{ "id" : "3fad6a24-9b73-4af0-8783-37bbce843cc1", "realm" : "cdk-test-realm", "notBefore" : 0, "defaultSignatureAlgorithm" : "RS256", "revokeRefreshToken" : false, "refreshTokenMaxReuse" : 0, "accessTokenLifespan" : 300, "accessTokenLifespanForImplicitFlow" : 900, "ssoSessionIdleTimeout" : 1800, "ssoSessionMaxLifespan" : 36000, "ssoSessionIdleTimeoutRememberMe" : 0, "ssoSessionMaxLifespanRememberMe" : 0, "offlineSessionIdleTimeout" : 2592000, "offlineSessionMaxLifespanEnabled" : false, "offlineSessionMaxLifespan" : 5184000, "clientSessionIdleTimeout" : 0, "clientSessionMaxLifespan" : 0, "clientOfflineSessionIdleTimeout" : 0, "clientOfflineSessionMaxLifespan" : 0, "accessCodeLifespan" : 60, "accessCodeLifespanUserAction" : 300, "accessCodeLifespanLogin" : 1800, "actionTokenGeneratedByAdminLifespan" : 43200, "actionTokenGeneratedByUserLifespan" : 300, "oauth2DeviceCodeLifespan" : 600, "oauth2DevicePollingInterval" : 5, "enabled" : true, "sslRequired" : "external", "registrationAllowed" : false, "registrationEmailAsUsername" : false, "rememberMe" : false, "verifyEmail" : false, "loginWithEmailAllowed" : true, "duplicateEmailsAllowed" : false, "resetPasswordAllowed" : false, "editUsernameAllowed" : false, "bruteForceProtected" : false, "permanentLockout" : false, "maxTemporaryLockouts" : 0, "maxFailureWaitSeconds" : 900, "minimumQuickLoginWaitSeconds" : 60, "waitIncrementSeconds" : 60, "quickLoginCheckMilliSeconds" : 1000, "maxDeltaTimeSeconds" : 43200, "failureFactor" : 30, "roles" : { "realm" : [ { "id" : "bd8f3ff8-e3f6-4ddf-8762-7575bcf0dec3", "name" : "offline_access", "description" : "${role_offline-access}", "composite" : false, "clientRole" : false, "containerId" : "3fad6a24-9b73-4af0-8783-37bbce843cc1", "attributes" : { } }, { "id" : "07917cba-c185-4227-9682-f7521eca6b23", "name" : "uma_authorization", "description" : "${role_uma_authorization}", "composite" : false, "clientRole" : false, "containerId" : "3fad6a24-9b73-4af0-8783-37bbce843cc1", "attributes" : { } }, { "id" : "9e67104e-f08e-49a1-901f-181806308108", "name" : "default-roles-cdk-test-realm", "description" : "${role_default-roles}", "composite" : true, "composites" : { "realm" : [ "offline_access", "uma_authorization" ], "client" : { "account" : [ "manage-account", "view-profile" ] } }, "clientRole" : false, "containerId" : "3fad6a24-9b73-4af0-8783-37bbce843cc1", "attributes" : { } } ], "client" : { "realm-management" : [ { "id" : "22583a81-4f11-4903-a49a-3b7f81c46964", "name" : "view-identity-providers", "description" : "${role_view-identity-providers}", "composite" : false, "clientRole" : true, "containerId" : "045a12eb-239d-49a3-aa94-223445a9cd62", "attributes" : { } }, { "id" : "00654d4f-7599-4d16-a0cc-3a01f48c62f4", "name" : "manage-events", "description" : "${role_manage-events}", "composite" : false, "clientRole" : true, "containerId" : "045a12eb-239d-49a3-aa94-223445a9cd62", "attributes" : { } }, { "id" : "784423ce-5517-4503-baa4-858ca2e03107", "name" : "query-groups", "description" : "${role_query-groups}", "composite" : false, "clientRole" : true, "containerId" : "045a12eb-239d-49a3-aa94-223445a9cd62", "attributes" : { } }, { "id" : "fe980061-84ea-4e0c-a261-a5a89978ede5", "name" : "query-clients", "description" : "${role_query-clients}", "composite" : false, "clientRole" : true, "containerId" : "045a12eb-239d-49a3-aa94-223445a9cd62", "attributes" : { } }, { "id" : "b93f38a8-3b77-4ac1-98a0-948422385e72", "name" : "query-users", "description" : "${role_query-users}", "composite" : false, "clientRole" : true, "containerId" : "045a12eb-239d-49a3-aa94-223445a9cd62", "attributes" : { } }, { "id" : "dc9d90be-7efe-4e39-b283-5389ad442dea", "name" : "view-users", "description" : "${role_view-users}", "composite" : true, "composites" : { "client" : { "realm-management" : [ "query-groups", "query-users" ] } }, "clientRole" : true, "containerId" : "045a12eb-239d-49a3-aa94-223445a9cd62", "attributes" : { } }, { "id" : "18623d76-f70d-4783-b54f-a4c3d1e9242b", "name" : "manage-realm", "description" : "${role_manage-realm}", "composite" : false, "clientRole" : true, "containerId" : "045a12eb-239d-49a3-aa94-223445a9cd62", "attributes" : { } }, { "id" : "b34bacbd-1671-4846-bf0a-ac61c05706f2", "name" : "create-client", "description" : "${role_create-client}", "composite" : false, "clientRole" : true, "containerId" : "045a12eb-239d-49a3-aa94-223445a9cd62", "attributes" : { } }, { "id" : "7a262a9b-c813-461b-a65d-28c46ccdeb27", "name" : "manage-clients", "description" : "${role_manage-clients}", "composite" : false, "clientRole" : true, "containerId" : "045a12eb-239d-49a3-aa94-223445a9cd62", "attributes" : { } }, { "id" : "83167a63-06e2-4931-850e-e5a2bae8cfff", "name" : "view-realm", "description" : "${role_view-realm}", "composite" : false, "clientRole" : true, "containerId" : "045a12eb-239d-49a3-aa94-223445a9cd62", "attributes" : { } }, { "id" : "ee6628f5-c363-4f57-b6c0-6799817d9869", "name" : "manage-authorization", "description" : "${role_manage-authorization}", "composite" : false, "clientRole" : true, "containerId" : "045a12eb-239d-49a3-aa94-223445a9cd62", "attributes" : { } }, { "id" : "120a3584-4f41-4610-b172-32fc5c801a27", "name" : "view-authorization", "description" : "${role_view-authorization}", "composite" : false, "clientRole" : true, "containerId" : "045a12eb-239d-49a3-aa94-223445a9cd62", "attributes" : { } }, { "id" : "048d2848-8af8-4be4-a6dc-6118fe122410", "name" : "realm-admin", "description" : "${role_realm-admin}", "composite" : true, "composites" : { "client" : { "realm-management" : [ "view-identity-providers", "manage-events", "query-groups", "view-users", "query-users", "query-clients", "manage-realm", "create-client", "manage-clients", "view-realm", "view-authorization", "manage-authorization", "view-clients", "manage-identity-providers", "manage-users", "query-realms", "impersonation", "view-events" ] } }, "clientRole" : true, "containerId" : "045a12eb-239d-49a3-aa94-223445a9cd62", "attributes" : { } }, { "id" : "682627b0-30c5-4d22-82b4-7b97ea19a800", "name" : "view-clients", "description" : "${role_view-clients}", "composite" : true, "composites" : { "client" : { "realm-management" : [ "query-clients" ] } }, "clientRole" : true, "containerId" : "045a12eb-239d-49a3-aa94-223445a9cd62", "attributes" : { } }, { "id" : "26b578d4-5d14-406a-a063-e44467ca086d", "name" : "manage-identity-providers", "description" : "${role_manage-identity-providers}", "composite" : false, "clientRole" : true, "containerId" : "045a12eb-239d-49a3-aa94-223445a9cd62", "attributes" : { } }, { "id" : "7da25b21-4e29-42ee-a907-c37d3cb2bf5e", "name" : "impersonation", "description" : "${role_impersonation}", "composite" : false, "clientRole" : true, "containerId" : "045a12eb-239d-49a3-aa94-223445a9cd62", "attributes" : { } }, { "id" : "713711ac-c49f-42b0-b599-312a5fbaf98c", "name" : "manage-users", "description" : "${role_manage-users}", "composite" : false, "clientRole" : true, "containerId" : "045a12eb-239d-49a3-aa94-223445a9cd62", "attributes" : { } }, { "id" : "c9d16eec-3d99-4047-acc9-d754a5bc3440", "name" : "query-realms", "description" : "${role_query-realms}", "composite" : false, "clientRole" : true, "containerId" : "045a12eb-239d-49a3-aa94-223445a9cd62", "attributes" : { } }, { "id" : "d1722b7a-d4c6-4bf6-b159-84719d9a722f", "name" : "view-events", "description" : "${role_view-events}", "composite" : false, "clientRole" : true, "containerId" : "045a12eb-239d-49a3-aa94-223445a9cd62", "attributes" : { } } ], "security-admin-console" : [ ], "admin-cli" : [ ], "account-console" : [ ], "broker" : [ { "id" : "35ad0c49-1d97-48e6-a770-1d89e2f5bbc9", "name" : "read-token", "description" : "${role_read-token}", "composite" : false, "clientRole" : true, "containerId" : "b3233571-3067-4aa9-9d34-bdff9295afba", "attributes" : { } } ], "cashu-client" : [ ], "account" : [ { "id" : "25f3cc8e-9a2d-44eb-a521-6b8f78ca2137", "name" : "view-groups", "description" : "${role_view-groups}", "composite" : false, "clientRole" : true, "containerId" : "1c3be8df-5121-41ac-94cb-dfbb44bffd0e", "attributes" : { } }, { "id" : "bd21c4a5-451a-4794-a1cf-aef4a7c6bfd5", "name" : "manage-account-links", "description" : "${role_manage-account-links}", "composite" : false, "clientRole" : true, "containerId" : "1c3be8df-5121-41ac-94cb-dfbb44bffd0e", "attributes" : { } }, { "id" : "30024ee4-08be-4ff4-838b-3961069b10fc", "name" : "delete-account", "description" : "${role_delete-account}", "composite" : false, "clientRole" : true, "containerId" : "1c3be8df-5121-41ac-94cb-dfbb44bffd0e", "attributes" : { } }, { "id" : "866922c1-1e0a-4095-88b2-e8e4eae31977", "name" : "view-consent", "description" : "${role_view-consent}", "composite" : false, "clientRole" : true, "containerId" : "1c3be8df-5121-41ac-94cb-dfbb44bffd0e", "attributes" : { } }, { "id" : "cc791532-1f1a-4b5e-a6e2-153e8278e0fc", "name" : "manage-account", "description" : "${role_manage-account}", "composite" : true, "composites" : { "client" : { "account" : [ "manage-account-links" ] } }, "clientRole" : true, "containerId" : "1c3be8df-5121-41ac-94cb-dfbb44bffd0e", "attributes" : { } }, { "id" : "b8786bf0-1768-4263-bbc8-2d122642e921", "name" : "view-applications", "description" : "${role_view-applications}", "composite" : false, "clientRole" : true, "containerId" : "1c3be8df-5121-41ac-94cb-dfbb44bffd0e", "attributes" : { } }, { "id" : "a10906d2-008e-4633-9e45-cc0bb1318d73", "name" : "manage-consent", "description" : "${role_manage-consent}", "composite" : true, "composites" : { "client" : { "account" : [ "view-consent" ] } }, "clientRole" : true, "containerId" : "1c3be8df-5121-41ac-94cb-dfbb44bffd0e", "attributes" : { } }, { "id" : "a8052816-53d5-4902-bb82-c48362fbba93", "name" : "view-profile", "description" : "${role_view-profile}", "composite" : false, "clientRole" : true, "containerId" : "1c3be8df-5121-41ac-94cb-dfbb44bffd0e", "attributes" : { } } ] } }, "groups" : [ ], "defaultRole" : { "id" : "9e67104e-f08e-49a1-901f-181806308108", "name" : "default-roles-cdk-test-realm", "description" : "${role_default-roles}", "composite" : true, "clientRole" : false, "containerId" : "3fad6a24-9b73-4af0-8783-37bbce843cc1" }, "requiredCredentials" : [ "password" ], "otpPolicyType" : "totp", "otpPolicyAlgorithm" : "HmacSHA1", "otpPolicyInitialCounter" : 0, "otpPolicyDigits" : 6, "otpPolicyLookAheadWindow" : 1, "otpPolicyPeriod" : 30, "otpPolicyCodeReusable" : false, "otpSupportedApplications" : [ "totpAppFreeOTPName", "totpAppGoogleName", "totpAppMicrosoftAuthenticatorName" ], "localizationTexts" : { }, "webAuthnPolicyRpEntityName" : "keycloak", "webAuthnPolicySignatureAlgorithms" : [ "ES256" ], "webAuthnPolicyRpId" : "", "webAuthnPolicyAttestationConveyancePreference" : "not specified", "webAuthnPolicyAuthenticatorAttachment" : "not specified", "webAuthnPolicyRequireResidentKey" : "not specified", "webAuthnPolicyUserVerificationRequirement" : "not specified", "webAuthnPolicyCreateTimeout" : 0, "webAuthnPolicyAvoidSameAuthenticatorRegister" : false, "webAuthnPolicyAcceptableAaguids" : [ ], "webAuthnPolicyExtraOrigins" : [ ], "webAuthnPolicyPasswordlessRpEntityName" : "keycloak", "webAuthnPolicyPasswordlessSignatureAlgorithms" : [ "ES256" ], "webAuthnPolicyPasswordlessRpId" : "", "webAuthnPolicyPasswordlessAttestationConveyancePreference" : "not specified", "webAuthnPolicyPasswordlessAuthenticatorAttachment" : "not specified", "webAuthnPolicyPasswordlessRequireResidentKey" : "not specified", "webAuthnPolicyPasswordlessUserVerificationRequirement" : "not specified", "webAuthnPolicyPasswordlessCreateTimeout" : 0, "webAuthnPolicyPasswordlessAvoidSameAuthenticatorRegister" : false, "webAuthnPolicyPasswordlessAcceptableAaguids" : [ ], "webAuthnPolicyPasswordlessExtraOrigins" : [ ], "scopeMappings" : [ { "clientScope" : "offline_access", "roles" : [ "offline_access" ] } ], "clientScopeMappings" : { "account" : [ { "client" : "account-console", "roles" : [ "manage-account", "view-groups" ] } ] }, "clients" : [ { "id" : "1c3be8df-5121-41ac-94cb-dfbb44bffd0e", "clientId" : "account", "name" : "${client_account}", "rootUrl" : "${authBaseUrl}", "baseUrl" : "/realms/cdk-test-realm/account/", "surrogateAuthRequired" : false, "enabled" : true, "alwaysDisplayInConsole" : false, "clientAuthenticatorType" : "client-secret", "redirectUris" : [ "/realms/cdk-test-realm/account/*" ], "webOrigins" : [ ], "notBefore" : 0, "bearerOnly" : false, "consentRequired" : false, "standardFlowEnabled" : true, "implicitFlowEnabled" : false, "directAccessGrantsEnabled" : false, "serviceAccountsEnabled" : false, "publicClient" : true, "frontchannelLogout" : false, "protocol" : "openid-connect", "attributes" : { "post.logout.redirect.uris" : "+" }, "authenticationFlowBindingOverrides" : { }, "fullScopeAllowed" : false, "nodeReRegistrationTimeout" : 0, "defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ], "optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ] }, { "id" : "eab17087-ab47-40b0-b161-6ca73367eb73", "clientId" : "account-console", "name" : "${client_account-console}", "rootUrl" : "${authBaseUrl}", "baseUrl" : "/realms/cdk-test-realm/account/", "surrogateAuthRequired" : false, "enabled" : true, "alwaysDisplayInConsole" : false, "clientAuthenticatorType" : "client-secret", "redirectUris" : [ "/realms/cdk-test-realm/account/*" ], "webOrigins" : [ ], "notBefore" : 0, "bearerOnly" : false, "consentRequired" : false, "standardFlowEnabled" : true, "implicitFlowEnabled" : false, "directAccessGrantsEnabled" : false, "serviceAccountsEnabled" : false, "publicClient" : true, "frontchannelLogout" : false, "protocol" : "openid-connect", "attributes" : { "post.logout.redirect.uris" : "+", "pkce.code.challenge.method" : "S256" }, "authenticationFlowBindingOverrides" : { }, "fullScopeAllowed" : false, "nodeReRegistrationTimeout" : 0, "protocolMappers" : [ { "id" : "0ee18b2b-a731-47d5-9942-30a2a46fd6fc", "name" : "audience resolve", "protocol" : "openid-connect", "protocolMapper" : "oidc-audience-resolve-mapper", "consentRequired" : false, "config" : { } } ], "defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ], "optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ] }, { "id" : "8deccf4a-34cb-41f6-a891-dfabdf0bf73e", "clientId" : "admin-cli", "name" : "${client_admin-cli}", "surrogateAuthRequired" : false, "enabled" : true, "alwaysDisplayInConsole" : false, "clientAuthenticatorType" : "client-secret", "redirectUris" : [ ], "webOrigins" : [ ], "notBefore" : 0, "bearerOnly" : false, "consentRequired" : false, "standardFlowEnabled" : false, "implicitFlowEnabled" : false, "directAccessGrantsEnabled" : true, "serviceAccountsEnabled" : false, "publicClient" : true, "frontchannelLogout" : false, "protocol" : "openid-connect", "attributes" : { }, "authenticationFlowBindingOverrides" : { }, "fullScopeAllowed" : false, "nodeReRegistrationTimeout" : 0, "defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ], "optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ] }, { "id" : "b3233571-3067-4aa9-9d34-bdff9295afba", "clientId" : "broker", "name" : "${client_broker}", "surrogateAuthRequired" : false, "enabled" : true, "alwaysDisplayInConsole" : false, "clientAuthenticatorType" : "client-secret", "redirectUris" : [ ], "webOrigins" : [ ], "notBefore" : 0, "bearerOnly" : true, "consentRequired" : false, "standardFlowEnabled" : true, "implicitFlowEnabled" : false, "directAccessGrantsEnabled" : false, "serviceAccountsEnabled" : false, "publicClient" : false, "frontchannelLogout" : false, "protocol" : "openid-connect", "attributes" : { }, "authenticationFlowBindingOverrides" : { }, "fullScopeAllowed" : false, "nodeReRegistrationTimeout" : 0, "defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ], "optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ] }, { "id" : "0d2671d1-64e0-41e6-9452-831b9141e760", "clientId" : "cashu-client", "name" : "", "description" : "", "rootUrl" : "", "adminUrl" : "", "baseUrl" : "", "surrogateAuthRequired" : false, "enabled" : true, "alwaysDisplayInConsole" : false, "clientAuthenticatorType" : "client-secret", "redirectUris" : [ "http://localhost:33388/callback" ], "webOrigins" : [ "http://localhost:33388" ], "notBefore" : 0, "bearerOnly" : false, "consentRequired" : false, "standardFlowEnabled" : true, "implicitFlowEnabled" : true, "directAccessGrantsEnabled" : true, "serviceAccountsEnabled" : false, "publicClient" : true, "frontchannelLogout" : true, "protocol" : "openid-connect", "attributes" : { "oidc.ciba.grant.enabled" : "false", "backchannel.logout.session.required" : "true", "display.on.consent.screen" : "false", "oauth2.device.authorization.grant.enabled" : "true", "backchannel.logout.revoke.offline.tokens" : "false" }, "authenticationFlowBindingOverrides" : { }, "fullScopeAllowed" : true, "nodeReRegistrationTimeout" : -1, "defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ], "optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ] }, { "id" : "045a12eb-239d-49a3-aa94-223445a9cd62", "clientId" : "realm-management", "name" : "${client_realm-management}", "surrogateAuthRequired" : false, "enabled" : true, "alwaysDisplayInConsole" : false, "clientAuthenticatorType" : "client-secret", "redirectUris" : [ ], "webOrigins" : [ ], "notBefore" : 0, "bearerOnly" : true, "consentRequired" : false, "standardFlowEnabled" : true, "implicitFlowEnabled" : false, "directAccessGrantsEnabled" : false, "serviceAccountsEnabled" : false, "publicClient" : false, "frontchannelLogout" : false, "protocol" : "openid-connect", "attributes" : { }, "authenticationFlowBindingOverrides" : { }, "fullScopeAllowed" : false, "nodeReRegistrationTimeout" : 0, "defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ], "optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ] }, { "id" : "a8a6173e-3305-45b6-85b7-9f046a01d002", "clientId" : "security-admin-console", "name" : "${client_security-admin-console}", "rootUrl" : "${authAdminUrl}", "baseUrl" : "/admin/cdk-test-realm/console/", "surrogateAuthRequired" : false, "enabled" : true, "alwaysDisplayInConsole" : false, "clientAuthenticatorType" : "client-secret", "redirectUris" : [ "/admin/cdk-test-realm/console/*" ], "webOrigins" : [ "+" ], "notBefore" : 0, "bearerOnly" : false, "consentRequired" : false, "standardFlowEnabled" : true, "implicitFlowEnabled" : false, "directAccessGrantsEnabled" : false, "serviceAccountsEnabled" : false, "publicClient" : true, "frontchannelLogout" : false, "protocol" : "openid-connect", "attributes" : { "post.logout.redirect.uris" : "+", "pkce.code.challenge.method" : "S256" }, "authenticationFlowBindingOverrides" : { }, "fullScopeAllowed" : false, "nodeReRegistrationTimeout" : 0, "protocolMappers" : [ { "id" : "bda8f436-f225-4d2a-b558-63d45c972c34", "name" : "locale", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "locale", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "locale", "jsonType.label" : "String" } } ], "defaultClientScopes" : [ "web-origins", "acr", "profile", "roles", "basic", "email" ], "optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ] } ], "clientScopes" : [ { "id" : "5f75fc73-73da-4320-90d7-d0af22e30910", "name" : "profile", "description" : "OpenID Connect built-in scope: profile", "protocol" : "openid-connect", "attributes" : { "include.in.token.scope" : "true", "consent.screen.text" : "${profileScopeConsentText}", "display.on.consent.screen" : "true" }, "protocolMappers" : [ { "id" : "69c0828e-c3f4-475b-b88a-2559793aab45", "name" : "website", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "website", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "website", "jsonType.label" : "String" } }, { "id" : "b70a9bb2-f139-46de-864f-73ddb8f99658", "name" : "middle name", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "middleName", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "middle_name", "jsonType.label" : "String" } }, { "id" : "8b4ddf79-451f-45e0-8f25-e912adcb3fb5", "name" : "zoneinfo", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "zoneinfo", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "zoneinfo", "jsonType.label" : "String" } }, { "id" : "6e4d639f-2920-4b4e-bc36-7fad9cef368d", "name" : "nickname", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "nickname", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "nickname", "jsonType.label" : "String" } }, { "id" : "5cc6e80f-0d41-49ae-a7b9-6e76401ebb8b", "name" : "gender", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "gender", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "gender", "jsonType.label" : "String" } }, { "id" : "e9a69c26-0d4c-4a37-b7d1-8c611ad17596", "name" : "family name", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "lastName", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "family_name", "jsonType.label" : "String" } }, { "id" : "a646d05c-03bf-4b68-a18e-19cb630e773a", "name" : "given name", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "firstName", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "given_name", "jsonType.label" : "String" } }, { "id" : "bf87b714-b41e-40ba-a748-7d4619a6add0", "name" : "birthdate", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "birthdate", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "birthdate", "jsonType.label" : "String" } }, { "id" : "19f5f26d-ba31-48c9-9376-2fc72bb775ee", "name" : "picture", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "picture", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "picture", "jsonType.label" : "String" } }, { "id" : "ec4c72ca-6b5d-48d0-a0f5-1716d90cbf3e", "name" : "locale", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "locale", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "locale", "jsonType.label" : "String" } }, { "id" : "cd396fdb-6b22-406c-a9c4-ec2a896b7af7", "name" : "full name", "protocol" : "openid-connect", "protocolMapper" : "oidc-full-name-mapper", "consentRequired" : false, "config" : { "id.token.claim" : "true", "introspection.token.claim" : "true", "access.token.claim" : "true", "userinfo.token.claim" : "true" } }, { "id" : "42fca5db-93a6-4dd4-afe6-2d04c16fc7fe", "name" : "profile", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "profile", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "profile", "jsonType.label" : "String" } }, { "id" : "9406148d-5b7b-48cc-a97f-3d6d7037144e", "name" : "updated at", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "updatedAt", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "updated_at", "jsonType.label" : "long" } }, { "id" : "b746da15-c007-450f-a8b7-0e0d60688b34", "name" : "username", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "username", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "preferred_username", "jsonType.label" : "String" } } ] }, { "id" : "768deb55-abef-4851-8e8b-d120527bc653", "name" : "roles", "description" : "OpenID Connect scope for add user roles to the access token", "protocol" : "openid-connect", "attributes" : { "include.in.token.scope" : "false", "consent.screen.text" : "${rolesScopeConsentText}", "display.on.consent.screen" : "true" }, "protocolMappers" : [ { "id" : "c78ae6aa-c4aa-4853-afbd-0dbeddd216aa", "name" : "realm roles", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-realm-role-mapper", "consentRequired" : false, "config" : { "user.attribute" : "foo", "introspection.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "realm_access.roles", "jsonType.label" : "String", "multivalued" : "true" } }, { "id" : "e64996ed-2368-4329-912c-8876f1b62854", "name" : "audience resolve", "protocol" : "openid-connect", "protocolMapper" : "oidc-audience-resolve-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "access.token.claim" : "true" } }, { "id" : "19b4bc03-0f43-499e-8942-b2555a3fa078", "name" : "client roles", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-client-role-mapper", "consentRequired" : false, "config" : { "user.attribute" : "foo", "introspection.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "resource_access.${client_id}.roles", "jsonType.label" : "String", "multivalued" : "true" } } ] }, { "id" : "4cba0f6d-9b91-4069-88aa-22233ba828e6", "name" : "basic", "description" : "OpenID Connect scope for add all basic claims to the token", "protocol" : "openid-connect", "attributes" : { "include.in.token.scope" : "false", "display.on.consent.screen" : "false" }, "protocolMappers" : [ { "id" : "62149b93-b257-471e-8472-a60af4faff5f", "name" : "sub", "protocol" : "openid-connect", "protocolMapper" : "oidc-sub-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "access.token.claim" : "true" } }, { "id" : "7942d037-3c0a-4fc2-843c-f6396ddad8a4", "name" : "auth_time", "protocol" : "openid-connect", "protocolMapper" : "oidc-usersessionmodel-note-mapper", "consentRequired" : false, "config" : { "user.session.note" : "AUTH_TIME", "id.token.claim" : "true", "introspection.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "auth_time", "jsonType.label" : "long" } } ] }, { "id" : "d7a691ca-1c47-4be2-a4b1-8d536cbb8c5b", "name" : "role_list", "description" : "SAML role list", "protocol" : "saml", "attributes" : { "consent.screen.text" : "${samlRoleListScopeConsentText}", "display.on.consent.screen" : "true" }, "protocolMappers" : [ { "id" : "eaec748e-ab09-4d6d-a357-6e26ddf17813", "name" : "role list", "protocol" : "saml", "protocolMapper" : "saml-role-list-mapper", "consentRequired" : false, "config" : { "single" : "false", "attribute.nameformat" : "Basic", "attribute.name" : "Role" } } ] }, { "id" : "7728ba47-f334-47d7-9d9e-34c3c4e3347f", "name" : "acr", "description" : "OpenID Connect scope for add acr (authentication context class reference) to the token", "protocol" : "openid-connect", "attributes" : { "include.in.token.scope" : "false", "display.on.consent.screen" : "false" }, "protocolMappers" : [ { "id" : "db0001ac-aae9-4658-8fbc-d1b188cf9a8c", "name" : "acr loa level", "protocol" : "openid-connect", "protocolMapper" : "oidc-acr-mapper", "consentRequired" : false, "config" : { "id.token.claim" : "true", "introspection.token.claim" : "true", "access.token.claim" : "true" } } ] }, { "id" : "c6db8233-847f-465b-9aa0-e71d84e30598", "name" : "microprofile-jwt", "description" : "Microprofile - JWT built-in scope", "protocol" : "openid-connect", "attributes" : { "include.in.token.scope" : "true", "display.on.consent.screen" : "false" }, "protocolMappers" : [ { "id" : "ebf379c0-afcb-41e5-9dc3-f94a05d2e7d8", "name" : "groups", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-realm-role-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "multivalued" : "true", "user.attribute" : "foo", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "groups", "jsonType.label" : "String" } }, { "id" : "ee6b260e-d926-4594-8774-0b3e141a9a4d", "name" : "upn", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "username", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "upn", "jsonType.label" : "String" } } ] }, { "id" : "52cd53e2-6596-4b1c-93cd-52043912edb2", "name" : "address", "description" : "OpenID Connect built-in scope: address", "protocol" : "openid-connect", "attributes" : { "include.in.token.scope" : "true", "consent.screen.text" : "${addressScopeConsentText}", "display.on.consent.screen" : "true" }, "protocolMappers" : [ { "id" : "c00d29d6-f183-4719-8fb7-f128ab51c6da", "name" : "address", "protocol" : "openid-connect", "protocolMapper" : "oidc-address-mapper", "consentRequired" : false, "config" : { "user.attribute.formatted" : "formatted", "user.attribute.country" : "country", "introspection.token.claim" : "true", "user.attribute.postal_code" : "postal_code", "userinfo.token.claim" : "true", "user.attribute.street" : "street", "id.token.claim" : "true", "user.attribute.region" : "region", "access.token.claim" : "true", "user.attribute.locality" : "locality" } } ] }, { "id" : "08c05fd2-21f5-4dff-be80-1b5414e60fac", "name" : "phone", "description" : "OpenID Connect built-in scope: phone", "protocol" : "openid-connect", "attributes" : { "include.in.token.scope" : "true", "consent.screen.text" : "${phoneScopeConsentText}", "display.on.consent.screen" : "true" }, "protocolMappers" : [ { "id" : "02493dac-b5de-4c9e-9619-a29c539cfb76", "name" : "phone number verified", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "phoneNumberVerified", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "phone_number_verified", "jsonType.label" : "boolean" } }, { "id" : "3472ce05-651d-4dee-ac06-23e51d813666", "name" : "phone number", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "phoneNumber", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "phone_number", "jsonType.label" : "String" } } ] }, { "id" : "cc47edbe-7278-4fea-a5be-5bcb38dd5767", "name" : "offline_access", "description" : "OpenID Connect built-in scope: offline_access", "protocol" : "openid-connect", "attributes" : { "consent.screen.text" : "${offlineAccessScopeConsentText}", "display.on.consent.screen" : "true" } }, { "id" : "618f9380-73fd-49c0-b5e1-e6952b586afe", "name" : "email", "description" : "OpenID Connect built-in scope: email", "protocol" : "openid-connect", "attributes" : { "include.in.token.scope" : "true", "consent.screen.text" : "${emailScopeConsentText}", "display.on.consent.screen" : "true" }, "protocolMappers" : [ { "id" : "a3b226e3-0bb1-456a-ace7-d8c53f7d7917", "name" : "email", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-attribute-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "email", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "email", "jsonType.label" : "String" } }, { "id" : "3a8eb1c8-9e8e-4d3b-a44e-f40e3ff95414", "name" : "email verified", "protocol" : "openid-connect", "protocolMapper" : "oidc-usermodel-property-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "userinfo.token.claim" : "true", "user.attribute" : "emailVerified", "id.token.claim" : "true", "access.token.claim" : "true", "claim.name" : "email_verified", "jsonType.label" : "boolean" } } ] }, { "id" : "c299c8f8-c61e-421e-abfc-d75e9f0bbf0b", "name" : "web-origins", "description" : "OpenID Connect scope for add allowed web origins to the access token", "protocol" : "openid-connect", "attributes" : { "include.in.token.scope" : "false", "consent.screen.text" : "", "display.on.consent.screen" : "false" }, "protocolMappers" : [ { "id" : "7dbe8157-0542-431a-896a-67e2820e7502", "name" : "allowed web origins", "protocol" : "openid-connect", "protocolMapper" : "oidc-allowed-origins-mapper", "consentRequired" : false, "config" : { "introspection.token.claim" : "true", "access.token.claim" : "true" } } ] } ], "defaultDefaultClientScopes" : [ "role_list", "profile", "email", "roles", "web-origins", "acr", "basic" ], "defaultOptionalClientScopes" : [ "offline_access", "address", "phone", "microprofile-jwt" ], "browserSecurityHeaders" : { "contentSecurityPolicyReportOnly" : "", "xContentTypeOptions" : "nosniff", "referrerPolicy" : "no-referrer", "xRobotsTag" : "none", "xFrameOptions" : "SAMEORIGIN", "contentSecurityPolicy" : "frame-src 'self'; frame-ancestors 'self'; object-src 'none';", "xXSSProtection" : "1; mode=block", "strictTransportSecurity" : "max-age=31536000; includeSubDomains" }, "smtpServer" : { }, "eventsEnabled" : false, "eventsListeners" : [ "jboss-logging" ], "enabledEventTypes" : [ ], "adminEventsEnabled" : false, "adminEventsDetailsEnabled" : false, "identityProviders" : [ ], "identityProviderMappers" : [ ], "components" : { "org.keycloak.services.clientregistration.policy.ClientRegistrationPolicy" : [ { "id" : "5927428e-6b23-487a-b923-d033a677e54c", "name" : "Consent Required", "providerId" : "consent-required", "subType" : "anonymous", "subComponents" : { }, "config" : { } }, { "id" : "71cf7845-b1fe-4a7f-bfa7-e9091474a7a5", "name" : "Allowed Protocol Mapper Types", "providerId" : "allowed-protocol-mappers", "subType" : "authenticated", "subComponents" : { }, "config" : { "allowed-protocol-mapper-types" : [ "saml-user-attribute-mapper", "oidc-usermodel-property-mapper", "oidc-full-name-mapper", "saml-role-list-mapper", "oidc-usermodel-attribute-mapper", "saml-user-property-mapper", "oidc-sha256-pairwise-sub-mapper", "oidc-address-mapper" ] } }, { "id" : "df1baed8-b756-4721-b84b-78d651dcdd7c", "name" : "Allowed Client Scopes", "providerId" : "allowed-client-templates", "subType" : "anonymous", "subComponents" : { }, "config" : { "allow-default-scopes" : [ "true" ] } }, { "id" : "b80d8432-4258-4949-9a96-d9e226b51a38", "name" : "Max Clients Limit", "providerId" : "max-clients", "subType" : "anonymous", "subComponents" : { }, "config" : { "max-clients" : [ "200" ] } }, { "id" : "31d123c3-fd98-4b5c-ac62-bb2bfb28b128", "name" : "Full Scope Disabled", "providerId" : "scope", "subType" : "anonymous", "subComponents" : { }, "config" : { } }, { "id" : "16863582-ef20-439b-ac3a-113c16ab0220", "name" : "Trusted Hosts", "providerId" : "trusted-hosts", "subType" : "anonymous", "subComponents" : { }, "config" : { "host-sending-registration-request-must-match" : [ "true" ], "client-uris-must-match" : [ "true" ] } }, { "id" : "5ef4e1e3-1f9b-4ff0-813b-ebe5e70ce3a1", "name" : "Allowed Protocol Mapper Types", "providerId" : "allowed-protocol-mappers", "subType" : "anonymous", "subComponents" : { }, "config" : { "allowed-protocol-mapper-types" : [ "oidc-usermodel-attribute-mapper", "saml-user-property-mapper", "oidc-full-name-mapper", "oidc-sha256-pairwise-sub-mapper", "oidc-address-mapper", "saml-role-list-mapper", "oidc-usermodel-property-mapper", "saml-user-attribute-mapper" ] } }, { "id" : "7678b862-a5e0-4cda-b1a9-378e6751e3c4", "name" : "Allowed Client Scopes", "providerId" : "allowed-client-templates", "subType" : "authenticated", "subComponents" : { }, "config" : { "allow-default-scopes" : [ "true" ] } } ], "org.keycloak.keys.KeyProvider" : [ { "id" : "e5f25529-37d9-43aa-af07-678b142d6105", "name" : "hmac-generated-hs512", "providerId" : "hmac-generated", "subComponents" : { }, "config" : { "kid" : [ "11c078c4-a4b6-4c29-b0ce-3bdcac91dd26" ], "secret" : [ "_kU_uMAI7-LAKpReKVCngWOQxzpUZWFFF1QbLI3TNny-2zQTeB8kD2WiFOdt3pH_TEVR7nAgiVuvcASjYoqXDYmX8BJQlX9cA39TmAkGOSkViZXU_ufWRGam6M7svHvKTr2GwYQ7WrdmO4mOQogUOYFm9F8-RGXW01d2ACIg4g8" ], "priority" : [ "100" ], "algorithm" : [ "HS512" ] } }, { "id" : "5ba40a03-42dc-4caf-87df-ba7125e16d16", "name" : "rsa-generated", "providerId" : "rsa-generated", "subComponents" : { }, "config" : { "privateKey" : [ "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" ], "keyUse" : [ "SIG" ], "certificate" : [ "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" ], "priority" : [ "100" ] } }, { "id" : "fe944a30-eef4-49a3-b1e7-82a0a8ca1822", "name" : "aes-generated", "providerId" : "aes-generated", "subComponents" : { }, "config" : { "kid" : [ "ca8804c7-3bf5-406d-866e-6aacbba3fc94" ], "secret" : [ "FUDfyi-KXgTZCKLuhhXPfA" ], "priority" : [ "100" ] } }, { "id" : "1afe86b0-0c6b-4427-a4b4-523026e022e3", "name" : "rsa-enc-generated", "providerId" : "rsa-enc-generated", "subComponents" : { }, "config" : { "privateKey" : [ "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" ], "keyUse" : [ "ENC" ], "certificate" : [ "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" ], "priority" : [ "100" ], "algorithm" : [ "RSA-OAEP" ] } } ] }, "internationalizationEnabled" : false, "supportedLocales" : [ ], "authenticationFlows" : [ { "id" : "2b1f3f9a-af81-49a2-b062-92929926b0f2", "alias" : "Account verification options", "description" : "Method with which to verity the existing account", "providerId" : "basic-flow", "topLevel" : false, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "idp-email-verification", "authenticatorFlow" : false, "requirement" : "ALTERNATIVE", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticatorFlow" : true, "requirement" : "ALTERNATIVE", "priority" : 20, "autheticatorFlow" : true, "flowAlias" : "Verify Existing Account by Re-authentication", "userSetupAllowed" : false } ] }, { "id" : "f87548dd-66ee-4065-8669-c219c02da73b", "alias" : "Browser - Conditional OTP", "description" : "Flow to determine if the OTP is required for the authentication", "providerId" : "basic-flow", "topLevel" : false, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "conditional-user-configured", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "auth-otp-form", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 20, "autheticatorFlow" : false, "userSetupAllowed" : false } ] }, { "id" : "6d7c77a0-c2f5-4ea1-8c7d-44d1b55fafa0", "alias" : "Direct Grant - Conditional OTP", "description" : "Flow to determine if the OTP is required for the authentication", "providerId" : "basic-flow", "topLevel" : false, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "conditional-user-configured", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "direct-grant-validate-otp", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 20, "autheticatorFlow" : false, "userSetupAllowed" : false } ] }, { "id" : "36a10553-2dc6-4e6d-8597-238b9768099d", "alias" : "First broker login - Conditional OTP", "description" : "Flow to determine if the OTP is required for the authentication", "providerId" : "basic-flow", "topLevel" : false, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "conditional-user-configured", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "auth-otp-form", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 20, "autheticatorFlow" : false, "userSetupAllowed" : false } ] }, { "id" : "344d9fdc-f191-4483-a27c-8df79be6a1cf", "alias" : "Handle Existing Account", "description" : "Handle what to do if there is existing account with same email/username like authenticated identity provider", "providerId" : "basic-flow", "topLevel" : false, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "idp-confirm-link", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticatorFlow" : true, "requirement" : "REQUIRED", "priority" : 20, "autheticatorFlow" : true, "flowAlias" : "Account verification options", "userSetupAllowed" : false } ] }, { "id" : "b800bab8-cd17-460e-8ebb-8e3964735a30", "alias" : "Reset - Conditional OTP", "description" : "Flow to determine if the OTP should be reset or not. Set to REQUIRED to force.", "providerId" : "basic-flow", "topLevel" : false, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "conditional-user-configured", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "reset-otp", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 20, "autheticatorFlow" : false, "userSetupAllowed" : false } ] }, { "id" : "2df3c9b7-5bce-4d3e-87e1-a79b4a62b4de", "alias" : "User creation or linking", "description" : "Flow for the existing/non-existing user alternatives", "providerId" : "basic-flow", "topLevel" : false, "builtIn" : true, "authenticationExecutions" : [ { "authenticatorConfig" : "create unique user config", "authenticator" : "idp-create-user-if-unique", "authenticatorFlow" : false, "requirement" : "ALTERNATIVE", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticatorFlow" : true, "requirement" : "ALTERNATIVE", "priority" : 20, "autheticatorFlow" : true, "flowAlias" : "Handle Existing Account", "userSetupAllowed" : false } ] }, { "id" : "f053a708-f95b-4218-9f93-e158bf39e418", "alias" : "Verify Existing Account by Re-authentication", "description" : "Reauthentication of existing account", "providerId" : "basic-flow", "topLevel" : false, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "idp-username-password-form", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticatorFlow" : true, "requirement" : "CONDITIONAL", "priority" : 20, "autheticatorFlow" : true, "flowAlias" : "First broker login - Conditional OTP", "userSetupAllowed" : false } ] }, { "id" : "33b4938d-4f6e-460d-98a2-d23882f1069a", "alias" : "browser", "description" : "browser based authentication", "providerId" : "basic-flow", "topLevel" : true, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "auth-cookie", "authenticatorFlow" : false, "requirement" : "ALTERNATIVE", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "auth-spnego", "authenticatorFlow" : false, "requirement" : "DISABLED", "priority" : 20, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "identity-provider-redirector", "authenticatorFlow" : false, "requirement" : "ALTERNATIVE", "priority" : 25, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticatorFlow" : true, "requirement" : "ALTERNATIVE", "priority" : 30, "autheticatorFlow" : true, "flowAlias" : "forms", "userSetupAllowed" : false } ] }, { "id" : "e5379328-3061-4e3f-a3d8-97574e978fcf", "alias" : "clients", "description" : "Base authentication for clients", "providerId" : "client-flow", "topLevel" : true, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "client-secret", "authenticatorFlow" : false, "requirement" : "ALTERNATIVE", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "client-jwt", "authenticatorFlow" : false, "requirement" : "ALTERNATIVE", "priority" : 20, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "client-secret-jwt", "authenticatorFlow" : false, "requirement" : "ALTERNATIVE", "priority" : 30, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "client-x509", "authenticatorFlow" : false, "requirement" : "ALTERNATIVE", "priority" : 40, "autheticatorFlow" : false, "userSetupAllowed" : false } ] }, { "id" : "58bf5c22-1e62-49c3-810c-f3b8735ff42a", "alias" : "direct grant", "description" : "OpenID Connect Resource Owner Grant", "providerId" : "basic-flow", "topLevel" : true, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "direct-grant-validate-username", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "direct-grant-validate-password", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 20, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticatorFlow" : true, "requirement" : "CONDITIONAL", "priority" : 30, "autheticatorFlow" : true, "flowAlias" : "Direct Grant - Conditional OTP", "userSetupAllowed" : false } ] }, { "id" : "f21f983f-970c-47b6-b905-1e6a903b5830", "alias" : "docker auth", "description" : "Used by Docker clients to authenticate against the IDP", "providerId" : "basic-flow", "topLevel" : true, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "docker-http-basic-authenticator", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false } ] }, { "id" : "ed3a3811-89ce-4457-8c06-9faeab2fb49d", "alias" : "first broker login", "description" : "Actions taken after first broker login with identity provider account, which is not yet linked to any Keycloak account", "providerId" : "basic-flow", "topLevel" : true, "builtIn" : true, "authenticationExecutions" : [ { "authenticatorConfig" : "review profile config", "authenticator" : "idp-review-profile", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticatorFlow" : true, "requirement" : "REQUIRED", "priority" : 20, "autheticatorFlow" : true, "flowAlias" : "User creation or linking", "userSetupAllowed" : false } ] }, { "id" : "0d26acef-121f-44ad-a5f3-b85bf4d1fc05", "alias" : "forms", "description" : "Username, password, otp and other auth forms.", "providerId" : "basic-flow", "topLevel" : false, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "auth-username-password-form", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticatorFlow" : true, "requirement" : "CONDITIONAL", "priority" : 20, "autheticatorFlow" : true, "flowAlias" : "Browser - Conditional OTP", "userSetupAllowed" : false } ] }, { "id" : "2c99b761-f61d-4423-8c9f-cb8fec5a9c00", "alias" : "registration", "description" : "registration flow", "providerId" : "basic-flow", "topLevel" : true, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "registration-page-form", "authenticatorFlow" : true, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : true, "flowAlias" : "registration form", "userSetupAllowed" : false } ] }, { "id" : "1ca08d0c-58f1-471c-90ac-2a24781a27cf", "alias" : "registration form", "description" : "registration form", "providerId" : "form-flow", "topLevel" : false, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "registration-user-creation", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 20, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "registration-password-action", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 50, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "registration-recaptcha-action", "authenticatorFlow" : false, "requirement" : "DISABLED", "priority" : 60, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "registration-terms-and-conditions", "authenticatorFlow" : false, "requirement" : "DISABLED", "priority" : 70, "autheticatorFlow" : false, "userSetupAllowed" : false } ] }, { "id" : "69c9375d-f37d-4729-8d37-027c573b301e", "alias" : "reset credentials", "description" : "Reset credentials for a user if they forgot their password or something", "providerId" : "basic-flow", "topLevel" : true, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "reset-credentials-choose-user", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "reset-credential-email", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 20, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticator" : "reset-password", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 30, "autheticatorFlow" : false, "userSetupAllowed" : false }, { "authenticatorFlow" : true, "requirement" : "CONDITIONAL", "priority" : 40, "autheticatorFlow" : true, "flowAlias" : "Reset - Conditional OTP", "userSetupAllowed" : false } ] }, { "id" : "9319132c-d8c2-4c09-92ec-f539c1f303e3", "alias" : "saml ecp", "description" : "SAML ECP Profile Authentication Flow", "providerId" : "basic-flow", "topLevel" : true, "builtIn" : true, "authenticationExecutions" : [ { "authenticator" : "http-basic-authenticator", "authenticatorFlow" : false, "requirement" : "REQUIRED", "priority" : 10, "autheticatorFlow" : false, "userSetupAllowed" : false } ] } ], "authenticatorConfig" : [ { "id" : "cd3eef58-dca1-43e2-aac4-a20f508aa0f4", "alias" : "create unique user config", "config" : { "require.password.update.after.registration" : "false" } }, { "id" : "89a3a7e5-a8b5-4914-93bf-eae451e64507", "alias" : "review profile config", "config" : { "update.profile.on.first.login" : "missing" } } ], "requiredActions" : [ { "alias" : "CONFIGURE_TOTP", "name" : "Configure OTP", "providerId" : "CONFIGURE_TOTP", "enabled" : true, "defaultAction" : false, "priority" : 10, "config" : { } }, { "alias" : "TERMS_AND_CONDITIONS", "name" : "Terms and Conditions", "providerId" : "TERMS_AND_CONDITIONS", "enabled" : false, "defaultAction" : false, "priority" : 20, "config" : { } }, { "alias" : "UPDATE_PASSWORD", "name" : "Update Password", "providerId" : "UPDATE_PASSWORD", "enabled" : true, "defaultAction" : false, "priority" : 30, "config" : { } }, { "alias" : "UPDATE_PROFILE", "name" : "Update Profile", "providerId" : "UPDATE_PROFILE", "enabled" : true, "defaultAction" : false, "priority" : 40, "config" : { } }, { "alias" : "VERIFY_EMAIL", "name" : "Verify Email", "providerId" : "VERIFY_EMAIL", "enabled" : true, "defaultAction" : false, "priority" : 50, "config" : { } }, { "alias" : "delete_account", "name" : "Delete Account", "providerId" : "delete_account", "enabled" : false, "defaultAction" : false, "priority" : 60, "config" : { } }, { "alias" : "webauthn-register", "name" : "Webauthn Register", "providerId" : "webauthn-register", "enabled" : true, "defaultAction" : false, "priority" : 70, "config" : { } }, { "alias" : "webauthn-register-passwordless", "name" : "Webauthn Register Passwordless", "providerId" : "webauthn-register-passwordless", "enabled" : true, "defaultAction" : false, "priority" : 80, "config" : { } }, { "alias" : "VERIFY_PROFILE", "name" : "Verify Profile", "providerId" : "VERIFY_PROFILE", "enabled" : true, "defaultAction" : false, "priority" : 90, "config" : { } }, { "alias" : "delete_credential", "name" : "Delete Credential", "providerId" : "delete_credential", "enabled" : true, "defaultAction" : false, "priority" : 100, "config" : { } }, { "alias" : "update_user_locale", "name" : "Update User Locale", "providerId" : "update_user_locale", "enabled" : true, "defaultAction" : false, "priority" : 1000, "config" : { } } ], "browserFlow" : "browser", "registrationFlow" : "registration", "directGrantFlow" : "direct grant", "resetCredentialsFlow" : "reset credentials", "clientAuthenticationFlow" : "clients", "dockerAuthenticationFlow" : "docker auth", "firstBrokerLoginFlow" : "first broker login", "attributes" : { "cibaBackchannelTokenDeliveryMode" : "poll", "cibaExpiresIn" : "120", "cibaAuthRequestedUserHint" : "login_hint", "oauth2DeviceCodeLifespan" : "600", "oauth2DevicePollingInterval" : "5", "parRequestUriLifespan" : "60", "cibaInterval" : "5", "realmReusableOtpCode" : "false" }, "keycloakVersion" : "25.0.6", "userManagedAccessAllowed" : false, "organizationsEnabled" : false, "clientProfiles" : { "profiles" : [ ] }, "clientPolicies" : { "policies" : [ ] } }