2610 lines
80 KiB
JSON
2610 lines
80 KiB
JSON
{
|
|
"id": "d4science",
|
|
"realm": "d4science",
|
|
"displayName": "D4Science Keycloak TEST SERVER",
|
|
"enabled": true,
|
|
"defaultGroups": [
|
|
"/gcube"
|
|
],
|
|
"requiredCredentials": [
|
|
"password"
|
|
],
|
|
"roles": {
|
|
"realm": [
|
|
{
|
|
"name": "d4s-client",
|
|
"description": "A D4Science internal client ",
|
|
"composite": false,
|
|
"clientRole": false,
|
|
"containerId": "d4science",
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Infrastructure-Member",
|
|
"description": "A Composite role for allowing system services to operate in any context with minimal privileges.",
|
|
"composite": true,
|
|
"composites": {
|
|
"client": {
|
|
"%2Fgcube": [
|
|
"Member"
|
|
],
|
|
"%2Fgcube%2FdevNext": [
|
|
"Member"
|
|
],
|
|
"%2Fgcube%2Fdevsec": [
|
|
"Member"
|
|
],
|
|
"%2Fgcube%2Fdevsec%2FdevVRE": [
|
|
"Member"
|
|
],
|
|
"%2Fgcube%2FdevNext%2FNextNext": [
|
|
"Member"
|
|
]
|
|
}
|
|
},
|
|
"clientRole": false,
|
|
"containerId": "d4science",
|
|
"attributes": {}
|
|
}
|
|
],
|
|
"client": {
|
|
"localhost": [],
|
|
"liferay": [],
|
|
"next.dev.d4science.org": [],
|
|
"dev4.d4science.org": [],
|
|
"next.d4science.org": [],
|
|
"lr62_portal": [
|
|
{
|
|
"name": "uma_protection",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
}
|
|
],
|
|
"%2Fgcube": [
|
|
{
|
|
"name": "Catalogue-Admin",
|
|
"description": "Catalogue-Admin role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "DataMiner-Manager",
|
|
"description": "DataMiner-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Catalogue-Manager",
|
|
"description": "Catalogue-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "uma_protection",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Catalogue-Editor",
|
|
"description": "Catalogue-Editor role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "VRE-Designer",
|
|
"description": "VRE-Designer role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Accounting-Manager",
|
|
"description": "Accounting-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Data-Manager",
|
|
"description": "Data-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Member",
|
|
"description": "Simple membership",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Catalogue-Moderator",
|
|
"description": "Catalogue-Moderator role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "VO-Admin",
|
|
"description": "VO-Admin role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Infrastructure-Manager",
|
|
"description": "Infrastructure-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Data-Editor",
|
|
"description": "Data-Editor role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "VRE-Manager",
|
|
"description": "VRE-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
}
|
|
],
|
|
"%2Fgcube%2FdevNext": [
|
|
{
|
|
"name": "Catalogue-Admin",
|
|
"description": "Catalogue-Admin role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "DataMiner-Manager",
|
|
"description": "DataMiner-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Catalogue-Manager",
|
|
"description": "Catalogue-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "uma_protection",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Catalogue-Editor",
|
|
"description": "Catalogue-Editor role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "VRE-Designer",
|
|
"description": "VRE-Designer role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Accounting-Manager",
|
|
"description": "Accounting-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Data-Manager",
|
|
"description": "Data-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Member",
|
|
"description": "Simple membership",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Catalogue-Moderator",
|
|
"description": "Catalogue-Moderator role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "VO-Admin",
|
|
"description": "VO-Admin role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Infrastructure-Manager",
|
|
"description": "Infrastructure-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Data-Editor",
|
|
"description": "Data-Editor role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "VRE-Manager",
|
|
"description": "VRE-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
}
|
|
],
|
|
"%2Fgcube%2FdevNext%2FNextNext": [
|
|
{
|
|
"name": "Catalogue-Admin",
|
|
"description": "Catalogue-Admin role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "DataMiner-Manager",
|
|
"description": "DataMiner-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Catalogue-Manager",
|
|
"description": "Catalogue-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "uma_protection",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Catalogue-Editor",
|
|
"description": "Catalogue-Editor role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "VRE-Designer",
|
|
"description": "VRE-Designer role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Accounting-Manager",
|
|
"description": "Accounting-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Data-Manager",
|
|
"description": "Data-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Member",
|
|
"description": "Simple membership",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Catalogue-Moderator",
|
|
"description": "Catalogue-Moderator role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "VO-Admin",
|
|
"description": "VO-Admin role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Infrastructure-Manager",
|
|
"description": "Infrastructure-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Data-Editor",
|
|
"description": "Data-Editor role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "VRE-Manager",
|
|
"description": "VRE-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
}
|
|
],
|
|
"%2Fgcube%2Fdevsec": [
|
|
{
|
|
"name": "Catalogue-Admin",
|
|
"description": "Catalogue-Admin role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "DataMiner-Manager",
|
|
"description": "DataMiner-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Catalogue-Manager",
|
|
"description": "Catalogue-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "uma_protection",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Catalogue-Editor",
|
|
"description": "Catalogue-Editor role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "VRE-Designer",
|
|
"description": "VRE-Designer role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Accounting-Manager",
|
|
"description": "Accounting-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Data-Manager",
|
|
"description": "Data-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Member",
|
|
"description": "Simple membership",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Catalogue-Moderator",
|
|
"description": "Catalogue-Moderator role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "VO-Admin",
|
|
"description": "VO-Admin role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Infrastructure-Manager",
|
|
"description": "Infrastructure-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Data-Editor",
|
|
"description": "Data-Editor role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "VRE-Manager",
|
|
"description": "VRE-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
}
|
|
],
|
|
"%2Fgcube%2Fdevsec%2FdevVRE": [
|
|
{
|
|
"name": "Catalogue-Admin",
|
|
"description": "Catalogue-Admin role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "DataMiner-Manager",
|
|
"description": "DataMiner-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Catalogue-Manager",
|
|
"description": "Catalogue-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "uma_protection",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Catalogue-Editor",
|
|
"description": "Catalogue-Editor role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "VRE-Designer",
|
|
"description": "VRE-Designer role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Accounting-Manager",
|
|
"description": "Accounting-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Data-Manager",
|
|
"description": "Data-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Member",
|
|
"description": "Simple membership",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Catalogue-Moderator",
|
|
"description": "Catalogue-Moderator role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "VO-Admin",
|
|
"description": "VO-Admin role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Infrastructure-Manager",
|
|
"description": "Infrastructure-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "Data-Editor",
|
|
"description": "Data-Editor role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
},
|
|
{
|
|
"name": "VRE-Manager",
|
|
"description": "VRE-Manager role",
|
|
"composite": false,
|
|
"clientRole": true,
|
|
"attributes": {}
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"groups": [
|
|
{
|
|
"name": "gcube",
|
|
"path": "/gcube",
|
|
"subGroups": [
|
|
{
|
|
"name": "devNext",
|
|
"path": "/gcube/devNext",
|
|
"subGroups": [
|
|
{
|
|
"name": "NextNext",
|
|
"path": "/gcube/devNext/NextNext",
|
|
"subGroups": [],
|
|
"attributes": {},
|
|
"realmRoles": [],
|
|
"clientRoles": {
|
|
"%2Fgcube%2FdevNext%2FNextNext": [
|
|
"Member"
|
|
]
|
|
}
|
|
}
|
|
],
|
|
"attributes": {},
|
|
"realmRoles": [],
|
|
"clientRoles": {
|
|
"%2Fgcube%2FdevNext": [
|
|
"Member"
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"name": "devsec",
|
|
"path": "/gcube/devsec",
|
|
"subGroups": [
|
|
{
|
|
"name": "devVRE",
|
|
"path": "/gcube/devsec/devVRE",
|
|
"subGroups": [],
|
|
"attributes": {},
|
|
"realmRoles": [],
|
|
"clientRoles": {
|
|
"%2Fgcube%2Fdevsec%2FdevVRE": [
|
|
"Member"
|
|
]
|
|
}
|
|
}
|
|
],
|
|
"attributes": {},
|
|
"realmRoles": [],
|
|
"clientRoles": {
|
|
"%2Fgcube%2Fdevsec": [
|
|
"Member"
|
|
]
|
|
}
|
|
}
|
|
],
|
|
"attributes": {},
|
|
"realmRoles": [],
|
|
"clientRoles": {
|
|
"%2Fgcube": [
|
|
"Member"
|
|
]
|
|
}
|
|
}
|
|
],
|
|
"users": [
|
|
{
|
|
"id": "b9969b51-578f-4b69-a53f-2c8adf9efcc7",
|
|
"username": "alfredo.oliviero",
|
|
"firstName": "Alfredo",
|
|
"lastName": "Oliviero",
|
|
"email": "alfredo.oliviero@isti.cnr.it",
|
|
"emailVerified": true,
|
|
"attributes": {
|
|
"country": [
|
|
"Italy"
|
|
],
|
|
"role": [
|
|
"Researcher"
|
|
],
|
|
"gender": [
|
|
"Male"
|
|
],
|
|
"organisation": [
|
|
"ISTI CNR"
|
|
],
|
|
"locale": [
|
|
"it"
|
|
],
|
|
"stakeholder": [
|
|
"Blue-data infrastructures and e-infrastructures"
|
|
],
|
|
"role_other_spec": [
|
|
""
|
|
],
|
|
"createTimestamp": [
|
|
"20240207134409Z"
|
|
],
|
|
"modifyTimestamp": [
|
|
"20240325143310Z"
|
|
],
|
|
"LDAP_ID": [
|
|
"f29e9001-c5be11ee-a86aae16-9ae7de3b"
|
|
],
|
|
"terms_and_conditions": [
|
|
"1707313498"
|
|
],
|
|
"LDAP_ENTRY_DN": [
|
|
"uid=alfredo.oliviero,ou=People,o=D4Science,ou=Organizations,dc=d4science,dc=org"
|
|
],
|
|
"stakeholder_other_spec": [
|
|
""
|
|
]
|
|
},
|
|
"enabled": true,
|
|
"totp": false,
|
|
"access": {
|
|
"manageGroupMembership": true,
|
|
"view": true,
|
|
"mapRoles": true,
|
|
"impersonate": true,
|
|
"manage": true
|
|
},
|
|
"credentials": [
|
|
{
|
|
"type": "password",
|
|
"userLabel": "My password",
|
|
"value": "pass"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"username": "service-account-sg4-test-client",
|
|
"enabled": true,
|
|
"serviceAccountClientId": "sg4-test-client",
|
|
"realmRoles": [
|
|
"default-roles-d4science",
|
|
"Infrastructure-Member"
|
|
],
|
|
"clientRoles": {
|
|
"sg4-test-client": [
|
|
"uma_protection"
|
|
]
|
|
},
|
|
"groups": [
|
|
"/gcube"
|
|
]
|
|
},
|
|
{
|
|
"username": "service-account-id.d4science.org",
|
|
"enabled": true,
|
|
"serviceAccountClientId": "id.d4science.org",
|
|
"realmRoles": [
|
|
"default-roles-d4science",
|
|
"Infrastructure-Member"
|
|
],
|
|
"clientRoles": {
|
|
"id.d4science.org": [
|
|
"uma_protection"
|
|
]
|
|
},
|
|
"groups": [
|
|
"/gcube"
|
|
]
|
|
},
|
|
{
|
|
"username": "admin_liferay",
|
|
"firstName": "Admin",
|
|
"lastName": "liferay",
|
|
"email": "admin_liferay@d4science.org",
|
|
"emailVerified": true,
|
|
"enabled": true,
|
|
"credentials": [
|
|
{
|
|
"type": "password",
|
|
"userLabel": "My password",
|
|
"value": "admin"
|
|
}
|
|
],
|
|
"groups": [
|
|
"/gcube/devsec/devVRE"
|
|
]
|
|
},
|
|
{
|
|
"username": "mister.blonde",
|
|
"firstName": "Mister",
|
|
"lastName": "Blonde",
|
|
"email": "mister.blonde@d4science.org",
|
|
"emailVerified": true,
|
|
"enabled": true,
|
|
"credentials": [
|
|
{
|
|
"type": "password",
|
|
"userLabel": "My password",
|
|
"value": "123passwd!"
|
|
}
|
|
],
|
|
"groups": [
|
|
"/gcube/devsec/devVRE"
|
|
]
|
|
},
|
|
{
|
|
"username": "mister.blue",
|
|
"firstName": "Mister",
|
|
"lastName": "Blue",
|
|
"email": "mister.blue@d4science.org",
|
|
"emailVerified": true,
|
|
"enabled": true,
|
|
"totp": false,
|
|
"credentials": [
|
|
{
|
|
"type": "password",
|
|
"userLabel": "My password",
|
|
"value": "123passwd!"
|
|
}
|
|
],
|
|
"groups": [
|
|
"/gcube/devsec/devVRE"
|
|
]
|
|
},
|
|
{
|
|
"username": "mister.brown",
|
|
"firstName": "Mister",
|
|
"lastName": "Brown",
|
|
"email": "mister.brown@d4science.org",
|
|
"emailVerified": true,
|
|
"enabled": true,
|
|
"totp": false,
|
|
"credentials": [
|
|
{
|
|
"type": "password",
|
|
"userLabel": "My password",
|
|
"value": "123passwd!"
|
|
}
|
|
],
|
|
"groups": [
|
|
"/gcube/devsec/devVRE"
|
|
]
|
|
},
|
|
{
|
|
"username": "mister.orange",
|
|
"firstName": "Mister",
|
|
"lastName": "Orange",
|
|
"email": "mister.orange@d4science.org",
|
|
"emailVerified": true,
|
|
"enabled": true,
|
|
"totp": false,
|
|
"credentials": [
|
|
{
|
|
"type": "password",
|
|
"userLabel": "My password",
|
|
"value": "123passwd!"
|
|
}
|
|
],
|
|
"groups": [
|
|
"/gcube/devsec/devVRE"
|
|
]
|
|
},
|
|
{
|
|
"username": "mister.white_01",
|
|
"firstName": "Mister",
|
|
"lastName": "White",
|
|
"email": "mister.white@d4science.org",
|
|
"emailVerified": true,
|
|
"enabled": true,
|
|
"totp": false,
|
|
"credentials": [
|
|
{
|
|
"type": "password",
|
|
"userLabel": "My password",
|
|
"value": "123passwd!"
|
|
}
|
|
],
|
|
"groups": [
|
|
"/gcube/devsec/devVRE"
|
|
]
|
|
},
|
|
{
|
|
"username": "mister.pink",
|
|
"firstName": "Mister",
|
|
"lastName": "Pink",
|
|
"email": "mister.pink@d4science.org",
|
|
"emailVerified": true,
|
|
"enabled": true,
|
|
"totp": false,
|
|
"credentials": [
|
|
{
|
|
"type": "password",
|
|
"userLabel": "My password",
|
|
"value": "123passwd!"
|
|
}
|
|
],
|
|
"groups": [
|
|
"/gcube/devsec/devVRE"
|
|
]
|
|
}
|
|
],
|
|
"clients": [
|
|
{
|
|
"clientId": "localhost",
|
|
"name": "localhost",
|
|
"description": "localhost DEV GW",
|
|
"enabled": true,
|
|
"bearerOnly": false,
|
|
"consentRequired": false,
|
|
"standardFlowEnabled": true,
|
|
"implicitFlowEnabled": false,
|
|
"directAccessGrantsEnabled": true,
|
|
"serviceAccountsEnabled": false,
|
|
"publicClient": true,
|
|
"fullScopeAllowed": true,
|
|
"protocol": "openid-connect",
|
|
"redirectUris": [
|
|
"*"
|
|
]
|
|
},
|
|
{
|
|
"clientId": "liferay",
|
|
"name": "liferay",
|
|
"description": "liferay DEV GW",
|
|
"enabled": true,
|
|
"bearerOnly": false,
|
|
"consentRequired": false,
|
|
"standardFlowEnabled": true,
|
|
"implicitFlowEnabled": false,
|
|
"directAccessGrantsEnabled": true,
|
|
"serviceAccountsEnabled": false,
|
|
"publicClient": true,
|
|
"fullScopeAllowed": true,
|
|
"protocol": "openid-connect",
|
|
"redirectUris": [
|
|
"*"
|
|
]
|
|
},
|
|
{
|
|
"clientId": "portal",
|
|
"name": "portal",
|
|
"description": "Local portal GW",
|
|
"enabled": true,
|
|
"bearerOnly": false,
|
|
"consentRequired": false,
|
|
"standardFlowEnabled": true,
|
|
"implicitFlowEnabled": false,
|
|
"directAccessGrantsEnabled": true,
|
|
"serviceAccountsEnabled": false,
|
|
"publicClient": true,
|
|
"fullScopeAllowed": true,
|
|
"protocol": "openid-connect",
|
|
"redirectUris": [
|
|
"*"
|
|
]
|
|
},
|
|
{
|
|
"clientId": "next.dev.d4science.org",
|
|
"name": "next.dev.d4science.org",
|
|
"description": "next.dev.d4science.org DEV GW",
|
|
"enabled": true,
|
|
"bearerOnly": false,
|
|
"consentRequired": false,
|
|
"standardFlowEnabled": true,
|
|
"implicitFlowEnabled": false,
|
|
"directAccessGrantsEnabled": true,
|
|
"serviceAccountsEnabled": false,
|
|
"publicClient": true,
|
|
"fullScopeAllowed": true,
|
|
"protocol": "openid-connect",
|
|
"redirectUris": [
|
|
"*"
|
|
]
|
|
},
|
|
{
|
|
"clientId": "dev4.d4science.org",
|
|
"name": "dev4.d4science.org",
|
|
"description": "dev4.d4science.org DEV gateway",
|
|
"enabled": true,
|
|
"bearerOnly": false,
|
|
"consentRequired": false,
|
|
"standardFlowEnabled": true,
|
|
"implicitFlowEnabled": false,
|
|
"directAccessGrantsEnabled": true,
|
|
"serviceAccountsEnabled": false,
|
|
"publicClient": true,
|
|
"fullScopeAllowed": true,
|
|
"protocol": "openid-connect",
|
|
"redirectUris": [
|
|
"*"
|
|
]
|
|
},
|
|
{
|
|
"clientId": "next.d4science.org",
|
|
"name": "next.d4science.org",
|
|
"description": "next.d4science.org DEV GW",
|
|
"enabled": true,
|
|
"bearerOnly": false,
|
|
"consentRequired": false,
|
|
"standardFlowEnabled": true,
|
|
"implicitFlowEnabled": false,
|
|
"directAccessGrantsEnabled": true,
|
|
"serviceAccountsEnabled": false,
|
|
"publicClient": true,
|
|
"fullScopeAllowed": true,
|
|
"protocol": "openid-connect",
|
|
"redirectUris": [
|
|
"*"
|
|
]
|
|
},
|
|
{
|
|
"clientId": "lr62_portal",
|
|
"name": "lr62_portal",
|
|
"description": "",
|
|
"surrogateAuthRequired": false,
|
|
"enabled": true,
|
|
"alwaysDisplayInConsole": false,
|
|
"clientAuthenticatorType": "client-secret",
|
|
"secret": "PSNZi7UApVA77J79MxhBGErvDpkeQ4jK",
|
|
"bearerOnly": false,
|
|
"consentRequired": false,
|
|
"standardFlowEnabled": true,
|
|
"implicitFlowEnabled": false,
|
|
"directAccessGrantsEnabled": true,
|
|
"serviceAccountsEnabled": true,
|
|
"authorizationServicesEnabled": true,
|
|
"publicClient": false,
|
|
"protocol": "openid-connect",
|
|
"fullScopeAllowed": true
|
|
},
|
|
{
|
|
"clientId": "sg4-test-client",
|
|
"name": "sg4-test-client",
|
|
"description": "",
|
|
"surrogateAuthRequired": false,
|
|
"enabled": true,
|
|
"alwaysDisplayInConsole": false,
|
|
"clientAuthenticatorType": "client-secret",
|
|
"secret": "a156a7db-3b32-4cd5-b27b-2488e0e01698",
|
|
"bearerOnly": false,
|
|
"consentRequired": false,
|
|
"standardFlowEnabled": true,
|
|
"implicitFlowEnabled": false,
|
|
"directAccessGrantsEnabled": true,
|
|
"serviceAccountsEnabled": true,
|
|
"authorizationServicesEnabled": true,
|
|
"publicClient": false,
|
|
"protocol": "openid-connect",
|
|
"fullScopeAllowed": true
|
|
},
|
|
{
|
|
"clientId": "id.d4science.org",
|
|
"name": "id.d4science.org",
|
|
"description": "",
|
|
"surrogateAuthRequired": false,
|
|
"enabled": true,
|
|
"alwaysDisplayInConsole": false,
|
|
"clientAuthenticatorType": "client-secret",
|
|
"secret": "09c26f24-3c65-4039-9fa0-e5cc4f4032cd",
|
|
"bearerOnly": false,
|
|
"consentRequired": false,
|
|
"standardFlowEnabled": true,
|
|
"implicitFlowEnabled": false,
|
|
"directAccessGrantsEnabled": true,
|
|
"serviceAccountsEnabled": true,
|
|
"authorizationServicesEnabled": true,
|
|
"publicClient": false,
|
|
"protocol": "openid-connect",
|
|
"fullScopeAllowed": true
|
|
},
|
|
{
|
|
"clientId": "%2Fgcube",
|
|
"name": "/gcube",
|
|
"description": "DEV root context",
|
|
"surrogateAuthRequired": false,
|
|
"enabled": true,
|
|
"clientAuthenticatorType": "client-secret",
|
|
"secret": "pGUxKKymcq581EwMSvfw8f5ocFyL7YXp",
|
|
"bearerOnly": false,
|
|
"consentRequired": false,
|
|
"standardFlowEnabled": true,
|
|
"implicitFlowEnabled": false,
|
|
"directAccessGrantsEnabled": true,
|
|
"serviceAccountsEnabled": true,
|
|
"authorizationServicesEnabled": true,
|
|
"publicClient": false,
|
|
"fullScopeAllowed": false,
|
|
"protocol": "openid-connect",
|
|
"authorizationSettings": {
|
|
"allowRemoteResourceManagement": true,
|
|
"policyEnforcementMode": "ENFORCING",
|
|
"resources": [
|
|
{
|
|
"name": "Default Resource",
|
|
"type": "urn:%2Fgcube:resources:default",
|
|
"ownerManagedAccess": false,
|
|
"attributes": {},
|
|
"uris": [
|
|
"*"
|
|
]
|
|
}
|
|
],
|
|
"policies": [
|
|
{
|
|
"name": "Member_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube/Member\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"id": "a4c337b8-b6d4-4787-aa09-bffba3e8447a",
|
|
"name": "Catalogue-Admin_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube/Catalogue-Admin\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Data-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube/Data-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Infrastructure-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube/Infrastructure-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "VRE-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube/VRE-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Accounting-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube/Accounting-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Catalogue-Editor_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube/Catalogue-Editor\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "DataMiner-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube/DataMiner-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "VO-Admin_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube/VO-Admin\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "VRE-Designer_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube/VRE-Designer\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Data-Editor_policy",
|
|
"description": "Policy for having Data-Editor role",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"roles": "[{\"id\":\"%2Fgcube/Data-Editor\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Catalogue-Moderator_policy",
|
|
"description": "Policy for having Catalogue-Moderator role",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"roles": "[{\"id\":\"%2Fgcube/Catalogue-Moderator\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Catalogue-Manager_policy",
|
|
"description": "Policy for having Catalogue-Manager role",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"roles": "[{\"id\":\"%2Fgcube/Catalogue-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Default Permission",
|
|
"description": "",
|
|
"type": "resource",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "AFFIRMATIVE",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"applyPolicies": "[\"Catalogue-Admin_policy\",\"Accounting-Manager_policy\",\"VO-Admin_policy\",\"Data-Editor_policy\",\"Catalogue-Manager_policy\",\"Member_policy\",\"Infrastructure-Manager_policy\",\"VRE-Manager_policy\",\"Data-Manager_policy\",\"DataMiner-Manager_policy\",\"Catalogue-Moderator_policy\",\"Catalogue-Editor_policy\",\"VRE-Designer_policy\"]"
|
|
}
|
|
}
|
|
],
|
|
"scopes": [],
|
|
"decisionStrategy": "UNANIMOUS"
|
|
}
|
|
},
|
|
{
|
|
"clientId": "%2Fgcube%2FdevNext",
|
|
"name": "/gcube/devNext",
|
|
"description": "",
|
|
"surrogateAuthRequired": false,
|
|
"enabled": true,
|
|
"clientAuthenticatorType": "client-secret",
|
|
"secret": "YGWaGwpAvKN8jAkg2NaTTlYbf3iovMrm",
|
|
"bearerOnly": false,
|
|
"consentRequired": false,
|
|
"standardFlowEnabled": true,
|
|
"implicitFlowEnabled": false,
|
|
"directAccessGrantsEnabled": true,
|
|
"serviceAccountsEnabled": true,
|
|
"authorizationServicesEnabled": true,
|
|
"publicClient": false,
|
|
"fullScopeAllowed": false,
|
|
"protocol": "openid-connect",
|
|
"authorizationSettings": {
|
|
"allowRemoteResourceManagement": true,
|
|
"policyEnforcementMode": "ENFORCING",
|
|
"resources": [
|
|
{
|
|
"name": "Default Resource",
|
|
"type": "urn:%2Fgcube%2FdevNext:resources:default",
|
|
"ownerManagedAccess": false,
|
|
"attributes": {},
|
|
"uris": [
|
|
"*"
|
|
]
|
|
}
|
|
],
|
|
"policies": [
|
|
{
|
|
"name": "Member_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext/Member\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"id": "a4c337b8-b6d4-4787-aa09-bffba3e8447a",
|
|
"name": "Catalogue-Admin_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext/Catalogue-Admin\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Data-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext/Data-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Infrastructure-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext/Infrastructure-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "VRE-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext/VRE-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Accounting-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext/Accounting-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Catalogue-Editor_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext/Catalogue-Editor\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "DataMiner-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext/DataMiner-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "VO-Admin_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext/VO-Admin\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "VRE-Designer_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext/VRE-Designer\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Data-Editor_policy",
|
|
"description": "Policy for having Data-Editor role",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext/Data-Editor\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Catalogue-Moderator_policy",
|
|
"description": "Policy for having Catalogue-Moderator role",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext/Catalogue-Moderator\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Catalogue-Manager_policy",
|
|
"description": "Policy for having Catalogue-Manager role",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext/Catalogue-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Default Permission",
|
|
"description": "",
|
|
"type": "resource",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "AFFIRMATIVE",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"applyPolicies": "[\"Catalogue-Admin_policy\",\"Accounting-Manager_policy\",\"VO-Admin_policy\",\"Data-Editor_policy\",\"Catalogue-Manager_policy\",\"Member_policy\",\"Infrastructure-Manager_policy\",\"VRE-Manager_policy\",\"Data-Manager_policy\",\"DataMiner-Manager_policy\",\"Catalogue-Moderator_policy\",\"Catalogue-Editor_policy\",\"VRE-Designer_policy\"]"
|
|
}
|
|
}
|
|
],
|
|
"scopes": [],
|
|
"decisionStrategy": "UNANIMOUS"
|
|
}
|
|
},
|
|
{
|
|
"clientId": "%2Fgcube%2FdevNext%2FNextNext",
|
|
"name": "/gcube/devNext/NextNext",
|
|
"description": "",
|
|
"surrogateAuthRequired": false,
|
|
"enabled": true,
|
|
"alwaysDisplayInConsole": false,
|
|
"clientAuthenticatorType": "client-secret",
|
|
"secret": "GXleD0rolXgw30JthnO3peeZpmxvTXBm",
|
|
"bearerOnly": false,
|
|
"consentRequired": false,
|
|
"standardFlowEnabled": true,
|
|
"implicitFlowEnabled": false,
|
|
"directAccessGrantsEnabled": true,
|
|
"serviceAccountsEnabled": true,
|
|
"authorizationServicesEnabled": true,
|
|
"publicClient": false,
|
|
"fullScopeAllowed": false,
|
|
"protocol": "openid-connect",
|
|
"authorizationSettings": {
|
|
"allowRemoteResourceManagement": true,
|
|
"policyEnforcementMode": "ENFORCING",
|
|
"resources": [
|
|
{
|
|
"name": "Default Resource",
|
|
"type": "urn:%2Fgcube%2FdevNext%2FNextNext:resources:default",
|
|
"ownerManagedAccess": false,
|
|
"attributes": {},
|
|
"uris": [
|
|
"*"
|
|
]
|
|
}
|
|
],
|
|
"policies": [
|
|
{
|
|
"name": "Member_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/Member\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"id": "a4c337b8-b6d4-4787-aa09-bffba3e8447a",
|
|
"name": "Catalogue-Admin_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/Catalogue-Admin\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Data-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/Data-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Infrastructure-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/Infrastructure-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "VRE-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/VRE-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Accounting-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/Accounting-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Catalogue-Editor_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/Catalogue-Editor\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "DataMiner-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/DataMiner-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "VO-Admin_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/VO-Admin\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "VRE-Designer_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/VRE-Designer\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Data-Editor_policy",
|
|
"description": "Policy for having Data-Editor role",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/Data-Editor\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Catalogue-Moderator_policy",
|
|
"description": "Policy for having Catalogue-Moderator role",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/Catalogue-Moderator\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Catalogue-Manager_policy",
|
|
"description": "Policy for having Catalogue-Manager role",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"roles": "[{\"id\":\"%2Fgcube%2FdevNext%2FNextNext/Catalogue-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Default Permission",
|
|
"description": "",
|
|
"type": "resource",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "AFFIRMATIVE",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"applyPolicies": "[\"Catalogue-Admin_policy\",\"Accounting-Manager_policy\",\"VO-Admin_policy\",\"Data-Editor_policy\",\"Catalogue-Manager_policy\",\"Member_policy\",\"Infrastructure-Manager_policy\",\"VRE-Manager_policy\",\"Data-Manager_policy\",\"DataMiner-Manager_policy\",\"Catalogue-Moderator_policy\",\"Catalogue-Editor_policy\",\"VRE-Designer_policy\"]"
|
|
}
|
|
}
|
|
],
|
|
"scopes": [],
|
|
"decisionStrategy": "UNANIMOUS"
|
|
}
|
|
},
|
|
{
|
|
"clientId": "%2Fgcube%2Fdevsec",
|
|
"name": "/gcube/devsec",
|
|
"description": "",
|
|
"surrogateAuthRequired": false,
|
|
"enabled": true,
|
|
"alwaysDisplayInConsole": false,
|
|
"clientAuthenticatorType": "client-secret",
|
|
"secret": "cl2bzXoTE6aFcrF2bJvezcTrYwopaxdk",
|
|
"bearerOnly": false,
|
|
"consentRequired": false,
|
|
"standardFlowEnabled": true,
|
|
"implicitFlowEnabled": false,
|
|
"directAccessGrantsEnabled": true,
|
|
"serviceAccountsEnabled": true,
|
|
"authorizationServicesEnabled": true,
|
|
"publicClient": false,
|
|
"protocol": "openid-connect",
|
|
"fullScopeAllowed": false,
|
|
"authorizationSettings": {
|
|
"allowRemoteResourceManagement": true,
|
|
"policyEnforcementMode": "ENFORCING",
|
|
"resources": [
|
|
{
|
|
"name": "Default Resource",
|
|
"type": "urn:%2Fgcube%2Fdevsec:resources:default",
|
|
"ownerManagedAccess": false,
|
|
"attributes": {},
|
|
"uris": [
|
|
"*"
|
|
]
|
|
}
|
|
],
|
|
"policies": [
|
|
{
|
|
"name": "Member_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec/Member\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"id": "a4c337b8-b6d4-4787-aa09-bffba3e8447a",
|
|
"name": "Catalogue-Admin_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec/Catalogue-Admin\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Data-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec/Data-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Infrastructure-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec/Infrastructure-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "VRE-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec/VRE-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Accounting-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec/Accounting-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Catalogue-Editor_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec/Catalogue-Editor\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "DataMiner-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec/DataMiner-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "VO-Admin_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec/VO-Admin\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "VRE-Designer_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec/VRE-Designer\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Data-Editor_policy",
|
|
"description": "Policy for having Data-Editor role",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec/Data-Editor\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Catalogue-Moderator_policy",
|
|
"description": "Policy for having Catalogue-Moderator role",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec/Catalogue-Moderator\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Catalogue-Manager_policy",
|
|
"description": "Policy for having Catalogue-Manager role",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec/Catalogue-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Default Permission",
|
|
"description": "",
|
|
"type": "resource",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "AFFIRMATIVE",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"applyPolicies": "[\"Catalogue-Admin_policy\",\"Accounting-Manager_policy\",\"VO-Admin_policy\",\"Data-Editor_policy\",\"Catalogue-Manager_policy\",\"Member_policy\",\"Infrastructure-Manager_policy\",\"VRE-Manager_policy\",\"Data-Manager_policy\",\"DataMiner-Manager_policy\",\"Catalogue-Moderator_policy\",\"Catalogue-Editor_policy\",\"VRE-Designer_policy\"]"
|
|
}
|
|
}
|
|
],
|
|
"scopes": [],
|
|
"decisionStrategy": "UNANIMOUS"
|
|
}
|
|
},
|
|
{
|
|
"clientId": "%2Fgcube%2Fdevsec%2FdevVRE",
|
|
"name": "/gcube/devsec/devVRE",
|
|
"description": "",
|
|
"surrogateAuthRequired": false,
|
|
"enabled": true,
|
|
"alwaysDisplayInConsole": false,
|
|
"clientAuthenticatorType": "client-secret",
|
|
"secret": "NlYa2qz0ZmlrYujXWXZJIiMeu54OOoyB",
|
|
"bearerOnly": false,
|
|
"consentRequired": false,
|
|
"standardFlowEnabled": true,
|
|
"implicitFlowEnabled": false,
|
|
"directAccessGrantsEnabled": true,
|
|
"serviceAccountsEnabled": true,
|
|
"authorizationServicesEnabled": true,
|
|
"publicClient": false,
|
|
"protocol": "openid-connect",
|
|
"fullScopeAllowed": false,
|
|
"authorizationSettings": {
|
|
"allowRemoteResourceManagement": true,
|
|
"policyEnforcementMode": "ENFORCING",
|
|
"resources": [
|
|
{
|
|
"name": "Default Resource",
|
|
"type": "urn:%2Fgcube%2Fdevsec%2FdevVRE:resources:default",
|
|
"ownerManagedAccess": false,
|
|
"attributes": {},
|
|
"uris": [
|
|
"*"
|
|
]
|
|
}
|
|
],
|
|
"policies": [
|
|
{
|
|
"name": "Member_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/Member\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"id": "a4c337b8-b6d4-4787-aa09-bffba3e8447a",
|
|
"name": "Catalogue-Admin_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/Catalogue-Admin\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Data-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/Data-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Infrastructure-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/Infrastructure-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "VRE-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/VRE-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Accounting-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/Accounting-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Catalogue-Editor_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/Catalogue-Editor\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "DataMiner-Manager_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/DataMiner-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "VO-Admin_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/VO-Admin\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "VRE-Designer_policy",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/VRE-Designer\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Data-Editor_policy",
|
|
"description": "Policy for having Data-Editor role",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/Data-Editor\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Catalogue-Moderator_policy",
|
|
"description": "Policy for having Catalogue-Moderator role",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/Catalogue-Moderator\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Catalogue-Manager_policy",
|
|
"description": "Policy for having Catalogue-Manager role",
|
|
"type": "role",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "UNANIMOUS",
|
|
"config": {
|
|
"roles": "[{\"id\":\"%2Fgcube%2Fdevsec%2FdevVRE/Catalogue-Manager\",\"required\":true}]"
|
|
}
|
|
},
|
|
{
|
|
"name": "Default Permission",
|
|
"description": "",
|
|
"type": "resource",
|
|
"logic": "POSITIVE",
|
|
"decisionStrategy": "AFFIRMATIVE",
|
|
"config": {
|
|
"resources": "[\"Default Resource\"]",
|
|
"applyPolicies": "[\"Catalogue-Admin_policy\",\"Accounting-Manager_policy\",\"VO-Admin_policy\",\"Data-Editor_policy\",\"Catalogue-Manager_policy\",\"Member_policy\",\"Infrastructure-Manager_policy\",\"VRE-Manager_policy\",\"Data-Manager_policy\",\"DataMiner-Manager_policy\",\"Catalogue-Moderator_policy\",\"Catalogue-Editor_policy\",\"VRE-Designer_policy\"]"
|
|
}
|
|
}
|
|
],
|
|
"scopes": [],
|
|
"decisionStrategy": "UNANIMOUS"
|
|
}
|
|
}
|
|
],
|
|
"clientScopes": [
|
|
{
|
|
"name": "email",
|
|
"description": "OpenID Connect built-in scope: email",
|
|
"protocol": "openid-connect",
|
|
"attributes": {
|
|
"include.in.token.scope": "true",
|
|
"display.on.consent.screen": "true",
|
|
"consent.screen.text": "${emailScopeConsentText}"
|
|
},
|
|
"protocolMappers": [
|
|
{
|
|
"name": "email verified",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-property-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"userinfo.token.claim": "true",
|
|
"user.attribute": "emailVerified",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "email_verified",
|
|
"jsonType.label": "boolean"
|
|
}
|
|
},
|
|
{
|
|
"name": "email",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-property-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"userinfo.token.claim": "true",
|
|
"user.attribute": "email",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "email",
|
|
"jsonType.label": "String"
|
|
}
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"name": "phone",
|
|
"description": "OpenID Connect built-in scope: phone",
|
|
"protocol": "openid-connect",
|
|
"attributes": {
|
|
"include.in.token.scope": "true",
|
|
"display.on.consent.screen": "true",
|
|
"consent.screen.text": "${phoneScopeConsentText}"
|
|
},
|
|
"protocolMappers": [
|
|
{
|
|
"name": "phone number",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-attribute-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"userinfo.token.claim": "true",
|
|
"user.attribute": "phoneNumber",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "phone_number",
|
|
"jsonType.label": "String"
|
|
}
|
|
},
|
|
{
|
|
"name": "phone number verified",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-attribute-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"userinfo.token.claim": "true",
|
|
"user.attribute": "phoneNumberVerified",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "phone_number_verified",
|
|
"jsonType.label": "boolean"
|
|
}
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"name": "acr",
|
|
"description": "OpenID Connect scope for add acr (authentication context class reference) to the token",
|
|
"protocol": "openid-connect",
|
|
"attributes": {
|
|
"include.in.token.scope": "false",
|
|
"display.on.consent.screen": "false"
|
|
},
|
|
"protocolMappers": [
|
|
{
|
|
"name": "acr loa level",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-acr-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true"
|
|
}
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"name": "d4s-identity",
|
|
"description": "The identity of a D4Science internal client with specific mappings",
|
|
"protocol": "openid-connect",
|
|
"attributes": {
|
|
"include.in.token.scope": "true",
|
|
"display.on.consent.screen": "false",
|
|
"gui.order": ""
|
|
},
|
|
"protocolMappers": [
|
|
{
|
|
"name": "name",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-attribute-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"aggregate.attrs": "false",
|
|
"userinfo.token.claim": "true",
|
|
"multivalued": "false",
|
|
"user.attribute": "name",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "CUSTOM NAME"
|
|
}
|
|
},
|
|
{
|
|
"name": "contact_organisation",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-attribute-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"aggregate.attrs": "false",
|
|
"userinfo.token.claim": "true",
|
|
"multivalued": "false",
|
|
"user.attribute": "contactOrganisation",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "contact_organisation"
|
|
}
|
|
},
|
|
{
|
|
"name": "contact_person",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-attribute-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"aggregate.attrs": "false",
|
|
"userinfo.token.claim": "true",
|
|
"multivalued": "false",
|
|
"user.attribute": "contactPerson",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "contact_person"
|
|
}
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"name": "roles",
|
|
"description": "OpenID Connect scope for add user roles to the access token",
|
|
"protocol": "openid-connect",
|
|
"attributes": {
|
|
"include.in.token.scope": "false",
|
|
"display.on.consent.screen": "true",
|
|
"consent.screen.text": "${rolesScopeConsentText}"
|
|
},
|
|
"protocolMappers": [
|
|
{
|
|
"name": "realm roles",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-realm-role-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"multivalued": "true",
|
|
"userinfo.token.claim": "false",
|
|
"user.attribute": "foo",
|
|
"id.token.claim": "false",
|
|
"access.token.claim": "true",
|
|
"claim.name": "realm_access.roles",
|
|
"jsonType.label": "String"
|
|
}
|
|
},
|
|
{
|
|
"name": "client roles",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-client-role-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"user.attribute": "foo",
|
|
"access.token.claim": "true",
|
|
"claim.name": "resource_access.${client_id}.roles",
|
|
"jsonType.label": "String",
|
|
"multivalued": "true"
|
|
}
|
|
},
|
|
{
|
|
"name": "audience-resolve",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-audience-resolve-mapper",
|
|
"consentRequired": false,
|
|
"config": {}
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"name": "offline_access",
|
|
"description": "OpenID Connect built-in scope: offline_access",
|
|
"protocol": "openid-connect",
|
|
"attributes": {
|
|
"consent.screen.text": "${offlineAccessScopeConsentText}",
|
|
"display.on.consent.screen": "true"
|
|
}
|
|
},
|
|
{
|
|
"name": "role_list",
|
|
"description": "SAML role list",
|
|
"protocol": "saml",
|
|
"attributes": {
|
|
"consent.screen.text": "${samlRoleListScopeConsentText}",
|
|
"display.on.consent.screen": "true"
|
|
},
|
|
"protocolMappers": [
|
|
{
|
|
"name": "role list",
|
|
"protocol": "saml",
|
|
"protocolMapper": "saml-role-list-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"single": "false",
|
|
"attribute.nameformat": "Basic",
|
|
"attribute.name": "Role"
|
|
}
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"name": "microprofile-jwt",
|
|
"description": "Microprofile - JWT built-in scope",
|
|
"protocol": "openid-connect",
|
|
"attributes": {
|
|
"include.in.token.scope": "true",
|
|
"display.on.consent.screen": "false"
|
|
},
|
|
"protocolMappers": [
|
|
{
|
|
"name": "upn",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-property-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"userinfo.token.claim": "true",
|
|
"user.attribute": "username",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "upn",
|
|
"jsonType.label": "String"
|
|
}
|
|
},
|
|
{
|
|
"name": "groups",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-realm-role-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"multivalued": "true",
|
|
"user.attribute": "foo",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "groups",
|
|
"jsonType.label": "String"
|
|
}
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"name": "eu_extended_profile",
|
|
"description": "EU required fields extended profile",
|
|
"protocol": "openid-connect",
|
|
"attributes": {
|
|
"include.in.token.scope": "true",
|
|
"display.on.consent.screen": "false",
|
|
"gui.order": ""
|
|
},
|
|
"protocolMappers": [
|
|
{
|
|
"name": "stakeholder",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-attribute-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"aggregate.attrs": "false",
|
|
"userinfo.token.claim": "true",
|
|
"multivalued": "false",
|
|
"user.attribute": "stakeholder",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "ep_stakeholder"
|
|
}
|
|
},
|
|
{
|
|
"name": "role_other_spec",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-attribute-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"aggregate.attrs": "false",
|
|
"userinfo.token.claim": "true",
|
|
"multivalued": "false",
|
|
"user.attribute": "role_other_spec",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "role_other_spec"
|
|
}
|
|
},
|
|
{
|
|
"name": "organization",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-attribute-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"aggregate.attrs": "false",
|
|
"userinfo.token.claim": "true",
|
|
"multivalued": "false",
|
|
"user.attribute": "organisation",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "ep_organisation"
|
|
}
|
|
},
|
|
{
|
|
"name": "role",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-attribute-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"aggregate.attrs": "false",
|
|
"userinfo.token.claim": "true",
|
|
"multivalued": "false",
|
|
"user.attribute": "role",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "ep_role"
|
|
}
|
|
},
|
|
{
|
|
"name": "gender",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-attribute-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"aggregate.attrs": "false",
|
|
"userinfo.token.claim": "true",
|
|
"multivalued": "false",
|
|
"user.attribute": "gender",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "ep_gender"
|
|
}
|
|
},
|
|
{
|
|
"name": "stakeholder_spec",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-attribute-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"aggregate.attrs": "false",
|
|
"userinfo.token.claim": "true",
|
|
"multivalued": "false",
|
|
"user.attribute": "stakeholder_other_spec",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "stakeholder_other_spec"
|
|
}
|
|
},
|
|
{
|
|
"name": "country",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-attribute-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"aggregate.attrs": "false",
|
|
"userinfo.token.claim": "true",
|
|
"multivalued": "false",
|
|
"user.attribute": "country",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "ep_country"
|
|
}
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"name": "profile",
|
|
"description": "OpenID Connect built-in scope: profile",
|
|
"protocol": "openid-connect",
|
|
"attributes": {
|
|
"include.in.token.scope": "true",
|
|
"display.on.consent.screen": "true",
|
|
"consent.screen.text": "${profileScopeConsentText}"
|
|
},
|
|
"protocolMappers": [
|
|
{
|
|
"name": "website",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-attribute-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"userinfo.token.claim": "true",
|
|
"user.attribute": "website",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "website",
|
|
"jsonType.label": "String"
|
|
}
|
|
},
|
|
{
|
|
"name": "zoneinfo",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-attribute-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"userinfo.token.claim": "true",
|
|
"user.attribute": "zoneinfo",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "zoneinfo",
|
|
"jsonType.label": "String"
|
|
}
|
|
},
|
|
{
|
|
"name": "updated at",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-attribute-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"userinfo.token.claim": "true",
|
|
"user.attribute": "updatedAt",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "updated_at",
|
|
"jsonType.label": "String"
|
|
}
|
|
},
|
|
{
|
|
"name": "family name",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-property-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"userinfo.token.claim": "true",
|
|
"user.attribute": "lastName",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "family_name",
|
|
"jsonType.label": "String"
|
|
}
|
|
},
|
|
{
|
|
"name": "given name",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-property-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"userinfo.token.claim": "true",
|
|
"user.attribute": "firstName",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "given_name",
|
|
"jsonType.label": "String"
|
|
}
|
|
},
|
|
{
|
|
"name": "gender",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-attribute-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"aggregate.attrs": "false",
|
|
"userinfo.token.claim": "true",
|
|
"multivalued": "false",
|
|
"user.attribute": "gender",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "gender"
|
|
}
|
|
},
|
|
{
|
|
"name": "middle name",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-attribute-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"userinfo.token.claim": "true",
|
|
"user.attribute": "middleName",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "middle_name",
|
|
"jsonType.label": "String"
|
|
}
|
|
},
|
|
{
|
|
"name": "d4s-context-mapper",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-d4scince-context-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"d4scm.header-name": "X-D4Science-Context",
|
|
"access.token.claim": "true",
|
|
"claim.name": "aud",
|
|
"d4scm.narrow-ra": "true"
|
|
}
|
|
},
|
|
{
|
|
"name": "birthdate",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-attribute-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"userinfo.token.claim": "true",
|
|
"user.attribute": "birthdate",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "birthdate",
|
|
"jsonType.label": "String"
|
|
}
|
|
},
|
|
{
|
|
"name": "picture",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-attribute-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"userinfo.token.claim": "true",
|
|
"user.attribute": "picture",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "picture",
|
|
"jsonType.label": "String"
|
|
}
|
|
},
|
|
{
|
|
"name": "profile",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-attribute-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"userinfo.token.claim": "true",
|
|
"user.attribute": "profile",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "profile",
|
|
"jsonType.label": "String"
|
|
}
|
|
},
|
|
{
|
|
"name": "locale",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-attribute-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"userinfo.token.claim": "true",
|
|
"user.attribute": "locale",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "locale",
|
|
"jsonType.label": "String"
|
|
}
|
|
},
|
|
{
|
|
"name": "username",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-property-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"userinfo.token.claim": "true",
|
|
"user.attribute": "username",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "preferred_username",
|
|
"jsonType.label": "String"
|
|
}
|
|
},
|
|
{
|
|
"name": "full name",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-full-name-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"userinfo.token.claim": "true"
|
|
}
|
|
},
|
|
{
|
|
"name": "nickname",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-usermodel-attribute-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"userinfo.token.claim": "true",
|
|
"user.attribute": "nickname",
|
|
"id.token.claim": "true",
|
|
"access.token.claim": "true",
|
|
"claim.name": "nickname",
|
|
"jsonType.label": "String"
|
|
}
|
|
},
|
|
{
|
|
"name": "gcube context mapper",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-gcube-context-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"claim.name": "aud",
|
|
"access.token.claim": "true"
|
|
}
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"name": "web-origins",
|
|
"description": "OpenID Connect scope for add allowed web origins to the access token",
|
|
"protocol": "openid-connect",
|
|
"attributes": {
|
|
"include.in.token.scope": "false",
|
|
"display.on.consent.screen": "false",
|
|
"consent.screen.text": ""
|
|
},
|
|
"protocolMappers": [
|
|
{
|
|
"name": "allowed web origins",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-allowed-origins-mapper",
|
|
"consentRequired": false,
|
|
"config": {}
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"name": "address",
|
|
"description": "OpenID Connect built-in scope: address",
|
|
"protocol": "openid-connect",
|
|
"attributes": {
|
|
"include.in.token.scope": "true",
|
|
"display.on.consent.screen": "true",
|
|
"consent.screen.text": "${addressScopeConsentText}"
|
|
},
|
|
"protocolMappers": [
|
|
{
|
|
"name": "address",
|
|
"protocol": "openid-connect",
|
|
"protocolMapper": "oidc-address-mapper",
|
|
"consentRequired": false,
|
|
"config": {
|
|
"user.attribute.formatted": "formatted",
|
|
"user.attribute.country": "country",
|
|
"user.attribute.postal_code": "postal_code",
|
|
"userinfo.token.claim": "true",
|
|
"user.attribute.street": "street",
|
|
"id.token.claim": "true",
|
|
"user.attribute.region": "region",
|
|
"access.token.claim": "true",
|
|
"user.attribute.locality": "locality"
|
|
}
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"defaultOptionalClientScopes": [
|
|
"offline_access",
|
|
"address",
|
|
"phone",
|
|
"microprofile-jwt",
|
|
"eu_extended_profile",
|
|
"d4s-identity"
|
|
],
|
|
"keycloakVersion": "24.0.3"
|
|
} |