56 lines
1.7 KiB
YAML
56 lines
1.7 KiB
YAML
---
|
|
### Keycloak configuration settings
|
|
keycloak_host: localhost
|
|
keycloak_http_port: 8080
|
|
keycloak_https_port: 8443
|
|
keycloak_management_http_port: 9990
|
|
keycloak_rhsso_enable: False
|
|
|
|
### Keycloak administration console user
|
|
keycloak_admin_user: admin
|
|
keycloak_auth_realm: master
|
|
keycloak_auth_client: admin-cli
|
|
|
|
# administrator console password, this is a required variable
|
|
keycloak_admin_password: ''
|
|
|
|
### Keycloak realms, clients, roles, federation
|
|
# list of clients to create in the realm
|
|
#
|
|
# Refer to the playbook for a comprehensive example.
|
|
# Also refer to meta/argument_specs.yml for specifications.
|
|
#
|
|
# Each client has the form:
|
|
# { name: '', roles: [], realm: '', public_client: bool, web_origins: '', users: [] }
|
|
# where roles is a list of default role names for the client
|
|
# and users is a list of account, see below for the format definition
|
|
# an empty name will skip the creation of the client
|
|
#
|
|
#keycloak_clients:
|
|
# - name: ''
|
|
# roles: "{{ keycloak_client_default_roles }}"
|
|
# realm: "{{ keycloak_realm }}"
|
|
# public_client: "{{ keycloak_client_public }}"
|
|
# web_origins: "{{ keycloak_client_web_origins }}"
|
|
# users: "{{ keycloak_client_users }}"
|
|
keycloak_clients: []
|
|
|
|
# list of roles to create in the client
|
|
keycloak_client_default_roles: []
|
|
|
|
# if True, create a public client; otherwise, a confidetial client
|
|
keycloak_client_public: True
|
|
|
|
# allowed web origins for the client
|
|
keycloak_client_web_origins: '+'
|
|
|
|
# list of user and role mappings to create in the client
|
|
# Each user has the form:
|
|
# { username: '', password: '', email: '', firstName: '', lastName: '', client_roles: [] }
|
|
# where each client_role has the form:
|
|
# { client: '', role: '', realm: '' }
|
|
keycloak_client_users: []
|
|
|
|
### List of Keycloak User Federation
|
|
keycloak_user_federation: []
|