UNCLASSIFIED - NO CUI

Skip to content
Snippets Groups Projects

Resolve "Update baby-yoda JSON within package with clients for all BigBang applications"

Merged Resolve "Update baby-yoda JSON within package with clients for all BigBang applications"
25-update-realm-with-all-dev-clients into main
Merged kevin.wilder requested to merge 25-update-realm-with-all-dev-clients into main
Viewing commit 2e1e46f3
Prev Next
Show latest version
1 file
+ 47
22
Compare changes
  • Side-by-side
  • Inline
chart/resources/dev/baby-yoda.json
+ 47
22
@@ -722,20 +722,20 @@
"protocol": "saml",
"attributes": {
"saml_assertion_consumer_url_redirect": "https://anchore.bigbang.dev/service/sso/auth/keycloak",
"saml.force.post.binding": "true",
"saml.multivalued.roles": "false",
"saml.force.post.binding": "true",
"oauth2.device.authorization.grant.enabled": "false",
"backchannel.logout.revoke.offline.tokens": "false",
"saml.server.signature.keyinfo.ext": "false",
"use.refresh.tokens": "true",
"oidc.ciba.grant.enabled": "false",
"backchannel.logout.session.required": "false",
"client_credentials.use_refresh_token": "false",
"saml.signature.algorithm": "RSA_SHA256",
"client_credentials.use_refresh_token": "false",
"consent.screen.text": "This client is used for development support for Big Bang / Platform One. Be sure that you are only using this client for development.",
"saml.client.signature": "false",
"id.token.as.detached.signature": "false",
"saml.assertion.signature": "true",
"id.token.as.detached.signature": "false",
"saml.encrypt": "false",
"saml_assertion_consumer_url_post": "https://anchore.bigbang.dev/service/sso/auth/keycloak",
"saml.server.signature": "true",
@@ -783,14 +783,14 @@
"frontchannelLogout": false,
"protocol": "openid-connect",
"attributes": {
"id.token.as.detached.signature": "false",
"saml.assertion.signature": "false",
"saml.force.post.binding": "false",
"id.token.as.detached.signature": "false",
"saml.multivalued.roles": "false",
"saml.force.post.binding": "false",
"saml.encrypt": "false",
"oauth2.device.authorization.grant.enabled": "false",
"backchannel.logout.revoke.offline.tokens": "false",
"saml.server.signature": "false",
"backchannel.logout.revoke.offline.tokens": "false",
"saml.server.signature.keyinfo.ext": "false",
"use.refresh.tokens": "true",
"exclude.session.state.from.auth.response": "false",
@@ -898,14 +898,20 @@
"protocol": "openid-connect",
"attributes": {
"saml.assertion.signature": "false",
"id.token.as.detached.signature": "false",
"saml.multivalued.roles": "false",
"saml.force.post.binding": "false",
"saml.encrypt": "false",
"oauth2.device.authorization.grant.enabled": "false",
"saml.server.signature": "false",
"backchannel.logout.revoke.offline.tokens": "false",
"saml.server.signature.keyinfo.ext": "false",
"use.refresh.tokens": "true",
"exclude.session.state.from.auth.response": "false",
"oidc.ciba.grant.enabled": "false",
"saml.artifact.binding": "false",
"backchannel.logout.session.required": "true",
"client_credentials.use_refresh_token": "false",
"consent.screen.text": "This client is used for development support for Big Bang / Platform One. Be sure that you are only using this client for development.",
"saml_force_name_id_format": "false",
"saml.client.signature": "false",
@@ -918,9 +924,7 @@
"fullScopeAllowed": true,
"nodeReRegistrationTimeout": -1,
"defaultClientScopes": [
"profile",
"Grafana",
"email"
"Grafana"
],
"optionalClientScopes": []
},
@@ -1218,7 +1222,6 @@
"alwaysDisplayInConsole": false,
"clientAuthenticatorType": "client-secret",
"redirectUris": [
"https://prometheus-2.bigbang.dev",
"https://prometheus.bigbang.dev/login/generic_oauth",
"https://prometheus.dogfood.bigbang.dev/login/generic_oauth"
],
@@ -1738,28 +1741,35 @@
},
"protocolMappers": [
{
"id": "84d4a8f9-8add-4317-b760-6437696f45c0",
"name": "realm roles",
"id": "8bb5981c-7d17-449d-92eb-20c617658e99",
"name": "username",
"protocol": "openid-connect",
"protocolMapper": "oidc-usermodel-realm-role-mapper",
"protocolMapper": "oidc-usermodel-property-mapper",
"consentRequired": false,
"config": {
"usermodel.realmRoleMapping.rolePrefix": "realm roles",
"multivalued": "true",
"userinfo.token.claim": "true",
"user.attribute": "username",
"id.token.claim": "true",
"access.token.claim": "true",
"claim.name": "nickname",
"claim.name": "preferred_username",
"jsonType.label": "String"
}
},
{
"id": "7af9efe9-6667-41ec-b6ad-a0f9c5860bf3",
"name": "audience resolve",
"id": "84d4a8f9-8add-4317-b760-6437696f45c0",
"name": "realm roles",
"protocol": "openid-connect",
"protocolMapper": "oidc-audience-resolve-mapper",
"protocolMapper": "oidc-usermodel-realm-role-mapper",
"consentRequired": false,
"config": {}
"config": {
"usermodel.realmRoleMapping.rolePrefix": "realm roles",
"multivalued": "true",
"userinfo.token.claim": "false",
"id.token.claim": "false",
"access.token.claim": "true",
"claim.name": "realm_access.roles",
"jsonType.label": "String"
}
},
{
"id": "ce8b1959-fce2-416e-8dd4-260dbec1e867",
@@ -1769,8 +1779,8 @@
"consentRequired": false,
"config": {
"multivalued": "true",
"userinfo.token.claim": "true",
"id.token.claim": "true",
"userinfo.token.claim": "false",
"id.token.claim": "false",
"access.token.claim": "true",
"claim.name": "resource_access.${client_id}.roles",
"jsonType.label": "String"
@@ -1799,12 +1809,27 @@
"consentRequired": false,
"config": {
"userinfo.token.claim": "true",
"multivalued": "false",
"user.attribute": "profile",
"id.token.claim": "true",
"access.token.claim": "true",
"claim.name": "profile",
"jsonType.label": "String"
}
},
{
"id": "314e75e6-c080-452c-9979-eba7ffc58e0c",
"name": "groups",
"protocol": "openid-connect",
"protocolMapper": "oidc-group-membership-mapper",
"consentRequired": false,
"config": {
"full.path": "true",
"id.token.claim": "true",
"access.token.claim": "true",
"claim.name": "groups",
"userinfo.token.claim": "true"
}
}
]
},

UNCLASSIFIED - NO CUI