Versions Compared

Old Version 1

changes.mady.by.user Ian Ibbotson

Saved on

compared with

New Version Current

changes.mady.by.user Jag Goraya

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Add user roles to JWT for admin applications.

...

Code Block
{


  "clientId": "dcb",


  "name": "dcb",


  "description": "DCB",


  "rootUrl": "",


  "adminUrl": "",


  "baseUrl": "",


  "surrogateAuthRequired": false,


  "enabled": true,


  "alwaysDisplayInConsole": false,


  "clientAuthenticatorType": "client-secret",


  "secret": "THE_SECRET",


  "redirectUris": [


    "https://admin.dev.resharedcb.org/*",


    "https://admin.testing.resharedcb.org/*",


    "https://discovery.dev.resharedcb.org/*",


    "https://libraries-reshare-hub-discovery-scaffold.vercel.app/*",


    "https://discovery.testing.resharedcb.org/*",


    "http://localhost:3000/*",


    "https://libraries-reshare-hub-admin-scaffold.vercel.app/*"


  ],


  "webOrigins": [],


  "notBefore": 0,


  "bearerOnly": false,


  "consentRequired": false,


  "standardFlowEnabled": true,


  "implicitFlowEnabled": true,


  "directAccessGrantsEnabled": true,


  "serviceAccountsEnabled": true,


  "authorizationServicesEnabled": true,


  "publicClient": false,


  "frontchannelLogout": false,


  "protocol": "openid-connect",


  "attributes": {


    "oidc.ciba.grant.enabled": "false",


    "client.secret.creation.time": "1672834935",


    "backchannel.logout.session.required": "false",


    "post.logout.redirect.uris": "https://libraries-reshare-hub-discovery-scaffold.vercel.app/*##http://localhost:3000/*##https://libraries-reshare-hub-admin-scaffold.vercel.app/*##https://discovery.dev.resharedcb.org/*##https://discovery.testing.resharedcb.org/*##https://admin.testing.resharedcb.org/*##https://admin.dev.resharedcb.org/*",


    "oauth2.device.authorization.grant.enabled": "false",


    "display.on.consent.screen": "false",


    "backchannel.logout.revoke.offline.tokens": "true"


  },


  "authenticationFlowBindingOverrides": {},


  "fullScopeAllowed": true,


  "nodeReRegistrationTimeout": -1,


  "protocolMappers": [

{

    {
      "name": "Client ID",


      "protocol": "openid-connect",


      "protocolMapper": "oidc-usersessionmodel-note-mapper",


      "consentRequired": false,


      "config":
{
 {
        "user.session.note": "clientId",


        "id.token.claim": "true",


        "access.token.claim": "true",


        "claim.name": "clientId",


        "jsonType.label": "String"

}
},
{

      }
    },
    {
      "name": "Client IP Address",


      "protocol": "openid-connect",


      "protocolMapper": "oidc-usersessionmodel-note-mapper",


      "consentRequired": false,


      "config":
{
 {
        "user.session.note": "clientAddress",


        "id.token.claim": "true",


        "access.token.claim": "true",


        "claim.name": "clientAddress",


        "jsonType.label": "String"

}
},
{

      }
    },
    {
      "name": "Client Host",


      "protocol": "openid-connect",


      "protocolMapper": "oidc-usersessionmodel-note-mapper",


      "consentRequired": false,


      "config":
{
 {
        "user.session.note": "clientHost",


        "id.token.claim": "true",


        "access.token.claim": "true",


        "claim.name": "clientHost",


        "jsonType.label": "String"

}
}
],

      }
    }
  ],
  "defaultClientScopes": [


    "DCBScope",


    "web-origins",


    "acr",


    "roles",


    "profile",


    "email"


  ],


  "optionalClientScopes": [


    "address",


    "phone",


    "offline_access",


    "microprofile-jwt"


  ],


  "access": {


    "view": true,


    "configure": true,


    "manage": true


  }


}