-
Notifications
You must be signed in to change notification settings - Fork 5
/
pbkdf-1it.template
89 lines (89 loc) · 2.35 KB
/
pbkdf-1it.template
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
{
"id": "realm_{{ .ID }}",
"realm": "realm_{{ .ID }}",
"displayName": "realm_{{ .ID }}",
"notBefore": 0,
"revokeRefreshToken": false,
"refreshTokenMaxReuse": 0,
"accessTokenLifespan": 1800,
"accessTokenLifespanForImplicitFlow": 900,
"ssoSessionIdleTimeout": 3600,
"ssoSessionMaxLifespan": 36000,
"offlineSessionIdleTimeout": 2592000,
"accessCodeLifespan": 60,
"accessCodeLifespanUserAction": 300,
"accessCodeLifespanLogin": 1800,
"actionTokenGeneratedByAdminLifespan": 43200,
"actionTokenGeneratedByUserLifespan": 300,
"enabled": true,
"sslRequired": "external",
"registrationAllowed": false,
"registrationEmailAsUsername": false,
"rememberMe": false,
"verifyEmail": false,
"loginWithEmailAllowed": true,
"duplicateEmailsAllowed": false,
"resetPasswordAllowed": false,
"editUsernameAllowed": false,
"bruteForceProtected": false,
"permanentLockout": false,
"maxFailureWaitSeconds": 900,
"minimumQuickLoginWaitSeconds": 60,
"waitIncrementSeconds": 60,
"quickLoginCheckMilliSeconds": 1000,
"maxDeltaTimeSeconds": 43200,
"failureFactor": 30,
"passwordPolicy": "hashIterations(1)",
"users": [
{{- range $count, $user := .Users }}
{{- if gt $count 0 }},{{ end }}
{
"username": "user_{{ $user.ID }}",
"firstName": "User",
"lastName": "{{ $user.ID }}",
"email": "user_{{ $user.ID }}@nowhere.test",
"emailVerified": true,
"enabled": true,
"credentials": [
{
"type": "password",
"value": "user_{{ $user.ID }}"
}
],
"requiredActions": [],
"realmRoles": [],
"applicationRoles": {}
}
{{- end }}
],
"roles": {
"realm": [],
"client": {}
},
"defaultRoles": [
"offline_access"
],
"requiredCredentials": [ "password" ],
"scopeMappings": [],
"clientScopeMappings": {},
"clients": [
{{- range $count, $client := .Clients }}
{{- if gt $count 0 }},{{ end }}
{
"clientId": "app_{{ $client.ID }}",
"name": "app_{{ $client.ID }}",
"enabled": true,
"publicClient": false,
"redirectUris": [
"http://dummy/url"
],
"fullScopeAllowed": false,
"standardFlowEnabled": true,
"directAccessGrantsEnabled": true,
"serviceAccountsEnabled": true,
"clientAuthenticatorType": "client-secret",
"secret": "{{ $client.Secret }}"
}
{{- end }}
]
}