Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

OpenId and SAML Client's attributes #389

Closed
wants to merge 75 commits into from
Closed

OpenId and SAML Client's attributes #389

wants to merge 75 commits into from

Conversation

slavko-vega
Copy link

Supported are attributes for OpenId and SAML clients

slavko-vega and others added 30 commits May 13, 2020 09:12
@slavko-vega
Initial implementation of CRUD operations (no importer yet)
c2a38fe
@slavko-vega
Map resource name with function
0a8b15e
@slavko-vega
Importer added
f106a11
@slavko-vega
Tests support
b771841
@slavko-vega
Fix path and Id
85c768e
@slavko-vega
Fix path and Id
f095332
@slavko-vega
Fix the url problem
dc8b565
@branislav-vega
extend resource_keycloak_generic_client_role_mapper to support realm-…
11c5d74 
…level roles association
@slavko-vega
Test fixies
c1b1a93
@slavko-vega
Basic test
baa414d
@slavko-vega
Streamline the structure, code and tests
7788f36
@slavko-vega
remove local files
cadf3fc
@m-v-k
Set up CI with Azure Pipelines
0b42ddc 
[skip ci]
@m-v-k
Update azure-pipelines.yml for Azure Pipelines
fc31223
@m-v-k
add CIRCLE_TAG
2afe728
@m-v-k
bash inline with variable
eef89cc
@m-v-k
add release
073eca1
@branislav-vega
add ability to provide custom configuration to idp mappers
ffdd878
@branislav-vega
extend tests and examples
7299677
@branislav-vega
test fix
0e1c2fd
@branislav-vega
Merge pull request #1 from embracesbs/features/resource-keycloak-gene…
880fa5d 
…ric-client-role-mapper-extension

Extension of keycloak_generic_client_role_mapper resource to support realm-level roles association
@slavko-vega
Merge pull request #2 from embracesbs/features/management-permission-…
019fdf8 
…reference

Features/management permission reference
@branislav-vega
Merge pull request #3 from embracesbs/features/idp-mapper-extra-config
cd94268 
Features/identity-provider-mapper-extra-config
remove embracesbs azure pipeline
2586bfd
@branislav-vega
Revert "Extension of keycloak_generic_client_role_mapper resource to …
bae0f66 
…support realm-level roles association"
@branislav-vega
Merge pull request #5 from embracesbs/revert-1-features/resource-keyc…
138a7f1 
…loak-generic-client-role-mapper-extension

Revert "Extension of keycloak_generic_client_role_mapper resource to support realm-level roles association"
@branislav-vega
Merge pull request #4 from mrparkers/master
a83b13b 
rebase
@m-v-k
Merge pull request #6 from embracesbs/master
8aa881c 
rebase
@branislav-vega
Revert "Revert "Extension of keycloak_generic_client_role_mapper reso…
53b2291 
…urce to support realm-level roles association""

This reverts commit bae0f66.
@branislav-vega
Merge pull request #7 from embracesbs/features/resource-keycloak-gene…
87d405b 
…ric-client-role-mapper-extension

keycloak_generic_client_role_mapper realm-level roles association support
@mrparkers
Copy link
Owner

I guess I'm not completely understanding the problem we're trying to solve here. I understand that your goal is to add user-defined attributes to API calls for resources such as openid and saml clients, but is there any reason that we need to use reflection or define reserved keys?

My thinking is that we could just allow users to use this attributes map to define any properties they want on the model that is sent to the Keycloak API, and it's up to them to make sure that they aren't overwriting other attributes or sending attributes that the Keycloak API will reject. As long as we know what field we're trying to add, we know what field to look for in the response we get back so the state can be updated accordingly.

This appears to be what we're doing with the IdentityProviderMapperConfig, right? Can we take the same approach for openid and saml clients as well?

@slavko-vega
Copy link
Author

slavko-vega commented Nov 1, 2020
edited
Loading

Hey @mrparkers , you're totally right. I wasn't aware of that implementation in IdentityProviderMapperConfig. I'll use the same approach for OpenId/SAML client.

slavko-vega and others added 15 commits November 1, 2020 22:27
@slavko-vega
Copy link
Author

Hi @mrparkers, client (OpenId and SAML) attributes are implemented as extra_config.

@civ0
Copy link

civ0 commented Feb 16, 2021

Hi all, are there any updates on this PR?

Setting custom attributes on clients would be very useful for me. Please let me know, if there is something I can do to help progressing this PR.

olivierboudet pushed a commit to olivierboudet/terraform-provider-keycloak that referenced this pull request Aug 19, 2021
add extra_config for openid clients to handle custom attributes (mrpa…
066c127 
…rkers#389)
@olivierboudet olivierboudet mentioned this pull request Aug 19, 2021
Merged
@Tokynet
Copy link

Tokynet commented Jul 1, 2022

BUMP @slavko-vega and @mrparkers

@mrparkers
Copy link
Owner

Hi everyone, I think the functionality that's been introduced within this PR has already been implemented via several other PRs:

Let me know if you think that anything else is missing, but I think for now we can close this PR.

@mrparkers mrparkers closed this Sep 15, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@slavko-vega @mrparkers @civ0 @Tokynet @branislav-vega @m-v-k