digitaldemocratic/docker/keycloak-client/templates/saml_client.json

{
    "id" : "0457e842-172b-42bf-8569-814625e7b019",
    "clientId" : "https://moodle.mydomain.duckdns.org/auth/saml2/sp/metadata.php",
    "surrogateAuthRequired" : false,
    "enabled" : true,
    "alwaysDisplayInConsole" : false,
    "clientAuthenticatorType" : "client-secret",
    "redirectUris" : [ "https://moodle.mydomain.duckdns.org/auth/saml2/sp/saml2-acs.php/moodle.mydomain.duckdns.org" ],
    "webOrigins" : [ "https://moodle.mydomain.duckdns.org" ],
    "notBefore" : 0,
    "bearerOnly" : false,
    "consentRequired" : false,
    "standardFlowEnabled" : true,
    "implicitFlowEnabled" : false,
    "directAccessGrantsEnabled" : false,
    "serviceAccountsEnabled" : false,
    "publicClient" : false,
    "frontchannelLogout" : true,
    "protocol" : "saml",
    "attributes" : {
      "saml.force.post.binding" : "true",
      "saml.encrypt" : "true",
      "saml_assertion_consumer_url_post" : "https://moodle.mydomain.duckdns.org/auth/saml2/sp/saml2-acs.php/moodle.mydomain.duckdns.org",
      "saml.server.signature" : "true",
      "saml.server.signature.keyinfo.ext" : "false",
      "saml.signing.certificate" : "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",
      "saml_single_logout_service_url_redirect" : "https://moodle.mydomain.duckdns.org/auth/saml2/sp/saml2-logout.php/moodle.mydomain.duckdns.org",
      "saml.signature.algorithm" : "RSA_SHA256",
      "saml_force_name_id_format" : "false",
      "saml.client.signature" : "true",
      "saml.encryption.certificate" : "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",
      "saml.authnstatement" : "true",
      "saml_name_id_format" : "username",
      "saml_signature_canonicalization_method" : "http://www.w3.org/2001/10/xml-exc-c14n#"
    },
    "authenticationFlowBindingOverrides" : { },
    "fullScopeAllowed" : true,
    "nodeReRegistrationTimeout" : -1,
    "protocolMappers" : [ {
      "id" : "6e05e32c-436a-4b35-a376-801058b757ac",
      "name" : "X500 email",
      "protocol" : "saml",
      "protocolMapper" : "saml-user-property-mapper",
      "consentRequired" : false,
      "config" : {
        "attribute.nameformat" : "urn:oasis:names:tc:SAML:2.0:attrname-format:uri",
        "user.attribute" : "email",
        "friendly.name" : "email",
        "attribute.name" : "urn:oid:1.2.840.113549.1.9.1"
      }
    }, {
      "id" : "0d5e1994-1de1-49cd-bad5-f48c31926019",
      "name" : "X500 givenName",
      "protocol" : "saml",
      "protocolMapper" : "saml-user-property-mapper",
      "consentRequired" : false,
      "config" : {
        "attribute.nameformat" : "urn:oasis:names:tc:SAML:2.0:attrname-format:uri",
        "user.attribute" : "firstName",
        "friendly.name" : "givenName",
        "attribute.name" : "urn:oid:2.5.4.42"
      }
    }, {
      "id" : "8807929f-20da-4185-b37a-fa414bbe7a35",
      "name" : "username",
      "protocol" : "saml",
      "protocolMapper" : "saml-user-property-mapper",
      "consentRequired" : false,
      "config" : {
        "attribute.nameformat" : "Basic",
        "user.attribute" : "username",
        "friendly.name" : "username",
        "attribute.name" : "username"
      }
    }, {
      "id" : "04ad9cbb-f7cf-4759-8993-9b9ce5075ebc",
      "name" : "X500 surname",
      "protocol" : "saml",
      "protocolMapper" : "saml-user-property-mapper",
      "consentRequired" : false,
      "config" : {
        "attribute.nameformat" : "urn:oasis:names:tc:SAML:2.0:attrname-format:uri",
        "user.attribute" : "lastName",
        "friendly.name" : "surname",
        "attribute.name" : "urn:oid:2.5.4.4"
      }
    } ],
    "defaultClientScopes" : [ "web-origins", "role_list", "profile", "roles", "email" ],
    "optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ],
    "access" : {
      "view" : true,
      "configure" : true,
      "manage" : true
    }
  }