13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
|
# File 'manifests/client_scope/oidc.pp', line 13
define keycloak::client_scope::oidc (
String $realm,
String $resource_name = $name,
) {
include keycloak
keycloak_client_scope { $name:
realm => $realm,
resource_name => $resource_name,
protocol => 'openid-connect',
}
keycloak_protocol_mapper { "email for ${name} on ${realm}":
claim_name => 'email',
user_attribute => 'email',
}
keycloak_protocol_mapper { "username for ${name} on ${realm}":
claim_name => 'preferred_username',
user_attribute => 'username',
}
keycloak_protocol_mapper { "full name for ${name} on ${realm}":
type => 'oidc-full-name-mapper',
userinfo_token_claim => false,
}
keycloak_protocol_mapper { "family name for ${name} on ${realm}":
claim_name => 'family_name',
user_attribute => 'lastName',
}
keycloak_protocol_mapper { "given name for ${name} on ${realm}":
claim_name => 'given_name',
user_attribute => 'firstName',
}
}
|