{ "id": "realm_{{ .ID }}", "realm": "realm_{{ .ID }}", "displayName": "realm_{{ .ID }}", "notBefore": 0, "revokeRefreshToken": false, "refreshTokenMaxReuse": 0, "accessTokenLifespan": 1800, "accessTokenLifespanForImplicitFlow": 900, "ssoSessionIdleTimeout": 3600, "ssoSessionMaxLifespan": 36000, "offlineSessionIdleTimeout": 2592000, "accessCodeLifespan": 60, "accessCodeLifespanUserAction": 300, "accessCodeLifespanLogin": 1800, "actionTokenGeneratedByAdminLifespan": 43200, "actionTokenGeneratedByUserLifespan": 300, "enabled": true, "sslRequired": "external", "registrationAllowed": false, "registrationEmailAsUsername": false, "rememberMe": false, "verifyEmail": false, "loginWithEmailAllowed": true, "duplicateEmailsAllowed": false, "resetPasswordAllowed": false, "editUsernameAllowed": false, "bruteForceProtected": false, "permanentLockout": false, "maxFailureWaitSeconds": 900, "minimumQuickLoginWaitSeconds": 60, "waitIncrementSeconds": 60, "quickLoginCheckMilliSeconds": 1000, "maxDeltaTimeSeconds": 43200, "failureFactor": 30, "users": [], "roles": { "realm": [], "client": {} }, "defaultRoles": [], "requiredCredentials": [ "password" ], "scopeMappings": [], "clientScopeMappings": {}, "clients": [ {{- range $count, $client := .Clients }} {{- if gt $count 0 }},{{ end }} { "clientId": "app_{{ $client.ID }}", "name": "app_{{ $client.ID }}", "enabled": true, "publicClient": false, "redirectUris": [ "http://dummy/url" ], "fullScopeAllowed": false, "standardFlowEnabled": true, "directAccessGrantsEnabled": true, "serviceAccountsEnabled": true, "clientAuthenticatorType": "client-secret", "secret": "{{ $client.Secret }}" } {{- end }} ], "components": { "org.keycloak.storage.UserStorageProvider": [ { "name": "ldap", "providerId": "ldap", "subComponents": { "org.keycloak.storage.ldap.mappers.LDAPStorageMapper": [ { "name": "modify date", "providerId": "user-attribute-ldap-mapper", "subComponents": {}, "config": { "ldap.attribute": [ "modifyTimestamp" ], "is.mandatory.in.ldap": [ "false" ], "always.read.value.from.ldap": [ "true" ], "read.only": [ "true" ], "user.model.attribute": [ "modifyTimestamp" ] } }, { "name": "username", "providerId": "user-attribute-ldap-mapper", "subComponents": {}, "config": { "ldap.attribute": [ "uid" ], "is.mandatory.in.ldap": [ "true" ], "read.only": [ "true" ], "always.read.value.from.ldap": [ "false" ], "user.model.attribute": [ "username" ] } }, { "name": "first name", "providerId": "user-attribute-ldap-mapper", "subComponents": {}, "config": { "ldap.attribute": [ "cn" ], "is.mandatory.in.ldap": [ "true" ], "read.only": [ "true" ], "always.read.value.from.ldap": [ "true" ], "user.model.attribute": [ "firstName" ] } }, { "name": "email", "providerId": "user-attribute-ldap-mapper", "subComponents": {}, "config": { "ldap.attribute": [ "mail" ], "is.mandatory.in.ldap": [ "false" ], "always.read.value.from.ldap": [ "false" ], "read.only": [ "true" ], "user.model.attribute": [ "email" ] } }, { "name": "last name", "providerId": "user-attribute-ldap-mapper", "subComponents": {}, "config": { "ldap.attribute": [ "sn" ], "is.mandatory.in.ldap": [ "true" ], "always.read.value.from.ldap": [ "true" ], "read.only": [ "true" ], "user.model.attribute": [ "lastName" ] } }, { "name": "creation date", "providerId": "user-attribute-ldap-mapper", "subComponents": {}, "config": { "ldap.attribute": [ "createTimestamp" ], "is.mandatory.in.ldap": [ "false" ], "always.read.value.from.ldap": [ "true" ], "read.only": [ "true" ], "user.model.attribute": [ "createTimestamp" ] } } ] }, "config": { "pagination": [ "true" ], "fullSyncPeriod": [ "-1" ], "usersDn": [ "ou=users,dc=keycloak,dc=org" ], "connectionPooling": [ "true" ], "cachePolicy": [ "DEFAULT" ], "useKerberosForPasswordAuthentication": [ "false" ], "importEnabled": [ "true" ], "enabled": [ "true" ], "bindCredential": [ "keycloak" ], "bindDn": [ "cn=admin,dc=keycloak,dc=org" ], "changedSyncPeriod": [ "-1" ], "usernameLDAPAttribute": [ "uid" ], "lastSync": [ "1611161804" ], "vendor": [ "other" ], "uuidLDAPAttribute": [ "entryUUID" ], "connectionUrl": [ "ldap://openldap.dns.podman:389/" ], "allowKerberosAuthentication": [ "false" ], "syncRegistrations": [ "false" ], "authType": [ "simple" ], "debug": [ "false" ], "searchScope": [ "1" ], "useTruststoreSpi": [ "ldapsOnly" ], "priority": [ "0" ], "trustEmail": [ "true" ], "userObjectClasses": [ "inetOrgPerson, organizationalPerson" ], "rdnLDAPAttribute": [ "uid" ], "editMode": [ "READ_ONLY" ], "validatePasswordPolicy": [ "false" ], "batchSizeForSync": [ "1000" ] } } ] } }