Skip to content

Instantly share code, notes, and snippets.

@lurodrig

lurodrig/keycloak-saml-client.json

Last active May 10, 2019 07:28
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save lurodrig/9ed0a7023639a0ebb29f055236ba2d0a to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save lurodrig/9ed0a7023639a0ebb29f055236ba2d0a to your computer and use it in GitHub Desktop.
Download ZIP
keycloak-saml-client & ldap conf
Raw
keycloak-saml-client.json
{
"id": "cfb54d2f-3f83-4dec-9eb1-0422ab814932",
"clientId": "http://localhost:8082/web-module-1/",
"name": "http://localhost:8082/web-module-1/",
"baseUrl": "http://localhost:8082/web-module-1",
"surrogateAuthRequired": false,
"enabled": true,
"clientAuthenticatorType": "client-secret",
"secret": "**********",
"redirectUris": [
"http://localhost:8082/web-module-1/*"
],
"webOrigins": [
"http://localhost:8082"
],
"notBefore": 0,
"bearerOnly": false,
"consentRequired": false,
"standardFlowEnabled": true,
"implicitFlowEnabled": false,
"directAccessGrantsEnabled": false,
"serviceAccountsEnabled": false,
"publicClient": false,
"frontchannelLogout": false,
"protocol": "saml",
"attributes": {
"saml.signing.certificate": "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",
"saml_single_logout_service_url_redirect": "http://localhost:8082/web-module-1/saml2slo/saml",
"saml_assertion_consumer_url_redirect": "http://localhost:8082/web-module-1/saml",
"saml.signature.algorithm": "RSA_SHA256",
"saml_single_logout_service_url_post": "http://localhost:8082/web-module-1/saml2slo/saml",
"saml.client.signature": "true",
"saml.authnstatement": "true",
"saml_assertion_consumer_url_post": "http://localhost:8082/web-module-1/saml",
"saml.server.signature": "true"
},
"authenticationFlowBindingOverrides": {},
"fullScopeAllowed": true,
"nodeReRegistrationTimeout": -1,
"protocolMappers": [
{
"id": "f1a23952-900e-473a-b8c7-cd9c3655c90e",
"name": "PreferredLanguageMapper",
"protocol": "saml",
"protocolMapper": "saml-user-attribute-mapper",
"consentRequired": false,
"config": {
"attribute.nameformat": "Unspecified",
"user.attribute": "http://schemas.xmlsoap.org/claims/PreferredLanguage",
"friendly.name": "PreferredLanguage",
"attribute.name": "http://schemas.xmlsoap.org/claims/PreferredLanguage"
}
},
{
"id": "202135fa-e768-43c0-beb5-706b49527d8d",
"name": "HrIdMapper",
"protocol": "saml",
"protocolMapper": "saml-user-attribute-mapper",
"consentRequired": false,
"config": {
"attribute.nameformat": "Unspecified",
"user.attribute": "http://schemas.xmlsoap.org/claims/PersonID",
"friendly.name": "PersonID",
"attribute.name": "http://schemas.xmlsoap.org/claims/PersonID"
}
},
{
"id": "fcf7dd94-2a7b-40b1-9d16-77fe7b6ad93f",
"name": "IdentityClassMapper",
"protocol": "saml",
"protocolMapper": "saml-user-attribute-mapper",
"consentRequired": false,
"config": {
"attribute.nameformat": "Unspecified",
"user.attribute": "http://schemas.xmlsoap.org/claims/IdentityClass",
"friendly.name": "IdentityClass",
"attribute.name": "http://schemas.xmlsoap.org/claims/IdentityClass"
}
},
{
"id": "cf488ac8-5ac8-4411-ac6e-33a4df61e096",
"name": "GroupMapper",
"protocol": "saml",
"protocolMapper": "saml-group-membership-mapper",
"consentRequired": false,
"config": {
"single": "true",
"attribute.nameformat": "Unspecified",
"full.path": "false",
"friendly.name": "Groups",
"attribute.name": "http://schemas.xmlsoap.org/claims/Group"
}
}
],
"defaultClientScopes": [
"web-origins",
"role_list",
"roles",
"profile",
"email"
],
"optionalClientScopes": [
"address",
"phone",
"offline_access"
]
}
Raw
ldap.json
{
"id": "3f3af65a-ad6d-491f-834b-095063383b48",
"name": "ldap",
"providerId": "ldap",
"subComponents": {
"org.keycloak.storage.ldap.mappers.LDAPStorageMapper": [
{
"id": "67669f1a-e639-48cd-8319-44bfc0e6e727",
"name": "creation date",
"providerId": "user-attribute-ldap-mapper",
"subComponents": {},
"config": {
"ldap.attribute": [
"whenCreated"
],
"is.mandatory.in.ldap": [
"false"
],
"read.only": [
"true"
],
"always.read.value.from.ldap": [
"true"
],
"user.model.attribute": [
"createTimestamp"
]
}
},
{
"id": "566c643c-e350-4785-85c2-7e57e2b6bf97",
"name": "username",
"providerId": "user-attribute-ldap-mapper",
"subComponents": {},
"config": {
"ldap.attribute": [
"cn"
],
"is.mandatory.in.ldap": [
"true"
],
"always.read.value.from.ldap": [
"false"
],
"read.only": [
"true"
],
"user.model.attribute": [
"username"
]
}
},
{
"id": "16782429-85f4-4623-99f1-1de18b178eaa",
"name": "modify date",
"providerId": "user-attribute-ldap-mapper",
"subComponents": {},
"config": {
"ldap.attribute": [
"whenChanged"
],
"is.mandatory.in.ldap": [
"false"
],
"read.only": [
"true"
],
"always.read.value.from.ldap": [
"true"
],
"user.model.attribute": [
"modifyTimestamp"
]
}
},
{
"id": "6905b213-0524-4f51-82bd-a3af192fb537",
"name": "last name",
"providerId": "user-attribute-ldap-mapper",
"subComponents": {},
"config": {
"ldap.attribute": [
"sn"
],
"is.mandatory.in.ldap": [
"true"
],
"always.read.value.from.ldap": [
"true"
],
"read.only": [
"true"
],
"user.model.attribute": [
"lastName"
]
}
},
{
"id": "d391f973-f869-4c68-9ab7-1f48a52c3f69",
"name": "MSAD account controls",
"providerId": "msad-user-account-control-mapper",
"subComponents": {},
"config": {}
},
{
"id": "a4603254-201b-47e5-ba8f-37c0745a4803",
"name": "first name",
"providerId": "user-attribute-ldap-mapper",
"subComponents": {},
"config": {
"ldap.attribute": [
"givenName"
],
"is.mandatory.in.ldap": [
"true"
],
"always.read.value.from.ldap": [
"true"
],
"read.only": [
"true"
],
"user.model.attribute": [
"firstName"
]
}
},
{
"id": "8b852f05-6df7-4ea4-82d8-010c3551fe88",
"name": "email",
"providerId": "user-attribute-ldap-mapper",
"subComponents": {},
"config": {
"ldap.attribute": [
"mail"
],
"is.mandatory.in.ldap": [
"false"
],
"read.only": [
"true"
],
"always.read.value.from.ldap": [
"false"
],
"user.model.attribute": [
"email"
]
}
}
]
},
"config": {
"pagination": [
"true"
],
"fullSyncPeriod": [
"-1"
],
"usersDn": [
"OU=Users,OU=Organic Units,DC=my,DC=domain,DC=com"
],
"connectionPooling": [
"true"
],
"cachePolicy": [
"DEFAULT"
],
"useKerberosForPasswordAuthentication": [
"false"
],
"importEnabled": [
"true"
],
"enabled": [
"true"
],
"changedSyncPeriod": [
"-1"
],
"bindCredential": [
"**********"
],
"usernameLDAPAttribute": [
"cn"
],
"bindDn": [
"CN=my_user,OU=Users,OU=Organic Units,DC=my,DC=domain,DC=com"
],
"vendor": [
"ad"
],
"uuidLDAPAttribute": [
"objectGUID"
],
"allowKerberosAuthentication": [
"false"
],
"connectionUrl": [
"ldaps://my.domain.com:636"
],
"syncRegistrations": [
"false"
],
"authType": [
"simple"
],
"customUserSearchFilter": [
"(memberOf=CN=my_groups,OU=Workgroups,DC=my,DC=domain,DC=com)"
],
"debug": [
"false"
],
"searchScope": [
"1"
],
"useTruststoreSpi": [
"ldapsOnly"
],
"priority": [
"0"
],
"userObjectClasses": [
"person, organizationalPerson, user"
],
"rdnLDAPAttribute": [
"cn"
],
"editMode": [
"READ_ONLY"
],
"validatePasswordPolicy": [
"false"
],
"batchSizeForSync": [
"1000"
]
}
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment