terraform-provider-keycloak
terraform-provider-keycloak copied to clipboard
Terraform provider for Keycloak
Hello, Here are some missing features on the OIDC IdP (available on KC UI but not with the provider). Maybe the highest priority is the 'issuer" property as it strengthen...
Hello, It seems there are some missing mappers on the LDAP-AD user storage federation (cf. screenshot below). Especially the **ldap-role-mapper** is really missing. Do you plan to implement this quite...
Hello, On https://github.com/mrparkers/terraform-provider-keycloak/blob/master/provider/resource_keycloak_openid_client_authorization_resource.go the property _owner_managed_access_ can be set to ON but it is interesting only if also the _owner_ property can be defined.... KC reference :: https://github.com/keycloak/keycloak-documentation/blob/master/authorization_services/topics/service-protection-resources-api-papi.adoc ![image](https://user-images.githubusercontent.com/57065741/97784187-ff7a8600-1b9c-11eb-92a5-e1e7ef78489c.png)
Hello, a TF destroy raises the following error : ``` Error: error sending DELETE request to /auth/admin/realms/demo-uma/clients/1b73db47-8694-40fb-a4aa-c6e415db8782/authz/resource-server/scope/f393e83d-119d-4635-9834-e7fcaeb998f4: 400 Bad Request. Response body: {"errorMessage":"Scopes can not be removed while associated with...
Hello, When I try to do the following change (once state TF state refreshed) : ![image](https://user-images.githubusercontent.com/57065741/97576429-71f93380-19ee-11eb-9f75-65a2f081565e.png) I got the TF error : ![image](https://user-images.githubusercontent.com/57065741/97576683-c3a1be00-19ee-11eb-83ea-18dfdebc39a1.png) Which is related to the following error...
Hello, a) If I create a new client with _keep_defaults_ to _false_ then only the default resource is not created; the default policy and permission are still created. => Is...
Hello, There isn't any doc on https://registry.terraform.io/providers/mrparkers/keycloak/latest/docs about KeyCloak Authorization Services despite resources seems to be available with some few examples ==> Is that officially released or not ? What...
Hello, I do not see how to create with the same TF state : - an auth flow - and a realm using this auth flow The auth flow expects...
Hello, I tried to create an authentication flow for Kerberos with (the browser flow simplified and adapted) : ``` resource "keycloak_authentication_flow" "kerberos_flow" { realm_id = var.realm_id alias = "my-flow-alias" }...
Openid client resource missing decision_strategy field in authorization stanza > The decision strategy dictates how permissions are evaluated and how a final decision is obtained. 'Affirmative' means that at least...