedRealmJson/ParsedRealmJson.ts} +1 -19
- package/src/bin/start-keycloak/realmConfig/ParsedRealmJson/index.ts +3 -0
- package/src/bin/start-keycloak/realmConfig/ParsedRealmJson/readRealmJsonFile.ts +20 -0
- package/src/bin/start-keycloak/realmConfig/ParsedRealmJson/writeRealmJsonFile.ts +29 -0
- package/src/bin/start-keycloak/realmConfig/defaultConfig/defaultConfig.ts +3 -4
- package/src/bin/start-keycloak/realmConfig/defaultConfig/realm-kc-18.json +51 -33
- package/src/bin/start-keycloak/realmConfig/defaultConfig/realm-kc-19.json +48 -30
- package/src/bin/start-keycloak/realmConfig/defaultConfig/realm-kc-20.json +50 -32
- package/src/bin/start-keycloak/realmConfig/defaultConfig/realm-kc-21.json +29 -11
- package/src/bin/start-keycloak/realmConfig/defaultConfig/realm-kc-23.json +25 -7
- package/src/bin/start-keycloak/realmConfig/defaultConfig/realm-kc-24.json +26 -8
- package/src/bin/start-keycloak/realmConfig/defaultConfig/realm-kc-25.json +26 -8
- package/src/bin/start-keycloak/realmConfig/defaultConfig/realm-kc-26.json +11 -11
- package/src/bin/start-keycloak/realmConfig/prepareRealmConfig.ts +1 -1
- package/src/bin/start-keycloak/realmConfig/realmConfig.ts +15 -19
- package/src/bin/tools/Stringifyable.ts +99 -0
- package/src/bin/tools/canonicalStringify.ts +164 -0
|
@@ -756,6 +756,24 @@
|
|
|
756
756
|
"fullScopeAllowed": false,
|
|
757
757
|
"nodeReRegistrationTimeout": 0,
|
|
758
758
|
"protocolMappers": [
|
|
759
|
+
{
|
|
760
|
+
"id": "8fd0d584-7052-4d04-a615-d18a71050873",
|
|
761
|
+
"name": "allowed-origins",
|
|
762
|
+
"protocol": "openid-connect",
|
|
763
|
+
"protocolMapper": "oidc-hardcoded-claim-mapper",
|
|
764
|
+
"consentRequired": false,
|
|
765
|
+
"config": {
|
|
766
|
+
"userinfo.token.claim": "true",
|
|
767
|
+
"id.token.claim": "false",
|
|
768
|
+
"access.token.claim": "true",
|
|
769
|
+
"claim.name": "allowed-origins",
|
|
770
|
+
"jsonType.label": "JSON",
|
|
771
|
+
"access.tokenResponse.claim": "false",
|
|
772
|
+
"claim.value": "[\"*\"]",
|
|
773
|
+
"introspection.token.claim": "true",
|
|
774
|
+
"lightweight.claim": "true"
|
|
775
|
+
}
|
|
776
|
+
},
|
|
759
777
|
{
|
|
760
778
|
"id": "7779f8fa-c2fe-4e68-be56-66ee97bf8f13",
|
|
761
779
|
"name": "locale",
|
|
@@ -1336,13 +1354,13 @@
|
|
|
1336
1354
|
"subComponents": {},
|
|
1337
1355
|
"config": {
|
|
1338
1356
|
"allowed-protocol-mapper-types": [
|
|
1339
|
-
"saml-user-attribute-mapper",
|
|
1340
|
-
"oidc-usermodel-property-mapper",
|
|
1341
|
-
"oidc-full-name-mapper",
|
|
1342
1357
|
"saml-user-property-mapper",
|
|
1343
|
-
"oidc-usermodel-attribute-mapper",
|
|
1344
|
-
"oidc-address-mapper",
|
|
1345
1358
|
"oidc-sha256-pairwise-sub-mapper",
|
|
1359
|
+
"oidc-address-mapper",
|
|
1360
|
+
"oidc-full-name-mapper",
|
|
1361
|
+
"oidc-usermodel-attribute-mapper",
|
|
1362
|
+
"saml-user-attribute-mapper",
|
|
1363
|
+
"oidc-usermodel-property-mapper",
|
|
1346
1364
|
"saml-role-list-mapper"
|
|
1347
1365
|
]
|
|
1348
1366
|
}
|
|
@@ -1393,13 +1411,13 @@
|
|
|
1393
1411
|
"config": {
|
|
1394
1412
|
"allowed-protocol-mapper-types": [
|
|
1395
1413
|
"oidc-full-name-mapper",
|
|
1396
|
-
"oidc-usermodel-property-mapper",
|
|
1397
|
-
"saml-user-property-mapper",
|
|
1398
|
-
"oidc-usermodel-attribute-mapper",
|
|
1399
|
-
"oidc-sha256-pairwise-sub-mapper",
|
|
1400
|
-
"saml-role-list-mapper",
|
|
1401
1414
|
"oidc-address-mapper",
|
|
1402
|
-
"saml-
|
|
1415
|
+
"saml-role-list-mapper",
|
|
1416
|
+
"oidc-sha256-pairwise-sub-mapper",
|
|
1417
|
+
"saml-user-attribute-mapper",
|
|
1418
|
+
"saml-user-property-mapper",
|
|
1419
|
+
"oidc-usermodel-property-mapper",
|
|
1420
|
+
"oidc-usermodel-attribute-mapper"
|
|
1403
1421
|
]
|
|
1404
1422
|
}
|
|
1405
1423
|
},
|
|
@@ -1517,7 +1535,7 @@
|
|
|
1517
1535
|
"defaultLocale": "en",
|
|
1518
1536
|
"authenticationFlows": [
|
|
1519
1537
|
{
|
|
1520
|
-
"id": "
|
|
1538
|
+
"id": "f664efe4-102d-4ec1-bf11-11af67e3f178",
|
|
1521
1539
|
"alias": "Account verification options",
|
|
1522
1540
|
"description": "Method with which to verity the existing account",
|
|
1523
1541
|
"providerId": "basic-flow",
|
|
@@ -1543,7 +1561,7 @@
|
|
|
1543
1561
|
]
|
|
1544
1562
|
},
|
|
1545
1563
|
{
|
|
1546
|
-
"id": "
|
|
1564
|
+
"id": "8a5630c5-eca1-4b6a-8e59-459cb6c84535",
|
|
1547
1565
|
"alias": "Authentication Options",
|
|
1548
1566
|
"description": "Authentication options.",
|
|
1549
1567
|
"providerId": "basic-flow",
|
|
@@ -1577,7 +1595,7 @@
|
|
|
1577
1595
|
]
|
|
1578
1596
|
},
|
|
1579
1597
|
{
|
|
1580
|
-
"id": "
|
|
1598
|
+
"id": "c1a3eed3-25ce-44ae-93d1-f0b8148a0f8c",
|
|
1581
1599
|
"alias": "Browser - Conditional OTP",
|
|
1582
1600
|
"description": "Flow to determine if the OTP is required for the authentication",
|
|
1583
1601
|
"providerId": "basic-flow",
|
|
@@ -1603,7 +1621,7 @@
|
|
|
1603
1621
|
]
|
|
1604
1622
|
},
|
|
1605
1623
|
{
|
|
1606
|
-
"id": "
|
|
1624
|
+
"id": "6eb188ad-1041-44dd-bf8f-37cae0d98bf1",
|
|
1607
1625
|
"alias": "Direct Grant - Conditional OTP",
|
|
1608
1626
|
"description": "Flow to determine if the OTP is required for the authentication",
|
|
1609
1627
|
"providerId": "basic-flow",
|
|
@@ -1629,7 +1647,7 @@
|
|
|
1629
1647
|
]
|
|
1630
1648
|
},
|
|
1631
1649
|
{
|
|
1632
|
-
"id": "
|
|
1650
|
+
"id": "4ee215ac-f4e5-4edb-bf76-65dc9e211543",
|
|
1633
1651
|
"alias": "First broker login - Conditional OTP",
|
|
1634
1652
|
"description": "Flow to determine if the OTP is required for the authentication",
|
|
1635
1653
|
"providerId": "basic-flow",
|
|
@@ -1655,7 +1673,7 @@
|
|
|
1655
1673
|
]
|
|
1656
1674
|
},
|
|
1657
1675
|
{
|
|
1658
|
-
"id": "
|
|
1676
|
+
"id": "5a1eac7e-06a0-46d8-b9ae-1f2c934331f9",
|
|
1659
1677
|
"alias": "Handle Existing Account",
|
|
1660
1678
|
"description": "Handle what to do if there is existing account with same email/username like authenticated identity provider",
|
|
1661
1679
|
"providerId": "basic-flow",
|
|
@@ -1681,7 +1699,7 @@
|
|
|
1681
1699
|
]
|
|
1682
1700
|
},
|
|
1683
1701
|
{
|
|
1684
|
-
"id": "
|
|
1702
|
+
"id": "ed165166-4521-4a62-b185-c4b51643cbb1",
|
|
1685
1703
|
"alias": "Reset - Conditional OTP",
|
|
1686
1704
|
"description": "Flow to determine if the OTP should be reset or not. Set to REQUIRED to force.",
|
|
1687
1705
|
"providerId": "basic-flow",
|
|
@@ -1707,7 +1725,7 @@
|
|
|
1707
1725
|
]
|
|
1708
1726
|
},
|
|
1709
1727
|
{
|
|
1710
|
-
"id": "
|
|
1728
|
+
"id": "4788fb1f-fd81-4f5d-9abe-4199dd641c1e",
|
|
1711
1729
|
"alias": "User creation or linking",
|
|
1712
1730
|
"description": "Flow for the existing/non-existing user alternatives",
|
|
1713
1731
|
"providerId": "basic-flow",
|
|
@@ -1734,7 +1752,7 @@
|
|
|
1734
1752
|
]
|
|
1735
1753
|
},
|
|
1736
1754
|
{
|
|
1737
|
-
"id": "
|
|
1755
|
+
"id": "d778a70f-f472-4dd3-ac40-cb5612ddc171",
|
|
1738
1756
|
"alias": "Verify Existing Account by Re-authentication",
|
|
1739
1757
|
"description": "Reauthentication of existing account",
|
|
1740
1758
|
"providerId": "basic-flow",
|
|
@@ -1760,7 +1778,7 @@
|
|
|
1760
1778
|
]
|
|
1761
1779
|
},
|
|
1762
1780
|
{
|
|
1763
|
-
"id": "
|
|
1781
|
+
"id": "9c1ea8ea-7c23-4e60-b02d-1900d9dc4109",
|
|
1764
1782
|
"alias": "browser",
|
|
1765
1783
|
"description": "browser based authentication",
|
|
1766
1784
|
"providerId": "basic-flow",
|
|
@@ -1802,7 +1820,7 @@
|
|
|
1802
1820
|
]
|
|
1803
1821
|
},
|
|
1804
1822
|
{
|
|
1805
|
-
"id": "
|
|
1823
|
+
"id": "0ebdf418-d57d-4318-9359-7bd0cb2381f2",
|
|
1806
1824
|
"alias": "clients",
|
|
1807
1825
|
"description": "Base authentication for clients",
|
|
1808
1826
|
"providerId": "client-flow",
|
|
@@ -1844,7 +1862,7 @@
|
|
|
1844
1862
|
]
|
|
1845
1863
|
},
|
|
1846
1864
|
{
|
|
1847
|
-
"id": "
|
|
1865
|
+
"id": "5cc89293-c72e-4c5e-b31c-15558588a60d",
|
|
1848
1866
|
"alias": "direct grant",
|
|
1849
1867
|
"description": "OpenID Connect Resource Owner Grant",
|
|
1850
1868
|
"providerId": "basic-flow",
|
|
@@ -1878,7 +1896,7 @@
|
|
|
1878
1896
|
]
|
|
1879
1897
|
},
|
|
1880
1898
|
{
|
|
1881
|
-
"id": "
|
|
1899
|
+
"id": "5ae5a321-ccac-449e-9c19-d6dc22ab8085",
|
|
1882
1900
|
"alias": "docker auth",
|
|
1883
1901
|
"description": "Used by Docker clients to authenticate against the IDP",
|
|
1884
1902
|
"providerId": "basic-flow",
|
|
@@ -1896,7 +1914,7 @@
|
|
|
1896
1914
|
]
|
|
1897
1915
|
},
|
|
1898
1916
|
{
|
|
1899
|
-
"id": "
|
|
1917
|
+
"id": "7737fdd1-0875-47e6-977b-12561cddfdc3",
|
|
1900
1918
|
"alias": "first broker login",
|
|
1901
1919
|
"description": "Actions taken after first broker login with identity provider account, which is not yet linked to any Keycloak account",
|
|
1902
1920
|
"providerId": "basic-flow",
|
|
@@ -1923,7 +1941,7 @@
|
|
|
1923
1941
|
]
|
|
1924
1942
|
},
|
|
1925
1943
|
{
|
|
1926
|
-
"id": "
|
|
1944
|
+
"id": "90f975c3-9826-461f-88ca-27c697aff86b",
|
|
1927
1945
|
"alias": "forms",
|
|
1928
1946
|
"description": "Username, password, otp and other auth forms.",
|
|
1929
1947
|
"providerId": "basic-flow",
|
|
@@ -1949,7 +1967,7 @@
|
|
|
1949
1967
|
]
|
|
1950
1968
|
},
|
|
1951
1969
|
{
|
|
1952
|
-
"id": "
|
|
1970
|
+
"id": "ce2722d5-9f4f-41a2-8f81-e01f7b6cee57",
|
|
1953
1971
|
"alias": "http challenge",
|
|
1954
1972
|
"description": "An authentication flow based on challenge-response HTTP Authentication Schemes",
|
|
1955
1973
|
"providerId": "basic-flow",
|
|
@@ -1975,7 +1993,7 @@
|
|
|
1975
1993
|
]
|
|
1976
1994
|
},
|
|
1977
1995
|
{
|
|
1978
|
-
"id": "
|
|
1996
|
+
"id": "31b5bfa7-98ad-47a2-b8e6-0669022cd8cb",
|
|
1979
1997
|
"alias": "registration",
|
|
1980
1998
|
"description": "registration flow",
|
|
1981
1999
|
"providerId": "basic-flow",
|
|
@@ -1994,7 +2012,7 @@
|
|
|
1994
2012
|
]
|
|
1995
2013
|
},
|
|
1996
2014
|
{
|
|
1997
|
-
"id": "
|
|
2015
|
+
"id": "bf8a950b-be3b-4e44-8602-64e0bba492eb",
|
|
1998
2016
|
"alias": "registration form",
|
|
1999
2017
|
"description": "registration form",
|
|
2000
2018
|
"providerId": "form-flow",
|
|
@@ -2036,7 +2054,7 @@
|
|
|
2036
2054
|
]
|
|
2037
2055
|
},
|
|
2038
2056
|
{
|
|
2039
|
-
"id": "
|
|
2057
|
+
"id": "e3519800-971b-4b1d-b64e-3983ccd02dea",
|
|
2040
2058
|
"alias": "reset credentials",
|
|
2041
2059
|
"description": "Reset credentials for a user if they forgot their password or something",
|
|
2042
2060
|
"providerId": "basic-flow",
|
|
@@ -2078,7 +2096,7 @@
|
|
|
2078
2096
|
]
|
|
2079
2097
|
},
|
|
2080
2098
|
{
|
|
2081
|
-
"id": "
|
|
2099
|
+
"id": "9d5a33a2-e777-4beb-95de-b84812f69c56",
|
|
2082
2100
|
"alias": "saml ecp",
|
|
2083
2101
|
"description": "SAML ECP Profile Authentication Flow",
|
|
2084
2102
|
"providerId": "basic-flow",
|
|
@@ -2098,14 +2116,14 @@
|
|
|
2098
2116
|
],
|
|
2099
2117
|
"authenticatorConfig": [
|
|
2100
2118
|
{
|
|
2101
|
-
"id": "
|
|
2119
|
+
"id": "4901c91d-59bd-4727-b585-8e4e44828d0a",
|
|
2102
2120
|
"alias": "create unique user config",
|
|
2103
2121
|
"config": {
|
|
2104
2122
|
"require.password.update.after.registration": "false"
|
|
2105
2123
|
}
|
|
2106
2124
|
},
|
|
2107
2125
|
{
|
|
2108
|
-
"id": "
|
|
2126
|
+
"id": "5062a078-83a7-4933-b0d5-3f75cc2a5003",
|
|
2109
2127
|
"alias": "review profile config",
|
|
2110
2128
|
"config": {
|
|
2111
2129
|
"update.profile.on.first.login": "missing"
|
|
@@ -764,6 +764,24 @@
|
|
|
764
764
|
"fullScopeAllowed": false,
|
|
765
765
|
"nodeReRegistrationTimeout": 0,
|
|
766
766
|
"protocolMappers": [
|
|
767
|
+
{
|
|
768
|
+
"id": "8fd0d584-7052-4d04-a615-d18a71050873",
|
|
769
|
+
"name": "allowed-origins",
|
|
770
|
+
"protocol": "openid-connect",
|
|
771
|
+
"protocolMapper": "oidc-hardcoded-claim-mapper",
|
|
772
|
+
"consentRequired": false,
|
|
773
|
+
"config": {
|
|
774
|
+
"userinfo.token.claim": "true",
|
|
775
|
+
"id.token.claim": "false",
|
|
776
|
+
"access.token.claim": "true",
|
|
777
|
+
"claim.name": "allowed-origins",
|
|
778
|
+
"jsonType.label": "JSON",
|
|
779
|
+
"access.tokenResponse.claim": "false",
|
|
780
|
+
"claim.value": "[\"*\"]",
|
|
781
|
+
"introspection.token.claim": "true",
|
|
782
|
+
"lightweight.claim": "true"
|
|
783
|
+
}
|
|
784
|
+
},
|
|
767
785
|
{
|
|
768
786
|
"id": "7779f8fa-c2fe-4e68-be56-66ee97bf8f13",
|
|
769
787
|
"name": "locale",
|
|
@@ -1344,14 +1362,14 @@
|
|
|
1344
1362
|
"subComponents": {},
|
|
1345
1363
|
"config": {
|
|
1346
1364
|
"allowed-protocol-mapper-types": [
|
|
1347
|
-
"saml-user-property-mapper",
|
|
1348
1365
|
"saml-user-attribute-mapper",
|
|
1349
1366
|
"oidc-full-name-mapper",
|
|
1350
|
-
"oidc-usermodel-property-mapper",
|
|
1351
|
-
"oidc-usermodel-attribute-mapper",
|
|
1352
1367
|
"oidc-address-mapper",
|
|
1368
|
+
"saml-user-property-mapper",
|
|
1369
|
+
"oidc-sha256-pairwise-sub-mapper",
|
|
1370
|
+
"oidc-usermodel-attribute-mapper",
|
|
1353
1371
|
"saml-role-list-mapper",
|
|
1354
|
-
"oidc-
|
|
1372
|
+
"oidc-usermodel-property-mapper"
|
|
1355
1373
|
]
|
|
1356
1374
|
}
|
|
1357
1375
|
},
|
|
@@ -1400,14 +1418,14 @@
|
|
|
1400
1418
|
"subComponents": {},
|
|
1401
1419
|
"config": {
|
|
1402
1420
|
"allowed-protocol-mapper-types": [
|
|
1421
|
+
"saml-user-property-mapper",
|
|
1403
1422
|
"oidc-sha256-pairwise-sub-mapper",
|
|
1404
1423
|
"oidc-usermodel-attribute-mapper",
|
|
1405
|
-
"oidc-usermodel-property-mapper",
|
|
1406
|
-
"saml-role-list-mapper",
|
|
1407
1424
|
"oidc-full-name-mapper",
|
|
1408
|
-
"saml-user-
|
|
1425
|
+
"saml-user-attribute-mapper",
|
|
1426
|
+
"oidc-usermodel-property-mapper",
|
|
1409
1427
|
"oidc-address-mapper",
|
|
1410
|
-
"saml-
|
|
1428
|
+
"saml-role-list-mapper"
|
|
1411
1429
|
]
|
|
1412
1430
|
}
|
|
1413
1431
|
},
|
|
@@ -1525,7 +1543,7 @@
|
|
|
1525
1543
|
"defaultLocale": "en",
|
|
1526
1544
|
"authenticationFlows": [
|
|
1527
1545
|
{
|
|
1528
|
-
"id": "
|
|
1546
|
+
"id": "8ccfe057-5ce6-499b-9fae-3cd89b62bf01",
|
|
1529
1547
|
"alias": "Account verification options",
|
|
1530
1548
|
"description": "Method with which to verity the existing account",
|
|
1531
1549
|
"providerId": "basic-flow",
|
|
@@ -1551,7 +1569,7 @@
|
|
|
1551
1569
|
]
|
|
1552
1570
|
},
|
|
1553
1571
|
{
|
|
1554
|
-
"id": "
|
|
1572
|
+
"id": "f3b9ab2e-41c2-4e73-876b-e2c275d6d14e",
|
|
1555
1573
|
"alias": "Authentication Options",
|
|
1556
1574
|
"description": "Authentication options.",
|
|
1557
1575
|
"providerId": "basic-flow",
|
|
@@ -1585,7 +1603,7 @@
|
|
|
1585
1603
|
]
|
|
1586
1604
|
},
|
|
1587
1605
|
{
|
|
1588
|
-
"id": "
|
|
1606
|
+
"id": "df1329cc-777c-42d8-aa2f-c5d5ddaaf5a4",
|
|
1589
1607
|
"alias": "Browser - Conditional OTP",
|
|
1590
1608
|
"description": "Flow to determine if the OTP is required for the authentication",
|
|
1591
1609
|
"providerId": "basic-flow",
|
|
@@ -1611,7 +1629,7 @@
|
|
|
1611
1629
|
]
|
|
1612
1630
|
},
|
|
1613
1631
|
{
|
|
1614
|
-
"id": "
|
|
1632
|
+
"id": "f78a4cbc-66ff-4caa-8066-67aff94946f4",
|
|
1615
1633
|
"alias": "Direct Grant - Conditional OTP",
|
|
1616
1634
|
"description": "Flow to determine if the OTP is required for the authentication",
|
|
1617
1635
|
"providerId": "basic-flow",
|
|
@@ -1637,7 +1655,7 @@
|
|
|
1637
1655
|
]
|
|
1638
1656
|
},
|
|
1639
1657
|
{
|
|
1640
|
-
"id": "
|
|
1658
|
+
"id": "4b20995b-5553-45db-86b0-05c3fe14edb1",
|
|
1641
1659
|
"alias": "First broker login - Conditional OTP",
|
|
1642
1660
|
"description": "Flow to determine if the OTP is required for the authentication",
|
|
1643
1661
|
"providerId": "basic-flow",
|
|
@@ -1663,7 +1681,7 @@
|
|
|
1663
1681
|
]
|
|
1664
1682
|
},
|
|
1665
1683
|
{
|
|
1666
|
-
"id": "
|
|
1684
|
+
"id": "0a7cc6b7-e427-4f72-b44e-a02133241bad",
|
|
1667
1685
|
"alias": "Handle Existing Account",
|
|
1668
1686
|
"description": "Handle what to do if there is existing account with same email/username like authenticated identity provider",
|
|
1669
1687
|
"providerId": "basic-flow",
|
|
@@ -1689,7 +1707,7 @@
|
|
|
1689
1707
|
]
|
|
1690
1708
|
},
|
|
1691
1709
|
{
|
|
1692
|
-
"id": "
|
|
1710
|
+
"id": "e24e73c0-dd51-4fdc-a916-284f11f38487",
|
|
1693
1711
|
"alias": "Reset - Conditional OTP",
|
|
1694
1712
|
"description": "Flow to determine if the OTP should be reset or not. Set to REQUIRED to force.",
|
|
1695
1713
|
"providerId": "basic-flow",
|
|
@@ -1715,7 +1733,7 @@
|
|
|
1715
1733
|
]
|
|
1716
1734
|
},
|
|
1717
1735
|
{
|
|
1718
|
-
"id": "
|
|
1736
|
+
"id": "37ee5a12-01c2-41b0-aafa-e9c6661ff544",
|
|
1719
1737
|
"alias": "User creation or linking",
|
|
1720
1738
|
"description": "Flow for the existing/non-existing user alternatives",
|
|
1721
1739
|
"providerId": "basic-flow",
|
|
@@ -1742,7 +1760,7 @@
|
|
|
1742
1760
|
]
|
|
1743
1761
|
},
|
|
1744
1762
|
{
|
|
1745
|
-
"id": "
|
|
1763
|
+
"id": "8902a1a7-c2ee-4648-869f-dd5ef89184fc",
|
|
1746
1764
|
"alias": "Verify Existing Account by Re-authentication",
|
|
1747
1765
|
"description": "Reauthentication of existing account",
|
|
1748
1766
|
"providerId": "basic-flow",
|
|
@@ -1768,7 +1786,7 @@
|
|
|
1768
1786
|
]
|
|
1769
1787
|
},
|
|
1770
1788
|
{
|
|
1771
|
-
"id": "
|
|
1789
|
+
"id": "77c78eed-4bcd-4779-b39f-10135be84946",
|
|
1772
1790
|
"alias": "browser",
|
|
1773
1791
|
"description": "browser based authentication",
|
|
1774
1792
|
"providerId": "basic-flow",
|
|
@@ -1810,7 +1828,7 @@
|
|
|
1810
1828
|
]
|
|
1811
1829
|
},
|
|
1812
1830
|
{
|
|
1813
|
-
"id": "
|
|
1831
|
+
"id": "c6398883-01e6-47a1-bb97-c09f2983155d",
|
|
1814
1832
|
"alias": "clients",
|
|
1815
1833
|
"description": "Base authentication for clients",
|
|
1816
1834
|
"providerId": "client-flow",
|
|
@@ -1852,7 +1870,7 @@
|
|
|
1852
1870
|
]
|
|
1853
1871
|
},
|
|
1854
1872
|
{
|
|
1855
|
-
"id": "
|
|
1873
|
+
"id": "78ab5fb8-f35b-4053-b264-94b208000b13",
|
|
1856
1874
|
"alias": "direct grant",
|
|
1857
1875
|
"description": "OpenID Connect Resource Owner Grant",
|
|
1858
1876
|
"providerId": "basic-flow",
|
|
@@ -1886,7 +1904,7 @@
|
|
|
1886
1904
|
]
|
|
1887
1905
|
},
|
|
1888
1906
|
{
|
|
1889
|
-
"id": "
|
|
1907
|
+
"id": "959e154b-034e-413d-9b19-211e7d9ba33d",
|
|
1890
1908
|
"alias": "docker auth",
|
|
1891
1909
|
"description": "Used by Docker clients to authenticate against the IDP",
|
|
1892
1910
|
"providerId": "basic-flow",
|
|
@@ -1904,7 +1922,7 @@
|
|
|
1904
1922
|
]
|
|
1905
1923
|
},
|
|
1906
1924
|
{
|
|
1907
|
-
"id": "
|
|
1925
|
+
"id": "001e253d-bdbd-41e2-81c7-1c7b239feeb1",
|
|
1908
1926
|
"alias": "first broker login",
|
|
1909
1927
|
"description": "Actions taken after first broker login with identity provider account, which is not yet linked to any Keycloak account",
|
|
1910
1928
|
"providerId": "basic-flow",
|
|
@@ -1931,7 +1949,7 @@
|
|
|
1931
1949
|
]
|
|
1932
1950
|
},
|
|
1933
1951
|
{
|
|
1934
|
-
"id": "
|
|
1952
|
+
"id": "45481bb0-18fe-4a26-a77c-35a5afe58436",
|
|
1935
1953
|
"alias": "forms",
|
|
1936
1954
|
"description": "Username, password, otp and other auth forms.",
|
|
1937
1955
|
"providerId": "basic-flow",
|
|
@@ -1957,7 +1975,7 @@
|
|
|
1957
1975
|
]
|
|
1958
1976
|
},
|
|
1959
1977
|
{
|
|
1960
|
-
"id": "
|
|
1978
|
+
"id": "bb47b847-5a55-4c08-909e-9f6f8d8a0636",
|
|
1961
1979
|
"alias": "http challenge",
|
|
1962
1980
|
"description": "An authentication flow based on challenge-response HTTP Authentication Schemes",
|
|
1963
1981
|
"providerId": "basic-flow",
|
|
@@ -1983,7 +2001,7 @@
|
|
|
1983
2001
|
]
|
|
1984
2002
|
},
|
|
1985
2003
|
{
|
|
1986
|
-
"id": "
|
|
2004
|
+
"id": "77e6e169-05b7-4b89-af00-09cfe1604eed",
|
|
1987
2005
|
"alias": "registration",
|
|
1988
2006
|
"description": "registration flow",
|
|
1989
2007
|
"providerId": "basic-flow",
|
|
@@ -2002,7 +2020,7 @@
|
|
|
2002
2020
|
]
|
|
2003
2021
|
},
|
|
2004
2022
|
{
|
|
2005
|
-
"id": "
|
|
2023
|
+
"id": "aef03fe8-1a70-40c3-879f-25588f75c119",
|
|
2006
2024
|
"alias": "registration form",
|
|
2007
2025
|
"description": "registration form",
|
|
2008
2026
|
"providerId": "form-flow",
|
|
@@ -2044,7 +2062,7 @@
|
|
|
2044
2062
|
]
|
|
2045
2063
|
},
|
|
2046
2064
|
{
|
|
2047
|
-
"id": "
|
|
2065
|
+
"id": "990abff7-e2ba-4217-984e-8890cbc2b3a9",
|
|
2048
2066
|
"alias": "reset credentials",
|
|
2049
2067
|
"description": "Reset credentials for a user if they forgot their password or something",
|
|
2050
2068
|
"providerId": "basic-flow",
|
|
@@ -2086,7 +2104,7 @@
|
|
|
2086
2104
|
]
|
|
2087
2105
|
},
|
|
2088
2106
|
{
|
|
2089
|
-
"id": "
|
|
2107
|
+
"id": "d9894cf6-2f99-493e-ac47-853f54bfc9c6",
|
|
2090
2108
|
"alias": "saml ecp",
|
|
2091
2109
|
"description": "SAML ECP Profile Authentication Flow",
|
|
2092
2110
|
"providerId": "basic-flow",
|
|
@@ -2106,14 +2124,14 @@
|
|
|
2106
2124
|
],
|
|
2107
2125
|
"authenticatorConfig": [
|
|
2108
2126
|
{
|
|
2109
|
-
"id": "
|
|
2127
|
+
"id": "101ed8ff-4383-4539-aa52-2d1e69698b78",
|
|
2110
2128
|
"alias": "create unique user config",
|
|
2111
2129
|
"config": {
|
|
2112
2130
|
"require.password.update.after.registration": "false"
|
|
2113
2131
|
}
|
|
2114
2132
|
},
|
|
2115
2133
|
{
|
|
2116
|
-
"id": "
|
|
2134
|
+
"id": "049042a5-3551-4c16-81a1-64d86f5aa1e5",
|
|
2117
2135
|
"alias": "review profile config",
|
|
2118
2136
|
"config": {
|
|
2119
2137
|
"update.profile.on.first.login": "missing"
|