{ "realm": "test-realm", "enabled": true, "accessTokenLifespan": 6000, "accessTokenLifespanForImplicitFlow": 1500, "accessCodeLifespan": 30, "accessCodeLifespanUserAction": 600, "offlineSessionIdleTimeout": 3600000, "requiredCredentials": [ "password" ], "defaultRoles": [ "foo", "bar" ], "verifyEmail" : "true", "smtpServer": { "from": "auto@keycloak.org", "host": "localhost", "port":"3025" }, "identityProviders" : [ { "providerId" : "google", "alias" : "google1", "enabled": true, "config": { "clientId": "googleId", "clientSecret": "googleSecret" } }, { "providerId" : "facebook", "alias" : "facebook1", "enabled": true, "config": { "clientId": "facebookId", "clientSecret": "facebookSecret" } }, { "providerId" : "twitter", "alias" : "twitter1", "enabled": true, "config": { "clientId": "twitterId", "clientSecret": "twitterSecret" } } ], "userFederationProviders": [ { "displayName": "MyLDAPProvider1", "providerName": "ldap", "priority": 1, "config": { "connectionUrl": "ldap://foo" } }, { "displayName": "MyLDAPProvider2", "providerName": "ldap", "priority": 2, "config": { "connectionUrl": "ldap://bar" } } ], "userFederationMappers": [ { "name": "FullNameMapper", "federationProviderDisplayName": "MyLDAPProvider1", "federationMapperType": "full-name-ldap-mapper", "config": { "ldap.full.name.attribute": "cn" } } ], "users": [ { "username": "wburke", "enabled": true, "createdTimestamp" : 123654, "attributes": { "email": "bburke@redhat.com" }, "credentials": [ { "type": "password", "value": "userpassword" } ], "applicationRoles": { "Application": [ "app-user" ], "OtherApp": [ "otherapp-user" ] } }, { "username": "loginclient", "createdTimestamp" : "123655", "enabled": true, "credentials": [ { "type": "password", "value": "clientpassword" } ] }, { "username": "admin", "enabled": true, "attributes": { "key1": [ "val1" ], "key2": [ "val21", "val22" ] }, "credentials": [ { "type": "password", "value": "adminpassword" } ], "realmRoles": [ "admin" ], "applicationRoles": { "Application": [ "app-admin" ], "OtherApp": [ "otherapp-admin" ] }, "clientConsents": [ { "clientId": "Application", "grantedRealmRoles": [ "admin" ], "grantedClientRoles": { "Application": [ "app-admin" ] } }, { "clientId": "OtherApp", "grantedRealmRoles": [ "admin" ], "grantedProtocolMappers": { "openid-connect": [ "gss delegation credential" ] } } ] }, { "username": "mySocialUser", "enabled": true, "federatedIdentities": [ { "identityProvider": "facebook1", "userId": "facebook1", "userName": "fbuser1" }, { "identityProvider": "twitter1", "userId": "twitter1", "userName": "twuser1" }, { "identityProvider": "google1", "userId": "google1", "userName": "mySocialUser@gmail.com" } ] }, { "username": "my-service-user", "enabled": true, "serviceAccountClientId": "OtherApp" } ], "clients": [ { "clientId": "Application", "name": "Applicationn", "enabled": true, "implicitFlowEnabled": true, "directAccessGrantsEnabled": true, "nodeReRegistrationTimeout": 50, "registeredNodes": { "node1": 10, "172.10.15.20": 20 } }, { "clientId": "OtherApp", "name": "Other Application", "enabled": true, "standardFlowEnabled": false, "directAccessGrantsEnabled": false, "serviceAccountsEnabled": true, "clientAuthenticatorType": "client-jwt", "protocolMappers" : [ { "name" : "gss delegation credential", "protocol" : "openid-connect", "protocolMapper" : "oidc-usersessionmodel-note-mapper", "consentRequired" : true, "consentText" : "gss delegation credential", "config" : { "user.session.note" : "gss_delegation_credential", "access.token.claim" : "true", "claim.name" : "gss_delegation_credential", "Claim JSON Type" : "String" } } ] } ], "oauthClients" : [ { "name" : "oauthclient", "enabled": true, "secret": "clientpassword" } ], "clientTemplates" : [ { "name" : "foo-template", "description" : "foo-template-desc", "protocol" : "openid-connect", "protocolMappers" : [ { "name" : "gss delegation credential", "protocol" : "openid-connect", "protocolMapper" : "oidc-usersessionmodel-note-mapper", "consentRequired" : true, "consentText" : "gss delegation credential", "config" : { "user.session.note" : "gss_delegation_credential", "access.token.claim" : "true", "claim.name" : "gss_delegation_credential", "Claim JSON Type" : "String" } } ] } ], "roles" : { "realm" : [ { "name": "admin" } ], "application" : { "Application" : [ { "name": "app-admin", "scopeParamRequired": true }, { "name": "app-user" } ], "OtherApp" : [ { "name": "otherapp-admin", "scopeParamRequired": false }, { "name": "otherapp-user" } ] } }, "scopeMappings": [ { "client": "oauthclient", "roles": ["admin"] }, { "clientTemplate": "foo-template", "roles": ["admin"] } ], "applicationScopeMappings": { "Application": [ { "client": "oauthclient", "roles": ["app-user"] }, { "clientTemplate": "foo-template", "roles": ["app-user", "app-admin" ] } ] } }