KeycloakOrganization
v1
resource to define an Organisation within a KeyclaokRealm
spec
Type: object
| Property | Type | Required |
|---|---|---|
| definition | object | ✅ |
| options | object | |
| patchFrom | object | |
| realmRef | string | ✅ |
the KeycloakOrganization resource
spec.definition
Type: object
| Property | Type | Required |
|---|---|---|
| alias | string | |
| attributes | object | |
| description | string | |
| domains[] | object | |
| enabled | boolean | |
| id | string | |
| identityProviders[] | object | |
| members[] | object | |
| name | string | |
| redirectUrl | string |
| Validation Rule | Error Message |
|---|---|
| has(self.id) == has(oldSelf.id) | Value is immutable |
missing
spec.definition.alias
Type: string
missing
spec.definition.attributes
Type: object
missing
spec.definition.description
Type: string
missing
spec.definition.domains[]
Type: object
missing
spec.definition.domains[].name
Type: string
missing
spec.definition.domains[].verified
Type: boolean
missing
spec.definition.enabled
Type: boolean
missing
spec.definition.id
Type: string
| Validation Rule | Error Message |
|---|---|
| self == oldSelf | Value is immutable |
missing
spec.definition.identityProviders[]
Type: object
| Property | Type | Required |
|---|---|---|
| addReadTokenRoleOnCreate | boolean | |
| alias | string | |
| authenticateByDefault | boolean | |
| config | object | |
| displayName | string | |
| enabled | boolean | |
| firstBrokerLoginFlowAlias | string | |
| hideOnLogin | boolean | |
| internalId | string | |
| linkOnly | boolean | |
| organizationId | string | |
| postBrokerLoginFlowAlias | string | |
| providerId | string | |
| storeToken | boolean | |
| trustEmail | boolean | |
| updateProfileFirstLogin | boolean | |
| updateProfileFirstLoginMode | string |
missing
spec.definition.identityProviders[].addReadTokenRoleOnCreate
Type: boolean
missing
spec.definition.identityProviders[].alias
Type: string
missing
spec.definition.identityProviders[].authenticateByDefault
Type: boolean
missing
spec.definition.identityProviders[].config
Type: object
missing
spec.definition.identityProviders[].displayName
Type: string
missing
spec.definition.identityProviders[].enabled
Type: boolean
missing
spec.definition.identityProviders[].firstBrokerLoginFlowAlias
Type: string
missing
spec.definition.identityProviders[].hideOnLogin
Type: boolean
missing
spec.definition.identityProviders[].internalId
Type: string
missing
spec.definition.identityProviders[].linkOnly
Type: boolean
missing
spec.definition.identityProviders[].organizationId
Type: string
missing
spec.definition.identityProviders[].postBrokerLoginFlowAlias
Type: string
missing
spec.definition.identityProviders[].providerId
Type: string
missing
spec.definition.identityProviders[].storeToken
Type: boolean
missing
spec.definition.identityProviders[].trustEmail
Type: boolean
missing
spec.definition.identityProviders[].updateProfileFirstLogin
Type: boolean
missing
spec.definition.identityProviders[].updateProfileFirstLoginMode
Type: string
missing
spec.definition.members[]
Type: object
| Property | Type | Required |
|---|---|---|
| access | object | |
| applicationRoles | object | |
| attributes | object | |
| clientConsents[] | object | |
| clientRoles | object | |
| createdTimestamp | integer | |
| credentials[] | object | |
| disableableCredentialTypes[] | string | |
| string | ||
| emailVerified | boolean | |
| enabled | boolean | |
| federatedIdentities[] | object | |
| federationLink | string | |
| firstName | string | |
| groups[] | string | |
| id | string | |
| lastName | string | |
| membershipType | string | |
| notBefore | integer | |
| origin | string | |
| realmRoles[] | string | |
| requiredActions[] | string | |
| self | string | |
| serviceAccountClientId | string | |
| socialLinks[] | object | |
| totp | boolean | |
| userProfileMetadata | object | |
| username | string |
missing
spec.definition.members[].access
Type: object
missing
spec.definition.members[].applicationRoles
Type: object
missing
spec.definition.members[].attributes
Type: object
missing
spec.definition.members[].clientConsents[]
Type: object
| Property | Type | Required |
|---|---|---|
| clientId | string | |
| createdDate | integer | |
| grantedClientScopes[] | string | |
| grantedRealmRoles[] | string | |
| lastUpdatedDate | integer |
missing
spec.definition.members[].clientConsents[].clientId
Type: string
missing
spec.definition.members[].clientConsents[].createdDate
Type: integer
missing
spec.definition.members[].clientConsents[].grantedClientScopes[]
Type: string
missing
spec.definition.members[].clientConsents[].grantedRealmRoles[]
Type: string
missing
spec.definition.members[].clientConsents[].lastUpdatedDate
Type: integer
missing
spec.definition.members[].clientRoles
Type: object
missing
spec.definition.members[].createdTimestamp
Type: integer
missing
spec.definition.members[].credentials[]
Type: object
| Property | Type | Required |
|---|---|---|
| algorithm | string | |
| config | object | |
| counter | integer | |
| createdDate | integer | |
| credentialData | string | |
| device | string | |
| digits | integer | |
| hashIterations | integer | |
| hashedSaltedValue | string | |
| id | string | |
| period | integer | |
| priority | integer | |
| salt | string | |
| secretData | string | |
| temporary | boolean | |
| type | string | |
| userLabel | string | |
| value | string |
missing
spec.definition.members[].credentials[].algorithm
Type: string
missing
spec.definition.members[].credentials[].config
Type: object
missing
spec.definition.members[].credentials[].counter
Type: integer
missing
spec.definition.members[].credentials[].createdDate
Type: integer
missing
spec.definition.members[].credentials[].credentialData
Type: string
missing
spec.definition.members[].credentials[].device
Type: string
missing
spec.definition.members[].credentials[].digits
Type: integer
missing
spec.definition.members[].credentials[].hashIterations
Type: integer
missing
spec.definition.members[].credentials[].hashedSaltedValue
Type: string
missing
spec.definition.members[].credentials[].id
Type: string
missing
spec.definition.members[].credentials[].period
Type: integer
missing
spec.definition.members[].credentials[].priority
Type: integer
missing
spec.definition.members[].credentials[].salt
Type: string
missing
spec.definition.members[].credentials[].secretData
Type: string
missing
spec.definition.members[].credentials[].temporary
Type: boolean
missing
spec.definition.members[].credentials[].type
Type: string
missing
spec.definition.members[].credentials[].userLabel
Type: string
missing
spec.definition.members[].credentials[].value
Type: string
missing
spec.definition.members[].disableableCredentialTypes[]
Type: string
missing
spec.definition.members[].email
Type: string
missing
spec.definition.members[].emailVerified
Type: boolean
missing
spec.definition.members[].enabled
Type: boolean
missing
spec.definition.members[].federatedIdentities[]
Type: object
| Property | Type | Required |
|---|---|---|
| identityProvider | string | |
| userId | string | |
| userName | string |
missing
spec.definition.members[].federatedIdentities[].identityProvider
Type: string
missing
spec.definition.members[].federatedIdentities[].userId
Type: string
missing
spec.definition.members[].federatedIdentities[].userName
Type: string
missing
spec.definition.members[].federationLink
Type: string
missing
spec.definition.members[].firstName
Type: string
missing
spec.definition.members[].groups[]
Type: string
missing
spec.definition.members[].id
Type: string
missing
spec.definition.members[].lastName
Type: string
missing
spec.definition.members[].membershipType
Type: string
missing
spec.definition.members[].notBefore
Type: integer
missing
spec.definition.members[].origin
Type: string
missing
spec.definition.members[].realmRoles[]
Type: string
missing
spec.definition.members[].requiredActions[]
Type: string
missing
spec.definition.members[].self
Type: string
missing
spec.definition.members[].serviceAccountClientId
Type: string
missing
spec.definition.members[].socialLinks[]
Type: object
| Property | Type | Required |
|---|---|---|
| socialProvider | string | |
| socialUserId | string | |
| socialUsername | string |
missing
spec.definition.members[].socialLinks[].socialProvider
Type: string
missing
spec.definition.members[].socialLinks[].socialUserId
Type: string
missing
spec.definition.members[].socialLinks[].socialUsername
Type: string
missing
spec.definition.members[].totp
Type: boolean
missing
spec.definition.members[].userProfileMetadata
Type: object
| Property | Type | Required |
|---|---|---|
| attributes[] | object | |
| groups[] | object |
missing
spec.definition.members[].userProfileMetadata.attributes[]
Type: object
| Property | Type | Required |
|---|---|---|
| annotations | object | |
| displayName | string | |
| group | string | |
| multivalued | boolean | |
| name | string | |
| readOnly | boolean | |
| required | boolean | |
| validators | object |
missing
spec.definition.members[].userProfileMetadata.attributes[].annotations
Type: object
missing
spec.definition.members[].userProfileMetadata.attributes[].displayName
Type: string
missing
spec.definition.members[].userProfileMetadata.attributes[].group
Type: string
missing
spec.definition.members[].userProfileMetadata.attributes[].multivalued
Type: boolean
missing
spec.definition.members[].userProfileMetadata.attributes[].name
Type: string
missing
spec.definition.members[].userProfileMetadata.attributes[].readOnly
Type: boolean
missing
spec.definition.members[].userProfileMetadata.attributes[].required
Type: boolean
missing
spec.definition.members[].userProfileMetadata.attributes[].validators
Type: object
missing
spec.definition.members[].userProfileMetadata.groups[]
Type: object
| Property | Type | Required |
|---|---|---|
| annotations | object | |
| displayDescription | string | |
| displayHeader | string | |
| name | string |
missing
spec.definition.members[].userProfileMetadata.groups[].annotations
Type: object
missing
spec.definition.members[].userProfileMetadata.groups[].displayDescription
Type: string
missing
spec.definition.members[].userProfileMetadata.groups[].displayHeader
Type: string
missing
spec.definition.members[].userProfileMetadata.groups[].name
Type: string
missing
spec.definition.members[].username
Type: string
missing
spec.definition.name
Type: string
missing
spec.definition.redirectUrl
Type: string
missing
spec.options
Type: object
Options for the request to the Keycloak Admin API.
spec.patchFrom
Type: object
Defines additional values that can be loaded from secrets or configmaps. Field selectors are not supported. For more informations see the patches documentation.
spec.realmRef
Type: string
the name of the kubernetes object that created the realm.
status
Type: object
| Property | Type | Required |
|---|---|---|
| conditions[] | object | |
| message | string | |
| ready | boolean | ✅ |
| resourcePath | string | |
| status | string |
missing
status.conditions[]
Type: object
| Property | Type | Required |
|---|---|---|
| lastTransitionTime | string | |
| lastUpdateTime | string | |
| message | string | |
| reason | string | |
| status | string | ✅ |
| type | string | ✅ |
missing
status.conditions[].lastTransitionTime
Type: string
Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON. Wrappers are provided for many of the factory methods that the time package offers.
status.conditions[].lastUpdateTime
Type: string
Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON. Wrappers are provided for many of the factory methods that the time package offers.
status.conditions[].message
Type: string
missing
status.conditions[].reason
Type: string
missing
status.conditions[].status
Type: string
missing
status.conditions[].type
Type: string
missing
status.message
Type: string
missing
status.ready
Type: boolean
missing
status.resourcePath
Type: string
missing
status.status
Type: string
missing