mrparkers · mrparkers · Oct 13, 2021 · Aug 30, 2021 · Aug 30, 2021 · Sep 2, 2021
diff --git a/docs/resources/realm_keystore_aes_generated.md b/docs/resources/realm_keystore_aes_generated.md
@@ -0,0 +1,48 @@
+---
+page_title: "keycloak_realm_key_aes_generated Resources"
+---
+
+# keycloak\_realm\_key\_aes_generated Resources
+
+Allows for creating and managing Realm keystores within Keycloak.
+
+A realm manages a logical collection of users, credentials, roles, and groups. Users log in to realms and can be federated
+from multiple sources.
+
+## Example Usage
+
+```hcl
+resource "keycloak_realm" "realm" {
+	realm = "my-realm"
+}
+
+resource "keycloak_realm_key_aes_generated" "keystore_aes_generated" {
+	name      = "my-aes-generated-key"
+	realm_id  = keycloak_realm.my_realm.realm
+
+	enabled = true
+	active  = true
+
+	priority     = 100
+	secret_size  = 16
+}
+```
+
+## Argument Reference
+
+- `name` - (Required) Display name of provider when linked in admin console.
+- `realm_id` - (Required) The realm this keystore exists in.
+- `enabled` - (Optional) When `false`, key is not accessible in this realm. Defaults to `true`.
+- `active` - (Optional) When `false`, key in not used for signing. Defaults to `true`.
+- `priority` - (Optional) Priority for the provider. Defaults to `0`
+- `secret_size` - (Optional) Size in bytes for the generated AES Key. Size 16 is for AES-128, Size 24 for AES-192 and Size 32 for AES-256. WARN: Bigger keys then 128 bits are not allowed on some JDK implementations. Defaults to `16`.
+
+## Import
+
+Realm keys can be imported using realm name and keystore id, you can find it in web UI.
+
+Example:
+
+```bash
+$ terraform import keycloak_realm_key_aes_generated.keystore_aes_generated my-realm/my-realm/618cfba7-49aa-4c09-9a19-2f699b576f0b
+```
diff --git a/docs/resources/realm_keystore_ecdsa_generated.md b/docs/resources/realm_keystore_ecdsa_generated.md
@@ -0,0 +1,48 @@
+---
+page_title: "keycloak_realm_key_ecdsa_generated Resources"
+---
+
+# keycloak\_realm\_key\_ecdsa_generated Resources
+
+Allows for creating and managing Realm keystores within Keycloak.
+
+A realm manages a logical collection of users, credentials, roles, and groups. Users log in to realms and can be federated
+from multiple sources.
+
+## Example Usage
+
+```hcl
+resource "keycloak_realm" "realm" {
+	realm = "my-realm"
+}
+
+resource "keycloak_realm_key_ecdsa_generated" "keystore_ecdsa_generated" {
+	name      = "my-ecdsa-generated-key"
+	realm_id  = keycloak_realm.my_realm.realm
+
+	enabled = true
+	active  = true
+
+	priority  = 100
+	elliptic_curve_key = "P-256"
+}
+```
+
+## Argument Reference
+
+- `name` - (Required) Display name of provider when linked in admin console.
+- `realm_id` - (Required) The realm this keystore exists in.
+- `enabled` - (Optional) When `false`, key is not accessible in this realm. Defaults to `true`.
+- `active` - (Optional) When `false`, key in not used for signing. Defaults to `true`.
+- `priority` - (Optional) Priority for the provider. Defaults to `0`
+- `elliptic_curve_key` - (Optional) Elliptic Curve used in ECDSA. Defaults to `P-256`.
+
+## Import
+
+Realm keys can be imported using realm name and keystore id, you can find it in web UI.
+
+Example:
+
+```bash
+$ terraform import keycloak_realm_key_ecdsa_generated.keystore_ecdsa_generated my-realm/my-realm/618cfba7-49aa-4c09-9a19-2f699b576f0b
+```
diff --git a/docs/resources/realm_keystore_hmac_generated.md b/docs/resources/realm_keystore_hmac_generated.md
@@ -0,0 +1,50 @@
+---
+page_title: "keycloak_realm_key_hmac_generated Resources"
+---
+
+# keycloak\_realm\_key\_hmac_generated Resources
+
+Allows for creating and managing Realm keystores within Keycloak.
+
+A realm manages a logical collection of users, credentials, roles, and groups. Users log in to realms and can be federated
+from multiple sources.
+
+## Example Usage
+
+```hcl
+resource "keycloak_realm" "realm" {
+	realm = "my-realm"
+}
+
+resource "keycloak_realm_key_hmac_generated" "keystore_hmac_generated" {
+	name      = "my-hmac-generated-key"
+	realm_id  = keycloak_realm.my_realm.realm
+
+	enabled = true
+	active  = true
+
+	priority     = 100
+	algorithm    = "HS256"
+	secret_size  = 64
+}
+```
+
+## Argument Reference
+
+- `name` - (Required) Display name of provider when linked in admin console.
+- `realm_id` - (Required) The realm this keystore exists in.
+- `enabled` - (Optional) When `false`, key is not accessible in this realm. Defaults to `true`.
+- `active` - (Optional) When `false`, key in not used for signing. Defaults to `true`.
+- `priority` - (Optional) Priority for the provider. Defaults to `0`
+- `algorithm` - (Optional) Intended algorithm for the key. Defaults to `HS256`
+- `secret_size` - (Optional) Size in bytes for the generated secret. Defaults to `64`.
+
+## Import
+
+Realm keys can be imported using realm name and keystore id, you can find it in web UI.
+
+Example:
+
+```bash
+$ terraform import keycloak_realm_key_hmac_generated.keystore_hmac_generated my-realm/my-realm/618cfba7-49aa-4c09-9a19-2f699b576f0b
+```
diff --git a/docs/resources/realm_keystore_java_keystore.md b/docs/resources/realm_keystore_java_keystore.md
@@ -0,0 +1,61 @@
+---
+page_title: "keycloak_realm_key_java_keystore Resources"
+---
+
+# keycloak\_realm\_key\_java_keystore Resources
+
+Allows for creating and managing Realm keystores within Keycloak.
+
+A realm manages a logical collection of users, credentials, roles, and groups. Users log in to realms and can be federated
+from multiple sources.
+
+## Example Usage
+
+```hcl
+resource "keycloak_realm" "my_realm" {
+	realm = "my-realm"
+}
+
+resource "keycloak_realm_key_java_keystore" "java_keystore" {
+	name      = "my-java-keystore"
+	realm_id  = keycloak_realm.my_realm.realm
+
+	enabled = true
+	active  = true
+
+	keystore          = "<path to your keystore>"
+	keystore_password = "<password for keystore>"
+	key_alias         = "<alias in your keystore>"
+	key_password      = "<password for alias>"
+
+	priority  = 100
+	algorithm = "RS256"
+
+	disable_read = true
+}
+```
+
+## Argument Reference
+
+- `name` - (Required) Display name of provider when linked in admin console.
+- `realm_id` - (Required) The realm this keystore exists in.
+- `keystore` - (Required) Path to keys file on keycloak instance.
+- `keystore_password` - (Required) Password for the keys.
+- `key_alias` - (Required) Alias for the private key.
+- `key_password` - (Required) Password for the private key.
+- `enabled` - (Optional) When `false`, key is not accessible in this realm. Defaults to `true`.
+- `active` - (Optional) When `false`, key in not used for signing. Defaults to `true`.
+- `priority` - (Optional) Priority for the provider. Defaults to `0`
+- `algorithm` - (Optional) Intended algorithm for the key. Defaults to `RS256`
+- `disable_read` - (Optional) Don't attempt to read the keys from Keycloak if true. Drift won't be detected. Defaults to `false`.
+
+
+## Import
+
+Realm keys can be imported using realm name and keystore id, you can find it in web UI.
+
+Example:
+
+```bash
+$ terraform import keycloak_realm_key_java_keystore.java_keystore my-realm/my-realm/618cfba7-49aa-4c09-9a19-2f699b576f0b
+```
diff --git a/docs/resources/realm_keystore_rsa.md b/docs/resources/realm_keystore_rsa.md
@@ -0,0 +1,59 @@
+---
+page_title: "keycloak_realm_key_rsa Resources"
+---
+
+# keycloak\_realm\_key\_rsa Resources
+
+Allows for creating and managing Realm keystores within Keycloak.
+
+A realm manages a logical collection of users, credentials, roles, and groups. Users log in to realms and can be federated
+from multiple sources.
+
+## Example Usage
+
+```hcl
+resource "keycloak_realm" "my_realm" {
+	realm = "my-realm"
+}
+
+resource "keycloak_realm_key_rsa" "keystore_rsa" {
+	name      = "my-rsa-key"
+	realm_id  = keycloak_realm.my_realm.realm
+
+	enabled = true
+	active  = true
+
+	private_key = "<your rsa private key>"
+	certificate = "<your certificate>"
+
+	priority  = 100
+	algorithm = "RS256"
+	key_size  = 2048
+
+	disable_read = true
+}
+```
+
+## Argument Reference
+
+- `name` - (Required) Display name of provider when linked in admin console.
+- `realm_id` - (Required) The realm this keystore exists in.
+- `private_key` - (Required) Private RSA Key encoded in PEM format.
+- `certificate` - (Required) X509 Certificate encoded in PEM format.
+- `enabled` - (Optional) When `false`, key is not accessible in this realm. Defaults to `true`.
+- `active` - (Optional) When `false`, key in not used for signing. Defaults to `true`.
+- `priority` - (Optional) Priority for the provider. Defaults to `0`
+- `algorithm` - (Optional) Intended algorithm for the key. Defaults to `RS256`
+- `key_size` - (Optional) Size for the generated keys. Defaults to `2048`.
+- `disable_read` - (Optional) Don't attempt to read the keys from Keycloak if true. Drift won't be detected. Defaults to `false`.
+
+
+## Import
+
+Realm keys can be imported using realm name and keystore id, you can find it in web UI.
+
+Example:
+
+```bash
+$ terraform import keycloak_realm_key_rsa.keystore_rsa my-realm/my-realm/618cfba7-49aa-4c09-9a19-2f699b576f0b
+```
diff --git a/docs/resources/realm_keystore_rsa_generated.md b/docs/resources/realm_keystore_rsa_generated.md
@@ -0,0 +1,50 @@
+---
+page_title: "keycloak_realm_key_rsa_generated Resources"
+---
+
+# keycloak\_realm\_key\_rsa_generated Resources
+
+Allows for creating and managing Realm keystores within Keycloak.
+
+A realm manages a logical collection of users, credentials, roles, and groups. Users log in to realms and can be federated
+from multiple sources.
+
+## Example Usage
+
+```hcl
+resource "keycloak_realm" "realm" {
+	realm = "my-realm"
+}
+
+resource "keycloak_realm_key_rsa_generated" "keystore_rsa_generated" {
+	name      = "my-rsa-generated-key"
+	realm_id  = keycloak_realm.my_realm.realm
+
+	enabled = true
+	active  = true
+
+	priority  = 100
+	algorithm = "RS256"
+	key_size  = 2048
+}
+```
+
+## Argument Reference
+
+- `name` - (Required) Display name of provider when linked in admin console.
+- `realm_id` - (Required) The realm this keystore exists in.
+- `enabled` - (Optional) When `false`, key is not accessible in this realm. Defaults to `true`.
+- `active` - (Optional) When `false`, key in not used for signing. Defaults to `true`.
+- `priority` - (Optional) Priority for the provider. Defaults to `0`
+- `algorithm` - (Optional) Intended algorithm for the key. Defaults to `RS256`
+- `key_size` - (Optional) Size for the generated keys. Defaults to `2048`.
+
+## Import
+
+Realm keys can be imported using realm name and keystore id, you can find it in web UI.
+
+Example:
+
+```bash
+$ terraform import keycloak_realm_key_rsa_generated.keystore_rsa_generated my-realm/my-realm/618cfba7-49aa-4c09-9a19-2f699b576f0b
+```