91bdc4bde2
* [KEYCLOAK-3169] - UMA 2.0 Support * [KEYCLOAK-3169] - Changes to account service and more tests * [KEYCLOAK-3169] - Code cleanup and tests * [KEYCLOAK-3169] - Changes to account service and tests * [KEYCLOAK-3169] - Changes to account service and tests * [KEYCLOAK-3169] - More tests * [KEYCLOAK-3169] - Changes to adapter configuration * [KEYCLOAK-3169] - Reviewing UMA specs and more tests * [KEYCLOAK-3169] - Reviewing UMA specs and more tests * [KEYCLOAK-3169] - Changes to UMA Grant Type and refactoring * [KEYCLOAK-3169] - Refresh tokens for RPT responses and tests * [KEYCLOAK-3169] - Changes to account my resources and policy enforcers * [KEYCLOAK-3169] - Realm settings flag to enable/disable user-managed access in account mgmt console * [KEYCLOAK-3169] - More changes to my resource pages in account mgmt console * [KEYCLOAK-3169] - Need to enable user-managed on realm to run tests * [KEYCLOAK-3169] - Removing more UMA 1.0 related code * [KEYCLOAK-3169] - Only submit requests if ticket exists * [KEYCLOAK-3169] - Returning UMA 401 response when not authenticated * [KEYCLOAK-3169] - Removing unused code * [KEYCLOAK-3169] - Removing unused code * [KEYCLOAK-3169] - 403 response in case ticket is not created * [KEYCLOAK-3169] - Fixing AbstractPhotozExampleAdapterTest#testClientRoleRepresentingUserConsent * [KEYCLOAK-3169] - 403 status code only returned for non-bearer clients
132 lines
3.9 KiB
JSON
132 lines
3.9 KiB
JSON
{
|
|
"realm": "photoz",
|
|
"enabled": true,
|
|
"userManagedAccessAllowed": "true",
|
|
"sslRequired": "external",
|
|
"privateKey": "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",
|
|
"publicKey": "MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCrVrCuTtArbgaZzL1hvh0xtL5mc7o0NqPVnYXkLvgcwiC3BjLGw1tGEGoJaXDuSaRllobm53JBhjx33UNv+5z/UMG4kytBWxheNVKnL6GgqlNabMaFfPLPCF8kAgKnsi79NMo+n6KnSY8YeUmec/p2vjO2NjsSAVcWEQMVhJ31LwIDAQAB",
|
|
"requiredCredentials": [
|
|
"password"
|
|
],
|
|
"users": [
|
|
{
|
|
"username": "alice",
|
|
"enabled": true,
|
|
"email": "alice@keycloak.org",
|
|
"firstName": "Alice",
|
|
"lastName": "In Chains",
|
|
"credentials": [
|
|
{
|
|
"type": "password",
|
|
"value": "alice"
|
|
}
|
|
],
|
|
"realmRoles": [
|
|
"user", "uma_authorization"
|
|
],
|
|
"clientRoles": {
|
|
"photoz-restful-api": [
|
|
"manage-albums"
|
|
],
|
|
"account": [
|
|
"manage-account"
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"username": "jdoe",
|
|
"enabled": true,
|
|
"email": "jdoe@keycloak.org",
|
|
"firstName": "John",
|
|
"lastName": "Doe",
|
|
"credentials": [
|
|
{
|
|
"type": "password",
|
|
"value": "jdoe"
|
|
}
|
|
],
|
|
"realmRoles": [
|
|
"user", "uma_authorization"
|
|
],
|
|
"clientRoles": {
|
|
"photoz-restful-api": [
|
|
"manage-albums"
|
|
],
|
|
"account": [
|
|
"manage-account"
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"username": "admin",
|
|
"enabled": true,
|
|
"email": "admin@admin.com",
|
|
"firstName": "Admin",
|
|
"lastName": "Istrator",
|
|
"credentials": [
|
|
{
|
|
"type": "password",
|
|
"value": "admin"
|
|
}
|
|
],
|
|
"realmRoles": [
|
|
"admin", "uma_authorization"
|
|
],
|
|
"clientRoles": {
|
|
"realm-management": [
|
|
"realm-admin"
|
|
],
|
|
"photoz-restful-api": [
|
|
"manage-albums"
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"username": "service-account-photoz-restful-api",
|
|
"enabled": true,
|
|
"email": "service-account-photoz-restful-api@placeholder.org",
|
|
"serviceAccountClientId": "photoz-restful-api",
|
|
"clientRoles": {
|
|
"photoz-restful-api" : ["uma_protection"]
|
|
}
|
|
}
|
|
],
|
|
"roles": {
|
|
"realm": [
|
|
{
|
|
"name": "user",
|
|
"description": "User privileges"
|
|
},
|
|
{
|
|
"name": "admin",
|
|
"description": "Administrator privileges"
|
|
}
|
|
]
|
|
},
|
|
"clients": [
|
|
{
|
|
"clientId": "photoz-html5-client",
|
|
"enabled": true,
|
|
"adminUrl": "http://localhost:8080/photoz-html5-client",
|
|
"baseUrl": "http://localhost:8080/photoz-html5-client",
|
|
"publicClient": true,
|
|
"consentRequired" : true,
|
|
"fullScopeAllowed" : true,
|
|
"redirectUris": [
|
|
"http://localhost:8080/photoz-html5-client/*"
|
|
],
|
|
"webOrigins": ["http://localhost:8080"]
|
|
},
|
|
{
|
|
"clientId": "photoz-restful-api",
|
|
"secret": "secret",
|
|
"enabled": true,
|
|
"baseUrl": "http://localhost:8080/photoz-restful-api",
|
|
"authorizationServicesEnabled" : true,
|
|
"redirectUris": [
|
|
"http://localhost:8080/photoz-html5-client"
|
|
],
|
|
"webOrigins" : ["http://localhost:8080"]
|
|
}
|
|
]
|
|
}
|