Skip to content
GitLab
Projects
Groups
Snippets
/
Help
Help
Support
Community forum
Keyboard shortcuts
?
Submit feedback
Sign in
Toggle navigation
Menu
Open sidebar
Arch Linux
infrastructure
Commits
8ab0fdc9
Verified
Commit
8ab0fdc9
authored
May 26, 2020
by
Sven-Hendrik Haase
Browse files
keycloak: Some consistency fixes
parent
cbd2624e
Pipeline
#169
failed with stage
in 1 minute and 1 second
Changes
1
Pipelines
1
Hide whitespace changes
Inline
Side-by-side
tf-stage2/keycloak.tf
View file @
8ab0fdc9
...
...
@@ -238,22 +238,23 @@ resource "keycloak_group_roles" "externalcontributor" {
// Arch Browser flow
// |- Cookie (A)
// |- Identity Provider Redirector (A)
// |- Password and OTP
s
ubflow (A)
// |- Password and OTP
S
ubflow (A)
// |- Username Password Form (R)
// |- OTP
s
ubflow (R)
// |- OTP
S
ubflow (R)
// |- External Contributor subflow (A)
// | |- External Contributor conditional subflow (C)
// | |- Condition - User Role (External Contributor) (R)
// | |- OTP Form (R)
// |- Staff
s
ubflow (A)
// |- Staff
S
ubflow (A)
// | |- Staff conditional subflow (C)
// | |- Condition - User Role (Staff) (R)
// | |- OTP Form (R)
// |- OTP opt-in
s
ubflow (A)
// |- OTP opt-in
S
ubflow (A)
// | |- OTP opt-in conditional subflow (C)
// | |- Condition - User Configured (R)
// | |- OTP Form (R)
// |- Browser Redirect/Refresh (R)
// |- Fallthrough Subflow (A)
// |- Browser Redirect/Refresh (R)
//
// We have the Browser Redirect/Refresh execution at the end as a hack an as an effective "always true" fallthrough no-op.
// Otherwise we'll get a runtime exception as it could happen that none of the Conditions in the Alternative subflows
...
...
@@ -262,7 +263,7 @@ resource "keycloak_group_roles" "externalcontributor" {
resource
"keycloak_authentication_flow"
"arch_browser_flow"
{
realm_id
=
"archlinux"
alias
=
"Arch Browser"
description
=
"Customized Browser flow that forces
all
users
with the 'Staff'
role to use OTP."
description
=
"Customized Browser flow that forces users
of some
role
s
to use OTP."
}
resource
"keycloak_authentication_execution"
"cookie"
{
...
...
Write
Preview
Supports
Markdown
0%
Try again
or
attach a new file
.
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment