Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Keycloak_client manages client scopes (keycloak 4.0+) #58111

Open
wants to merge 2 commits into
base: devel
from

Conversation

Projects
None yet
2 participants
@odontomachus
Copy link

commented Jun 20, 2019

SUMMARY

Feature addition:

Update the keycloak_client module to set/remove default client scopes and optional client scopes from clients. This feature was introduced in Keycloak 4.0 and replaces client templates.

ISSUE TYPE

Feature Pull Request

COMPONENT NAME

keycloak_client

ADDITIONAL INFORMATION

Keycloak 4.0 removed client_templates as a way to manage client settings when creating a new client. Instead, there are "default client scopes" and "optional client scopes". This update adds two parameter to manage the default client scopes and optional client scopes in clients for Keycloak 4.0 and above.

There are also realm level "default default client scopes" and "default optional client scopes" which set the respective "default client scopes" and "optional client scopes" of newly created clients where these are not specified. Since it is a realm feature, it is not managed here.

@ansibot

This comment has been minimized.

Copy link
Contributor

commented Jun 20, 2019

The test ansible-test sanity --test validate-modules [explain] failed with 3 errors:

lib/ansible/modules/identity/keycloak/keycloak_client.py:0:0: E309 version_added for new option (default_client_scopes) should be '2.9'. Currently StrictVersion ('0.0')
lib/ansible/modules/identity/keycloak/keycloak_client.py:0:0: E309 version_added for new option (optional_client_scopes) should be '2.9'. Currently StrictVersion ('0.0')
lib/ansible/modules/identity/keycloak/keycloak_client.py:0:0: E323 Argument 'optionalClientScopes' is listed in DOCUMENTATION.options, but not accepted by the module argument_spec

click here for bot help

@ansibot

This comment has been minimized.

Copy link
Contributor

commented Jun 20, 2019

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.