5 "revokeRefreshToken": false,
6 "refreshTokenMaxReuse": 0,
7 "accessTokenLifespan": 300,
8 "accessTokenLifespanForImplicitFlow": 900,
9 "ssoSessionIdleTimeout": 1800,
10 "ssoSessionMaxLifespan": 36000,
11 "offlineSessionIdleTimeout": 2592000,
12 "offlineSessionMaxLifespanEnabled": false,
13 "offlineSessionMaxLifespan": 5184000,
14 "accessCodeLifespan": 60,
15 "accessCodeLifespanUserAction": 300,
16 "accessCodeLifespanLogin": 1800,
17 "actionTokenGeneratedByAdminLifespan": 43200,
18 "actionTokenGeneratedByUserLifespan": 300,
20 "sslRequired": "external",
21 "registrationAllowed": false,
22 "registrationEmailAsUsername": false,
25 "loginWithEmailAllowed": true,
26 "duplicateEmailsAllowed": false,
27 "resetPasswordAllowed": false,
28 "editUsernameAllowed": false,
29 "bruteForceProtected": false,
30 "permanentLockout": false,
31 "maxFailureWaitSeconds": 900,
32 "minimumQuickLoginWaitSeconds": 60,
33 "waitIncrementSeconds": 60,
34 "quickLoginCheckMilliSeconds": 1000,
35 "maxDeltaTimeSeconds": 43200,
40 "id": "220670e5-85ab-4b1d-89e3-98880064e29f",
41 "name": "offline_access",
42 "description": "${role_offline-access}",
45 "containerId": "istio"
48 "id": "80b567e4-46f1-482a-8f77-01d958fa3f5f",
52 "containerId": "istio"
55 "id": "c3be31a1-2d15-4adf-ac16-bc5b962874cf",
56 "name": "uma_authorization",
57 "description": "${role_uma_authorization}",
60 "containerId": "istio"
66 "id": "8e0d765e-2026-4acc-8e60-7d19bb163d18",
67 "name": "view-identity-providers",
68 "description": "${role_view-identity-providers}",
71 "containerId": "23359cc5-f7be-4e46-9032-22888c729056"
74 "id": "06151631-874c-4b4c-b6bf-7bdb17aa92f3",
75 "name": "realm-admin",
76 "description": "${role_realm-admin}",
81 "view-identity-providers",
82 "manage-authorization",
92 "manage-identity-providers",
103 "containerId": "23359cc5-f7be-4e46-9032-22888c729056"
106 "id": "a1f1f3d7-85b9-4630-a8e9-c7c329412ab4",
107 "name": "manage-authorization",
108 "description": "${role_manage-authorization}",
111 "containerId": "23359cc5-f7be-4e46-9032-22888c729056"
114 "id": "2742e71b-86de-4d2f-a964-0d783b3513f0",
115 "name": "view-authorization",
116 "description": "${role_view-authorization}",
119 "containerId": "23359cc5-f7be-4e46-9032-22888c729056"
122 "id": "04c72794-a353-4f6e-a789-f65e74f137c6",
123 "name": "view-users",
124 "description": "${role_view-users}",
128 "realm-management": [
135 "containerId": "23359cc5-f7be-4e46-9032-22888c729056"
138 "id": "405fd875-7a6f-43e0-b4c2-17c587aa7d3a",
139 "name": "query-groups",
140 "description": "${role_query-groups}",
143 "containerId": "23359cc5-f7be-4e46-9032-22888c729056"
146 "id": "b8ca521d-b36e-4ab6-9002-55a88853bfa1",
147 "name": "impersonation",
148 "description": "${role_impersonation}",
151 "containerId": "23359cc5-f7be-4e46-9032-22888c729056"
154 "id": "b2bbaf09-2258-439e-9cc5-a31b229257f7",
155 "name": "view-events",
156 "description": "${role_view-events}",
159 "containerId": "23359cc5-f7be-4e46-9032-22888c729056"
162 "id": "1b64abc3-e087-4caf-8892-e47c2330545c",
163 "name": "manage-realm",
164 "description": "${role_manage-realm}",
167 "containerId": "23359cc5-f7be-4e46-9032-22888c729056"
170 "id": "e2322bb3-5a9b-4f6a-965a-6c6962ded1f3",
171 "name": "manage-clients",
172 "description": "${role_manage-clients}",
175 "containerId": "23359cc5-f7be-4e46-9032-22888c729056"
178 "id": "26ba951e-730f-4176-8f6a-dfea46d4d780",
179 "name": "view-clients",
180 "description": "${role_view-clients}",
184 "realm-management": [
190 "containerId": "23359cc5-f7be-4e46-9032-22888c729056"
193 "id": "0dc8d82c-d8db-4d5f-bc81-f9e381fb488b",
194 "name": "create-client",
195 "description": "${role_create-client}",
198 "containerId": "23359cc5-f7be-4e46-9032-22888c729056"
201 "id": "f58c12dc-f06b-4b92-b41d-06abcc11d9dd",
202 "name": "manage-identity-providers",
203 "description": "${role_manage-identity-providers}",
206 "containerId": "23359cc5-f7be-4e46-9032-22888c729056"
209 "id": "91172277-28d1-4ac2-96dd-129422aae1e1",
210 "name": "manage-users",
211 "description": "${role_manage-users}",
214 "containerId": "23359cc5-f7be-4e46-9032-22888c729056"
217 "id": "f2283924-0ba6-42f2-9c2e-daa1e93cab5d",
218 "name": "manage-events",
219 "description": "${role_manage-events}",
222 "containerId": "23359cc5-f7be-4e46-9032-22888c729056"
225 "id": "64c3f416-c7c8-4bc1-9369-4bbd9c430f82",
226 "name": "query-realms",
227 "description": "${role_query-realms}",
230 "containerId": "23359cc5-f7be-4e46-9032-22888c729056"
233 "id": "7546c6c3-6768-439c-8362-7875c800315f",
234 "name": "query-users",
235 "description": "${role_query-users}",
238 "containerId": "23359cc5-f7be-4e46-9032-22888c729056"
241 "id": "290e8014-36f8-4f78-8c9b-810a054d25c9",
242 "name": "query-clients",
243 "description": "${role_query-clients}",
246 "containerId": "23359cc5-f7be-4e46-9032-22888c729056"
249 "id": "c9e02693-3aa7-415f-b54f-905596a63860",
250 "name": "view-realm",
251 "description": "${role_view-realm}",
254 "containerId": "23359cc5-f7be-4e46-9032-22888c729056"
257 "security-admin-console": [],
258 "customer-tutorial": [],
262 "id": "c15558e5-4812-4d14-825c-9b56c0fc4b43",
263 "name": "read-token",
264 "description": "${role_read-token}",
267 "containerId": "b60bdd17-7469-4eca-8740-043fec9df949"
272 "id": "b0e1a0bc-7fe0-43ed-81e3-57c9bd8b2466",
273 "name": "manage-account-links",
274 "description": "${role_manage-account-links}",
277 "containerId": "451d5f38-0a1e-4dcf-a25b-39ef9148a027"
280 "id": "6290f39b-8dc8-47b9-be67-0d42af794d90",
281 "name": "manage-account",
282 "description": "${role_manage-account}",
287 "manage-account-links"
292 "containerId": "451d5f38-0a1e-4dcf-a25b-39ef9148a027"
295 "id": "134efa5f-fb4a-437c-8aaa-ed98204822bf",
296 "name": "view-profile",
297 "description": "${role_view-profile}",
300 "containerId": "451d5f38-0a1e-4dcf-a25b-39ef9148a027"
310 "requiredCredentials": [
313 "otpPolicyType": "totp",
314 "otpPolicyAlgorithm": "HmacSHA1",
315 "otpPolicyInitialCounter": 0,
316 "otpPolicyDigits": 6,
317 "otpPolicyLookAheadWindow": 1,
318 "otpPolicyPeriod": 30,
319 "otpSupportedApplications": [
321 "Google Authenticator"
325 "clientScope": "offline_access",
333 "id": "290038f3-c4b5-4dea-a6fc-4c603edd94a3",
334 "clientId": "admin-cli",
335 "name": "${client_admin-cli}",
336 "surrogateAuthRequired": false,
338 "clientAuthenticatorType": "client-secret",
339 "secret": "**********",
344 "consentRequired": false,
345 "standardFlowEnabled": false,
346 "implicitFlowEnabled": false,
347 "directAccessGrantsEnabled": true,
348 "serviceAccountsEnabled": false,
349 "publicClient": true,
350 "frontchannelLogout": false,
351 "protocol": "openid-connect",
353 "authenticationFlowBindingOverrides": {},
354 "fullScopeAllowed": false,
355 "nodeReRegistrationTimeout": 0,
356 "defaultClientScopes": [
361 "optionalClientScopes": [
368 "id": "b60bdd17-7469-4eca-8740-043fec9df949",
369 "clientId": "broker",
370 "name": "${client_broker}",
371 "surrogateAuthRequired": false,
373 "clientAuthenticatorType": "client-secret",
374 "secret": "**********",
379 "consentRequired": false,
380 "standardFlowEnabled": true,
381 "implicitFlowEnabled": false,
382 "directAccessGrantsEnabled": false,
383 "serviceAccountsEnabled": false,
384 "publicClient": false,
385 "frontchannelLogout": false,
386 "protocol": "openid-connect",
388 "authenticationFlowBindingOverrides": {},
389 "fullScopeAllowed": false,
390 "nodeReRegistrationTimeout": 0,
391 "defaultClientScopes": [
396 "optionalClientScopes": [
403 "id": "23359cc5-f7be-4e46-9032-22888c729056",
404 "clientId": "realm-management",
405 "name": "${client_realm-management}",
406 "surrogateAuthRequired": false,
408 "clientAuthenticatorType": "client-secret",
409 "secret": "**********",
414 "consentRequired": false,
415 "standardFlowEnabled": true,
416 "implicitFlowEnabled": false,
417 "directAccessGrantsEnabled": false,
418 "serviceAccountsEnabled": false,
419 "publicClient": false,
420 "frontchannelLogout": false,
421 "protocol": "openid-connect",
423 "authenticationFlowBindingOverrides": {},
424 "fullScopeAllowed": false,
425 "nodeReRegistrationTimeout": 0,
426 "defaultClientScopes": [
431 "optionalClientScopes": [
438 "id": "cb5bafdc-b739-4dde-8eb1-9094f64a784e",
439 "clientId": "customer-tutorial",
440 "surrogateAuthRequired": false,
442 "clientAuthenticatorType": "client-secret",
443 "secret": "**********",
448 "consentRequired": false,
449 "standardFlowEnabled": true,
450 "implicitFlowEnabled": false,
451 "directAccessGrantsEnabled": true,
452 "serviceAccountsEnabled": false,
453 "publicClient": true,
454 "frontchannelLogout": false,
455 "protocol": "openid-connect",
457 "authenticationFlowBindingOverrides": {},
458 "fullScopeAllowed": true,
459 "nodeReRegistrationTimeout": -1,
460 "defaultClientScopes": [
465 "optionalClientScopes": [
472 "id": "451d5f38-0a1e-4dcf-a25b-39ef9148a027",
473 "clientId": "account",
474 "name": "${client_account}",
475 "baseUrl": "/auth/realms/istio/account",
476 "surrogateAuthRequired": false,
478 "clientAuthenticatorType": "client-secret",
479 "secret": "**********",
485 "/auth/realms/istio/account/*"
490 "consentRequired": false,
491 "standardFlowEnabled": true,
492 "implicitFlowEnabled": false,
493 "directAccessGrantsEnabled": false,
494 "serviceAccountsEnabled": false,
495 "publicClient": false,
496 "frontchannelLogout": false,
497 "protocol": "openid-connect",
499 "authenticationFlowBindingOverrides": {},
500 "fullScopeAllowed": false,
501 "nodeReRegistrationTimeout": 0,
502 "defaultClientScopes": [
507 "optionalClientScopes": [
514 "id": "b0d3ef29-d76d-4dd4-b017-92c41410c174",
515 "clientId": "security-admin-console",
516 "name": "${client_security-admin-console}",
517 "baseUrl": "/auth/admin/istio/console/index.html",
518 "surrogateAuthRequired": false,
520 "clientAuthenticatorType": "client-secret",
521 "secret": "**********",
523 "/auth/admin/istio/console/*"
528 "consentRequired": false,
529 "standardFlowEnabled": true,
530 "implicitFlowEnabled": false,
531 "directAccessGrantsEnabled": false,
532 "serviceAccountsEnabled": false,
533 "publicClient": true,
534 "frontchannelLogout": false,
535 "protocol": "openid-connect",
537 "authenticationFlowBindingOverrides": {},
538 "fullScopeAllowed": false,
539 "nodeReRegistrationTimeout": 0,
542 "id": "75302c7e-aed4-40d3-9875-d7d3f652d470",
544 "protocol": "openid-connect",
545 "protocolMapper": "oidc-usermodel-attribute-mapper",
546 "consentRequired": false,
548 "userinfo.token.claim": "true",
549 "user.attribute": "locale",
550 "id.token.claim": "true",
551 "access.token.claim": "true",
552 "claim.name": "locale",
553 "jsonType.label": "String"
557 "defaultClientScopes": [
562 "optionalClientScopes": [
571 "id": "b221cc0e-2c78-4de7-bb2e-56e9349cb66d",
573 "description": "OpenID Connect built-in scope: address",
574 "protocol": "openid-connect",
576 "consent.screen.text": "${addressScopeConsentText}",
577 "display.on.consent.screen": "true"
581 "id": "db8987ff-c258-48c9-8c2e-4e1f2f283515",
583 "protocol": "openid-connect",
584 "protocolMapper": "oidc-address-mapper",
585 "consentRequired": false,
587 "user.attribute.formatted": "formatted",
588 "user.attribute.country": "country",
589 "user.attribute.postal_code": "postal_code",
590 "userinfo.token.claim": "true",
591 "user.attribute.street": "street",
592 "id.token.claim": "true",
593 "user.attribute.region": "region",
594 "access.token.claim": "true",
595 "user.attribute.locality": "locality"
601 "id": "f430e3c4-48d8-4b48-824c-58fa950e3162",
603 "description": "OpenID Connect built-in scope: email",
604 "protocol": "openid-connect",
606 "consent.screen.text": "${emailScopeConsentText}",
607 "display.on.consent.screen": "true"
611 "id": "4d1852a7-0735-4ea7-9e2b-eb62775975e9",
613 "protocol": "openid-connect",
614 "protocolMapper": "oidc-usermodel-property-mapper",
615 "consentRequired": false,
617 "userinfo.token.claim": "true",
618 "user.attribute": "email",
619 "id.token.claim": "true",
620 "access.token.claim": "true",
621 "claim.name": "email",
622 "jsonType.label": "String"
626 "id": "2be3ecee-f2ba-45c6-9c03-ecbcd57ef892",
627 "name": "email verified",
628 "protocol": "openid-connect",
629 "protocolMapper": "oidc-usermodel-property-mapper",
630 "consentRequired": false,
632 "userinfo.token.claim": "true",
633 "user.attribute": "emailVerified",
634 "id.token.claim": "true",
635 "access.token.claim": "true",
636 "claim.name": "email_verified",
637 "jsonType.label": "boolean"
643 "id": "2dc9a314-a8a2-4158-ae13-44b524a106cf",
644 "name": "offline_access",
645 "description": "OpenID Connect built-in scope: offline_access",
646 "protocol": "openid-connect",
648 "consent.screen.text": "${offlineAccessScopeConsentText}",
649 "display.on.consent.screen": "true"
653 "id": "264fb76f-3460-48df-95ce-2484c8e5b5c9",
655 "description": "OpenID Connect built-in scope: phone",
656 "protocol": "openid-connect",
658 "consent.screen.text": "${phoneScopeConsentText}",
659 "display.on.consent.screen": "true"
663 "id": "e5cdd2ff-09d2-4c46-b3aa-1dbe269f9c84",
664 "name": "phone number",
665 "protocol": "openid-connect",
666 "protocolMapper": "oidc-usermodel-attribute-mapper",
667 "consentRequired": false,
669 "userinfo.token.claim": "true",
670 "user.attribute": "phoneNumber",
671 "id.token.claim": "true",
672 "access.token.claim": "true",
673 "claim.name": "phone_number",
674 "jsonType.label": "String"
678 "id": "d4577eed-c8ef-4472-ba67-701362d87075",
679 "name": "phone number verified",
680 "protocol": "openid-connect",
681 "protocolMapper": "oidc-usermodel-attribute-mapper",
682 "consentRequired": false,
684 "userinfo.token.claim": "true",
685 "user.attribute": "phoneNumberVerified",
686 "id.token.claim": "true",
687 "access.token.claim": "true",
688 "claim.name": "phone_number_verified",
689 "jsonType.label": "boolean"
695 "id": "0710ab2c-f207-40a6-9b48-357b5e613ecc",
697 "description": "OpenID Connect built-in scope: profile",
698 "protocol": "openid-connect",
700 "consent.screen.text": "${profileScopeConsentText}",
701 "display.on.consent.screen": "true"
705 "id": "446fa5ee-ec5f-4686-8ee3-1774894dfa67",
706 "name": "middle name",
707 "protocol": "openid-connect",
708 "protocolMapper": "oidc-usermodel-attribute-mapper",
709 "consentRequired": false,
711 "userinfo.token.claim": "true",
712 "user.attribute": "middleName",
713 "id.token.claim": "true",
714 "access.token.claim": "true",
715 "claim.name": "middle_name",
716 "jsonType.label": "String"
720 "id": "637d89c1-d01c-4342-aef2-cf998bc6debb",
722 "protocol": "openid-connect",
723 "protocolMapper": "oidc-usermodel-attribute-mapper",
724 "consentRequired": false,
726 "userinfo.token.claim": "true",
727 "user.attribute": "locale",
728 "id.token.claim": "true",
729 "access.token.claim": "true",
730 "claim.name": "locale",
731 "jsonType.label": "String"
735 "id": "7467cf05-040a-414d-9dce-7e12017b4877",
737 "protocol": "openid-connect",
738 "protocolMapper": "oidc-usermodel-attribute-mapper",
739 "consentRequired": false,
741 "userinfo.token.claim": "true",
742 "user.attribute": "gender",
743 "id.token.claim": "true",
744 "access.token.claim": "true",
745 "claim.name": "gender",
746 "jsonType.label": "String"
750 "id": "9788ba7e-ac2c-44d2-b359-38715a20cda0",
751 "name": "family name",
752 "protocol": "openid-connect",
753 "protocolMapper": "oidc-usermodel-property-mapper",
754 "consentRequired": false,
756 "userinfo.token.claim": "true",
757 "user.attribute": "lastName",
758 "id.token.claim": "true",
759 "access.token.claim": "true",
760 "claim.name": "family_name",
761 "jsonType.label": "String"
765 "id": "2b825105-1344-49c1-b8e9-c650e5cf1466",
767 "protocol": "openid-connect",
768 "protocolMapper": "oidc-usermodel-property-mapper",
769 "consentRequired": false,
771 "userinfo.token.claim": "true",
772 "user.attribute": "username",
773 "id.token.claim": "true",
774 "access.token.claim": "true",
775 "claim.name": "preferred_username",
776 "jsonType.label": "String"
780 "id": "f087ddac-3587-42d0-9f0a-156eacc2c8a3",
782 "protocol": "openid-connect",
783 "protocolMapper": "oidc-usermodel-attribute-mapper",
784 "consentRequired": false,
786 "userinfo.token.claim": "true",
787 "user.attribute": "nickname",
788 "id.token.claim": "true",
789 "access.token.claim": "true",
790 "claim.name": "nickname",
791 "jsonType.label": "String"
795 "id": "e1523265-8464-4894-85c3-e2e33318132e",
797 "protocol": "openid-connect",
798 "protocolMapper": "oidc-usermodel-attribute-mapper",
799 "consentRequired": false,
801 "userinfo.token.claim": "true",
802 "user.attribute": "website",
803 "id.token.claim": "true",
804 "access.token.claim": "true",
805 "claim.name": "website",
806 "jsonType.label": "String"
810 "id": "abd30893-032c-4ff4-91ff-e0f487b52c7d",
812 "protocol": "openid-connect",
813 "protocolMapper": "oidc-full-name-mapper",
814 "consentRequired": false,
816 "id.token.claim": "true",
817 "access.token.claim": "true",
818 "userinfo.token.claim": "true"
822 "id": "1df211c9-7681-4f26-94b4-ff1f13070299",
823 "name": "given name",
824 "protocol": "openid-connect",
825 "protocolMapper": "oidc-usermodel-property-mapper",
826 "consentRequired": false,
828 "userinfo.token.claim": "true",
829 "user.attribute": "firstName",
830 "id.token.claim": "true",
831 "access.token.claim": "true",
832 "claim.name": "given_name",
833 "jsonType.label": "String"
837 "id": "e3916ca8-f442-4dce-8632-a44ca0d12f78",
839 "protocol": "openid-connect",
840 "protocolMapper": "oidc-usermodel-attribute-mapper",
841 "consentRequired": false,
843 "userinfo.token.claim": "true",
844 "user.attribute": "picture",
845 "id.token.claim": "true",
846 "access.token.claim": "true",
847 "claim.name": "picture",
848 "jsonType.label": "String"
852 "id": "8f7057ba-effb-4d2a-9343-5b6dceeb1df0",
853 "name": "updated at",
854 "protocol": "openid-connect",
855 "protocolMapper": "oidc-usermodel-attribute-mapper",
856 "consentRequired": false,
858 "userinfo.token.claim": "true",
859 "user.attribute": "updatedAt",
860 "id.token.claim": "true",
861 "access.token.claim": "true",
862 "claim.name": "updated_at",
863 "jsonType.label": "String"
867 "id": "ada6d8cf-2a80-488d-bff0-6713c88b7733",
869 "protocol": "openid-connect",
870 "protocolMapper": "oidc-usermodel-attribute-mapper",
871 "consentRequired": false,
873 "userinfo.token.claim": "true",
874 "user.attribute": "profile",
875 "id.token.claim": "true",
876 "access.token.claim": "true",
877 "claim.name": "profile",
878 "jsonType.label": "String"
882 "id": "167fb08e-6804-4452-b054-d494ce6e1aec",
884 "protocol": "openid-connect",
885 "protocolMapper": "oidc-usermodel-attribute-mapper",
886 "consentRequired": false,
888 "userinfo.token.claim": "true",
889 "user.attribute": "zoneinfo",
890 "id.token.claim": "true",
891 "access.token.claim": "true",
892 "claim.name": "zoneinfo",
893 "jsonType.label": "String"
897 "id": "e121d0f2-9af8-440a-a2ac-6ab7bed1959e",
899 "protocol": "openid-connect",
900 "protocolMapper": "oidc-usermodel-attribute-mapper",
901 "consentRequired": false,
903 "userinfo.token.claim": "true",
904 "user.attribute": "birthdate",
905 "id.token.claim": "true",
906 "access.token.claim": "true",
907 "claim.name": "birthdate",
908 "jsonType.label": "String"
914 "id": "67565c69-b19a-46d1-a4d2-e168cf8f1ff2",
916 "description": "SAML role list",
919 "consent.screen.text": "${samlRoleListScopeConsentText}",
920 "display.on.consent.screen": "true"
924 "id": "7b8b9b4f-2dc5-4991-88ba-363789ef4273",
927 "protocolMapper": "saml-role-list-mapper",
928 "consentRequired": false,
931 "attribute.nameformat": "Basic",
932 "attribute.name": "Role"
938 "defaultDefaultClientScopes": [
943 "defaultOptionalClientScopes": [
948 "browserSecurityHeaders": {
949 "contentSecurityPolicyReportOnly": "",
950 "xContentTypeOptions": "nosniff",
951 "xRobotsTag": "none",
952 "xFrameOptions": "SAMEORIGIN",
953 "xXSSProtection": "1; mode=block",
954 "contentSecurityPolicy": "frame-src 'self'; frame-ancestors 'self'; object-src 'none';",
955 "strictTransportSecurity": "max-age=31536000; includeSubDomains"
958 "eventsEnabled": false,
962 "enabledEventTypes": [],
963 "adminEventsEnabled": false,
964 "adminEventsDetailsEnabled": false,
966 "org.keycloak.services.clientregistration.policy.ClientRegistrationPolicy": [
968 "id": "a9df5509-a3e6-4298-b0dd-89283e43c98d",
969 "name": "Allowed Protocol Mapper Types",
970 "providerId": "allowed-protocol-mappers",
971 "subType": "authenticated",
974 "allowed-protocol-mapper-types": [
975 "oidc-usermodel-property-mapper",
976 "oidc-sha256-pairwise-sub-mapper",
977 "saml-role-list-mapper",
978 "oidc-usermodel-attribute-mapper",
979 "saml-user-property-mapper",
980 "oidc-full-name-mapper",
981 "oidc-address-mapper",
982 "saml-user-attribute-mapper"
987 "id": "716cb8ab-1e27-4119-b78f-5356858dcb41",
988 "name": "Allowed Client Scopes",
989 "providerId": "allowed-client-templates",
990 "subType": "authenticated",
993 "allow-default-scopes": [
999 "id": "ff4f5c61-6d74-49c4-add0-0cb5b403adbb",
1000 "name": "Trusted Hosts",
1001 "providerId": "trusted-hosts",
1002 "subType": "anonymous",
1003 "subComponents": {},
1005 "host-sending-registration-request-must-match": [
1008 "client-uris-must-match": [
1014 "id": "0eea0e90-fed9-4ad7-af33-7ee14f45417f",
1015 "name": "Allowed Client Scopes",
1016 "providerId": "allowed-client-templates",
1017 "subType": "anonymous",
1018 "subComponents": {},
1020 "allow-default-scopes": [
1026 "id": "f5f9be1b-4248-462e-987a-c49080dc89d5",
1027 "name": "Max Clients Limit",
1028 "providerId": "max-clients",
1029 "subType": "anonymous",
1030 "subComponents": {},
1038 "id": "87b3d39d-27b5-45e9-8793-ca1e90633d5e",
1039 "name": "Allowed Protocol Mapper Types",
1040 "providerId": "allowed-protocol-mappers",
1041 "subType": "anonymous",
1042 "subComponents": {},
1044 "allowed-protocol-mapper-types": [
1045 "saml-user-attribute-mapper",
1046 "oidc-sha256-pairwise-sub-mapper",
1047 "saml-user-property-mapper",
1048 "saml-role-list-mapper",
1049 "oidc-usermodel-attribute-mapper",
1050 "oidc-full-name-mapper",
1051 "oidc-usermodel-property-mapper",
1052 "oidc-address-mapper"
1057 "id": "cf0206b9-af54-4b1d-842d-35709b9b2416",
1058 "name": "Consent Required",
1059 "providerId": "consent-required",
1060 "subType": "anonymous",
1061 "subComponents": {},
1065 "id": "bf450bd0-16d3-48b1-8120-01ffeae36009",
1066 "name": "Full Scope Disabled",
1067 "providerId": "scope",
1068 "subType": "anonymous",
1069 "subComponents": {},
1073 "org.keycloak.keys.KeyProvider": [
1075 "id": "abeebe85-48d0-4c48-906e-e01b21f414e6",
1076 "name": "rsa-generated",
1077 "providerId": "rsa-generated",
1078 "subComponents": {},
1086 "id": "8edb83d9-2775-4f31-a04e-b2b044df9d4a",
1087 "name": "hmac-generated",
1088 "providerId": "hmac-generated",
1089 "subComponents": {},
1100 "id": "6c011a27-dae1-43f7-8928-a99c7d83fcca",
1101 "name": "aes-generated",
1102 "providerId": "aes-generated",
1103 "subComponents": {},
1112 "internationalizationEnabled": false,
1113 "supportedLocales": [],
1114 "authenticationFlows": [
1116 "id": "5fbafc16-55b5-41ad-9777-0295a824950c",
1117 "alias": "Handle Existing Account",
1118 "description": "Handle what to do if there is existing account with same email/username like authenticated identity provider",
1119 "providerId": "basic-flow",
1122 "authenticationExecutions": [
1124 "authenticator": "idp-confirm-link",
1125 "requirement": "REQUIRED",
1127 "userSetupAllowed": false,
1128 "autheticatorFlow": false
1131 "authenticator": "idp-email-verification",
1132 "requirement": "ALTERNATIVE",
1134 "userSetupAllowed": false,
1135 "autheticatorFlow": false
1138 "requirement": "ALTERNATIVE",
1140 "flowAlias": "Verify Existing Account by Re-authentication",
1141 "userSetupAllowed": false,
1142 "autheticatorFlow": true
1147 "id": "12b28e4f-478f-4abe-b24d-b0a7a3b69deb",
1148 "alias": "Verify Existing Account by Re-authentication",
1149 "description": "Reauthentication of existing account",
1150 "providerId": "basic-flow",
1153 "authenticationExecutions": [
1155 "authenticator": "idp-username-password-form",
1156 "requirement": "REQUIRED",
1158 "userSetupAllowed": false,
1159 "autheticatorFlow": false
1162 "authenticator": "auth-otp-form",
1163 "requirement": "OPTIONAL",
1165 "userSetupAllowed": false,
1166 "autheticatorFlow": false
1171 "id": "e97de13b-04ce-4f35-9ac6-0ab7f987ea33",
1173 "description": "browser based authentication",
1174 "providerId": "basic-flow",
1177 "authenticationExecutions": [
1179 "authenticator": "auth-cookie",
1180 "requirement": "ALTERNATIVE",
1182 "userSetupAllowed": false,
1183 "autheticatorFlow": false
1186 "authenticator": "auth-spnego",
1187 "requirement": "DISABLED",
1189 "userSetupAllowed": false,
1190 "autheticatorFlow": false
1193 "authenticator": "identity-provider-redirector",
1194 "requirement": "ALTERNATIVE",
1196 "userSetupAllowed": false,
1197 "autheticatorFlow": false
1200 "requirement": "ALTERNATIVE",
1202 "flowAlias": "forms",
1203 "userSetupAllowed": false,
1204 "autheticatorFlow": true
1209 "id": "e6bb84d1-dd99-42bb-8d4e-76b76bb744ff",
1211 "description": "Base authentication for clients",
1212 "providerId": "client-flow",
1215 "authenticationExecutions": [
1217 "authenticator": "client-secret",
1218 "requirement": "ALTERNATIVE",
1220 "userSetupAllowed": false,
1221 "autheticatorFlow": false
1224 "authenticator": "client-jwt",
1225 "requirement": "ALTERNATIVE",
1227 "userSetupAllowed": false,
1228 "autheticatorFlow": false
1231 "authenticator": "client-secret-jwt",
1232 "requirement": "ALTERNATIVE",
1234 "userSetupAllowed": false,
1235 "autheticatorFlow": false
1238 "authenticator": "client-x509",
1239 "requirement": "ALTERNATIVE",
1241 "userSetupAllowed": false,
1242 "autheticatorFlow": false
1247 "id": "f4adf75a-f348-46f1-90aa-ba5ba332a9a8",
1248 "alias": "direct grant",
1249 "description": "OpenID Connect Resource Owner Grant",
1250 "providerId": "basic-flow",
1253 "authenticationExecutions": [
1255 "authenticator": "direct-grant-validate-username",
1256 "requirement": "REQUIRED",
1258 "userSetupAllowed": false,
1259 "autheticatorFlow": false
1262 "authenticator": "direct-grant-validate-password",
1263 "requirement": "REQUIRED",
1265 "userSetupAllowed": false,
1266 "autheticatorFlow": false
1269 "authenticator": "direct-grant-validate-otp",
1270 "requirement": "OPTIONAL",
1272 "userSetupAllowed": false,
1273 "autheticatorFlow": false
1278 "id": "117a5b7c-ed16-4a1a-a0a7-8fd1ff5429be",
1279 "alias": "docker auth",
1280 "description": "Used by Docker clients to authenticate against the IDP",
1281 "providerId": "basic-flow",
1284 "authenticationExecutions": [
1286 "authenticator": "docker-http-basic-authenticator",
1287 "requirement": "REQUIRED",
1289 "userSetupAllowed": false,
1290 "autheticatorFlow": false
1295 "id": "40991ed8-f811-4144-811c-3ef6934e33bb",
1296 "alias": "first broker login",
1297 "description": "Actions taken after first broker login with identity provider account, which is not yet linked to any Keycloak account",
1298 "providerId": "basic-flow",
1301 "authenticationExecutions": [
1303 "authenticatorConfig": "review profile config",
1304 "authenticator": "idp-review-profile",
1305 "requirement": "REQUIRED",
1307 "userSetupAllowed": false,
1308 "autheticatorFlow": false
1311 "authenticatorConfig": "create unique user config",
1312 "authenticator": "idp-create-user-if-unique",
1313 "requirement": "ALTERNATIVE",
1315 "userSetupAllowed": false,
1316 "autheticatorFlow": false
1319 "requirement": "ALTERNATIVE",
1321 "flowAlias": "Handle Existing Account",
1322 "userSetupAllowed": false,
1323 "autheticatorFlow": true
1328 "id": "63ea9d89-9e59-48e0-a672-be7485df2a6e",
1330 "description": "Username, password, otp and other auth forms.",
1331 "providerId": "basic-flow",
1334 "authenticationExecutions": [
1336 "authenticator": "auth-username-password-form",
1337 "requirement": "REQUIRED",
1339 "userSetupAllowed": false,
1340 "autheticatorFlow": false
1343 "authenticator": "auth-otp-form",
1344 "requirement": "OPTIONAL",
1346 "userSetupAllowed": false,
1347 "autheticatorFlow": false
1352 "id": "4d9a5e12-eba2-4fdd-9089-d2ec5cf38b51",
1353 "alias": "http challenge",
1354 "description": "An authentication flow based on challenge-response HTTP Authentication Schemes",
1355 "providerId": "basic-flow",
1358 "authenticationExecutions": [
1360 "authenticator": "no-cookie-redirect",
1361 "requirement": "REQUIRED",
1363 "userSetupAllowed": false,
1364 "autheticatorFlow": false
1367 "authenticator": "basic-auth",
1368 "requirement": "REQUIRED",
1370 "userSetupAllowed": false,
1371 "autheticatorFlow": false
1374 "authenticator": "basic-auth-otp",
1375 "requirement": "DISABLED",
1377 "userSetupAllowed": false,
1378 "autheticatorFlow": false
1381 "authenticator": "auth-spnego",
1382 "requirement": "DISABLED",
1384 "userSetupAllowed": false,
1385 "autheticatorFlow": false
1390 "id": "f7bccba1-7e29-4471-8ffc-010a8f40cce3",
1391 "alias": "registration",
1392 "description": "registration flow",
1393 "providerId": "basic-flow",
1396 "authenticationExecutions": [
1398 "authenticator": "registration-page-form",
1399 "requirement": "REQUIRED",
1401 "flowAlias": "registration form",
1402 "userSetupAllowed": false,
1403 "autheticatorFlow": true
1408 "id": "482106b4-12ad-4a0b-aa61-2c2586662cb4",
1409 "alias": "registration form",
1410 "description": "registration form",
1411 "providerId": "form-flow",
1414 "authenticationExecutions": [
1416 "authenticator": "registration-user-creation",
1417 "requirement": "REQUIRED",
1419 "userSetupAllowed": false,
1420 "autheticatorFlow": false
1423 "authenticator": "registration-profile-action",
1424 "requirement": "REQUIRED",
1426 "userSetupAllowed": false,
1427 "autheticatorFlow": false
1430 "authenticator": "registration-password-action",
1431 "requirement": "REQUIRED",
1433 "userSetupAllowed": false,
1434 "autheticatorFlow": false
1437 "authenticator": "registration-recaptcha-action",
1438 "requirement": "DISABLED",
1440 "userSetupAllowed": false,
1441 "autheticatorFlow": false
1446 "id": "54f5e4d1-fc88-4d74-bbc8-5356c0049534",
1447 "alias": "reset credentials",
1448 "description": "Reset credentials for a user if they forgot their password or something",
1449 "providerId": "basic-flow",
1452 "authenticationExecutions": [
1454 "authenticator": "reset-credentials-choose-user",
1455 "requirement": "REQUIRED",
1457 "userSetupAllowed": false,
1458 "autheticatorFlow": false
1461 "authenticator": "reset-credential-email",
1462 "requirement": "REQUIRED",
1464 "userSetupAllowed": false,
1465 "autheticatorFlow": false
1468 "authenticator": "reset-password",
1469 "requirement": "REQUIRED",
1471 "userSetupAllowed": false,
1472 "autheticatorFlow": false
1475 "authenticator": "reset-otp",
1476 "requirement": "OPTIONAL",
1478 "userSetupAllowed": false,
1479 "autheticatorFlow": false
1484 "id": "2c719ec1-2377-4314-83de-e3269d1a03a9",
1485 "alias": "saml ecp",
1486 "description": "SAML ECP Profile Authentication Flow",
1487 "providerId": "basic-flow",
1490 "authenticationExecutions": [
1492 "authenticator": "http-basic-authenticator",
1493 "requirement": "REQUIRED",
1495 "userSetupAllowed": false,
1496 "autheticatorFlow": false
1501 "authenticatorConfig": [
1503 "id": "18dec793-b93a-425d-88f1-f0f8adef894b",
1504 "alias": "create unique user config",
1506 "require.password.update.after.registration": "false"
1510 "id": "5d968a5d-c719-41f4-9e54-4d59c165dc41",
1511 "alias": "review profile config",
1513 "update.profile.on.first.login": "missing"
1517 "requiredActions": [
1519 "alias": "CONFIGURE_TOTP",
1520 "name": "Configure OTP",
1521 "providerId": "CONFIGURE_TOTP",
1523 "defaultAction": false,
1528 "alias": "terms_and_conditions",
1529 "name": "Terms and Conditions",
1530 "providerId": "terms_and_conditions",
1532 "defaultAction": false,
1537 "alias": "UPDATE_PASSWORD",
1538 "name": "Update Password",
1539 "providerId": "UPDATE_PASSWORD",
1541 "defaultAction": false,
1546 "alias": "UPDATE_PROFILE",
1547 "name": "Update Profile",
1548 "providerId": "UPDATE_PROFILE",
1550 "defaultAction": false,
1555 "alias": "VERIFY_EMAIL",
1556 "name": "Verify Email",
1557 "providerId": "VERIFY_EMAIL",
1559 "defaultAction": false,
1564 "browserFlow": "browser",
1565 "registrationFlow": "registration",
1566 "directGrantFlow": "direct grant",
1567 "resetCredentialsFlow": "reset credentials",
1568 "clientAuthenticationFlow": "clients",
1569 "dockerAuthenticationFlow": "docker auth",
1571 "_browser_header.xXSSProtection": "1; mode=block",
1572 "_browser_header.xFrameOptions": "SAMEORIGIN",
1573 "_browser_header.strictTransportSecurity": "max-age=31536000; includeSubDomains",
1574 "permanentLockout": "false",
1575 "quickLoginCheckMilliSeconds": "1000",
1576 "_browser_header.xRobotsTag": "none",
1577 "maxFailureWaitSeconds": "900",
1578 "minimumQuickLoginWaitSeconds": "60",
1579 "failureFactor": "30",
1580 "actionTokenGeneratedByUserLifespan": "300",
1581 "maxDeltaTimeSeconds": "43200",
1582 "_browser_header.xContentTypeOptions": "nosniff",
1583 "offlineSessionMaxLifespan": "5184000",
1584 "actionTokenGeneratedByAdminLifespan": "43200",
1585 "_browser_header.contentSecurityPolicyReportOnly": "",
1586 "bruteForceProtected": "false",
1587 "_browser_header.contentSecurityPolicy": "frame-src 'self'; frame-ancestors 'self'; object-src 'none';",
1588 "waitIncrementSeconds": "60",
1589 "offlineSessionMaxLifespanEnabled": "false"
1591 "keycloakVersion": "4.5.0.Final",
1592 "userManagedAccessAllowed": false
Code Review / demo.git / blob