libre.sh/keycloak-scim
3
0
Fork 0
Code Issues 15 Pull requests Releases 1 Packages Activity Actions

Merge pull request #1194 from patriot1burke/master

Browse source 
READ_TOKEN -> read-token
This commit is contained in:
Bill Burke 2015-04-29 10:21:48 -04:00
commit fd620ef505
5 changed files with 6 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
docbook/reference/en/en-US/modules/identity-broker.xml
View file

@ -289,7 +289,7 @@
<literal>Stored Tokens Readable</literal> <literal>Stored Tokens Readable</literal>
</entry> </entry>
<entry> <entry>
Automatically assigns a <literal>broker.READ_TOKEN</literal> role that allows the user Automatically assigns a <literal>broker.read-token</literal> role that allows the user
to access any stored external tokens via the broker service. to access any stored external tokens via the broker service.
</entry> </entry>
</row> </row>
@ -1151,7 +1151,7 @@ Authorization: Bearer {keycloak_access_token}]]></programlisting>
</para> </para>
<para> <para>
By default, the Keycloak access token issued for the application can't be automatically used for retrieve thirdparty token. By default, the Keycloak access token issued for the application can't be automatically used for retrieve thirdparty token.
A user will have to have the <literal>broker.READ_TOKEN</literal> role. The client will also have to have that role A user will have to have the <literal>broker.read-token</literal> role. The client will also have to have that role
in its scope. In the broker configuration page you can automatically assign this role to newly imported users by in its scope. In the broker configuration page you can automatically assign this role to newly imported users by
turning on the <literal>Stored Tokens Readable</literal> switch. turning on the <literal>Stored Tokens Readable</literal> switch.
</para> </para>

2
forms/common-themes/src/main/resources/theme/base/admin/resources/partials/realm-identity-provider-oidc.html
View file

@ -53,7 +53,7 @@
<div class="col-sm-4"> <div class="col-sm-4">
<input ng-model="identityProvider.addReadTokenRoleOnCreate" id="storedTokensReadable" onoffswitch /> <input ng-model="identityProvider.addReadTokenRoleOnCreate" id="storedTokensReadable" onoffswitch />
</div> </div>
<span tooltip-placement="right" tooltip="Enable/disable new users can read any stored tokens. This assigns the broker.READ_TOKEN role." class="fa fa-info-circle"></span> <span tooltip-placement="right" tooltip="Enable/disable new users can read any stored tokens. This assigns the broker.read-token role." class="fa fa-info-circle"></span>
</div> </div>
<div class="form-group"> <div class="form-group">
<label class="col-sm-2 control-label" for="updateProfileFirstLogin">Update Profile on First Login</label> <label class="col-sm-2 control-label" for="updateProfileFirstLogin">Update Profile on First Login</label>

2
forms/common-themes/src/main/resources/theme/base/admin/resources/partials/realm-identity-provider-saml.html
View file

@ -53,7 +53,7 @@
<div class="col-sm-4"> <div class="col-sm-4">
<input ng-model="identityProvider.addReadTokenRoleOnCreate" id="storedTokensReadable" onoffswitch /> <input ng-model="identityProvider.addReadTokenRoleOnCreate" id="storedTokensReadable" onoffswitch />
</div> </div>
<span tooltip-placement="right" tooltip="Enable/disable new users can read any stored tokens. This assigns the broker.READ_TOKEN role." class="fa fa-info-circle"></span> <span tooltip-placement="right" tooltip="Enable/disable new users can read any stored tokens. This assigns the broker.read-token role." class="fa fa-info-circle"></span>
</div> </div>
<div class="form-group"> <div class="form-group">
<label class="col-sm-2 control-label" for="updateProfileFirstLogin">Update Profile on First Login</label> <label class="col-sm-2 control-label" for="updateProfileFirstLogin">Update Profile on First Login</label>

2
forms/common-themes/src/main/resources/theme/base/admin/resources/partials/realm-identity-provider-social.html
View file

@ -57,7 +57,7 @@
<div class="col-sm-4"> <div class="col-sm-4">
<input ng-model="identityProvider.addReadTokenRoleOnCreate" id="storedTokensReadable" onoffswitch /> <input ng-model="identityProvider.addReadTokenRoleOnCreate" id="storedTokensReadable" onoffswitch />
</div> </div>
<span tooltip-placement="right" tooltip="Enable/disable new users can read any stored tokens. This assigns the broker.READ_TOKEN role." class="fa fa-info-circle"></span> <span tooltip-placement="right" tooltip="Enable/disable new users can read any stored tokens. This assigns the broker.read-token role." class="fa fa-info-circle"></span>
</div> </div>
<div class="form-group"> <div class="form-group">
<label class="col-sm-2 control-label" for="enabled">Enabled</label> <label class="col-sm-2 control-label" for="enabled">Enabled</label>

2
model/api/src/main/java/org/keycloak/models/Constants.java
View file

@ -13,6 +13,6 @@ public interface Constants {
String INSTALLED_APP_URN = "urn:ietf:wg:oauth:2.0:oob"; String INSTALLED_APP_URN = "urn:ietf:wg:oauth:2.0:oob";
String INSTALLED_APP_URL = "http://localhost"; String INSTALLED_APP_URL = "http://localhost";
String READ_TOKEN_ROLE = "READ_TOKEN"; String READ_TOKEN_ROLE = "read-token";
String[] BROKER_SERVICE_ROLES = {READ_TOKEN_ROLE}; String[] BROKER_SERVICE_ROLES = {READ_TOKEN_ROLE};
} }