From b589fb8fef5385c108bb34b08f5349ba7e701367 Mon Sep 17 00:00:00 2001 From: zach-betz-hln Date: Mon, 21 Oct 2024 08:35:33 -0500 Subject: [PATCH] kc 26.0.1 --- db/init/01-dump-schema-only.sql | 322 +++++++------------------------- db/init/02-dump-data-only.sql | 100 +++------- kc/Dockerfile | 2 +- 3 files changed, 97 insertions(+), 327 deletions(-) diff --git a/db/init/01-dump-schema-only.sql b/db/init/01-dump-schema-only.sql index bda5002..79661e0 100644 --- a/db/init/01-dump-schema-only.sql +++ b/db/init/01-dump-schema-only.sql @@ -278,89 +278,6 @@ CREATE TABLE public.client_scope_role_mapping ( ALTER TABLE public.client_scope_role_mapping OWNER TO admin; --- --- Name: client_session; Type: TABLE; Schema: public; Owner: admin --- - -CREATE TABLE public.client_session ( - id character varying(36) NOT NULL, - client_id character varying(36), - redirect_uri character varying(255), - state character varying(255), - "timestamp" integer, - session_id character varying(36), - auth_method character varying(255), - realm_id character varying(255), - auth_user_id character varying(36), - current_action character varying(36) -); - - -ALTER TABLE public.client_session OWNER TO admin; - --- --- Name: client_session_auth_status; Type: TABLE; Schema: public; Owner: admin --- - -CREATE TABLE public.client_session_auth_status ( - authenticator character varying(36) NOT NULL, - status integer, - client_session character varying(36) NOT NULL -); - - -ALTER TABLE public.client_session_auth_status OWNER TO admin; - --- --- Name: client_session_note; Type: TABLE; Schema: public; Owner: admin --- - -CREATE TABLE public.client_session_note ( - name character varying(255) NOT NULL, - value character varying(255), - client_session character varying(36) NOT NULL -); - - -ALTER TABLE public.client_session_note OWNER TO admin; - --- --- Name: client_session_prot_mapper; Type: TABLE; Schema: public; Owner: admin --- - -CREATE TABLE public.client_session_prot_mapper ( - protocol_mapper_id character varying(36) NOT NULL, - client_session character varying(36) NOT NULL -); - - -ALTER TABLE public.client_session_prot_mapper OWNER TO admin; - --- --- Name: client_session_role; Type: TABLE; Schema: public; Owner: admin --- - -CREATE TABLE public.client_session_role ( - role_id character varying(255) NOT NULL, - client_session character varying(36) NOT NULL -); - - -ALTER TABLE public.client_session_role OWNER TO admin; - --- --- Name: client_user_session_note; Type: TABLE; Schema: public; Owner: admin --- - -CREATE TABLE public.client_user_session_note ( - name character varying(255) NOT NULL, - value character varying(2048), - client_session character varying(36) NOT NULL -); - - -ALTER TABLE public.client_user_session_note OWNER TO admin; - -- -- Name: component; Type: TABLE; Schema: public; Owner: admin -- @@ -680,7 +597,9 @@ CREATE TABLE public.identity_provider ( first_broker_login_flow_id character varying(36), post_broker_login_flow_id character varying(36), provider_display_name character varying(255), - link_only boolean DEFAULT false NOT NULL + link_only boolean DEFAULT false NOT NULL, + organization_id character varying(255), + hide_on_login boolean DEFAULT false ); @@ -735,7 +654,8 @@ CREATE TABLE public.keycloak_group ( id character varying(36) NOT NULL, name character varying(255), parent_group character varying(36) NOT NULL, - realm_id character varying(36) + realm_id character varying(36), + type integer DEFAULT 0 NOT NULL ); @@ -819,7 +739,9 @@ CREATE TABLE public.org ( realm_id character varying(255) NOT NULL, group_id character varying(255) NOT NULL, name character varying(255) NOT NULL, - description character varying(4000) + description character varying(4000), + alias character varying(255) NOT NULL, + redirect_url character varying(2048) ); @@ -1223,6 +1145,18 @@ CREATE TABLE public.resource_uris ( ALTER TABLE public.resource_uris OWNER TO admin; +-- +-- Name: revoked_token; Type: TABLE; Schema: public; Owner: admin +-- + +CREATE TABLE public.revoked_token ( + id character varying(255) NOT NULL, + expire bigint NOT NULL +); + + +ALTER TABLE public.revoked_token OWNER TO admin; + -- -- Name: role_attribute; Type: TABLE; Schema: public; Owner: admin -- @@ -1395,7 +1329,8 @@ ALTER TABLE public.user_federation_provider OWNER TO admin; CREATE TABLE public.user_group_membership ( group_id character varying(36) NOT NULL, - user_id character varying(36) NOT NULL + user_id character varying(36) NOT NULL, + membership_type character varying(255) NOT NULL ); @@ -1425,41 +1360,6 @@ CREATE TABLE public.user_role_mapping ( ALTER TABLE public.user_role_mapping OWNER TO admin; --- --- Name: user_session; Type: TABLE; Schema: public; Owner: admin --- - -CREATE TABLE public.user_session ( - id character varying(36) NOT NULL, - auth_method character varying(255), - ip_address character varying(255), - last_session_refresh integer, - login_username character varying(255), - realm_id character varying(255), - remember_me boolean DEFAULT false NOT NULL, - started integer, - user_id character varying(255), - user_session_state integer, - broker_session_id character varying(255), - broker_user_id character varying(255) -); - - -ALTER TABLE public.user_session OWNER TO admin; - --- --- Name: user_session_note; Type: TABLE; Schema: public; Owner: admin --- - -CREATE TABLE public.user_session_note ( - user_session character varying(36) NOT NULL, - name character varying(255) NOT NULL, - value character varying(2048) -); - - -ALTER TABLE public.user_session_note OWNER TO admin; - -- -- Name: username_login_failure; Type: TABLE; Schema: public; Owner: admin -- @@ -1560,14 +1460,6 @@ ALTER TABLE ONLY public.broker_link ADD CONSTRAINT constr_broker_link_pk PRIMARY KEY (identity_provider, user_id); --- --- Name: client_user_session_note constr_cl_usr_ses_note; Type: CONSTRAINT; Schema: public; Owner: admin --- - -ALTER TABLE ONLY public.client_user_session_note - ADD CONSTRAINT constr_cl_usr_ses_note PRIMARY KEY (client_session, name); - - -- -- Name: component_config constr_component_config_pk; Type: CONSTRAINT; Schema: public; Owner: admin -- @@ -1712,22 +1604,6 @@ ALTER TABLE ONLY public.realm ADD CONSTRAINT constraint_4a PRIMARY KEY (id); --- --- Name: client_session_role constraint_5; Type: CONSTRAINT; Schema: public; Owner: admin --- - -ALTER TABLE ONLY public.client_session_role - ADD CONSTRAINT constraint_5 PRIMARY KEY (client_session, role_id); - - --- --- Name: user_session constraint_57; Type: CONSTRAINT; Schema: public; Owner: admin --- - -ALTER TABLE ONLY public.user_session - ADD CONSTRAINT constraint_57 PRIMARY KEY (id); - - -- -- Name: user_federation_provider constraint_5c; Type: CONSTRAINT; Schema: public; Owner: admin -- @@ -1736,14 +1612,6 @@ ALTER TABLE ONLY public.user_federation_provider ADD CONSTRAINT constraint_5c PRIMARY KEY (id); --- --- Name: client_session_note constraint_5e; Type: CONSTRAINT; Schema: public; Owner: admin --- - -ALTER TABLE ONLY public.client_session_note - ADD CONSTRAINT constraint_5e PRIMARY KEY (client_session, name); - - -- -- Name: client constraint_7; Type: CONSTRAINT; Schema: public; Owner: admin -- @@ -1752,14 +1620,6 @@ ALTER TABLE ONLY public.client ADD CONSTRAINT constraint_7 PRIMARY KEY (id); --- --- Name: client_session constraint_8; Type: CONSTRAINT; Schema: public; Owner: admin --- - -ALTER TABLE ONLY public.client_session - ADD CONSTRAINT constraint_8 PRIMARY KEY (id); - - -- -- Name: scope_mapping constraint_81; Type: CONSTRAINT; Schema: public; Owner: admin -- @@ -1840,14 +1700,6 @@ ALTER TABLE ONLY public.authenticator_config ADD CONSTRAINT constraint_auth_pk PRIMARY KEY (id); --- --- Name: client_session_auth_status constraint_auth_status_pk; Type: CONSTRAINT; Schema: public; Owner: admin --- - -ALTER TABLE ONLY public.client_session_auth_status - ADD CONSTRAINT constraint_auth_status_pk PRIMARY KEY (client_session, authenticator); - - -- -- Name: user_role_mapping constraint_c; Type: CONSTRAINT; Schema: public; Owner: admin -- @@ -1864,14 +1716,6 @@ ALTER TABLE ONLY public.composite_role ADD CONSTRAINT constraint_composite_role PRIMARY KEY (composite, child_role); --- --- Name: client_session_prot_mapper constraint_cs_pmp_pk; Type: CONSTRAINT; Schema: public; Owner: admin --- - -ALTER TABLE ONLY public.client_session_prot_mapper - ADD CONSTRAINT constraint_cs_pmp_pk PRIMARY KEY (client_session, protocol_mapper_id); - - -- -- Name: identity_provider_config constraint_d; Type: CONSTRAINT; Schema: public; Owner: admin -- @@ -2152,6 +1996,14 @@ ALTER TABLE ONLY public.role_attribute ADD CONSTRAINT constraint_role_attribute_pk PRIMARY KEY (id); +-- +-- Name: revoked_token constraint_rt; Type: CONSTRAINT; Schema: public; Owner: admin +-- + +ALTER TABLE ONLY public.revoked_token + ADD CONSTRAINT constraint_rt PRIMARY KEY (id); + + -- -- Name: user_attribute constraint_user_attribute_pk; Type: CONSTRAINT; Schema: public; Owner: admin -- @@ -2168,14 +2020,6 @@ ALTER TABLE ONLY public.user_group_membership ADD CONSTRAINT constraint_user_group PRIMARY KEY (group_id, user_id); --- --- Name: user_session_note constraint_usn_pk; Type: CONSTRAINT; Schema: public; Owner: admin --- - -ALTER TABLE ONLY public.user_session_note - ADD CONSTRAINT constraint_usn_pk PRIMARY KEY (user_session, name); - - -- -- Name: web_origins constraint_web_origins; Type: CONSTRAINT; Schema: public; Owner: admin -- @@ -2336,6 +2180,14 @@ ALTER TABLE ONLY public.user_consent ADD CONSTRAINT uk_local_consent UNIQUE (client_id, user_id); +-- +-- Name: org uk_org_alias; Type: CONSTRAINT; Schema: public; Owner: admin +-- + +ALTER TABLE ONLY public.org + ADD CONSTRAINT uk_org_alias UNIQUE (realm_id, alias); + + -- -- Name: org uk_org_group; Type: CONSTRAINT; Schema: public; Owner: admin -- @@ -2452,13 +2304,6 @@ CREATE INDEX idx_client_id ON public.client USING btree (client_id); CREATE INDEX idx_client_init_acc_realm ON public.client_initial_access USING btree (realm_id); --- --- Name: idx_client_session_session; Type: INDEX; Schema: public; Owner: admin --- - -CREATE INDEX idx_client_session_session ON public.client_session USING btree (session_id); - - -- -- Name: idx_clscope_attrs; Type: INDEX; Schema: public; Owner: admin -- @@ -2676,6 +2521,20 @@ CREATE INDEX idx_id_prov_mapp_realm ON public.identity_provider_mapper USING btr CREATE INDEX idx_ident_prov_realm ON public.identity_provider USING btree (realm_id); +-- +-- Name: idx_idp_for_login; Type: INDEX; Schema: public; Owner: admin +-- + +CREATE INDEX idx_idp_for_login ON public.identity_provider USING btree (realm_id, enabled, link_only, hide_on_login, organization_id); + + +-- +-- Name: idx_idp_realm_org; Type: INDEX; Schema: public; Owner: admin +-- + +CREATE INDEX idx_idp_realm_org ON public.identity_provider USING btree (realm_id, organization_id); + + -- -- Name: idx_keycloak_role_client; Type: INDEX; Schema: public; Owner: admin -- @@ -2711,6 +2570,13 @@ CREATE INDEX idx_offline_uss_by_last_session_refresh ON public.offline_user_sess CREATE INDEX idx_offline_uss_by_user ON public.offline_user_session USING btree (user_id, realm_id, offline_flag); +-- +-- Name: idx_org_domain_org_id; Type: INDEX; Schema: public; Owner: admin +-- + +CREATE INDEX idx_org_domain_org_id ON public.org_domain USING btree (org_id); + + -- -- Name: idx_perm_ticket_owner; Type: INDEX; Schema: public; Owner: admin -- @@ -2830,6 +2696,13 @@ CREATE INDEX idx_res_srv_res_res_srv ON public.resource_server_resource USING bt CREATE INDEX idx_res_srv_scope_res_srv ON public.resource_server_scope USING btree (resource_server_id); +-- +-- Name: idx_rev_token_on_expire; Type: INDEX; Schema: public; Owner: admin +-- + +CREATE INDEX idx_rev_token_on_expire ON public.revoked_token USING btree (expire); + + -- -- Name: idx_role_attribute; Type: INDEX; Schema: public; Owner: admin -- @@ -2865,13 +2738,6 @@ CREATE INDEX idx_scope_policy_policy ON public.scope_policy USING btree (policy_ CREATE INDEX idx_update_time ON public.migration_model USING btree (update_time); --- --- Name: idx_us_sess_id_on_cl_sess; Type: INDEX; Schema: public; Owner: admin --- - -CREATE INDEX idx_us_sess_id_on_cl_sess ON public.offline_client_session USING btree (user_session_id); - - -- -- Name: idx_usconsent_clscope; Type: INDEX; Schema: public; Owner: admin -- @@ -2991,14 +2857,6 @@ CREATE INDEX user_attr_long_values ON public.user_attribute USING btree (long_va CREATE INDEX user_attr_long_values_lower_case ON public.user_attribute USING btree (long_value_hash_lower_case, name); --- --- Name: client_session_auth_status auth_status_constraint; Type: FK CONSTRAINT; Schema: public; Owner: admin --- - -ALTER TABLE ONLY public.client_session_auth_status - ADD CONSTRAINT auth_status_constraint FOREIGN KEY (client_session) REFERENCES public.client_session(id); - - -- -- Name: identity_provider fk2b4ebc52ae5c3b34; Type: FK CONSTRAINT; Schema: public; Owner: admin -- @@ -3031,30 +2889,6 @@ ALTER TABLE ONLY public.client_node_registrations ADD CONSTRAINT fk4129723ba992f594 FOREIGN KEY (client_id) REFERENCES public.client(id); --- --- Name: client_session_note fk5edfb00ff51c2736; Type: FK CONSTRAINT; Schema: public; Owner: admin --- - -ALTER TABLE ONLY public.client_session_note - ADD CONSTRAINT fk5edfb00ff51c2736 FOREIGN KEY (client_session) REFERENCES public.client_session(id); - - --- --- Name: user_session_note fk5edfb00ff51d3472; Type: FK CONSTRAINT; Schema: public; Owner: admin --- - -ALTER TABLE ONLY public.user_session_note - ADD CONSTRAINT fk5edfb00ff51d3472 FOREIGN KEY (user_session) REFERENCES public.user_session(id); - - --- --- Name: client_session_role fk_11b7sgqw18i532811v7o2dv76; Type: FK CONSTRAINT; Schema: public; Owner: admin --- - -ALTER TABLE ONLY public.client_session_role - ADD CONSTRAINT fk_11b7sgqw18i532811v7o2dv76 FOREIGN KEY (client_session) REFERENCES public.client_session(id); - - -- -- Name: redirect_uris fk_1burs8pb4ouj97h5wuppahv9f; Type: FK CONSTRAINT; Schema: public; Owner: admin -- @@ -3071,14 +2905,6 @@ ALTER TABLE ONLY public.user_federation_provider ADD CONSTRAINT fk_1fj32f6ptolw2qy60cd8n01e8 FOREIGN KEY (realm_id) REFERENCES public.realm(id); --- --- Name: client_session_prot_mapper fk_33a8sgqw18i532811v7o2dk89; Type: FK CONSTRAINT; Schema: public; Owner: admin --- - -ALTER TABLE ONLY public.client_session_prot_mapper - ADD CONSTRAINT fk_33a8sgqw18i532811v7o2dk89 FOREIGN KEY (client_session) REFERENCES public.client_session(id); - - -- -- Name: realm_required_credential fk_5hg65lybevavkqfki3kponh9v; Type: FK CONSTRAINT; Schema: public; Owner: admin -- @@ -3175,14 +3001,6 @@ ALTER TABLE ONLY public.authenticator_config ADD CONSTRAINT fk_auth_realm FOREIGN KEY (realm_id) REFERENCES public.realm(id); --- --- Name: client_session fk_b4ao2vcvat6ukau74wbwtfqo1; Type: FK CONSTRAINT; Schema: public; Owner: admin --- - -ALTER TABLE ONLY public.client_session - ADD CONSTRAINT fk_b4ao2vcvat6ukau74wbwtfqo1 FOREIGN KEY (session_id) REFERENCES public.user_session(id); - - -- -- Name: user_role_mapping fk_c4fqv34p1mbylloxang7b1q3l; Type: FK CONSTRAINT; Schema: public; Owner: admin -- @@ -3207,14 +3025,6 @@ ALTER TABLE ONLY public.client_scope_role_mapping ADD CONSTRAINT fk_cl_scope_rm_scope FOREIGN KEY (scope_id) REFERENCES public.client_scope(id); --- --- Name: client_user_session_note fk_cl_usr_ses_note; Type: FK CONSTRAINT; Schema: public; Owner: admin --- - -ALTER TABLE ONLY public.client_user_session_note - ADD CONSTRAINT fk_cl_usr_ses_note FOREIGN KEY (client_session) REFERENCES public.client_session(id); - - -- -- Name: protocol_mapper fk_cli_scope_mapper; Type: FK CONSTRAINT; Schema: public; Owner: admin -- diff --git a/db/init/02-dump-data-only.sql b/db/init/02-dump-data-only.sql index c60b071..6656652 100644 --- a/db/init/02-dump-data-only.sql +++ b/db/init/02-dump-data-only.sql @@ -170,9 +170,9 @@ fbf6e996-19ff-4bfc-9bd3-f61423721b61 t f master-realm 0 f \N \N t \N f 04d6226e- fdb3ebcc-007f-4d97-875d-c67e4c16fd05 t f account 0 t \N /realms/master/account/ f \N f 04d6226e-e85e-4251-b423-a3525954ba75 openid-connect 0 f f ${client_account} f client-secret ${authBaseUrl} \N \N t f f f ed96f561-820c-410c-8967-085e0fb27005 t f account-console 0 t \N /realms/master/account/ f \N f 04d6226e-e85e-4251-b423-a3525954ba75 openid-connect 0 f f ${client_account-console} f client-secret ${authBaseUrl} \N \N t f f f 1b24504b-e5b6-493b-b1e1-7ab4dbbcbcc7 t f broker 0 f \N \N t \N f 04d6226e-e85e-4251-b423-a3525954ba75 openid-connect 0 f f ${client_broker} f client-secret \N \N \N t f f f -40a12ed1-e236-46be-94c7-18f6e3b3cf2b t f security-admin-console 0 t \N /admin/master/console/ f \N f 04d6226e-e85e-4251-b423-a3525954ba75 openid-connect 0 f f ${client_security-admin-console} f client-secret ${authAdminUrl} \N \N t f f f -87ac131c-123c-41cc-b848-9646e95305a7 t f admin-cli 0 t \N \N f \N f 04d6226e-e85e-4251-b423-a3525954ba75 openid-connect 0 f f ${client_admin-cli} f client-secret \N \N \N f f t f acc4f3dc-25c9-4716-bfa5-cde9f19c8c32 t t react 0 t \N f f 04d6226e-e85e-4251-b423-a3525954ba75 openid-connect -1 t f f client-secret \N t f t f +40a12ed1-e236-46be-94c7-18f6e3b3cf2b t t security-admin-console 0 t \N /admin/master/console/ f \N f 04d6226e-e85e-4251-b423-a3525954ba75 openid-connect 0 f f ${client_security-admin-console} f client-secret ${authAdminUrl} \N \N t f f f +87ac131c-123c-41cc-b848-9646e95305a7 t t admin-cli 0 t \N \N f \N f 04d6226e-e85e-4251-b423-a3525954ba75 openid-connect 0 f f ${client_admin-cli} f client-secret \N \N \N f f t f \. @@ -192,6 +192,8 @@ acc4f3dc-25c9-4716-bfa5-cde9f19c8c32 post.logout.redirect.uris http://localhost: acc4f3dc-25c9-4716-bfa5-cde9f19c8c32 backchannel.logout.session.required true acc4f3dc-25c9-4716-bfa5-cde9f19c8c32 backchannel.logout.revoke.offline.tokens false acc4f3dc-25c9-4716-bfa5-cde9f19c8c32 display.on.consent.screen false +40a12ed1-e236-46be-94c7-18f6e3b3cf2b client.use.lightweight.access.token.enabled true +87ac131c-123c-41cc-b848-9646e95305a7 client.use.lightweight.access.token.enabled true \. @@ -359,62 +361,6 @@ COPY public.client_scope_role_mapping (scope_id, role_id) FROM stdin; \. --- --- Data for Name: user_session; Type: TABLE DATA; Schema: public; Owner: admin --- - -COPY public.user_session (id, auth_method, ip_address, last_session_refresh, login_username, realm_id, remember_me, started, user_id, user_session_state, broker_session_id, broker_user_id) FROM stdin; -\. - - --- --- Data for Name: client_session; Type: TABLE DATA; Schema: public; Owner: admin --- - -COPY public.client_session (id, client_id, redirect_uri, state, "timestamp", session_id, auth_method, realm_id, auth_user_id, current_action) FROM stdin; -\. - - --- --- Data for Name: client_session_auth_status; Type: TABLE DATA; Schema: public; Owner: admin --- - -COPY public.client_session_auth_status (authenticator, status, client_session) FROM stdin; -\. - - --- --- Data for Name: client_session_note; Type: TABLE DATA; Schema: public; Owner: admin --- - -COPY public.client_session_note (name, value, client_session) FROM stdin; -\. - - --- --- Data for Name: client_session_prot_mapper; Type: TABLE DATA; Schema: public; Owner: admin --- - -COPY public.client_session_prot_mapper (protocol_mapper_id, client_session) FROM stdin; -\. - - --- --- Data for Name: client_session_role; Type: TABLE DATA; Schema: public; Owner: admin --- - -COPY public.client_session_role (role_id, client_session) FROM stdin; -\. - - --- --- Data for Name: client_user_session_note; Type: TABLE DATA; Schema: public; Owner: admin --- - -COPY public.client_user_session_note (name, value, client_session) FROM stdin; -\. - - -- -- Data for Name: component; Type: TABLE DATA; Schema: public; Owner: admin -- @@ -565,6 +511,7 @@ f1dc48cb-57f7-400b-ac65-68d329be69f9 27579148-d477-446c-bba7-7252340c6c54 COPY public.user_entity (id, email, email_constraint, email_verified, enabled, federation_link, first_name, last_name, realm_id, username, created_timestamp, service_account_client_link, not_before) FROM stdin; f03cf9b7-f9ed-44d9-9370-6135c0a5bab1 admin@example.com admin@example.com t t \N Bruce Wayne 04d6226e-e85e-4251-b423-a3525954ba75 admin@example.com 1713242628202 \N 0 2d02276f-b6a4-4c43-90f6-827765a1d799 betty@example.com betty@example.com t t \N Betty Jane 04d6226e-e85e-4251-b423-a3525954ba75 betty@example.com 1713244999966 \N 0 +5fd213b6-69f4-4a83-bc9c-fe0395701f7a zachary.betz+local@hln.com zachary.betz+local@hln.com t t \N jane doe 04d6226e-e85e-4251-b423-a3525954ba75 zachary.betz+local@hln.com 1729517587719 \N 0 \. @@ -575,6 +522,7 @@ f03cf9b7-f9ed-44d9-9370-6135c0a5bab1 admin@example.com admin@example.com t t \N COPY public.credential (id, salt, type, user_id, created_date, user_label, secret_data, credential_data, priority) FROM stdin; c8932fd5-dabb-4b15-ad85-c31f8559da20 \N password 2d02276f-b6a4-4c43-90f6-827765a1d799 1713245000180 \N {"value":"uqvXbTlWHK37Dy+EPPeREuTgvaN2rPcqobewCcuXnQkxSm2X/ubucDxHkuPiJMzpXYhQ2gpedc1uQGg6o2p8uw==","salt":"GTYxDyifTCaMHCytYR3yQw==","additionalParameters":{}} {"hashIterations":210000,"algorithm":"pbkdf2-sha512","additionalParameters":{}} 10 79cab082-10c4-4958-a900-7e5449d37073 \N password f03cf9b7-f9ed-44d9-9370-6135c0a5bab1 1713381368523 My password {"value":"1XmLHvnqWaOYaahrGSVnVPVQjD64jmV8uKFJMGTkEW8=","salt":"q9xNSv2JuL/C9MxE89swRg==","additionalParameters":{}} {"hashIterations":5,"algorithm":"argon2","additionalParameters":{"hashLength":["32"],"memory":["7168"],"type":["id"],"version":["1.3"],"parallelism":["1"]}} 10 +743b510b-94ba-4e5b-9b89-dd9fa4a74446 \N password 5fd213b6-69f4-4a83-bc9c-fe0395701f7a 1729517587760 \N {"value":"xVN4CNjAM3DGfNp46CXRje31sJNsJ7xzgHqM9ZC4wGk=","salt":"Jc/VAMUrHThD11BdX848cg==","additionalParameters":{}} {"hashIterations":5,"algorithm":"argon2","additionalParameters":{"hashLength":["32"],"memory":["7168"],"type":["id"],"version":["1.3"],"parallelism":["1"]}} 10 \. @@ -717,6 +665,16 @@ unique-consentuser keycloak META-INF/jpa-changelog-25.0.0.xml 2024-06-27 14:25:0 unique-consentuser-mysql keycloak META-INF/jpa-changelog-25.0.0.xml 2024-06-27 14:25:04.279673 132 MARK_RAN 9:b79478aad5adaa1bc428e31563f55e8e customChange; dropUniqueConstraint constraintName=UK_JKUWUVD56ONTGSUHOGM8UEWRT, tableName=USER_CONSENT; addUniqueConstraint constraintName=UK_LOCAL_CONSENT, tableName=USER_CONSENT; addUniqueConstraint constraintName=UK_EXTERNAL_CONSENT, tableName=... \N 4.25.1 \N \N 9498304214 25.0.0-28861-index-creation keycloak META-INF/jpa-changelog-25.0.0.xml 2024-06-27 14:25:04.284481 133 EXECUTED 9:b9acb58ac958d9ada0fe12a5d4794ab1 createIndex indexName=IDX_PERM_TICKET_REQUESTER, tableName=RESOURCE_SERVER_PERM_TICKET; createIndex indexName=IDX_PERM_TICKET_OWNER, tableName=RESOURCE_SERVER_PERM_TICKET \N 4.25.1 \N \N 9498304214 18.0.15-30992-index-consent keycloak META-INF/jpa-changelog-18.0.15.xml 2024-09-04 14:56:20.856741 134 EXECUTED 9:80071ede7a05604b1f4906f3bf3b00f0 createIndex indexName=IDX_USCONSENT_SCOPE_ID, tableName=USER_CONSENT_CLIENT_SCOPE \N 4.25.1 \N \N 5461780834 +26.0.0-org-alias keycloak META-INF/jpa-changelog-26.0.0.xml 2024-10-21 13:31:14.180486 135 EXECUTED 9:6ef7d63e4412b3c2d66ed179159886a4 addColumn tableName=ORG; update tableName=ORG; addNotNullConstraint columnName=ALIAS, tableName=ORG; addUniqueConstraint constraintName=UK_ORG_ALIAS, tableName=ORG \N 4.29.1 \N \N 9517474159 +26.0.0-org-group keycloak META-INF/jpa-changelog-26.0.0.xml 2024-10-21 13:31:14.190655 136 EXECUTED 9:da8e8087d80ef2ace4f89d8c5b9ca223 addColumn tableName=KEYCLOAK_GROUP; update tableName=KEYCLOAK_GROUP; addNotNullConstraint columnName=TYPE, tableName=KEYCLOAK_GROUP; customChange \N 4.29.1 \N \N 9517474159 +26.0.0-org-indexes keycloak META-INF/jpa-changelog-26.0.0.xml 2024-10-21 13:31:14.229102 137 EXECUTED 9:79b05dcd610a8c7f25ec05135eec0857 createIndex indexName=IDX_ORG_DOMAIN_ORG_ID, tableName=ORG_DOMAIN \N 4.29.1 \N \N 9517474159 +26.0.0-org-group-membership keycloak META-INF/jpa-changelog-26.0.0.xml 2024-10-21 13:31:14.233229 138 EXECUTED 9:a6ace2ce583a421d89b01ba2a28dc2d4 addColumn tableName=USER_GROUP_MEMBERSHIP; update tableName=USER_GROUP_MEMBERSHIP; addNotNullConstraint columnName=MEMBERSHIP_TYPE, tableName=USER_GROUP_MEMBERSHIP \N 4.29.1 \N \N 9517474159 +31296-persist-revoked-access-tokens keycloak META-INF/jpa-changelog-26.0.0.xml 2024-10-21 13:31:14.239557 139 EXECUTED 9:64ef94489d42a358e8304b0e245f0ed4 createTable tableName=REVOKED_TOKEN; addPrimaryKey constraintName=CONSTRAINT_RT, tableName=REVOKED_TOKEN \N 4.29.1 \N \N 9517474159 +31725-index-persist-revoked-access-tokens keycloak META-INF/jpa-changelog-26.0.0.xml 2024-10-21 13:31:14.278456 140 EXECUTED 9:b994246ec2bf7c94da881e1d28782c7b createIndex indexName=IDX_REV_TOKEN_ON_EXPIRE, tableName=REVOKED_TOKEN \N 4.29.1 \N \N 9517474159 +26.0.0-idps-for-login keycloak META-INF/jpa-changelog-26.0.0.xml 2024-10-21 13:31:14.339866 141 EXECUTED 9:51f5fffadf986983d4bd59582c6c1604 addColumn tableName=IDENTITY_PROVIDER; createIndex indexName=IDX_IDP_REALM_ORG, tableName=IDENTITY_PROVIDER; createIndex indexName=IDX_IDP_FOR_LOGIN, tableName=IDENTITY_PROVIDER; customChange \N 4.29.1 \N \N 9517474159 +26.0.0-32583-drop-redundant-index-on-client-session keycloak META-INF/jpa-changelog-26.0.0.xml 2024-10-21 13:31:14.362125 142 EXECUTED 9:24972d83bf27317a055d234187bb4af9 dropIndex indexName=IDX_US_SESS_ID_ON_CL_SESS, tableName=OFFLINE_CLIENT_SESSION \N 4.29.1 \N \N 9517474159 +26.0.0.32582-remove-tables-user-session-user-session-note-and-client-session keycloak META-INF/jpa-changelog-26.0.0.xml 2024-10-21 13:31:14.370732 143 EXECUTED 9:febdc0f47f2ed241c59e60f58c3ceea5 dropTable tableName=CLIENT_SESSION_ROLE; dropTable tableName=CLIENT_SESSION_NOTE; dropTable tableName=CLIENT_SESSION_PROT_MAPPER; dropTable tableName=CLIENT_SESSION_AUTH_STATUS; dropTable tableName=CLIENT_USER_SESSION_NOTE; dropTable tableName=CLI... \N 4.29.1 \N \N 9517474159 +26.0.0-33201-org-redirect-url keycloak META-INF/jpa-changelog-26.0.0.xml 2024-10-21 13:31:14.373431 144 EXECUTED 9:4d0e22b0ac68ebe9794fa9cb752ea660 addColumn tableName=ORG \N 4.29.1 \N \N 9517474159 \. @@ -834,7 +792,7 @@ COPY public.federated_user (id, storage_provider_id, realm_id) FROM stdin; -- Data for Name: keycloak_group; Type: TABLE DATA; Schema: public; Owner: admin -- -COPY public.keycloak_group (id, name, parent_group, realm_id) FROM stdin; +COPY public.keycloak_group (id, name, parent_group, realm_id, type) FROM stdin; \. @@ -858,7 +816,7 @@ COPY public.group_role_mapping (role_id, group_id) FROM stdin; -- Data for Name: identity_provider; Type: TABLE DATA; Schema: public; Owner: admin -- -COPY public.identity_provider (internal_id, enabled, provider_alias, provider_id, store_token, authenticate_by_default, realm_id, add_token_role, trust_email, first_broker_login_flow_id, post_broker_login_flow_id, provider_display_name, link_only) FROM stdin; +COPY public.identity_provider (internal_id, enabled, provider_alias, provider_id, store_token, authenticate_by_default, realm_id, add_token_role, trust_email, first_broker_login_flow_id, post_broker_login_flow_id, provider_display_name, link_only, organization_id, hide_on_login) FROM stdin; \. @@ -896,6 +854,7 @@ l88vu 24.0.3 1713381283 kq18k 24.0.4 1715976025 3p70k 25.0.1 1719498304 nlnj3 25.0.4 1725461781 +d31gi 26.0.1 1729517474 \. @@ -919,7 +878,7 @@ COPY public.offline_user_session (user_session_id, user_id, realm_id, created_on -- Data for Name: org; Type: TABLE DATA; Schema: public; Owner: admin -- -COPY public.org (id, enabled, realm_id, group_id, name, description) FROM stdin; +COPY public.org (id, enabled, realm_id, group_id, name, description, alias, redirect_url) FROM stdin; \. @@ -1403,6 +1362,14 @@ COPY public.resource_uris (resource_id, value) FROM stdin; \. +-- +-- Data for Name: revoked_token; Type: TABLE DATA; Schema: public; Owner: admin +-- + +COPY public.revoked_token (id, expire) FROM stdin; +\. + + -- -- Data for Name: role_attribute; Type: TABLE DATA; Schema: public; Owner: admin -- @@ -1489,7 +1456,7 @@ COPY public.user_federation_mapper_config (user_federation_mapper_id, value, nam -- Data for Name: user_group_membership; Type: TABLE DATA; Schema: public; Owner: admin -- -COPY public.user_group_membership (group_id, user_id) FROM stdin; +COPY public.user_group_membership (group_id, user_id, membership_type) FROM stdin; \. @@ -1509,14 +1476,7 @@ COPY public.user_role_mapping (role_id, user_id) FROM stdin; f1dc48cb-57f7-400b-ac65-68d329be69f9 f03cf9b7-f9ed-44d9-9370-6135c0a5bab1 ab6a028c-b2f8-4aa8-8d8c-95077c182e4d f03cf9b7-f9ed-44d9-9370-6135c0a5bab1 f1dc48cb-57f7-400b-ac65-68d329be69f9 2d02276f-b6a4-4c43-90f6-827765a1d799 -\. - - --- --- Data for Name: user_session_note; Type: TABLE DATA; Schema: public; Owner: admin --- - -COPY public.user_session_note (user_session, name, value) FROM stdin; +f1dc48cb-57f7-400b-ac65-68d329be69f9 5fd213b6-69f4-4a83-bc9c-fe0395701f7a \. diff --git a/kc/Dockerfile b/kc/Dockerfile index 22cd352..cca500d 100644 --- a/kc/Dockerfile +++ b/kc/Dockerfile @@ -1,3 +1,3 @@ -FROM quay.io/keycloak/keycloak:25.0.4 +FROM quay.io/keycloak/keycloak:26.0.1 ENTRYPOINT [ "/opt/keycloak/bin/kc.sh" ] CMD [ "start-dev" ]