{ "id": "d4science", "realm": "d4science", "displayName": "D4Science Keycloak TEST SERVER", "enabled": true, "defaultGroups": [ "/gcube" ], "requiredCredentials": [ "password" ], "roles": { "realm": [ { "name": "d4s-client", "description": "A D4Science internal client ", "composite": false, "clientRole": false, "containerId": "d4science", "attributes": {} }, { "name": "Infrastructure-Member", "description": "A Composite role for allowing system services to operate in any context with minimal privileges.", "composite": true, "composites": { "client": { "%2Fgcube": [ "Member" ], "%2Fgcube%2FdevNext": [ "Member" ], "%2Fgcube%2Fdevsec": [ "Member" ], "%2Fgcube%2Fdevsec%2FdevVRE": [ "Member" ], "%2Fgcube%2FdevNext%2FNextNext": [ "Member" ] } }, "clientRole": false, "containerId": "d4science", "attributes": {} } ], "client": { "localhost": [], "liferay": [], "next.dev.d4science.org": [], "dev4.d4science.org": [], "next.d4science.org": [], "lr62_portal": [ { "name": "uma_protection", "composite": false, "clientRole": true, "attributes": {} } ], "%2Fgcube": [ { "name": "Catalogue-Admin", "description": "Catalogue-Admin role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "DataMiner-Manager", "description": "DataMiner-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Catalogue-Manager", "description": "Catalogue-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "uma_protection", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Catalogue-Editor", "description": "Catalogue-Editor role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "VRE-Designer", "description": "VRE-Designer role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Accounting-Manager", "description": "Accounting-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Data-Manager", "description": "Data-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Member", "description": "Simple membership", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Catalogue-Moderator", "description": "Catalogue-Moderator role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "VO-Admin", "description": "VO-Admin role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Infrastructure-Manager", "description": "Infrastructure-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Data-Editor", "description": "Data-Editor role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "VRE-Manager", "description": "VRE-Manager role", "composite": false, "clientRole": true, "attributes": {} } ], "%2Fgcube%2FdevNext": [ { "name": "Catalogue-Admin", "description": "Catalogue-Admin role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "DataMiner-Manager", "description": "DataMiner-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Catalogue-Manager", "description": "Catalogue-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "uma_protection", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Catalogue-Editor", "description": "Catalogue-Editor role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "VRE-Designer", "description": "VRE-Designer role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Accounting-Manager", "description": "Accounting-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Data-Manager", "description": "Data-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Member", "description": "Simple membership", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Catalogue-Moderator", "description": "Catalogue-Moderator role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "VO-Admin", "description": "VO-Admin role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Infrastructure-Manager", "description": "Infrastructure-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Data-Editor", "description": "Data-Editor role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "VRE-Manager", "description": "VRE-Manager role", "composite": false, "clientRole": true, "attributes": {} } ], "%2Fgcube%2FdevNext%2FNextNext": [ { "name": "Catalogue-Admin", "description": "Catalogue-Admin role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "DataMiner-Manager", "description": "DataMiner-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Catalogue-Manager", "description": "Catalogue-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "uma_protection", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Catalogue-Editor", "description": "Catalogue-Editor role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "VRE-Designer", "description": "VRE-Designer role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Accounting-Manager", "description": "Accounting-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Data-Manager", "description": "Data-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Member", "description": "Simple membership", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Catalogue-Moderator", "description": "Catalogue-Moderator role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "VO-Admin", "description": "VO-Admin role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Infrastructure-Manager", "description": "Infrastructure-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Data-Editor", "description": "Data-Editor role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "VRE-Manager", "description": "VRE-Manager role", "composite": false, "clientRole": true, "attributes": {} } ], "%2Fgcube%2Fdevsec": [ { "name": "Catalogue-Admin", "description": "Catalogue-Admin role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "DataMiner-Manager", "description": "DataMiner-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Catalogue-Manager", "description": "Catalogue-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "uma_protection", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Catalogue-Editor", "description": "Catalogue-Editor role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "VRE-Designer", "description": "VRE-Designer role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Accounting-Manager", "description": "Accounting-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Data-Manager", "description": "Data-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Member", "description": "Simple membership", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Catalogue-Moderator", "description": "Catalogue-Moderator role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "VO-Admin", "description": "VO-Admin role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Infrastructure-Manager", "description": "Infrastructure-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Data-Editor", "description": "Data-Editor role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "VRE-Manager", "description": "VRE-Manager role", "composite": false, "clientRole": true, "attributes": {} } ], "%2Fgcube%2Fdevsec%2FdevVRE": [ { "name": "Catalogue-Admin", "description": "Catalogue-Admin role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "DataMiner-Manager", "description": "DataMiner-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Catalogue-Manager", "description": "Catalogue-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "uma_protection", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Catalogue-Editor", "description": "Catalogue-Editor role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "VRE-Designer", "description": "VRE-Designer role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Accounting-Manager", "description": "Accounting-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Data-Manager", "description": "Data-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Member", "description": "Simple membership", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Catalogue-Moderator", "description": "Catalogue-Moderator role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "VO-Admin", "description": "VO-Admin role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Infrastructure-Manager", "description": "Infrastructure-Manager role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "Data-Editor", "description": "Data-Editor role", "composite": false, "clientRole": true, "attributes": {} }, { "name": "VRE-Manager", "description": "VRE-Manager role", "composite": false, "clientRole": true, "attributes": {} } ] } }, "groups": [ { "name": "gcube", "path": "/gcube", "subGroups": [ { "name": "devNext", "path": "/gcube/devNext", "subGroups": [ { "name": "NextNext", "path": "/gcube/devNext/NextNext", "subGroups": [], "attributes": {}, "realmRoles": [], "clientRoles": { "%2Fgcube%2FdevNext%2FNextNext": [ "Member" ] } } ], "attributes": {}, "realmRoles": [], "clientRoles": { "%2Fgcube%2FdevNext": [ "Member" ] } }, { "name": "devsec", "path": "/gcube/devsec", "subGroups": [ { "name": "devVRE", "path": "/gcube/devsec/devVRE", "subGroups": [], "attributes": {}, "realmRoles": [], "clientRoles": { "%2Fgcube%2Fdevsec%2FdevVRE": [ "Member" ] } } ], "attributes": {}, "realmRoles": [], "clientRoles": { "%2Fgcube%2Fdevsec": [ "Member" ] } } ], "attributes": {}, "realmRoles": [], "clientRoles": { "%2Fgcube": [ "Member" ] } } ], "users": [ { "id": "b9969b51-578f-4b69-a53f-2c8adf9efcc7", "username": "alfredo.oliviero", "firstName": "Alfredo", "lastName": "Oliviero", "email": "alfredo.oliviero@isti.cnr.it", "emailVerified": true, "attributes": { "country": [ "Italy" ], "role": [ "Researcher" ], "gender": [ "Male" ], "organisation": [ "ISTI CNR" ], "locale": [ "it" ], "stakeholder": [ "Blue-data infrastructures and e-infrastructures" ], "role_other_spec": [ "" ], "createTimestamp": [ "20240207134409Z" ], "modifyTimestamp": [ "20240325143310Z" ], "LDAP_ID": [ "f29e9001-c5be11ee-a86aae16-9ae7de3b" ], "terms_and_conditions": [ "1707313498" ], "LDAP_ENTRY_DN": [ "uid=alfredo.oliviero,ou=People,o=D4Science,ou=Organizations,dc=d4science,dc=org" ], "stakeholder_other_spec": [ "" ] }, "enabled": true, "totp": false, "access": { "manageGroupMembership": true, "view": true, "mapRoles": true, "impersonate": true, "manage": true }, "credentials": [ { "type": "password", "userLabel": "My password", "value": "pass" } ] }, { "username": "service-account-sg4-test-client", "enabled": true, "serviceAccountClientId": "sg4-test-client", "realmRoles": [ "default-roles-d4science", "Infrastructure-Member" ], "clientRoles": { "sg4-test-client": [ "uma_protection" ] }, "groups": [ "/gcube" ] }, { "username": "service-account-id.d4science.org", "enabled": true, "serviceAccountClientId": "id.d4science.org", "realmRoles": [ "default-roles-d4science", "Infrastructure-Member" ], "clientRoles": { "id.d4science.org": [ "uma_protection" ] }, "groups": [ "/gcube" ] }, { "username": "admin_liferay", "firstName": "Admin", "lastName": "liferay", "email": "admin_liferay@d4science.org", "emailVerified": true, "enabled": true, "credentials": [ { "type": "password", "userLabel": "My password", "value": "admin" } ], "groups": [ "/gcube/devsec/devVRE" ] }, { "username": "mister.blonde", "firstName": "Mister", "lastName": "Blonde", "email": "mister.blonde@d4science.org", "emailVerified": true, "enabled": true, "credentials": [ { "type": "password", "userLabel": "My password", "value": "123passwd!" } ], "groups": [ "/gcube/devsec/devVRE" ] }, { "username": "mister.blue", "firstName": "Mister", "lastName": "Blue", "email": "mister.blue@d4science.org", "emailVerified": true, "enabled": true, "totp": false, "credentials": [ { "type": "password", "userLabel": "My password", "value": "123passwd!" } ], "groups": [ "/gcube/devsec/devVRE" ] }, { "username": "mister.brown", "firstName": "Mister", "lastName": "Brown", "email": "mister.brown@d4science.org", "emailVerified": true, "enabled": true, "totp": false, "credentials": [ { "type": "password", "userLabel": "My password", "value": "123passwd!" } ], "groups": [ "/gcube/devsec/devVRE" ] }, { "username": "mister.orange", "firstName": "Mister", "lastName": "Orange", "email": "mister.orange@d4science.org", "emailVerified": true, "enabled": true, "totp": false, "credentials": [ { "type": "password", "userLabel": "My password", "value": "123passwd!" } ], "groups": [ "/gcube/devsec/devVRE" ] }, { "username": "mister.white_01", "firstName": "Mister", "lastName": "White", "email": "mister.white@d4science.org", "emailVerified": true, "enabled": true, "totp": false, "credentials": [ { "type": "password", "userLabel": "My password", "value": "123passwd!" } ], "groups": [ "/gcube/devsec/devVRE" ] }, { "username": "mister.pink", "firstName": "Mister", "lastName": "Pink", "email": "mister.pink@d4science.org", "emailVerified": true, "enabled": true, "totp": false, "credentials": [ { "type": "password", "userLabel": "My password", "value": "123passwd!" } ], "groups": [ "/gcube/devsec/devVRE" ] } ], "clients": [ { "clientId": "localhost", "name": "localhost", "description": "localhost DEV GW", "enabled": true, "bearerOnly": false, "consentRequired": false, "standardFlowEnabled": true, "implicitFlowEnabled": false, "directAccessGrantsEnabled": true, "serviceAccountsEnabled": false, "publicClient": true, "fullScopeAllowed": true, "protocol": "openid-connect", "redirectUris": [ "*" ] }, { "clientId": "liferay", "name": "liferay", "description": "liferay DEV GW", "enabled": true, "bearerOnly": false, "consentRequired": false, "standardFlowEnabled": true, "implicitFlowEnabled": false, "directAccessGrantsEnabled": true, "serviceAccountsEnabled": false, "publicClient": true, "fullScopeAllowed": true, "protocol": "openid-connect", "redirectUris": [ "*" ] }, { "clientId": "portal", "name": "portal", "description": "Local portal GW", "enabled": true, "bearerOnly": false, "consentRequired": false, "standardFlowEnabled": true, "implicitFlowEnabled": false, "directAccessGrantsEnabled": true, "serviceAccountsEnabled": false, "publicClient": true, "fullScopeAllowed": true, "protocol": "openid-connect", "redirectUris": [ "*" ] }, { "clientId": "next.dev.d4science.org", "name": "next.dev.d4science.org", "description": "next.dev.d4science.org DEV GW", "enabled": true, "bearerOnly": false, "consentRequired": false, "standardFlowEnabled": true, "implicitFlowEnabled": false, "directAccessGrantsEnabled": true, "serviceAccountsEnabled": false, "publicClient": true, "fullScopeAllowed": true, "protocol": "openid-connect", "redirectUris": [ "*" ] }, { "clientId": "dev4.d4science.org", "name": "dev4.d4science.org", "description": "dev4.d4science.org DEV gateway", "enabled": true, "bearerOnly": false, "consentRequired": false, "standardFlowEnabled": true, "implicitFlowEnabled": false, "directAccessGrantsEnabled": true, "serviceAccountsEnabled": false, "publicClient": true, "fullScopeAllowed": true, "protocol": "openid-connect", "redirectUris": [ "*" ] }, { "clientId": "next.d4science.org", "name": "next.d4science.org", "description": "next.d4science.org DEV GW", "enabled": true, "bearerOnly": false, "consentRequired": false, "standardFlowEnabled": true, "implicitFlowEnabled": false, "directAccessGrantsEnabled": true, "serviceAccountsEnabled": false, "publicClient": true, "fullScopeAllowed": true, "protocol": "openid-connect", "redirectUris": [ "*" ] }, { "clientId": "lr62_portal", "name": "lr62_portal", "description": "", "surrogateAuthRequired": false, "enabled": true, "alwaysDisplayInConsole": false, "clientAuthenticatorType": "client-secret", "secret": "PSNZi7UApVA77J79MxhBGErvDpkeQ4jK", "bearerOnly": false, "consentRequired": false, "standardFlowEnabled": true, "implicitFlowEnabled": false, "directAccessGrantsEnabled": true, "serviceAccountsEnabled": true, "authorizationServicesEnabled": true, "publicClient": false, "protocol": "openid-connect", "fullScopeAllowed": true }, { "clientId": "sg4-test-client", "name": "sg4-test-client", "description": "", "surrogateAuthRequired": false, "enabled": true, "alwaysDisplayInConsole": false, "clientAuthenticatorType": "client-secret", "secret": "a156a7db-3b32-4cd5-b27b-2488e0e01698", "bearerOnly": false, "consentRequired": false, "standardFlowEnabled": true, "implicitFlowEnabled": false, "directAccessGrantsEnabled": true, "serviceAccountsEnabled": true, "authorizationServicesEnabled": true, "publicClient": false, "protocol": "openid-connect", "fullScopeAllowed": true }, { "clientId": "id.d4science.org", "name": "id.d4science.org", "description": "", "surrogateAuthRequired": false, "enabled": true, "alwaysDisplayInConsole": false, "clientAuthenticatorType": "client-secret", "secret": "09c26f24-3c65-4039-9fa0-e5cc4f4032cd", "bearerOnly": false, "consentRequired": false, "standardFlowEnabled": true, "implicitFlowEnabled": false, "directAccessGrantsEnabled": true, "serviceAccountsEnabled": true, "authorizationServicesEnabled": true, "publicClient": false, "protocol": "openid-connect", "fullScopeAllowed": true }, { "clientId": "%2Fgcube", "name": "/gcube", "description": "DEV root context", "surrogateAuthRequired": false, "enabled": true, "clientAuthenticatorType": "client-secret", "secret": "pGUxKKymcq581EwMSvfw8f5ocFyL7YXp", "bearerOnly": false, "consentRequired": false, "standardFlowEnabled": true, "implicitFlowEnabled": false, "directAccessGrantsEnabled": true, "serviceAccountsEnabled": true, "authorizationServicesEnabled": true, "publicClient": false, "fullScopeAllowed": false, "protocol": "openid-connect", "authorizationSettings": { "allowRemoteResourceManagement": true, "policyEnforcementMode": "ENFORCING", "resources": [ { "name": "Default Resource", "type": "urn:%2Fgcube:resources:default", "ownerManagedAccess": false, "attributes": {}, "uris": [ "*" ] } ], "policies": [ { "name": "Member_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube/Member\",\"required\":true}]" } }, { "id": "a4c337b8-b6d4-4787-aa09-bffba3e8447a", "name": "Catalogue-Admin_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube/Catalogue-Admin\",\"required\":true}]" } }, { "name": "Data-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube/Data-Manager\",\"required\":true}]" } }, { "name": "Infrastructure-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube/Infrastructure-Manager\",\"required\":true}]" } }, { "name": "VRE-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube/VRE-Manager\",\"required\":true}]" } }, { "name": "Accounting-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube/Accounting-Manager\",\"required\":true}]" } }, { "name": "Catalogue-Editor_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube/Catalogue-Editor\",\"required\":true}]" } }, { "name": "DataMiner-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube/DataMiner-Manager\",\"required\":true}]" } }, { "name": "VO-Admin_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube/VO-Admin\",\"required\":true}]" } }, { "name": "VRE-Designer_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube/VRE-Designer\",\"required\":true}]" } }, { "name": "Data-Editor_policy", "description": "Policy for having Data-Editor role", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "roles": "[{\"id\":\"%2Fgcube/Data-Editor\",\"required\":true}]" } }, { "name": "Catalogue-Moderator_policy", "description": "Policy for having Catalogue-Moderator role", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "roles": "[{\"id\":\"%2Fgcube/Catalogue-Moderator\",\"required\":true}]" } }, { "name": "Catalogue-Manager_policy", "description": "Policy for having Catalogue-Manager role", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "roles": "[{\"id\":\"%2Fgcube/Catalogue-Manager\",\"required\":true}]" } }, { "name": "Default Permission", "description": "", "type": "resource", "logic": "POSITIVE", "decisionStrategy": "AFFIRMATIVE", "config": { "resources": "[\"Default Resource\"]", "applyPolicies": "[\"Catalogue-Admin_policy\",\"Accounting-Manager_policy\",\"VO-Admin_policy\",\"Data-Editor_policy\",\"Catalogue-Manager_policy\",\"Member_policy\",\"Infrastructure-Manager_policy\",\"VRE-Manager_policy\",\"Data-Manager_policy\",\"DataMiner-Manager_policy\",\"Catalogue-Moderator_policy\",\"Catalogue-Editor_policy\",\"VRE-Designer_policy\"]" } } ], "scopes": [], "decisionStrategy": "UNANIMOUS" } }, { "clientId": "%2Fgcube%2FdevNext", "name": "/gcube/devNext", "description": "", "surrogateAuthRequired": false, "enabled": true, "clientAuthenticatorType": "client-secret", "secret": "YGWaGwpAvKN8jAkg2NaTTlYbf3iovMrm", "bearerOnly": false, "consentRequired": false, "standardFlowEnabled": true, "implicitFlowEnabled": false, "directAccessGrantsEnabled": true, "serviceAccountsEnabled": true, "authorizationServicesEnabled": true, "publicClient": false, "fullScopeAllowed": false, "protocol": "openid-connect", "authorizationSettings": { "allowRemoteResourceManagement": true, "policyEnforcementMode": "ENFORCING", "resources": [ { "name": "Default Resource", "type": "urn:%2Fgcube%2FdevNext:resources:default", "ownerManagedAccess": false, "attributes": {}, "uris": [ "*" ] } ], "policies": [ { "name": "Member_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2FdevNext/Member\",\"required\":true}]" } }, { "id": "a4c337b8-b6d4-4787-aa09-bffba3e8447a", "name": "Catalogue-Admin_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2FdevNext/Catalogue-Admin\",\"required\":true}]" } }, { "name": "Data-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2FdevNext/Data-Manager\",\"required\":true}]" } }, { "name": "Infrastructure-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2FdevNext/Infrastructure-Manager\",\"required\":true}]" } }, { "name": "VRE-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2FdevNext/VRE-Manager\",\"required\":true}]" } }, { "name": "Accounting-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2FdevNext/Accounting-Manager\",\"required\":true}]" } }, { "name": "Catalogue-Editor_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2FdevNext/Catalogue-Editor\",\"required\":true}]" } }, { "name": "DataMiner-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2FdevNext/DataMiner-Manager\",\"required\":true}]" } }, { "name": "VO-Admin_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2FdevNext/VO-Admin\",\"required\":true}]" } }, { "name": "VRE-Designer_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2FdevNext/VRE-Designer\",\"required\":true}]" } }, { "name": "Data-Editor_policy", "description": "Policy for having Data-Editor role", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "roles": "[{\"id\":\"%2Fgcube%2FdevNext/Data-Editor\",\"required\":true}]" } }, { "name": "Catalogue-Moderator_policy", "description": "Policy for having Catalogue-Moderator role", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "roles": "[{\"id\":\"%2Fgcube%2FdevNext/Catalogue-Moderator\",\"required\":true}]" } }, { "name": "Catalogue-Manager_policy", "description": "Policy for having Catalogue-Manager role", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "roles": "[{\"id\":\"%2Fgcube%2FdevNext/Catalogue-Manager\",\"required\":true}]" } }, { "name": "Default Permission", "description": "", "type": "resource", "logic": "POSITIVE", "decisionStrategy": "AFFIRMATIVE", "config": { "resources": "[\"Default Resource\"]", "applyPolicies": "[\"Catalogue-Admin_policy\",\"Accounting-Manager_policy\",\"VO-Admin_policy\",\"Data-Editor_policy\",\"Catalogue-Manager_policy\",\"Member_policy\",\"Infrastructure-Manager_policy\",\"VRE-Manager_policy\",\"Data-Manager_policy\",\"DataMiner-Manager_policy\",\"Catalogue-Moderator_policy\",\"Catalogue-Editor_policy\",\"VRE-Designer_policy\"]" } } ], "scopes": [], "decisionStrategy": "UNANIMOUS" } }, { "clientId": "%2Fgcube%2FdevNext%2FNextNext", "name": "/gcube/devNext/NextNext", "description": "", "surrogateAuthRequired": false, "enabled": true, "alwaysDisplayInConsole": false, "clientAuthenticatorType": "client-secret", "secret": "GXleD0rolXgw30JthnO3peeZpmxvTXBm", "bearerOnly": false, "consentRequired": false, "standardFlowEnabled": true, "implicitFlowEnabled": false, "directAccessGrantsEnabled": true, "serviceAccountsEnabled": true, "authorizationServicesEnabled": true, "publicClient": false, "fullScopeAllowed": false, "protocol": "openid-connect", "authorizationSettings": { "allowRemoteResourceManagement": true, "policyEnforcementMode": "ENFORCING", "resources": [ { "name": "Default Resource", "type": "urn:%2Fgcube%2FdevNext%2FNextNext:resources:default", "ownerManagedAccess": false, "attributes": {}, "uris": [ "*" ] } ], "policies": [ { "name": "Member_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/Member\",\"required\":true}]" } }, { "id": "a4c337b8-b6d4-4787-aa09-bffba3e8447a", "name": "Catalogue-Admin_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/Catalogue-Admin\",\"required\":true}]" } }, { "name": "Data-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/Data-Manager\",\"required\":true}]" } }, { "name": "Infrastructure-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/Infrastructure-Manager\",\"required\":true}]" } }, { "name": "VRE-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/VRE-Manager\",\"required\":true}]" } }, { "name": "Accounting-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/Accounting-Manager\",\"required\":true}]" } }, { "name": "Catalogue-Editor_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/Catalogue-Editor\",\"required\":true}]" } }, { "name": "DataMiner-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/DataMiner-Manager\",\"required\":true}]" } }, { "name": "VO-Admin_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/VO-Admin\",\"required\":true}]" } }, { "name": "VRE-Designer_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/VRE-Designer\",\"required\":true}]" } }, { "name": "Data-Editor_policy", "description": "Policy for having Data-Editor role", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/Data-Editor\",\"required\":true}]" } }, { "name": "Catalogue-Moderator_policy", "description": "Policy for having Catalogue-Moderator role", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/Catalogue-Moderator\",\"required\":true}]" } }, { "name": "Catalogue-Manager_policy", "description": "Policy for having Catalogue-Manager role", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/Catalogue-Manager\",\"required\":true}]" } }, { "name": "Default Permission", "description": "", "type": "resource", "logic": "POSITIVE", "decisionStrategy": "AFFIRMATIVE", "config": { "resources": "[\"Default Resource\"]", "applyPolicies": "[\"Catalogue-Admin_policy\",\"Accounting-Manager_policy\",\"VO-Admin_policy\",\"Data-Editor_policy\",\"Catalogue-Manager_policy\",\"Member_policy\",\"Infrastructure-Manager_policy\",\"VRE-Manager_policy\",\"Data-Manager_policy\",\"DataMiner-Manager_policy\",\"Catalogue-Moderator_policy\",\"Catalogue-Editor_policy\",\"VRE-Designer_policy\"]" } } ], "scopes": [], "decisionStrategy": "UNANIMOUS" } }, { "clientId": "%2Fgcube%2Fdevsec", "name": "/gcube/devsec", "description": "", "surrogateAuthRequired": false, "enabled": true, "alwaysDisplayInConsole": false, "clientAuthenticatorType": "client-secret", "secret": "cl2bzXoTE6aFcrF2bJvezcTrYwopaxdk", "bearerOnly": false, "consentRequired": false, "standardFlowEnabled": true, "implicitFlowEnabled": false, "directAccessGrantsEnabled": true, "serviceAccountsEnabled": true, "authorizationServicesEnabled": true, "publicClient": false, "protocol": "openid-connect", "fullScopeAllowed": false, "authorizationSettings": { "allowRemoteResourceManagement": true, "policyEnforcementMode": "ENFORCING", "resources": [ { "name": "Default Resource", "type": "urn:%2Fgcube%2Fdevsec:resources:default", "ownerManagedAccess": false, "attributes": {}, "uris": [ "*" ] } ], "policies": [ { "name": "Member_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2Fdevsec/Member\",\"required\":true}]" } }, { "id": "a4c337b8-b6d4-4787-aa09-bffba3e8447a", "name": "Catalogue-Admin_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2Fdevsec/Catalogue-Admin\",\"required\":true}]" } }, { "name": "Data-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2Fdevsec/Data-Manager\",\"required\":true}]" } }, { "name": "Infrastructure-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2Fdevsec/Infrastructure-Manager\",\"required\":true}]" } }, { "name": "VRE-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2Fdevsec/VRE-Manager\",\"required\":true}]" } }, { "name": "Accounting-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2Fdevsec/Accounting-Manager\",\"required\":true}]" } }, { "name": "Catalogue-Editor_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2Fdevsec/Catalogue-Editor\",\"required\":true}]" } }, { "name": "DataMiner-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2Fdevsec/DataMiner-Manager\",\"required\":true}]" } }, { "name": "VO-Admin_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2Fdevsec/VO-Admin\",\"required\":true}]" } }, { "name": "VRE-Designer_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2Fdevsec/VRE-Designer\",\"required\":true}]" } }, { "name": "Data-Editor_policy", "description": "Policy for having Data-Editor role", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "roles": "[{\"id\":\"%2Fgcube%2Fdevsec/Data-Editor\",\"required\":true}]" } }, { "name": "Catalogue-Moderator_policy", "description": "Policy for having Catalogue-Moderator role", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "roles": "[{\"id\":\"%2Fgcube%2Fdevsec/Catalogue-Moderator\",\"required\":true}]" } }, { "name": "Catalogue-Manager_policy", "description": "Policy for having Catalogue-Manager role", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "roles": "[{\"id\":\"%2Fgcube%2Fdevsec/Catalogue-Manager\",\"required\":true}]" } }, { "name": "Default Permission", "description": "", "type": "resource", "logic": "POSITIVE", "decisionStrategy": "AFFIRMATIVE", "config": { "resources": "[\"Default Resource\"]", "applyPolicies": "[\"Catalogue-Admin_policy\",\"Accounting-Manager_policy\",\"VO-Admin_policy\",\"Data-Editor_policy\",\"Catalogue-Manager_policy\",\"Member_policy\",\"Infrastructure-Manager_policy\",\"VRE-Manager_policy\",\"Data-Manager_policy\",\"DataMiner-Manager_policy\",\"Catalogue-Moderator_policy\",\"Catalogue-Editor_policy\",\"VRE-Designer_policy\"]" } } ], "scopes": [], "decisionStrategy": "UNANIMOUS" } }, { "clientId": "%2Fgcube%2Fdevsec%2FdevVRE", "name": "/gcube/devsec/devVRE", "description": "", "surrogateAuthRequired": false, "enabled": true, "alwaysDisplayInConsole": false, "clientAuthenticatorType": "client-secret", "secret": "NlYa2qz0ZmlrYujXWXZJIiMeu54OOoyB", "bearerOnly": false, "consentRequired": false, "standardFlowEnabled": true, "implicitFlowEnabled": false, "directAccessGrantsEnabled": true, "serviceAccountsEnabled": true, "authorizationServicesEnabled": true, "publicClient": false, "protocol": "openid-connect", "fullScopeAllowed": false, "authorizationSettings": { "allowRemoteResourceManagement": true, "policyEnforcementMode": "ENFORCING", "resources": [ { "name": "Default Resource", "type": "urn:%2Fgcube%2Fdevsec%2FdevVRE:resources:default", "ownerManagedAccess": false, "attributes": {}, "uris": [ "*" ] } ], "policies": [ { "name": "Member_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/Member\",\"required\":true}]" } }, { "id": "a4c337b8-b6d4-4787-aa09-bffba3e8447a", "name": "Catalogue-Admin_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/Catalogue-Admin\",\"required\":true}]" } }, { "name": "Data-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/Data-Manager\",\"required\":true}]" } }, { "name": "Infrastructure-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/Infrastructure-Manager\",\"required\":true}]" } }, { "name": "VRE-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/VRE-Manager\",\"required\":true}]" } }, { "name": "Accounting-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/Accounting-Manager\",\"required\":true}]" } }, { "name": "Catalogue-Editor_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/Catalogue-Editor\",\"required\":true}]" } }, { "name": "DataMiner-Manager_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/DataMiner-Manager\",\"required\":true}]" } }, { "name": "VO-Admin_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/VO-Admin\",\"required\":true}]" } }, { "name": "VRE-Designer_policy", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "resources": "[\"Default Resource\"]", "roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/VRE-Designer\",\"required\":true}]" } }, { "name": "Data-Editor_policy", "description": "Policy for having Data-Editor role", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/Data-Editor\",\"required\":true}]" } }, { "name": "Catalogue-Moderator_policy", "description": "Policy for having Catalogue-Moderator role", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/Catalogue-Moderator\",\"required\":true}]" } }, { "name": "Catalogue-Manager_policy", "description": "Policy for having Catalogue-Manager role", "type": "role", "logic": "POSITIVE", "decisionStrategy": "UNANIMOUS", "config": { "roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/Catalogue-Manager\",\"required\":true}]" } }, { "name": "Default Permission", "description": "", "type": "resource", "logic": "POSITIVE", "decisionStrategy": "AFFIRMATIVE", "config": { "resources": "[\"Default Resource\"]", "applyPolicies": "[\"Catalogue-Admin_policy\",\"Accounting-Manager_policy\",\"VO-Admin_policy\",\"Data-Editor_policy\",\"Catalogue-Manager_policy\",\"Member_policy\",\"Infrastructure-Manager_policy\",\"VRE-Manager_policy\",\"Data-Manager_policy\",\"DataMiner-Manager_policy\",\"Catalogue-Moderator_policy\",\"Catalogue-Editor_policy\",\"VRE-Designer_policy\"]" } } ], "scopes": [], "decisionStrategy": "UNANIMOUS" } } ], "clientScopes": [ { "name": "email", "description": "OpenID Connect built-in scope: email", "protocol": "openid-connect", "attributes": { "include.in.token.scope": "true", "display.on.consent.screen": "true", "consent.screen.text": "${emailScopeConsentText}" }, "protocolMappers": [ { "name": "email verified", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-property-mapper", "consentRequired": false, "config": { "userinfo.token.claim": "true", "user.attribute": "emailVerified", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "email_verified", "jsonType.label": "boolean" } }, { "name": "email", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-property-mapper", "consentRequired": false, "config": { "userinfo.token.claim": "true", "user.attribute": "email", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "email", "jsonType.label": "String" } } ] }, { "name": "phone", "description": "OpenID Connect built-in scope: phone", "protocol": "openid-connect", "attributes": { "include.in.token.scope": "true", "display.on.consent.screen": "true", "consent.screen.text": "${phoneScopeConsentText}" }, "protocolMappers": [ { "name": "phone number", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-attribute-mapper", "consentRequired": false, "config": { "userinfo.token.claim": "true", "user.attribute": "phoneNumber", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "phone_number", "jsonType.label": "String" } }, { "name": "phone number verified", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-attribute-mapper", "consentRequired": false, "config": { "userinfo.token.claim": "true", "user.attribute": "phoneNumberVerified", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "phone_number_verified", "jsonType.label": "boolean" } } ] }, { "name": "acr", "description": "OpenID Connect scope for add acr (authentication context class reference) to the token", "protocol": "openid-connect", "attributes": { "include.in.token.scope": "false", "display.on.consent.screen": "false" }, "protocolMappers": [ { "name": "acr loa level", "protocol": "openid-connect", "protocolMapper": "oidc-acr-mapper", "consentRequired": false, "config": { "id.token.claim": "true", "access.token.claim": "true" } } ] }, { "name": "d4s-identity", "description": "The identity of a D4Science internal client with specific mappings", "protocol": "openid-connect", "attributes": { "include.in.token.scope": "true", "display.on.consent.screen": "false", "gui.order": "" }, "protocolMappers": [ { "name": "name", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-attribute-mapper", "consentRequired": false, "config": { "aggregate.attrs": "false", "userinfo.token.claim": "true", "multivalued": "false", "user.attribute": "name", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "CUSTOM NAME" } }, { "name": "contact_organisation", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-attribute-mapper", "consentRequired": false, "config": { "aggregate.attrs": "false", "userinfo.token.claim": "true", "multivalued": "false", "user.attribute": "contactOrganisation", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "contact_organisation" } }, { "name": "contact_person", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-attribute-mapper", "consentRequired": false, "config": { "aggregate.attrs": "false", "userinfo.token.claim": "true", "multivalued": "false", "user.attribute": "contactPerson", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "contact_person" } } ] }, { "name": "roles", "description": "OpenID Connect scope for add user roles to the access token", "protocol": "openid-connect", "attributes": { "include.in.token.scope": "false", "display.on.consent.screen": "true", "consent.screen.text": "${rolesScopeConsentText}" }, "protocolMappers": [ { "name": "realm roles", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-realm-role-mapper", "consentRequired": false, "config": { "multivalued": "true", "userinfo.token.claim": "false", "user.attribute": "foo", "id.token.claim": "false", "access.token.claim": "true", "claim.name": "realm_access.roles", "jsonType.label": "String" } }, { "name": "client roles", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-client-role-mapper", "consentRequired": false, "config": { "user.attribute": "foo", "access.token.claim": "true", "claim.name": "resource_access.${client_id}.roles", "jsonType.label": "String", "multivalued": "true" } }, { "name": "audience-resolve", "protocol": "openid-connect", "protocolMapper": "oidc-audience-resolve-mapper", "consentRequired": false, "config": {} } ] }, { "name": "offline_access", "description": "OpenID Connect built-in scope: offline_access", "protocol": "openid-connect", "attributes": { "consent.screen.text": "${offlineAccessScopeConsentText}", "display.on.consent.screen": "true" } }, { "name": "role_list", "description": "SAML role list", "protocol": "saml", "attributes": { "consent.screen.text": "${samlRoleListScopeConsentText}", "display.on.consent.screen": "true" }, "protocolMappers": [ { "name": "role list", "protocol": "saml", "protocolMapper": "saml-role-list-mapper", "consentRequired": false, "config": { "single": "false", "attribute.nameformat": "Basic", "attribute.name": "Role" } } ] }, { "name": "microprofile-jwt", "description": "Microprofile - JWT built-in scope", "protocol": "openid-connect", "attributes": { "include.in.token.scope": "true", "display.on.consent.screen": "false" }, "protocolMappers": [ { "name": "upn", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-property-mapper", "consentRequired": false, "config": { "userinfo.token.claim": "true", "user.attribute": "username", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "upn", "jsonType.label": "String" } }, { "name": "groups", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-realm-role-mapper", "consentRequired": false, "config": { "multivalued": "true", "user.attribute": "foo", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "groups", "jsonType.label": "String" } } ] }, { "name": "eu_extended_profile", "description": "EU required fields extended profile", "protocol": "openid-connect", "attributes": { "include.in.token.scope": "true", "display.on.consent.screen": "false", "gui.order": "" }, "protocolMappers": [ { "name": "stakeholder", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-attribute-mapper", "consentRequired": false, "config": { "aggregate.attrs": "false", "userinfo.token.claim": "true", "multivalued": "false", "user.attribute": "stakeholder", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "ep_stakeholder" } }, { "name": "role_other_spec", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-attribute-mapper", "consentRequired": false, "config": { "aggregate.attrs": "false", "userinfo.token.claim": "true", "multivalued": "false", "user.attribute": "role_other_spec", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "role_other_spec" } }, { "name": "organization", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-attribute-mapper", "consentRequired": false, "config": { "aggregate.attrs": "false", "userinfo.token.claim": "true", "multivalued": "false", "user.attribute": "organisation", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "ep_organisation" } }, { "name": "role", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-attribute-mapper", "consentRequired": false, "config": { "aggregate.attrs": "false", "userinfo.token.claim": "true", "multivalued": "false", "user.attribute": "role", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "ep_role" } }, { "name": "gender", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-attribute-mapper", "consentRequired": false, "config": { "aggregate.attrs": "false", "userinfo.token.claim": "true", "multivalued": "false", "user.attribute": "gender", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "ep_gender" } }, { "name": "stakeholder_spec", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-attribute-mapper", "consentRequired": false, "config": { "aggregate.attrs": "false", "userinfo.token.claim": "true", "multivalued": "false", "user.attribute": "stakeholder_other_spec", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "stakeholder_other_spec" } }, { "name": "country", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-attribute-mapper", "consentRequired": false, "config": { "aggregate.attrs": "false", "userinfo.token.claim": "true", "multivalued": "false", "user.attribute": "country", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "ep_country" } } ] }, { "name": "profile", "description": "OpenID Connect built-in scope: profile", "protocol": "openid-connect", "attributes": { "include.in.token.scope": "true", "display.on.consent.screen": "true", "consent.screen.text": "${profileScopeConsentText}" }, "protocolMappers": [ { "name": "website", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-attribute-mapper", "consentRequired": false, "config": { "userinfo.token.claim": "true", "user.attribute": "website", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "website", "jsonType.label": "String" } }, { "name": "zoneinfo", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-attribute-mapper", "consentRequired": false, "config": { "userinfo.token.claim": "true", "user.attribute": "zoneinfo", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "zoneinfo", "jsonType.label": "String" } }, { "name": "updated at", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-attribute-mapper", "consentRequired": false, "config": { "userinfo.token.claim": "true", "user.attribute": "updatedAt", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "updated_at", "jsonType.label": "String" } }, { "name": "family name", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-property-mapper", "consentRequired": false, "config": { "userinfo.token.claim": "true", "user.attribute": "lastName", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "family_name", "jsonType.label": "String" } }, { "name": "given name", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-property-mapper", "consentRequired": false, "config": { "userinfo.token.claim": "true", "user.attribute": "firstName", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "given_name", "jsonType.label": "String" } }, { "name": "gender", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-attribute-mapper", "consentRequired": false, "config": { "aggregate.attrs": "false", "userinfo.token.claim": "true", "multivalued": "false", "user.attribute": "gender", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "gender" } }, { "name": "middle name", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-attribute-mapper", "consentRequired": false, "config": { "userinfo.token.claim": "true", "user.attribute": "middleName", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "middle_name", "jsonType.label": "String" } }, { "name": "d4s-context-mapper", "protocol": "openid-connect", "protocolMapper": "oidc-d4scince-context-mapper", "consentRequired": false, "config": { "d4scm.header-name": "X-D4Science-Context", "access.token.claim": "true", "claim.name": "aud", "d4scm.narrow-ra": "true" } }, { "name": "birthdate", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-attribute-mapper", "consentRequired": false, "config": { "userinfo.token.claim": "true", "user.attribute": "birthdate", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "birthdate", "jsonType.label": "String" } }, { "name": "picture", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-attribute-mapper", "consentRequired": false, "config": { "userinfo.token.claim": "true", "user.attribute": "picture", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "picture", "jsonType.label": "String" } }, { "name": "profile", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-attribute-mapper", "consentRequired": false, "config": { "userinfo.token.claim": "true", "user.attribute": "profile", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "profile", "jsonType.label": "String" } }, { "name": "locale", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-attribute-mapper", "consentRequired": false, "config": { "userinfo.token.claim": "true", "user.attribute": "locale", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "locale", "jsonType.label": "String" } }, { "name": "username", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-property-mapper", "consentRequired": false, "config": { "userinfo.token.claim": "true", "user.attribute": "username", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "preferred_username", "jsonType.label": "String" } }, { "name": "full name", "protocol": "openid-connect", "protocolMapper": "oidc-full-name-mapper", "consentRequired": false, "config": { "id.token.claim": "true", "access.token.claim": "true", "userinfo.token.claim": "true" } }, { "name": "nickname", "protocol": "openid-connect", "protocolMapper": "oidc-usermodel-attribute-mapper", "consentRequired": false, "config": { "userinfo.token.claim": "true", "user.attribute": "nickname", "id.token.claim": "true", "access.token.claim": "true", "claim.name": "nickname", "jsonType.label": "String" } }, { "name": "gcube context mapper", "protocol": "openid-connect", "protocolMapper": "oidc-gcube-context-mapper", "consentRequired": false, "config": { "claim.name": "aud", "access.token.claim": "true" } } ] }, { "name": "web-origins", "description": "OpenID Connect scope for add allowed web origins to the access token", "protocol": "openid-connect", "attributes": { "include.in.token.scope": "false", "display.on.consent.screen": "false", "consent.screen.text": "" }, "protocolMappers": [ { "name": "allowed web origins", "protocol": "openid-connect", "protocolMapper": "oidc-allowed-origins-mapper", "consentRequired": false, "config": {} } ] }, { "name": "address", "description": "OpenID Connect built-in scope: address", "protocol": "openid-connect", "attributes": { "include.in.token.scope": "true", "display.on.consent.screen": "true", "consent.screen.text": "${addressScopeConsentText}" }, "protocolMappers": [ { "name": "address", "protocol": "openid-connect", "protocolMapper": "oidc-address-mapper", "consentRequired": false, "config": { "user.attribute.formatted": "formatted", "user.attribute.country": "country", "user.attribute.postal_code": "postal_code", "userinfo.token.claim": "true", "user.attribute.street": "street", "id.token.claim": "true", "user.attribute.region": "region", "access.token.claim": "true", "user.attribute.locality": "locality" } } ] } ], "defaultOptionalClientScopes": [ "offline_access", "address", "phone", "microprofile-jwt", "eu_extended_profile", "d4s-identity" ], "keycloakVersion": "24.0.3" }