From 77d17001bf084eaa410dc17676863b0710d99b1e Mon Sep 17 00:00:00 2001 From: Bill Burke Date: Wed, 29 Apr 2015 14:39:41 -0400 Subject: [PATCH 1/2] broker examples --- .../en/en-US/modules/identity-broker.xml | 34 +++++++++++++++++++ .../saml-broker-authentication/README.md | 2 ++ .../saml-broker-authentication-realm.json | 2 ++ 3 files changed, 38 insertions(+) mode change 100644 => 100755 examples/broker/saml-broker-authentication/README.md mode change 100644 => 100755 examples/broker/saml-broker-authentication/saml-broker-authentication-realm.json diff --git a/docbook/reference/en/en-US/modules/identity-broker.xml b/docbook/reference/en/en-US/modules/identity-broker.xml index 16d25ee708..6eb5320116 100755 --- a/docbook/reference/en/en-US/modules/identity-broker.xml +++ b/docbook/reference/en/en-US/modules/identity-broker.xml @@ -954,6 +954,23 @@ Allows you to specify the URL that will be used to send SAML authentication requests. + + + Single Logout Service Url + + + Allows you to specify the URL that will be used to send SAML logout requests. + + + + + Backchannel Logout + + + If set to true, logout to the external IDP will be done in a background HTTP request. If + set to false, then the browser will be redirected to the external IDP to perform the logout. + + NameID Policy Format @@ -1071,6 +1088,23 @@ The token url. + + + Logout Url + + + The IDP logout url. + + + + + Backchannel Logout + + + If set to true, logout to the external IDP will be done in a background HTTP request. If + set to false, then the browser will be redirected to the external IDP to perform the logout. + + User Info Url diff --git a/examples/broker/saml-broker-authentication/README.md b/examples/broker/saml-broker-authentication/README.md old mode 100644 new mode 100755 index 5525bac338..bbb1f96269 --- a/examples/broker/saml-broker-authentication/README.md +++ b/examples/broker/saml-broker-authentication/README.md @@ -60,8 +60,10 @@ configuration to setup an identity provider to broker the SAML Identity Provider "enabled": true, "updateProfileFirstLogin" : "true", "storeToken" : "true", + "addReadTokenRoleOnCreate": true, "config": { "singleSignOnServiceUrl": "http://localhost:8080/auth/realms/saml-broker-realm/protocol/saml", + "singleLogoutServiceUrl": "http://localhost:8080/auth/realms/saml-broker-realm/protocol/saml", "nameIDPolicyFormat": "urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress", "signingCertificate": "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", "wantAuthnRequestsSigned": true, diff --git a/examples/broker/saml-broker-authentication/saml-broker-authentication-realm.json b/examples/broker/saml-broker-authentication/saml-broker-authentication-realm.json old mode 100644 new mode 100755 index dac9e28aed..7bd32b0e46 --- a/examples/broker/saml-broker-authentication/saml-broker-authentication-realm.json +++ b/examples/broker/saml-broker-authentication/saml-broker-authentication-realm.json @@ -52,8 +52,10 @@ "enabled": true, "updateProfileFirstLogin" : "true", "storeToken" : "true", + "addReadTokenRoleOnCreate": true, "config": { "singleSignOnServiceUrl": "http://localhost:8080/auth/realms/saml-broker-realm/protocol/saml", + "singleLogoutServiceUrl": "http://localhost:8080/auth/realms/saml-broker-realm/protocol/saml", "nameIDPolicyFormat": "urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress", "signingCertificate": "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", "wantAuthnRequestsSigned": true, From 8d493381a9a4900b89e11ab196e1cdba8882a38b Mon Sep 17 00:00:00 2001 From: Bill Burke Date: Wed, 29 Apr 2015 15:52:15 -0400 Subject: [PATCH 2/2] fix account theme --- .../src/main/resources/META-INF/keycloak-themes.json | 4 ++++ .../main/resources/theme/keycloak/account/theme.properties | 6 +++--- 2 files changed, 7 insertions(+), 3 deletions(-) mode change 100644 => 100755 forms/common-themes/src/main/resources/META-INF/keycloak-themes.json mode change 100644 => 100755 forms/common-themes/src/main/resources/theme/keycloak/account/theme.properties diff --git a/forms/common-themes/src/main/resources/META-INF/keycloak-themes.json b/forms/common-themes/src/main/resources/META-INF/keycloak-themes.json old mode 100644 new mode 100755 index 56322d3176..17ebb979d7 --- a/forms/common-themes/src/main/resources/META-INF/keycloak-themes.json +++ b/forms/common-themes/src/main/resources/META-INF/keycloak-themes.json @@ -5,5 +5,9 @@ }, { "name" : "keycloak", "types": [ "admin", "account", "login", "common", "email", "welcome" ] + }, + { + "name" : "patternfly", + "types": [ "account"] }] } \ No newline at end of file diff --git a/forms/common-themes/src/main/resources/theme/keycloak/account/theme.properties b/forms/common-themes/src/main/resources/theme/keycloak/account/theme.properties old mode 100644 new mode 100755 index 611dff9110..81310f2151 --- a/forms/common-themes/src/main/resources/theme/keycloak/account/theme.properties +++ b/forms/common-themes/src/main/resources/theme/keycloak/account/theme.properties @@ -1,4 +1,4 @@ -parent=patternfly -import=common/keycloak - +parent=patternfly +import=common/keycloak + styles= ../patternfly/lib/patternfly/css/patternfly.css ../patternfly/css/account.css css/account.css \ No newline at end of file