forked from keycloak/keycloak
-
Notifications
You must be signed in to change notification settings - Fork 0
/
migration-realm-13.0.1-client-policies.json
2701 lines (2701 loc) · 142 KB
/
migration-realm-13.0.1-client-policies.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
991
992
993
994
995
996
997
998
999
1000
[ {
"id" : "test",
"realm" : "test",
"notBefore" : 0,
"defaultSignatureAlgorithm" : "RS256",
"revokeRefreshToken" : false,
"refreshTokenMaxReuse" : 0,
"accessTokenLifespan" : 300,
"accessTokenLifespanForImplicitFlow" : 900,
"ssoSessionIdleTimeout" : 1800,
"ssoSessionMaxLifespan" : 36000,
"ssoSessionIdleTimeoutRememberMe" : 0,
"ssoSessionMaxLifespanRememberMe" : 0,
"offlineSessionIdleTimeout" : 2592000,
"offlineSessionMaxLifespanEnabled" : false,
"offlineSessionMaxLifespan" : 5184000,
"clientSessionIdleTimeout" : 0,
"clientSessionMaxLifespan" : 0,
"clientOfflineSessionIdleTimeout" : 0,
"clientOfflineSessionMaxLifespan" : 0,
"accessCodeLifespan" : 60,
"accessCodeLifespanUserAction" : 300,
"accessCodeLifespanLogin" : 1800,
"actionTokenGeneratedByAdminLifespan" : 43200,
"actionTokenGeneratedByUserLifespan" : 300,
"oauth2DeviceCodeLifespan" : 600,
"oauth2DevicePollingInterval" : 5,
"enabled" : true,
"sslRequired" : "external",
"registrationAllowed" : false,
"registrationEmailAsUsername" : false,
"rememberMe" : false,
"verifyEmail" : false,
"loginWithEmailAllowed" : true,
"duplicateEmailsAllowed" : false,
"resetPasswordAllowed" : false,
"editUsernameAllowed" : false,
"bruteForceProtected" : false,
"permanentLockout" : false,
"maxFailureWaitSeconds" : 900,
"minimumQuickLoginWaitSeconds" : 60,
"waitIncrementSeconds" : 60,
"quickLoginCheckMilliSeconds" : 1000,
"maxDeltaTimeSeconds" : 43200,
"failureFactor" : 30,
"roles" : {
"realm" : [ {
"id" : "5a25ce69-64d5-436d-81bb-2cb26fae9c4a",
"name" : "sample-realm-role",
"description" : "Sample realm role",
"composite" : false,
"clientRole" : false,
"containerId" : "test",
"attributes" : { }
}, {
"id" : "5ab2ddc6-0f5a-4939-bd34-10ac0dcacb3c",
"name" : "offline_access",
"description" : "${role_offline-access}",
"composite" : false,
"clientRole" : false,
"containerId" : "test",
"attributes" : { }
}, {
"id" : "ecfc80a3-e77b-47f5-bb70-c3c0f4a07989",
"name" : "default-roles-test",
"description" : "${role_default-roles}",
"composite" : true,
"composites" : {
"realm" : [ "offline_access", "uma_authorization" ],
"client" : {
"account" : [ "view-profile", "manage-account" ]
}
},
"clientRole" : false,
"containerId" : "test",
"attributes" : { }
}, {
"id" : "3eecb8b5-261e-4eff-8167-47bad5a8d311",
"name" : "realm-composite-role",
"description" : "Realm composite role containing client role",
"composite" : true,
"composites" : {
"realm" : [ "sample-realm-role" ],
"client" : {
"client2-private_key_jwt-ES256-ES256" : [ "sample-client-role" ],
"client1-mtls-PS256-PS256" : [ "sample-client-role" ],
"client1-private_key_jwt-ES256-ES256" : [ "sample-client-role" ],
"client2-mtls-PS256-PS256" : [ "sample-client-role" ],
"client2-private_key_jwt-PS256-PS256" : [ "sample-client-role" ],
"client2-mtls-ES256-ES256" : [ "sample-client-role" ],
"client1-private_key_jwt-PS256-PS256" : [ "sample-client-role" ],
"client1-mtls-ES256-ES256" : [ "sample-client-role" ]
}
},
"clientRole" : false,
"containerId" : "test",
"attributes" : { }
}, {
"id" : "7abe3ac2-beab-42d1-8ba9-a80c14c5ff3e",
"name" : "uma_authorization",
"description" : "${role_uma_authorization}",
"composite" : false,
"clientRole" : false,
"containerId" : "test",
"attributes" : { }
} ],
"client" : {
"client1-mtls-PS256-PS256" : [ {
"id" : "dd9f25f6-b517-4d64-bf20-453e36c2a66d",
"name" : "sample-client-role",
"description" : "Sample client role",
"composite" : false,
"clientRole" : true,
"containerId" : "c61d93dc-467d-4fa9-9b58-6d21e2276eac",
"attributes" : {
"sample-client-role-attribute" : [ "sample-client-role-attribute-value" ]
}
} ],
"client1-private_key_jwt-ES256-ES256" : [ {
"id" : "fe80f6b0-d7c3-44a5-8b05-c96b4ba6dda8",
"name" : "sample-client-role",
"description" : "Sample client role",
"composite" : false,
"clientRole" : true,
"containerId" : "a40263fd-7e4a-4c63-9544-763dd178fffb",
"attributes" : {
"sample-client-role-attribute" : [ "sample-client-role-attribute-value" ]
}
} ],
"client1-private_key_jwt-RS256-PS256" : [ ],
"realm-management" : [ {
"id" : "983721ac-efef-4f34-ab58-155c8166a27c",
"name" : "realm-admin",
"description" : "${role_realm-admin}",
"composite" : true,
"composites" : {
"client" : {
"realm-management" : [ "manage-users", "manage-events", "manage-clients", "view-users", "query-users", "view-identity-providers", "view-clients", "manage-realm", "query-groups", "create-client", "view-authorization", "manage-authorization", "manage-identity-providers", "query-clients", "view-events", "impersonation", "view-realm", "query-realms" ]
}
},
"clientRole" : true,
"containerId" : "5cd99170-3ab2-4523-803d-ce5eec5bad23",
"attributes" : { }
}, {
"id" : "e18db612-4c0d-4c26-8106-96115ae8fc48",
"name" : "manage-events",
"description" : "${role_manage-events}",
"composite" : false,
"clientRole" : true,
"containerId" : "5cd99170-3ab2-4523-803d-ce5eec5bad23",
"attributes" : { }
}, {
"id" : "c0132f3a-654d-4ac0-94a4-c2bfa6ee8004",
"name" : "manage-users",
"description" : "${role_manage-users}",
"composite" : false,
"clientRole" : true,
"containerId" : "5cd99170-3ab2-4523-803d-ce5eec5bad23",
"attributes" : { }
}, {
"id" : "4b6f018a-ab37-434e-bc72-d87cdb8c9214",
"name" : "manage-clients",
"description" : "${role_manage-clients}",
"composite" : false,
"clientRole" : true,
"containerId" : "5cd99170-3ab2-4523-803d-ce5eec5bad23",
"attributes" : { }
}, {
"id" : "d1eaf913-c687-4d01-bd13-c290a814d6ee",
"name" : "view-users",
"description" : "${role_view-users}",
"composite" : true,
"composites" : {
"client" : {
"realm-management" : [ "query-users", "query-groups" ]
}
},
"clientRole" : true,
"containerId" : "5cd99170-3ab2-4523-803d-ce5eec5bad23",
"attributes" : { }
}, {
"id" : "3eb9e941-25fb-4482-91b0-e309504b6917",
"name" : "query-users",
"description" : "${role_query-users}",
"composite" : false,
"clientRole" : true,
"containerId" : "5cd99170-3ab2-4523-803d-ce5eec5bad23",
"attributes" : { }
}, {
"id" : "d709ecf4-ac93-4696-bf83-4b4d08d9b360",
"name" : "view-clients",
"description" : "${role_view-clients}",
"composite" : true,
"composites" : {
"client" : {
"realm-management" : [ "query-clients" ]
}
},
"clientRole" : true,
"containerId" : "5cd99170-3ab2-4523-803d-ce5eec5bad23",
"attributes" : { }
}, {
"id" : "bd49540b-c502-4a89-bf8b-30033b9d9cf1",
"name" : "view-identity-providers",
"description" : "${role_view-identity-providers}",
"composite" : false,
"clientRole" : true,
"containerId" : "5cd99170-3ab2-4523-803d-ce5eec5bad23",
"attributes" : { }
}, {
"id" : "35d86df9-4632-468e-aff0-b264c39fa883",
"name" : "manage-realm",
"description" : "${role_manage-realm}",
"composite" : false,
"clientRole" : true,
"containerId" : "5cd99170-3ab2-4523-803d-ce5eec5bad23",
"attributes" : { }
}, {
"id" : "6709f032-c076-41bc-8d81-487c3acd5bc5",
"name" : "query-groups",
"description" : "${role_query-groups}",
"composite" : false,
"clientRole" : true,
"containerId" : "5cd99170-3ab2-4523-803d-ce5eec5bad23",
"attributes" : { }
}, {
"id" : "b0fdeeaf-963a-40c4-b172-a533d7969226",
"name" : "create-client",
"description" : "${role_create-client}",
"composite" : false,
"clientRole" : true,
"containerId" : "5cd99170-3ab2-4523-803d-ce5eec5bad23",
"attributes" : { }
}, {
"id" : "6dc172bc-0f57-49d8-8832-23ea9fae5a7b",
"name" : "manage-authorization",
"description" : "${role_manage-authorization}",
"composite" : false,
"clientRole" : true,
"containerId" : "5cd99170-3ab2-4523-803d-ce5eec5bad23",
"attributes" : { }
}, {
"id" : "64168f40-0a4f-485f-b374-8a233b8c6bdc",
"name" : "view-authorization",
"description" : "${role_view-authorization}",
"composite" : false,
"clientRole" : true,
"containerId" : "5cd99170-3ab2-4523-803d-ce5eec5bad23",
"attributes" : { }
}, {
"id" : "51d7ee63-10fe-49b1-870a-4241c473b4db",
"name" : "manage-identity-providers",
"description" : "${role_manage-identity-providers}",
"composite" : false,
"clientRole" : true,
"containerId" : "5cd99170-3ab2-4523-803d-ce5eec5bad23",
"attributes" : { }
}, {
"id" : "596909b0-ac04-46ac-9f4e-c5c27ea7db9b",
"name" : "query-clients",
"description" : "${role_query-clients}",
"composite" : false,
"clientRole" : true,
"containerId" : "5cd99170-3ab2-4523-803d-ce5eec5bad23",
"attributes" : { }
}, {
"id" : "14326801-dc44-43a1-93da-ab65e0ea6510",
"name" : "view-events",
"description" : "${role_view-events}",
"composite" : false,
"clientRole" : true,
"containerId" : "5cd99170-3ab2-4523-803d-ce5eec5bad23",
"attributes" : { }
}, {
"id" : "b7c44cf2-bc24-4cbc-87fa-62e40a3f3f14",
"name" : "impersonation",
"description" : "${role_impersonation}",
"composite" : false,
"clientRole" : true,
"containerId" : "5cd99170-3ab2-4523-803d-ce5eec5bad23",
"attributes" : { }
}, {
"id" : "8522970e-0258-441d-b26a-555f423d8fc4",
"name" : "view-realm",
"description" : "${role_view-realm}",
"composite" : false,
"clientRole" : true,
"containerId" : "5cd99170-3ab2-4523-803d-ce5eec5bad23",
"attributes" : { }
}, {
"id" : "773ffadd-ee4c-47d4-8fcb-60fc595327ce",
"name" : "query-realms",
"description" : "${role_query-realms}",
"composite" : false,
"clientRole" : true,
"containerId" : "5cd99170-3ab2-4523-803d-ce5eec5bad23",
"attributes" : { }
} ],
"security-admin-console" : [ ],
"client1-private_key_jwt-PS256-PS256" : [ {
"id" : "189f0830-ab22-4110-b2c2-187f95ecc106",
"name" : "sample-client-role",
"description" : "Sample client role",
"composite" : false,
"clientRole" : true,
"containerId" : "0380f98c-7567-40e7-9e4a-82f0249dc4e7",
"attributes" : {
"sample-client-role-attribute" : [ "sample-client-role-attribute-value" ]
}
} ],
"client2-mtls-RS256-PS256" : [ ],
"account-console" : [ ],
"broker" : [ {
"id" : "f5306d35-004b-4cf8-95de-8cc4f0a67e52",
"name" : "read-token",
"description" : "${role_read-token}",
"composite" : false,
"clientRole" : true,
"containerId" : "08568f33-4a6e-473e-be04-0916fb5a2be4",
"attributes" : { }
} ],
"client1-mtls-ES256-ES256" : [ {
"id" : "99744b7e-4844-49a1-b87a-ecc7e6598bfd",
"name" : "sample-client-role",
"description" : "Sample client role",
"composite" : false,
"clientRole" : true,
"containerId" : "5826281c-f5c0-4d06-a49f-0b877b49dd8e",
"attributes" : {
"sample-client-role-attribute" : [ "sample-client-role-attribute-value" ]
}
} ],
"client2-private_key_jwt-ES256-ES256" : [ {
"id" : "5f22ea34-86f1-4f22-8d2c-a18be942855c",
"name" : "sample-client-role",
"description" : "Sample client role",
"composite" : false,
"clientRole" : true,
"containerId" : "227af5b9-0899-4949-8c0f-85bad117a14c",
"attributes" : {
"sample-client-role-attribute" : [ "sample-client-role-attribute-value" ]
}
} ],
"client2-private_key_jwt-RS256-PS256" : [ ],
"client2-mtls-PS256-PS256" : [ {
"id" : "52fd4599-a849-4b27-8781-68cd94a60440",
"name" : "sample-client-role",
"description" : "Sample client role",
"composite" : false,
"clientRole" : true,
"containerId" : "fe548191-270e-4749-bcae-930a9abbc66e",
"attributes" : {
"sample-client-role-attribute" : [ "sample-client-role-attribute-value" ]
}
} ],
"client2-private_key_jwt-PS256-PS256" : [ {
"id" : "b59f0f78-170f-414d-b6f4-6f2897160460",
"name" : "sample-client-role",
"description" : "Sample client role",
"composite" : false,
"clientRole" : true,
"containerId" : "2c93ead7-256f-4260-848a-207b4ffe740b",
"attributes" : {
"sample-client-role-attribute" : [ "sample-client-role-attribute-value" ]
}
} ],
"resource-server" : [ ],
"admin-cli" : [ ],
"client2-mtls-ES256-ES256" : [ {
"id" : "716f0be8-24a4-42fa-8fef-9ddb23d45263",
"name" : "sample-client-role",
"description" : "Sample client role",
"composite" : false,
"clientRole" : true,
"containerId" : "7e359b9f-a9ed-41d3-8bef-5323191ad7a1",
"attributes" : {
"sample-client-role-attribute" : [ "sample-client-role-attribute-value" ]
}
} ],
"account" : [ {
"id" : "c8f09c48-3a1b-428e-82f6-417563ecaf77",
"name" : "view-profile",
"description" : "${role_view-profile}",
"composite" : false,
"clientRole" : true,
"containerId" : "24a39fa7-92e4-42c2-997e-8830ad9ae528",
"attributes" : { }
}, {
"id" : "72dd05bc-5302-442e-8eb8-2d2c39ae069e",
"name" : "view-consent",
"description" : "${role_view-consent}",
"composite" : false,
"clientRole" : true,
"containerId" : "24a39fa7-92e4-42c2-997e-8830ad9ae528",
"attributes" : { }
}, {
"id" : "dcc977e5-9948-4f80-91f9-9ad9e0316b2f",
"name" : "manage-account",
"description" : "${role_manage-account}",
"composite" : true,
"composites" : {
"client" : {
"account" : [ "manage-account-links" ]
}
},
"clientRole" : true,
"containerId" : "24a39fa7-92e4-42c2-997e-8830ad9ae528",
"attributes" : { }
}, {
"id" : "6c3f3831-2c8e-48a2-b66e-d0ab515cc357",
"name" : "view-applications",
"description" : "${role_view-applications}",
"composite" : false,
"clientRole" : true,
"containerId" : "24a39fa7-92e4-42c2-997e-8830ad9ae528",
"attributes" : { }
}, {
"id" : "e1ab60d9-e8ab-4bf0-b3f9-919044452e59",
"name" : "delete-account",
"description" : "${role_delete-account}",
"composite" : false,
"clientRole" : true,
"containerId" : "24a39fa7-92e4-42c2-997e-8830ad9ae528",
"attributes" : { }
}, {
"id" : "b53ebf49-ece6-46c6-942c-97493dffe307",
"name" : "manage-account-links",
"description" : "${role_manage-account-links}",
"composite" : false,
"clientRole" : true,
"containerId" : "24a39fa7-92e4-42c2-997e-8830ad9ae528",
"attributes" : { }
}, {
"id" : "0ab3e6f1-eb82-494a-8dc1-d6ee1ef401b4",
"name" : "manage-consent",
"description" : "${role_manage-consent}",
"composite" : true,
"composites" : {
"client" : {
"account" : [ "view-consent" ]
}
},
"clientRole" : true,
"containerId" : "24a39fa7-92e4-42c2-997e-8830ad9ae528",
"attributes" : { }
} ],
"client1-mtls-RS256-PS256" : [ ]
}
},
"groups" : [ ],
"defaultRole" : {
"id" : "ecfc80a3-e77b-47f5-bb70-c3c0f4a07989",
"name" : "default-roles-test",
"description" : "${role_default-roles}",
"composite" : true,
"clientRole" : false,
"containerId" : "test"
},
"requiredCredentials" : [ "password" ],
"otpPolicyType" : "totp",
"otpPolicyAlgorithm" : "HmacSHA1",
"otpPolicyInitialCounter" : 0,
"otpPolicyDigits" : 6,
"otpPolicyLookAheadWindow" : 1,
"otpPolicyPeriod" : 30,
"otpSupportedApplications" : [ "FreeOTP", "Google Authenticator" ],
"webAuthnPolicyRpEntityName" : "keycloak",
"webAuthnPolicySignatureAlgorithms" : [ "ES256" ],
"webAuthnPolicyRpId" : "",
"webAuthnPolicyAttestationConveyancePreference" : "not specified",
"webAuthnPolicyAuthenticatorAttachment" : "not specified",
"webAuthnPolicyRequireResidentKey" : "not specified",
"webAuthnPolicyUserVerificationRequirement" : "not specified",
"webAuthnPolicyCreateTimeout" : 0,
"webAuthnPolicyAvoidSameAuthenticatorRegister" : false,
"webAuthnPolicyAcceptableAaguids" : [ ],
"webAuthnPolicyPasswordlessRpEntityName" : "keycloak",
"webAuthnPolicyPasswordlessSignatureAlgorithms" : [ "ES256" ],
"webAuthnPolicyPasswordlessRpId" : "",
"webAuthnPolicyPasswordlessAttestationConveyancePreference" : "not specified",
"webAuthnPolicyPasswordlessAuthenticatorAttachment" : "not specified",
"webAuthnPolicyPasswordlessRequireResidentKey" : "not specified",
"webAuthnPolicyPasswordlessUserVerificationRequirement" : "not specified",
"webAuthnPolicyPasswordlessCreateTimeout" : 0,
"webAuthnPolicyPasswordlessAvoidSameAuthenticatorRegister" : false,
"webAuthnPolicyPasswordlessAcceptableAaguids" : [ ],
"clientProfiles" : {
"profiles" : [ {
"name" : "fapi-1-0-advanced-final-profile",
"description" : "The profile for FAPI 1.0 advanced security profile Final version",
"builtin" : false,
"executors" : [ {
"secure-responsetype-executor" : { }
}, {
"secure-reqobj-executor" : { }
} ]
} ]
},
"clientPolicies" : {
"policies" : [ {
"name" : "builtin-default-policy",
"builtin" : true,
"enable" : false
}, {
"name" : "fapi-1-0-advanced-final-policy",
"description" : "The policy for FAPI 1.0 advanced security profile Final version",
"builtin" : false,
"enable" : true,
"conditions" : [ {
"clientroles-condition" : {
"roles" : [ "sample-client-role" ]
}
} ],
"profiles" : [ "fapi-1-0-advanced-final-profile" ]
} ]
},
"users" : [ {
"id" : "5e09dbcc-2277-4f42-b258-5a2d03061c73",
"username" : "john",
"enabled" : true,
"totp" : false,
"emailVerified" : false,
"credentials" : [ {
"id" : "e55dcbf5-a385-4989-9b5c-1662760516db",
"type" : "password",
"createdDate" : 1622127529850,
"secretData" : "{\"value\":\"klB2gS9gjsoh7QJHK2bdQB8X07IzSPFo3Tvrz425GTQDHutIsK/HWwHiS9cYG7mXi50lCTsbfToY2LyAjuxWrg==\",\"salt\":\"JArbFLKeecY4wyGL/ObujQ==\",\"additionalParameters\":{}}",
"credentialData" : "{\"hashIterations\":27500,\"algorithm\":\"pbkdf2-sha256\",\"additionalParameters\":{}}"
} ],
"disableableCredentialTypes" : [ ],
"requiredActions" : [ ],
"notBefore" : 0,
"groups" : [ ]
}, {
"id" : "ae8e2cd7-c68c-4ce3-8c76-28f1dff8566d",
"username" : "mike",
"enabled" : true,
"totp" : false,
"emailVerified" : false,
"credentials" : [ {
"id" : "a16e66c3-7f37-461f-9b59-4883b9d5daef",
"type" : "password",
"createdDate" : 1622127529952,
"secretData" : "{\"value\":\"pulx7Wzwu5HoM2LsYCF4L4zYRfqqqni2lqL27A7H2IaCGBfkS20sMC8CJxUBlZivguOpr9ky9F05+338owt2lA==\",\"salt\":\"5tpvD4vZsH2Il+NF6lZu/Q==\",\"additionalParameters\":{}}",
"credentialData" : "{\"hashIterations\":27500,\"algorithm\":\"pbkdf2-sha256\",\"additionalParameters\":{}}"
} ],
"disableableCredentialTypes" : [ ],
"requiredActions" : [ ],
"notBefore" : 0,
"groups" : [ ]
} ],
"scopeMappings" : [ {
"clientScope" : "offline_access",
"roles" : [ "offline_access" ]
} ],
"clientScopeMappings" : {
"account" : [ {
"client" : "account-console",
"roles" : [ "manage-account" ]
} ]
},
"clients" : [ {
"id" : "24a39fa7-92e4-42c2-997e-8830ad9ae528",
"clientId" : "account",
"name" : "${client_account}",
"rootUrl" : "${authBaseUrl}",
"baseUrl" : "/realms/test/account/",
"surrogateAuthRequired" : false,
"surrogateAuthRequired" : false,
"enabled" : true,
"alwaysDisplayInConsole" : false,
"clientAuthenticatorType" : "client-secret",
"redirectUris" : [ "/realms/test/account/*" ],
"webOrigins" : [ ],
"notBefore" : 0,
"bearerOnly" : false,
"consentRequired" : false,
"standardFlowEnabled" : true,
"implicitFlowEnabled" : false,
"directAccessGrantsEnabled" : false,
"serviceAccountsEnabled" : false,
"publicClient" : true,
"frontchannelLogout" : false,
"protocol" : "openid-connect",
"attributes" : { },
"authenticationFlowBindingOverrides" : { },
"fullScopeAllowed" : false,
"nodeReRegistrationTimeout" : 0,
"defaultClientScopes" : [ "web-origins", "profile", "roles", "email" ],
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
}, {
"id" : "487903b1-46cc-4abc-9a12-13aa470659d3",
"clientId" : "account-console",
"name" : "${client_account-console}",
"rootUrl" : "${authBaseUrl}",
"baseUrl" : "/realms/test/account/",
"surrogateAuthRequired" : false,
"enabled" : true,
"alwaysDisplayInConsole" : false,
"clientAuthenticatorType" : "client-secret",
"redirectUris" : [ "/realms/test/account/*" ],
"webOrigins" : [ ],
"notBefore" : 0,
"bearerOnly" : false,
"consentRequired" : false,
"standardFlowEnabled" : true,
"implicitFlowEnabled" : false,
"directAccessGrantsEnabled" : false,
"serviceAccountsEnabled" : false,
"publicClient" : true,
"frontchannelLogout" : false,
"protocol" : "openid-connect",
"attributes" : {
"pkce.code.challenge.method" : "S256"
},
"authenticationFlowBindingOverrides" : { },
"fullScopeAllowed" : false,
"nodeReRegistrationTimeout" : 0,
"protocolMappers" : [ {
"id" : "859d7e93-8821-4d5d-85ea-76200fc5d448",
"name" : "audience resolve",
"protocol" : "openid-connect",
"protocolMapper" : "oidc-audience-resolve-mapper",
"consentRequired" : false,
"config" : { }
} ],
"defaultClientScopes" : [ "web-origins", "profile", "roles", "email" ],
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
}, {
"id" : "2e484d8e-eb2f-4770-af57-9664be467b06",
"clientId" : "admin-cli",
"name" : "${client_admin-cli}",
"surrogateAuthRequired" : false,
"enabled" : true,
"alwaysDisplayInConsole" : false,
"clientAuthenticatorType" : "client-secret",
"redirectUris" : [ ],
"webOrigins" : [ ],
"notBefore" : 0,
"bearerOnly" : false,
"consentRequired" : false,
"standardFlowEnabled" : false,
"implicitFlowEnabled" : false,
"directAccessGrantsEnabled" : true,
"serviceAccountsEnabled" : false,
"publicClient" : true,
"frontchannelLogout" : false,
"protocol" : "openid-connect",
"attributes" : { },
"authenticationFlowBindingOverrides" : { },
"fullScopeAllowed" : false,
"nodeReRegistrationTimeout" : 0,
"defaultClientScopes" : [ "web-origins", "profile", "roles", "email" ],
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
}, {
"id" : "08568f33-4a6e-473e-be04-0916fb5a2be4",
"clientId" : "broker",
"name" : "${client_broker}",
"surrogateAuthRequired" : false,
"enabled" : true,
"alwaysDisplayInConsole" : false,
"clientAuthenticatorType" : "client-secret",
"redirectUris" : [ ],
"webOrigins" : [ ],
"notBefore" : 0,
"bearerOnly" : true,
"consentRequired" : false,
"standardFlowEnabled" : true,
"implicitFlowEnabled" : false,
"directAccessGrantsEnabled" : false,
"serviceAccountsEnabled" : false,
"publicClient" : false,
"frontchannelLogout" : false,
"protocol" : "openid-connect",
"attributes" : { },
"authenticationFlowBindingOverrides" : { },
"fullScopeAllowed" : false,
"nodeReRegistrationTimeout" : 0,
"defaultClientScopes" : [ "web-origins", "profile", "roles", "email" ],
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
}, {
"id" : "5826281c-f5c0-4d06-a49f-0b877b49dd8e",
"clientId" : "client1-mtls-ES256-ES256",
"surrogateAuthRequired" : false,
"enabled" : true,
"alwaysDisplayInConsole" : false,
"clientAuthenticatorType" : "client-x509",
"redirectUris" : [ "https://localhost.emobix.co.uk/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-3.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-6.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-1.certification.openid.net/test/a/keycloak/callback", "https://www.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-7.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-7.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://staging.certification.openid.net/test/a/keycloak/callback", "https://staging.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://conformance-suite.keycloak-fapi.org/test/a/keycloak/callback", "https://review-app-dev-branch-2.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-3.certification.openid.net/test/a/keycloak/callback", "https://localhost:8443/test/a/keycloak/callback", "https://review-app-dev-branch-2.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-6.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-8.certification.openid.net/test/a/keycloak/callback", "https://conformance-suite.keycloak-fapi.org/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-9.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-1.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-4.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-5.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-9.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://localhost.emobix.co.uk/test/a/keycloak/callback", "https://review-app-dev-branch-5.certification.openid.net/test/a/keycloak/callback", "https://demo.certification.openid.net/test/a/keycloak/callback", "https://localhost.emobix.co.uk:8443/test/a/keycloak/callback", "https://localhost.emobix.co.uk:8443/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://demo.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-8.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://localhost:8443/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-4.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://www.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum" ],
"webOrigins" : [ "https://review-app-dev-branch-2.certification.openid.net", "https://review-app-dev-branch-7.certification.openid.net", "https://review-app-dev-branch-8.certification.openid.net", "https://www.certification.openid.net", "https://review-app-dev-branch-6.certification.openid.net", "https://conformance-suite.keycloak-fapi.org", "https://localhost.emobix.co.uk", "https://review-app-dev-branch-9.certification.openid.net", "https://review-app-dev-branch-1.certification.openid.net", "https://localhost.emobix.co.uk:8443", "https://staging.certification.openid.net", "https://review-app-dev-branch-5.certification.openid.net", "https://review-app-dev-branch-4.certification.openid.net", "https://demo.certification.openid.net", "https://localhost:8443", "https://review-app-dev-branch-3.certification.openid.net" ],
"notBefore" : 0,
"bearerOnly" : false,
"consentRequired" : true,
"standardFlowEnabled" : true,
"implicitFlowEnabled" : true,
"directAccessGrantsEnabled" : false,
"serviceAccountsEnabled" : false,
"publicClient" : false,
"frontchannelLogout" : false,
"protocol" : "openid-connect",
"attributes" : {
"id.token.signed.response.alg" : "ES256",
"request.object.signature.alg" : "ES256",
"x509.subjectdn" : "CN=client1, OU=Keycloak-fapi, O=Secure OSS Sig, ST=Client, C=JP",
"jwks.url" : "http://client_jwks_server:3000/?kid=client1-ES256",
"jwt.credential.kid" : "client1-ES256",
"request.object.required" : "request or request_uri",
"tls.client.certificate.bound.access.tokens" : "true",
"use.jwks.url" : "true",
"access.token.signed.response.alg" : "RS256",
"exclude.session.state.from.auth.response" : "false"
},
"authenticationFlowBindingOverrides" : { },
"fullScopeAllowed" : true,
"nodeReRegistrationTimeout" : -1,
"protocolMappers" : [ {
"id" : "fcdaca39-b62a-48f0-99e4-62dcfcadb517",
"name" : "acr",
"protocol" : "openid-connect",
"protocolMapper" : "oidc-hardcoded-claim-mapper",
"consentRequired" : false,
"config" : {
"claim.value" : "urn:mace:incommon:iap:silver",
"userinfo.token.claim" : "false",
"id.token.claim" : "true",
"access.token.claim" : "false",
"claim.name" : "acr",
"jsonType.label" : "String"
}
}, {
"id" : "fe2bb344-d972-4462-be6f-321559ca3a1e",
"name" : "aud",
"protocol" : "openid-connect",
"protocolMapper" : "oidc-audience-mapper",
"consentRequired" : false,
"config" : {
"included.client.audience" : "resource-server",
"id.token.claim" : "false",
"access.token.claim" : "true",
"userinfo.token.claim" : "false"
}
} ],
"defaultClientScopes" : [ "web-origins", "profile", "roles", "email" ],
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
}, {
"id" : "c61d93dc-467d-4fa9-9b58-6d21e2276eac",
"clientId" : "client1-mtls-PS256-PS256",
"surrogateAuthRequired" : false,
"enabled" : true,
"alwaysDisplayInConsole" : false,
"clientAuthenticatorType" : "client-x509",
"redirectUris" : [ "https://localhost.emobix.co.uk/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-3.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-6.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-1.certification.openid.net/test/a/keycloak/callback", "https://www.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-7.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-7.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://staging.certification.openid.net/test/a/keycloak/callback", "https://staging.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://conformance-suite.keycloak-fapi.org/test/a/keycloak/callback", "https://review-app-dev-branch-2.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-3.certification.openid.net/test/a/keycloak/callback", "https://localhost:8443/test/a/keycloak/callback", "https://review-app-dev-branch-2.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-6.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-8.certification.openid.net/test/a/keycloak/callback", "https://conformance-suite.keycloak-fapi.org/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-9.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-1.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-4.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-5.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-9.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://localhost.emobix.co.uk/test/a/keycloak/callback", "https://review-app-dev-branch-5.certification.openid.net/test/a/keycloak/callback", "https://demo.certification.openid.net/test/a/keycloak/callback", "https://localhost.emobix.co.uk:8443/test/a/keycloak/callback", "https://localhost.emobix.co.uk:8443/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://demo.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-8.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://localhost:8443/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-4.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://www.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum" ],
"webOrigins" : [ "https://review-app-dev-branch-2.certification.openid.net", "https://review-app-dev-branch-7.certification.openid.net", "https://review-app-dev-branch-8.certification.openid.net", "https://www.certification.openid.net", "https://review-app-dev-branch-6.certification.openid.net", "https://conformance-suite.keycloak-fapi.org", "https://localhost.emobix.co.uk", "https://review-app-dev-branch-9.certification.openid.net", "https://review-app-dev-branch-1.certification.openid.net", "https://localhost.emobix.co.uk:8443", "https://staging.certification.openid.net", "https://review-app-dev-branch-5.certification.openid.net", "https://review-app-dev-branch-4.certification.openid.net", "https://demo.certification.openid.net", "https://localhost:8443", "https://review-app-dev-branch-3.certification.openid.net" ],
"notBefore" : 0,
"bearerOnly" : false,
"consentRequired" : true,
"standardFlowEnabled" : true,
"implicitFlowEnabled" : true,
"directAccessGrantsEnabled" : false,
"serviceAccountsEnabled" : false,
"publicClient" : false,
"frontchannelLogout" : false,
"protocol" : "openid-connect",
"attributes" : {
"id.token.signed.response.alg" : "PS256",
"request.object.signature.alg" : "PS256",
"x509.subjectdn" : "CN=client1, OU=Keycloak-fapi, O=Secure OSS Sig, ST=Client, C=JP",
"jwks.url" : "http://client_jwks_server:3000/?kid=client1-PS256",
"jwt.credential.kid" : "client1-PS256",
"request.object.required" : "request or request_uri",
"tls.client.certificate.bound.access.tokens" : "true",
"use.jwks.url" : "true",
"access.token.signed.response.alg" : "RS256",
"exclude.session.state.from.auth.response" : "false"
},
"authenticationFlowBindingOverrides" : { },
"fullScopeAllowed" : true,
"nodeReRegistrationTimeout" : -1,
"protocolMappers" : [ {
"id" : "b4868ac7-b047-4d20-8345-a820c5b07485",
"name" : "aud",
"protocol" : "openid-connect",
"protocolMapper" : "oidc-audience-mapper",
"consentRequired" : false,
"config" : {
"included.client.audience" : "resource-server",
"id.token.claim" : "false",
"access.token.claim" : "true",
"userinfo.token.claim" : "false"
}
}, {
"id" : "74cd697c-3ffe-42a9-9089-14278fb26f15",
"name" : "acr",
"protocol" : "openid-connect",
"protocolMapper" : "oidc-hardcoded-claim-mapper",
"consentRequired" : false,
"config" : {
"claim.value" : "urn:mace:incommon:iap:silver",
"userinfo.token.claim" : "false",
"id.token.claim" : "true",
"access.token.claim" : "false",
"claim.name" : "acr",
"jsonType.label" : "String"
}
} ],
"defaultClientScopes" : [ "web-origins", "profile", "roles", "email" ],
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
}, {
"id" : "59925bf4-5a13-465c-811e-43c16372b704",
"clientId" : "client1-mtls-RS256-PS256",
"surrogateAuthRequired" : false,
"enabled" : true,
"alwaysDisplayInConsole" : false,
"clientAuthenticatorType" : "client-x509",
"redirectUris" : [ "https://localhost.emobix.co.uk/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-3.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-6.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-1.certification.openid.net/test/a/keycloak/callback", "https://www.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-7.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-7.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://staging.certification.openid.net/test/a/keycloak/callback", "https://staging.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://conformance-suite.keycloak-fapi.org/test/a/keycloak/callback", "https://review-app-dev-branch-2.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-3.certification.openid.net/test/a/keycloak/callback", "https://localhost:8443/test/a/keycloak/callback", "https://review-app-dev-branch-2.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-6.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-8.certification.openid.net/test/a/keycloak/callback", "https://conformance-suite.keycloak-fapi.org/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-9.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-1.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-4.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-5.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-9.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://localhost.emobix.co.uk/test/a/keycloak/callback", "https://review-app-dev-branch-5.certification.openid.net/test/a/keycloak/callback", "https://demo.certification.openid.net/test/a/keycloak/callback", "https://localhost.emobix.co.uk:8443/test/a/keycloak/callback", "https://localhost.emobix.co.uk:8443/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://demo.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-8.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://localhost:8443/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-4.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://www.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum" ],
"webOrigins" : [ "https://review-app-dev-branch-2.certification.openid.net", "https://review-app-dev-branch-7.certification.openid.net", "https://review-app-dev-branch-8.certification.openid.net", "https://www.certification.openid.net", "https://review-app-dev-branch-6.certification.openid.net", "https://conformance-suite.keycloak-fapi.org", "https://localhost.emobix.co.uk", "https://review-app-dev-branch-9.certification.openid.net", "https://review-app-dev-branch-1.certification.openid.net", "https://localhost.emobix.co.uk:8443", "https://staging.certification.openid.net", "https://review-app-dev-branch-5.certification.openid.net", "https://review-app-dev-branch-4.certification.openid.net", "https://demo.certification.openid.net", "https://localhost:8443", "https://review-app-dev-branch-3.certification.openid.net" ],
"notBefore" : 0,
"bearerOnly" : false,
"consentRequired" : true,
"standardFlowEnabled" : true,
"implicitFlowEnabled" : true,
"directAccessGrantsEnabled" : false,
"serviceAccountsEnabled" : false,
"publicClient" : false,
"frontchannelLogout" : false,
"protocol" : "openid-connect",
"attributes" : {
"id.token.signed.response.alg" : "PS256",
"request.object.signature.alg" : "RS256",
"x509.subjectdn" : "CN=client1, OU=Keycloak-fapi, O=Secure OSS Sig, ST=Client, C=JP",
"jwks.url" : "http://client_jwks_server:3000/?kid=client1-RS256",
"jwt.credential.kid" : "client1-RS256",
"request.object.required" : "request or request_uri",
"tls.client.certificate.bound.access.tokens" : "true",
"use.jwks.url" : "true",
"access.token.signed.response.alg" : "RS256",
"exclude.session.state.from.auth.response" : "false"
},
"authenticationFlowBindingOverrides" : { },
"fullScopeAllowed" : true,
"nodeReRegistrationTimeout" : -1,
"protocolMappers" : [ {
"id" : "b89011df-5a7f-4ebf-b83e-3aaa4f9f9d2f",
"name" : "aud",
"protocol" : "openid-connect",
"protocolMapper" : "oidc-audience-mapper",
"consentRequired" : false,
"config" : {
"included.client.audience" : "resource-server",
"id.token.claim" : "false",
"access.token.claim" : "true",
"userinfo.token.claim" : "false"
}
}, {
"id" : "0c5da657-6683-418a-876a-5da349dec0d5",
"name" : "acr",
"protocol" : "openid-connect",
"protocolMapper" : "oidc-hardcoded-claim-mapper",
"consentRequired" : false,
"config" : {
"claim.value" : "urn:mace:incommon:iap:silver",
"userinfo.token.claim" : "false",
"id.token.claim" : "true",
"access.token.claim" : "false",
"claim.name" : "acr",
"jsonType.label" : "String"
}
} ],
"defaultClientScopes" : [ "web-origins", "profile", "roles", "email" ],
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
}, {
"id" : "a40263fd-7e4a-4c63-9544-763dd178fffb",
"clientId" : "client1-private_key_jwt-ES256-ES256",
"surrogateAuthRequired" : false,
"enabled" : true,
"alwaysDisplayInConsole" : false,
"clientAuthenticatorType" : "client-jwt",
"redirectUris" : [ "https://localhost.emobix.co.uk/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-3.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-6.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-1.certification.openid.net/test/a/keycloak/callback", "https://www.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-7.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-7.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://staging.certification.openid.net/test/a/keycloak/callback", "https://staging.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://conformance-suite.keycloak-fapi.org/test/a/keycloak/callback", "https://review-app-dev-branch-2.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-3.certification.openid.net/test/a/keycloak/callback", "https://localhost:8443/test/a/keycloak/callback", "https://review-app-dev-branch-2.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-6.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-8.certification.openid.net/test/a/keycloak/callback", "https://conformance-suite.keycloak-fapi.org/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-9.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-1.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-4.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-5.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-9.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://localhost.emobix.co.uk/test/a/keycloak/callback", "https://review-app-dev-branch-5.certification.openid.net/test/a/keycloak/callback", "https://demo.certification.openid.net/test/a/keycloak/callback", "https://localhost.emobix.co.uk:8443/test/a/keycloak/callback", "https://localhost.emobix.co.uk:8443/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://demo.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-8.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://localhost:8443/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-4.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://www.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum" ],
"webOrigins" : [ "https://review-app-dev-branch-2.certification.openid.net", "https://review-app-dev-branch-7.certification.openid.net", "https://review-app-dev-branch-8.certification.openid.net", "https://www.certification.openid.net", "https://review-app-dev-branch-6.certification.openid.net", "https://conformance-suite.keycloak-fapi.org", "https://localhost.emobix.co.uk", "https://review-app-dev-branch-9.certification.openid.net", "https://review-app-dev-branch-1.certification.openid.net", "https://localhost.emobix.co.uk:8443", "https://staging.certification.openid.net", "https://review-app-dev-branch-5.certification.openid.net", "https://review-app-dev-branch-4.certification.openid.net", "https://demo.certification.openid.net", "https://localhost:8443", "https://review-app-dev-branch-3.certification.openid.net" ],
"notBefore" : 0,
"bearerOnly" : false,
"consentRequired" : true,
"standardFlowEnabled" : true,
"implicitFlowEnabled" : true,
"directAccessGrantsEnabled" : false,
"serviceAccountsEnabled" : false,
"publicClient" : false,
"frontchannelLogout" : false,
"protocol" : "openid-connect",
"attributes" : {
"id.token.signed.response.alg" : "ES256",
"request.object.signature.alg" : "ES256",
"jwks.url" : "http://client_jwks_server:3000/?kid=client1-ES256",
"jwt.credential.kid" : "client1-ES256",
"request.object.required" : "request or request_uri",
"tls.client.certificate.bound.access.tokens" : "true",
"use.jwks.url" : "true",
"access.token.signed.response.alg" : "RS256",
"exclude.session.state.from.auth.response" : "false"
},
"authenticationFlowBindingOverrides" : { },
"fullScopeAllowed" : true,
"nodeReRegistrationTimeout" : -1,
"protocolMappers" : [ {
"id" : "485a77d9-c850-417b-b789-a5d6b97c0dec",
"name" : "acr",
"protocol" : "openid-connect",
"protocolMapper" : "oidc-hardcoded-claim-mapper",
"consentRequired" : false,
"config" : {
"claim.value" : "urn:mace:incommon:iap:silver",
"userinfo.token.claim" : "false",
"id.token.claim" : "true",
"access.token.claim" : "false",
"claim.name" : "acr",
"jsonType.label" : "String"
}
}, {
"id" : "1b271034-5a37-4e65-ac82-d8e6870c025e",
"name" : "aud",
"protocol" : "openid-connect",
"protocolMapper" : "oidc-audience-mapper",
"consentRequired" : false,
"config" : {
"included.client.audience" : "resource-server",
"id.token.claim" : "false",
"access.token.claim" : "true",
"userinfo.token.claim" : "false"
}
} ],
"defaultClientScopes" : [ "web-origins", "profile", "roles", "email" ],
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
}, {
"id" : "0380f98c-7567-40e7-9e4a-82f0249dc4e7",
"clientId" : "client1-private_key_jwt-PS256-PS256",
"surrogateAuthRequired" : false,
"enabled" : true,
"alwaysDisplayInConsole" : false,
"clientAuthenticatorType" : "client-jwt",
"redirectUris" : [ "https://localhost.emobix.co.uk/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-3.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-6.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-1.certification.openid.net/test/a/keycloak/callback", "https://www.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-7.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-7.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://staging.certification.openid.net/test/a/keycloak/callback", "https://staging.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://conformance-suite.keycloak-fapi.org/test/a/keycloak/callback", "https://review-app-dev-branch-2.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-3.certification.openid.net/test/a/keycloak/callback", "https://localhost:8443/test/a/keycloak/callback", "https://review-app-dev-branch-2.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-6.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-8.certification.openid.net/test/a/keycloak/callback", "https://conformance-suite.keycloak-fapi.org/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-9.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-1.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-4.certification.openid.net/test/a/keycloak/callback", "https://review-app-dev-branch-5.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-9.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://localhost.emobix.co.uk/test/a/keycloak/callback", "https://review-app-dev-branch-5.certification.openid.net/test/a/keycloak/callback", "https://demo.certification.openid.net/test/a/keycloak/callback", "https://localhost.emobix.co.uk:8443/test/a/keycloak/callback", "https://localhost.emobix.co.uk:8443/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://demo.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-8.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://localhost:8443/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://review-app-dev-branch-4.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum", "https://www.certification.openid.net/test/a/keycloak/callback?dummy1=lorem&dummy2=ipsum" ],
"webOrigins" : [ "https://review-app-dev-branch-2.certification.openid.net", "https://review-app-dev-branch-7.certification.openid.net", "https://review-app-dev-branch-8.certification.openid.net", "https://www.certification.openid.net", "https://review-app-dev-branch-6.certification.openid.net", "https://conformance-suite.keycloak-fapi.org", "https://localhost.emobix.co.uk", "https://review-app-dev-branch-9.certification.openid.net", "https://review-app-dev-branch-1.certification.openid.net", "https://localhost.emobix.co.uk:8443", "https://staging.certification.openid.net", "https://review-app-dev-branch-5.certification.openid.net", "https://review-app-dev-branch-4.certification.openid.net", "https://demo.certification.openid.net", "https://localhost:8443", "https://review-app-dev-branch-3.certification.openid.net" ],
"notBefore" : 0,
"bearerOnly" : false,
"consentRequired" : true,
"standardFlowEnabled" : true,
"implicitFlowEnabled" : true,
"directAccessGrantsEnabled" : false,
"serviceAccountsEnabled" : false,
"publicClient" : false,
"frontchannelLogout" : false,
"protocol" : "openid-connect",
"attributes" : {
"id.token.signed.response.alg" : "PS256",
"request.object.signature.alg" : "PS256",
"jwks.url" : "http://client_jwks_server:3000/?kid=client1-PS256",
"jwt.credential.kid" : "client1-PS256",
"request.object.required" : "request or request_uri",
"tls.client.certificate.bound.access.tokens" : "true",
"use.jwks.url" : "true",
"access.token.signed.response.alg" : "RS256",
"exclude.session.state.from.auth.response" : "false"
},
"authenticationFlowBindingOverrides" : { },
"fullScopeAllowed" : true,
"nodeReRegistrationTimeout" : -1,
"protocolMappers" : [ {
"id" : "a537813b-cc02-46ec-893a-c640359ef56a",
"name" : "acr",
"protocol" : "openid-connect",
"protocolMapper" : "oidc-hardcoded-claim-mapper",
"consentRequired" : false,
"config" : {
"claim.value" : "urn:mace:incommon:iap:silver",
"userinfo.token.claim" : "false",
"id.token.claim" : "true",
"access.token.claim" : "false",
"claim.name" : "acr",
"jsonType.label" : "String"
}
}, {
"id" : "5c22f82f-1b10-4b54-a46a-3d3194526c2f",
"name" : "aud",
"protocol" : "openid-connect",
"protocolMapper" : "oidc-audience-mapper",
"consentRequired" : false,
"config" : {
"included.client.audience" : "resource-server",
"id.token.claim" : "false",
"access.token.claim" : "true",
"userinfo.token.claim" : "false"
}
} ],
"defaultClientScopes" : [ "web-origins", "profile", "roles", "email" ],
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ]
}, {
"id" : "ddaa91cd-1d8e-45eb-930d-589a4af2dd86",
"clientId" : "client1-private_key_jwt-RS256-PS256",
"surrogateAuthRequired" : false,
"enabled" : true,
"alwaysDisplayInConsole" : false,
"clientAuthenticatorType" : "client-jwt",