diff --git a/.github/workflows/update_keycloak.yml b/.github/workflows/update_keycloak.yml new file mode 100644 index 0000000..969d15d --- /dev/null +++ b/.github/workflows/update_keycloak.yml @@ -0,0 +1,29 @@ +name: Update Keycloak +env: + BRANCH: "Keycloack_scripts" + REPO_NAME: educ-grad-tools + KC_BASE_URL: ${{ secrets.KC_BASE_URL}} + KC_PASSWORD: ${{ secrets.KC_PASSWORD}} + KC_USERNAME: ${{ secrets.KC_USERNAME}} + KC_TOKEN_URL: ${{ secrets.KC_TOKEN_URL}} + KC_REALM_ID: master + + +on: + workflow_dispatch: + + +jobs: + update-keycolak-sandbox: + runs-on: ubuntu-latest + environment: sandbox + steps: + - name: Set Scripts path + run: echo "SCRIPTS_PATH=https://raw.githubusercontent.com/bcgov/${{ env.REPO_NAME }}/${{ env.BRANCH }}/Keycloak" >> $GITHUB_ENV + - name: Check out repository + uses: actions/checkout@v3 + - name: Update Keycloak + run: > + curl -s $SCRIPTS_PATH/update-kc.sh | bash /dev/stdin ${{ env.KC_BASE_URL }} ${{ env.KC_PASSWORD }} ${{ env.KC_USERNAME }} ${{ env.KC_REALM_ID }} $SCRIPTS_PATH ${{ env.KC_TOKEN_URL }} + + diff --git a/.gitignore b/.gitignore index 07c4142..e0ceeb7 100644 --- a/.gitignore +++ b/.gitignore @@ -52,4 +52,5 @@ target/ build/ ### VS Code ### -.vscode/ \ No newline at end of file +.vscode/ +*.DS_Store \ No newline at end of file diff --git a/Keycloak/clients.dat b/Keycloak/clients.dat new file mode 100644 index 0000000..3bf6b30 --- /dev/null +++ b/Keycloak/clients.dat @@ -0,0 +1,1604 @@ +[ + { + "clientId": "educ-grad-api-service", + "rootUrl": "https://dev.grad.gov.bc.ca", + "surrogateAuthRequired": false, + "enabled": true, + "alwaysDisplayInConsole": false, + "clientAuthenticatorType": "client-secret", + "redirectUris": [ + "http://localhost:8080/*", + "http://localhost*", + "https://dev.grad.gov.bc.ca/*", + "https://oauth.pstmn.io/*", + "http://localhost:8080?login=noidir" + ], + "webOrigins": [ + "+" + ], + "notBefore": 0, + "bearerOnly": false, + "consentRequired": false, + "standardFlowEnabled": true, + "implicitFlowEnabled": false, + "directAccessGrantsEnabled": true, + "serviceAccountsEnabled": false, + "publicClient": true, + "frontchannelLogout": false, + "protocol": "openid-connect", + "attributes": { + "saml.assertion.signature": "false", + "saml.multivalued.roles": "false", + "saml.force.post.binding": "false", + "saml.encrypt": "false", + "saml.server.signature": "false", + "saml.server.signature.keyinfo.ext": "false", + "exclude.session.state.from.auth.response": "false", + "client_credentials.use_refresh_token": "false", + "saml_force_name_id_format": "false", + "saml.client.signature": "false", + "tls.client.certificate.bound.access.tokens": "false", + "saml.authnstatement": "false", + "display.on.consent.screen": "false", + "saml.onetimeuse.condition": "false" + }, + "fullScopeAllowed": true, + "nodeReRegistrationTimeout": -1, + "defaultClientScopes": [ + "CREATE_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_NOTES_DATA", + "READ_GRAD_CAREER_PROGRAM_CODE_DATA", + "UPDATE_GRAD_GRADUATION_STATUS", + "READ_GRAD_STUDENT_EXAM_DATA", + "READ_GRAD_SCHOOL_DATA", + "UPDATE_GRAD_TRAX_STUDENT_DATA", + "CREATE_GRAD_STUDENT_STATUS_CODE_DATA", + "WRITE_STUDENT", + "READ_GRAD_PROGRAM_RULES_DATA", + "READ_GRAD_DOCUMENT_STATUS_CODE_DATA", + "RUN_RULE_ENGINE", + "READ_GRAD_COURSE_REQUIREMENT_DATA", + "READ_GRAD_AND_PEN_STUDENT_DATA", + "CREATE_SCHOOL_NON_GRADUATION", + "READ_SIGNATURE_IMAGE_BY_CODE", + "READ_SCHOOL", + "RUN_ARCHIVE_SCHOOL_REPORTS", + "READ_EXAM_SPECIAL_CASE_CODE", + "DELETE_GRAD_UNGRAD_CODE_DATA", + "READ_GRAD_CERTIFICATE_CODE_DATA", + "UPDATE_GRAD_PROGRAM_SETS_DATA", + "READ_GRAD_MESSAGING_CODE_DATA", + "CREATE_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "CREATE_GRAD_ASSESSMENT_REQUIREMENT_DATA", + "DELETE_GRAD_BATCH_JOB_CODE_DATA", + "READ_GRAD_ALGORITHM_RULES_DATA", + "READ_GRAD_COUNTRY_CODE_DATA", + "UPDATE_GRAD_STUDENT_REPORT_DATA", + "READ_GRAD_SPECIAL_CASE_DATA", + "READ_GRAD_GRADUATION_STATUS", + "CREATE_STUDENT_NON_GRAD_REQ", + "CREATE_GRAD_STUDENT_NOTES_DATA", + "GET_GRADUATION_TRANSCRIPT", + "DELETE_GRAD_PROGRAM_CODE_DATA", + "DELETE_GRAD_STUDENT_STATUS_CODE_DATA", + "READ_GRAD_PROGRAM_CODE_DATA", + "LOAD_BATCH_DASHBOARD", + "READ_SIGNATURE_BLOCK_TYPE_CODE", + "UPDATE_GRAD_STUDENT_SPECIAL_DATA", + "READ_GRAD_STUDENT_UNGRAD_REASONS_DATA", + "CREATE_PACKING_SLIP", + "LOAD_STUDENT_IDS", + "CREATE_GRAD_STUDENT_UNGRAD_REASONS_DATA", + "READ_FINE_ART_APPLIED_SKILLS_CODE", + "GET_GRADUATION_DATA", + "DELETE_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_COURSE_DATA", + "DELETE_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "CREATE_STUDENT_TRANSCRIPT_REPORT", + "READ_GRAD_UNGRAD_CODE_DATA", + "CREATE_STUDENT_NON_GRAD", + "CREATE_GRAD_UNGRAD_CODE_DATA", + "READ_GRAD_STUDENT_DATA", + "READ_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "UPDATE_GRAD_BATCH_JOB_CODE_DATA", + "UPDATE_GRAD_PROGRAM_RULES_DATA", + "DELETE_GRAD_CERTIFICATE_CODE_DATA", + "READ_GRAD_ASSESSMENT_REQUIREMENT_DATA", + "CREATE_SCHOOL_DISTRIBUTION", + "CREATE_GRAD_PROGRAM_TYPE_CODE_DATA", + "CREATE_GRAD_PROGRAM_CODE_DATA", + "READ_GRAD_LETTER_GRADE_DATA", + "DELETE_GRAD_REPORT_CODE_DATA", + "READ_GRAD_TRAX_COURSE_DATA", + "READ_GRAD_ASSESSMENT_DATA", + "CREATE_STUDENT_CERTIFICATE", + "GET_GRADUATION_ACHIEVEMENT", + "UPDATE_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_STATUS_CODE_DATA", + "UPDATE_GRAD_COURSE_RESTRICTION_DATA", + "CREATE_GRAD_CAREER_PROGRAM_CODE_DATA", + "READ_GRAD_PROGRAM_TYPE_CODE_DATA", + "UPDATE_GRAD_PROGRAM_TYPE_CODE_DATA", + "UPDATE_GRAD_STUDENT_CERTIFICATE_DATA", + "CREATE_STUDENT_XML_TRANSCRIPT_REPORT", + "READ_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "READ_GRAD_PROVINCE_CODE_DATA", + "DELETE_GRAD_CAREER_PROGRAM_CODE_DATA", + "CREATE_STUDENT_ACHIEVEMENT_REPORT", + "READ_GRAD_STUDENT_REPORT_DATA", + "RUN_ARCHIVE_STUDENTS", + "UPDATE_GRAD_UNGRAD_CODE_DATA", + "CREATE_SCHOOL_LABEL", + "GRAD_BUSINESS_R", + "READ_GRAD_STUDENT_ASSESSMENT_DATA", + "UPDATE_GRAD_REPORT_CODE_DATA", + "DELETE_GRAD_PROGRAM_TYPE_CODE_DATA", + "DELETE_GRAD_PROGRAM_RULES_DATA", + "READ_GRAD_TRANSCRIPT_CODE_DATA", + "READ_GRAD_STUDENT_CERTIFICATE_DATA", + "UPDATE_GRAD_STUDENT_NOTES_DATA", + "CREATE_SCHOOL_GRADUATION", + "DELETE_GRAD_STUDENT_DATA", + "READ_GRAD_HISTORY_ACTIVITY_CODE_DATA", + "UPDATE_GRAD_PROGRAM_CODE_DATA", + "READ_GRAD_PSI_DATA", + "UPDATE_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "READ_GRAD_STUDENT_SPECIAL_DATA", + "CREATE_GRAD_PROGRAM_RULES_DATA", + "READ_GRAD_TRAX_STUDENT_DATA", + "READ_GRAD_STUDENT_CAREER_DATA", + "READ_STUDENT", + "DELETE_GRAD_STUDENT_NOTES_DATA", + "READ_GRAD_REPORT_CODE_DATA", + "ARCHIVE_GRADUATION_STUDENT_RECORD", + "CREATE_GRAD_CERTIFICATE_CODE_DATA", + "CREATE_OR_UPDATE_SIGNATURE_BLOCK_TYPE_CODE", + "READ_GRAD_BATCH_JOB_CODE_DATA", + "UPDATE_GRAD_CAREER_PROGRAM_CODE_DATA", + "UPDATE_GRAD_CERTIFICATE_CODE_DATA", + "CREATE_OR_UPDATE_SIGNATURE_IMAGE", + "READ_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "CREATE_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "READ_GRAD_COURSE_RESTRICTION_DATA", + "UPDATE_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "ARCHIVE_SCHOOL_REPORT", + "READ_EQUIVALENT_OR_CHALLENGE_CODE", + "READ_GRAD_COURSE_DATA", + "RUN_GRAD_ALGORITHM", + "GET_GRADUATION_CERTIFICATE", + "web-origins", + "DELETE_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "CREATE_GRAD_REPORT_CODE_DATA", + "CREATE_GRAD_BATCH_JOB_CODE_DATA", + "DELETE_GRAD_STUDENT_REPORTS", + "UPDATE_GRAD_STUDENT_STATUS_CODE_DATA" + ], + "optionalClientScopes": [ + "address", + "phone", + "offline_access", + "microprofile-jwt" + ], + "access": { + "view": true, + "configure": true, + "manage": true + } + }, + { + "clientId": "grad-admin-client", + "name": "GRAD Admin Client", + "description": "GRAD backend client", + "rootUrl": "https://dev.grad.gov.bc.ca/*", + "adminUrl": "https://dev.grad.gov.bc.ca/*", + "surrogateAuthRequired": false, + "enabled": true, + "alwaysDisplayInConsole": false, + "clientAuthenticatorType": "client-secret", + "redirectUris": [ + "http://localhost*", + "https://dev.grad.gov.bc.ca/logout", + "https://oauth.pstmn.io/*", + "https://grad.gov.bc.ca/api/auth/callback", + "https://grad.gov.bc.ca*/*", + "https://educ-grad-admin-b48f1e-dev.apps.silver.devops.gov.bc.ca/logout", + "https://educ-grad-admin-b48f1e-dev.apps.silver.devops.gov.bc.ca", + "https://grad.gov.bc.ca/session-expired", + "https://educ-grad-admin-b48f1e-dev.apps.silver.devops.gov.bc.ca/api/auth/callback", + "https://dev.grad.gov.bc.ca/session-expired", + "https://dev.grad.gov.bc.ca/api/auth/callback", + "https://grad.gov.bc.ca/logout", + "https://educ-grad-admin-b48f1e-dev.apps.silver.devops.gov.bc.ca/session-expired", + "https://dev.grad.gov.bc.ca*/*" + ], + "webOrigins": [ + "https://dev.grad.gov.bc.ca", + "https://educ-grad-admin-b48f1e-dev.apps.silver.devops.gov.bc.ca", + "https://grad.gov.bc.ca" + ], + "notBefore": 0, + "bearerOnly": false, + "consentRequired": false, + "standardFlowEnabled": true, + "implicitFlowEnabled": false, + "directAccessGrantsEnabled": false, + "serviceAccountsEnabled": true, + "publicClient": false, + "frontchannelLogout": false, + "protocol": "openid-connect", + "attributes": { + "saml.assertion.signature": "false", + "saml.multivalued.roles": "false", + "saml.force.post.binding": "false", + "saml.encrypt": "false", + "saml.server.signature": "false", + "saml.server.signature.keyinfo.ext": "false", + "exclude.session.state.from.auth.response": "false", + "client_credentials.use_refresh_token": "false", + "saml_force_name_id_format": "false", + "saml.client.signature": "false", + "tls.client.certificate.bound.access.tokens": "false", + "saml.authnstatement": "false", + "display.on.consent.screen": "false", + "saml.onetimeuse.condition": "false" + }, + "authenticationFlowBindingOverrides": {}, + "fullScopeAllowed": true, + "nodeReRegistrationTimeout": -1, + "defaultClientScopes": [ + "CREATE_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_NOTES_DATA", + "UPDATE_GRAD_GRADUATION_STATUS", + "READ_GRAD_CAREER_PROGRAM_CODE_DATA", + "READ_GRAD_STUDENT_EXAM_DATA", + "UPDATE_GRAD_TRAX_STUDENT_DATA", + "READ_GRAD_SCHOOL_DATA", + "CREATE_GRAD_STUDENT_STATUS_CODE_DATA", + "WRITE_STUDENT", + "READ_GRAD_PROGRAM_RULES_DATA", + "READ_GRAD_DOCUMENT_STATUS_CODE_DATA", + "RUN_RULE_ENGINE", + "READ_GRAD_COURSE_REQUIREMENT_DATA", + "READ_GRAD_AND_PEN_STUDENT_DATA", + "CREATE_SCHOOL_NON_GRADUATION", + "READ_SIGNATURE_IMAGE_BY_CODE", + "RUN_ARCHIVE_SCHOOL_REPORTS", + "READ_SCHOOL", + "READ_EXAM_SPECIAL_CASE_CODE", + "UPDATE_GRAD_PROGRAM_SETS_DATA", + "DELETE_GRAD_UNGRAD_CODE_DATA", + "READ_GRAD_CERTIFICATE_CODE_DATA", + "CREATE_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "READ_GRAD_MESSAGING_CODE_DATA", + "CREATE_GRAD_ASSESSMENT_REQUIREMENT_DATA", + "DELETE_GRAD_BATCH_JOB_CODE_DATA", + "READ_GRAD_COUNTRY_CODE_DATA", + "READ_GRAD_ALGORITHM_RULES_DATA", + "UPDATE_GRAD_STUDENT_REPORT_DATA", + "READ_GRAD_SPECIAL_CASE_DATA", + "CREATE_STUDENT_NON_GRAD_REQ", + "READ_GRAD_GRADUATION_STATUS", + "CREATE_GRAD_STUDENT_NOTES_DATA", + "GET_GRADUATION_TRANSCRIPT", + "DELETE_GRAD_PROGRAM_CODE_DATA", + "DELETE_GRAD_STUDENT_STATUS_CODE_DATA", + "READ_GRAD_PROGRAM_CODE_DATA", + "LOAD_BATCH_DASHBOARD", + "READ_SIGNATURE_BLOCK_TYPE_CODE", + "UPDATE_GRAD_STUDENT_SPECIAL_DATA", + "READ_GRAD_STUDENT_UNGRAD_REASONS_DATA", + "CREATE_PACKING_SLIP", + "LOAD_STUDENT_IDS", + "CREATE_GRAD_STUDENT_UNGRAD_REASONS_DATA", + "READ_GRAD_STUDENT_GRADE_CODES", + "GET_GRADUATION_DATA", + "READ_FINE_ART_APPLIED_SKILLS_CODE", + "DELETE_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_COURSE_DATA", + "WRITE_EVENT_HISTORY", + "DELETE_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "CREATE_STUDENT_TRANSCRIPT_REPORT", + "READ_GRAD_UNGRAD_CODE_DATA", + "CREATE_STUDENT_NON_GRAD", + "CREATE_GRAD_UNGRAD_CODE_DATA", + "READ_GRAD_STUDENT_DATA", + "READ_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "UPDATE_GRAD_BATCH_JOB_CODE_DATA", + "UPDATE_GRAD_PROGRAM_RULES_DATA", + "DELETE_GRAD_CERTIFICATE_CODE_DATA", + "CREATE_GRAD_PROGRAM_TYPE_CODE_DATA", + "CREATE_SCHOOL_DISTRIBUTION", + "READ_GRAD_ASSESSMENT_REQUIREMENT_DATA", + "CREATE_GRAD_PROGRAM_CODE_DATA", + "READ_GRAD_LETTER_GRADE_DATA", + "DELETE_GRAD_REPORT_CODE_DATA", + "READ_GRAD_TRAX_COURSE_DATA", + "READ_GRAD_ASSESSMENT_DATA", + "CREATE_STUDENT_CERTIFICATE", + "GET_GRADUATION_ACHIEVEMENT", + "UPDATE_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_STATUS_CODE_DATA", + "UPDATE_GRAD_COURSE_RESTRICTION_DATA", + "RUN_DELETE_STUDENT_REPORTS", + "CREATE_GRAD_CAREER_PROGRAM_CODE_DATA", + "READ_GRAD_PROGRAM_TYPE_CODE_DATA", + "UPDATE_GRAD_PROGRAM_TYPE_CODE_DATA", + "UPDATE_GRAD_STUDENT_CERTIFICATE_DATA", + "CREATE_STUDENT_XML_TRANSCRIPT_REPORT", + "READ_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "READ_GRAD_PROVINCE_CODE_DATA", + "DELETE_GRAD_CAREER_PROGRAM_CODE_DATA", + "CREATE_STUDENT_ACHIEVEMENT_REPORT", + "READ_GRAD_STUDENT_REPORT_DATA", + "RUN_ARCHIVE_STUDENTS", + "UPDATE_GRAD_UNGRAD_CODE_DATA", + "CREATE_SCHOOL_LABEL", + "GRAD_BUSINESS_R", + "DELETE_GRAD_PROGRAM_TYPE_CODE_DATA", + "UPDATE_GRAD_REPORT_CODE_DATA", + "DELETE_GRAD_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_ASSESSMENT_DATA", + "READ_GRAD_TRANSCRIPT_CODE_DATA", + "READ_GRAD_STUDENT_CERTIFICATE_DATA", + "UPDATE_GRAD_STUDENT_NOTES_DATA", + "CREATE_SCHOOL_GRADUATION", + "DELETE_GRAD_STUDENT_DATA", + "READ_GRAD_HISTORY_ACTIVITY_CODE_DATA", + "UPDATE_GRAD_PROGRAM_CODE_DATA", + "READ_GRAD_PSI_DATA", + "UPDATE_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "READ_GRAD_STUDENT_SPECIAL_DATA", + "CREATE_GRAD_PROGRAM_RULES_DATA", + "READ_GRAD_TRAX_STUDENT_DATA", + "READ_GRAD_STUDENT_CAREER_DATA", + "DELETE_GRAD_STUDENT_NOTES_DATA", + "READ_STUDENT", + "READ_GRAD_REPORT_CODE_DATA", + "ARCHIVE_GRADUATION_STUDENT_RECORD", + "CREATE_GRAD_CERTIFICATE_CODE_DATA", + "CREATE_OR_UPDATE_SIGNATURE_BLOCK_TYPE_CODE", + "READ_GRAD_BATCH_JOB_CODE_DATA", + "UPDATE_GRAD_CAREER_PROGRAM_CODE_DATA", + "UPDATE_GRAD_CERTIFICATE_CODE_DATA", + "CREATE_OR_UPDATE_SIGNATURE_IMAGE", + "READ_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "CREATE_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "READ_GRAD_COURSE_RESTRICTION_DATA", + "UPDATE_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "ARCHIVE_SCHOOL_REPORT", + "READ_EQUIVALENT_OR_CHALLENGE_CODE", + "READ_GRAD_COURSE_DATA", + "RUN_GRAD_ALGORITHM", + "GET_GRADUATION_CERTIFICATE", + "web-origins", + "DELETE_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "READ_EVENT_HISTORY", + "DELETE_STUDENT_REPORT", + "CREATE_GRAD_REPORT_CODE_DATA", + "CREATE_GRAD_BATCH_JOB_CODE_DATA", + "DELETE_GRAD_STUDENT_REPORTS", + "UPDATE_GRAD_STUDENT_STATUS_CODE_DATA" + ], + "optionalClientScopes": [ + "address", + "phone" + ], + "access": { + "view": true, + "configure": true, + "manage": true + } + }, + { + "clientId": "grad-admin-client-prd", + "name": "GRAD Admin Client PRD", + "description": "GRAD backend client PRD while PRD environment is being tested", + "rootUrl": "https://grad.gov.bc.ca/*", + "adminUrl": "https://grad.gov.bc.ca/*", + "surrogateAuthRequired": false, + "enabled": true, + "alwaysDisplayInConsole": false, + "clientAuthenticatorType": "client-secret", + "redirectUris": [ + "https://grad.gov.bc.ca/*/*", + "https://grad.gov.bc.ca/session-expired", + "https://grad.gov.bc.ca/api/auth/callback", + "https://grad.gov.bc.ca/logout" + ], + "webOrigins": [ + "https://grad.gov.bc.ca" + ], + "notBefore": 0, + "bearerOnly": false, + "consentRequired": false, + "standardFlowEnabled": true, + "implicitFlowEnabled": false, + "directAccessGrantsEnabled": false, + "serviceAccountsEnabled": true, + "publicClient": false, + "frontchannelLogout": false, + "protocol": "openid-connect", + "attributes": { + "saml.assertion.signature": "false", + "saml.multivalued.roles": "false", + "saml.force.post.binding": "false", + "saml.encrypt": "false", + "saml.server.signature": "false", + "saml.server.signature.keyinfo.ext": "false", + "exclude.session.state.from.auth.response": "false", + "client_credentials.use_refresh_token": "false", + "saml_force_name_id_format": "false", + "saml.client.signature": "false", + "tls.client.certificate.bound.access.tokens": "false", + "saml.authnstatement": "false", + "display.on.consent.screen": "false", + "saml.onetimeuse.condition": "false" + }, + "authenticationFlowBindingOverrides": {}, + "fullScopeAllowed": true, + "nodeReRegistrationTimeout": -1, + "defaultClientScopes": [ + "CREATE_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_NOTES_DATA", + "UPDATE_GRAD_GRADUATION_STATUS", + "READ_GRAD_CAREER_PROGRAM_CODE_DATA", + "READ_GRAD_STUDENT_EXAM_DATA", + "UPDATE_GRAD_TRAX_STUDENT_DATA", + "READ_GRAD_SCHOOL_DATA", + "CREATE_GRAD_STUDENT_STATUS_CODE_DATA", + "WRITE_STUDENT", + "READ_GRAD_PROGRAM_RULES_DATA", + "READ_GRAD_DOCUMENT_STATUS_CODE_DATA", + "RUN_RULE_ENGINE", + "READ_GRAD_COURSE_REQUIREMENT_DATA", + "READ_GRAD_AND_PEN_STUDENT_DATA", + "CREATE_SCHOOL_NON_GRADUATION", + "READ_SIGNATURE_IMAGE_BY_CODE", + "READ_SCHOOL", + "UPDATE_GRAD_PROGRAM_SETS_DATA", + "DELETE_GRAD_UNGRAD_CODE_DATA", + "READ_GRAD_CERTIFICATE_CODE_DATA", + "CREATE_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "READ_GRAD_MESSAGING_CODE_DATA", + "CREATE_GRAD_ASSESSMENT_REQUIREMENT_DATA", + "DELETE_GRAD_BATCH_JOB_CODE_DATA", + "READ_GRAD_COUNTRY_CODE_DATA", + "READ_GRAD_ALGORITHM_RULES_DATA", + "UPDATE_GRAD_STUDENT_REPORT_DATA", + "READ_GRAD_SPECIAL_CASE_DATA", + "CREATE_STUDENT_NON_GRAD_REQ", + "READ_GRAD_GRADUATION_STATUS", + "CREATE_GRAD_STUDENT_NOTES_DATA", + "GET_GRADUATION_TRANSCRIPT", + "DELETE_GRAD_PROGRAM_CODE_DATA", + "DELETE_GRAD_STUDENT_STATUS_CODE_DATA", + "READ_GRAD_PROGRAM_CODE_DATA", + "LOAD_BATCH_DASHBOARD", + "READ_SIGNATURE_BLOCK_TYPE_CODE", + "UPDATE_GRAD_STUDENT_SPECIAL_DATA", + "READ_GRAD_STUDENT_UNGRAD_REASONS_DATA", + "CREATE_PACKING_SLIP", + "LOAD_STUDENT_IDS", + "CREATE_GRAD_STUDENT_UNGRAD_REASONS_DATA", + "GET_GRADUATION_DATA", + "DELETE_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_COURSE_DATA", + "DELETE_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "CREATE_STUDENT_TRANSCRIPT_REPORT", + "READ_GRAD_UNGRAD_CODE_DATA", + "CREATE_STUDENT_NON_GRAD", + "CREATE_GRAD_UNGRAD_CODE_DATA", + "READ_GRAD_STUDENT_DATA", + "READ_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "UPDATE_GRAD_BATCH_JOB_CODE_DATA", + "UPDATE_GRAD_PROGRAM_RULES_DATA", + "DELETE_GRAD_CERTIFICATE_CODE_DATA", + "CREATE_GRAD_PROGRAM_TYPE_CODE_DATA", + "CREATE_SCHOOL_DISTRIBUTION", + "READ_GRAD_ASSESSMENT_REQUIREMENT_DATA", + "CREATE_GRAD_PROGRAM_CODE_DATA", + "READ_GRAD_LETTER_GRADE_DATA", + "DELETE_GRAD_REPORT_CODE_DATA", + "READ_GRAD_TRAX_COURSE_DATA", + "READ_GRAD_ASSESSMENT_DATA", + "CREATE_STUDENT_CERTIFICATE", + "GET_GRADUATION_ACHIEVEMENT", + "UPDATE_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_STATUS_CODE_DATA", + "UPDATE_GRAD_COURSE_RESTRICTION_DATA", + "CREATE_GRAD_CAREER_PROGRAM_CODE_DATA", + "READ_GRAD_PROGRAM_TYPE_CODE_DATA", + "UPDATE_GRAD_PROGRAM_TYPE_CODE_DATA", + "UPDATE_GRAD_STUDENT_CERTIFICATE_DATA", + "CREATE_STUDENT_XML_TRANSCRIPT_REPORT", + "READ_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "READ_GRAD_PROVINCE_CODE_DATA", + "DELETE_GRAD_CAREER_PROGRAM_CODE_DATA", + "CREATE_STUDENT_ACHIEVEMENT_REPORT", + "READ_GRAD_STUDENT_REPORT_DATA", + "UPDATE_GRAD_UNGRAD_CODE_DATA", + "GRAD_BUSINESS_R", + "DELETE_GRAD_PROGRAM_TYPE_CODE_DATA", + "UPDATE_GRAD_REPORT_CODE_DATA", + "DELETE_GRAD_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_ASSESSMENT_DATA", + "READ_GRAD_TRANSCRIPT_CODE_DATA", + "READ_GRAD_STUDENT_CERTIFICATE_DATA", + "UPDATE_GRAD_STUDENT_NOTES_DATA", + "CREATE_SCHOOL_GRADUATION", + "READ_GRAD_HISTORY_ACTIVITY_CODE_DATA", + "UPDATE_GRAD_PROGRAM_CODE_DATA", + "READ_GRAD_PSI_DATA", + "UPDATE_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "READ_GRAD_STUDENT_SPECIAL_DATA", + "CREATE_GRAD_PROGRAM_RULES_DATA", + "READ_GRAD_TRAX_STUDENT_DATA", + "READ_GRAD_STUDENT_CAREER_DATA", + "DELETE_GRAD_STUDENT_NOTES_DATA", + "READ_STUDENT", + "READ_GRAD_REPORT_CODE_DATA", + "CREATE_GRAD_CERTIFICATE_CODE_DATA", + "CREATE_OR_UPDATE_SIGNATURE_BLOCK_TYPE_CODE", + "READ_GRAD_BATCH_JOB_CODE_DATA", + "UPDATE_GRAD_CAREER_PROGRAM_CODE_DATA", + "UPDATE_GRAD_CERTIFICATE_CODE_DATA", + "CREATE_OR_UPDATE_SIGNATURE_IMAGE", + "READ_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "CREATE_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "READ_GRAD_COURSE_RESTRICTION_DATA", + "UPDATE_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "READ_GRAD_COURSE_DATA", + "RUN_GRAD_ALGORITHM", + "GET_GRADUATION_CERTIFICATE", + "web-origins", + "DELETE_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "CREATE_GRAD_REPORT_CODE_DATA", + "CREATE_GRAD_BATCH_JOB_CODE_DATA", + "UPDATE_GRAD_STUDENT_STATUS_CODE_DATA" + ], + "optionalClientScopes": [ + "address", + "phone", + "offline_access", + "microprofile-jwt" + ], + "access": { + "view": true, + "configure": true, + "manage": true + } + }, + { + "clientId": "grad-data-collection-api-service", + "surrogateAuthRequired": false, + "enabled": true, + "alwaysDisplayInConsole": false, + "clientAuthenticatorType": "client-secret", + "redirectUris": [], + "webOrigins": [], + "notBefore": 0, + "bearerOnly": false, + "consentRequired": false, + "standardFlowEnabled": false, + "implicitFlowEnabled": false, + "directAccessGrantsEnabled": false, + "serviceAccountsEnabled": true, + "publicClient": false, + "frontchannelLogout": false, + "protocol": "openid-connect", + "attributes": { + "saml.assertion.signature": "false", + "saml.multivalued.roles": "false", + "saml.force.post.binding": "false", + "saml.encrypt": "false", + "saml.server.signature": "false", + "saml.server.signature.keyinfo.ext": "false", + "exclude.session.state.from.auth.response": "false", + "saml_force_name_id_format": "false", + "saml.client.signature": "false", + "tls.client.certificate.bound.access.tokens": "false", + "saml.authnstatement": "false", + "display.on.consent.screen": "false", + "saml.onetimeuse.condition": "false" + }, + "authenticationFlowBindingOverrides": {}, + "fullScopeAllowed": true, + "nodeReRegistrationTimeout": -1, + "defaultClientScopes": [ + "READ_GRAD_LETTER_GRADE_DATA", + "READ_SCHOLARSHIPS_CODES", + "READ_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "READ_GRAD_PROGRAM_CODE_DATA", + "READ_DISTRICT", + "roles", + "profile", + "READ_EQUIVALENT_OR_CHALLENGE_CODE", + "READ_GRAD_CAREER_PROGRAM_CODE_DATA", + "web-origins", + "READ_INSTITUTE_CODES", + "READ_INDEPENDENT_AUTHORITY", + "READ_GRAD_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_GRADE_CODES", + "READ_EDX_USERS", + "READ_SCHOOL", + "email" + ], + "optionalClientScopes": [ + "address", + "phone", + "offline_access" + ], + "access": { + "view": true, + "configure": true, + "manage": true + } + }, + { + "clientId": "grad-sts-client", + "surrogateAuthRequired": false, + "enabled": true, + "alwaysDisplayInConsole": false, + "clientAuthenticatorType": "client-secret", + "redirectUris": [ + "", + "http://localhost*", + "https://oauth.pstmn.io/*" + ], + "webOrigins": [], + "notBefore": 0, + "bearerOnly": false, + "consentRequired": false, + "standardFlowEnabled": false, + "implicitFlowEnabled": false, + "directAccessGrantsEnabled": false, + "serviceAccountsEnabled": true, + "authorizationServicesEnabled": true, + "publicClient": false, + "frontchannelLogout": false, + "protocol": "openid-connect", + "attributes": { + "saml.assertion.signature": "false", + "saml.multivalued.roles": "false", + "saml.force.post.binding": "false", + "saml.encrypt": "false", + "saml.server.signature": "false", + "saml.server.signature.keyinfo.ext": "false", + "exclude.session.state.from.auth.response": "false", + "client_credentials.use_refresh_token": "false", + "saml_force_name_id_format": "false", + "saml.client.signature": "false", + "tls.client.certificate.bound.access.tokens": "false", + "saml.authnstatement": "false", + "display.on.consent.screen": "false", + "saml.onetimeuse.condition": "false" + }, + "authenticationFlowBindingOverrides": {}, + "fullScopeAllowed": true, + "nodeReRegistrationTimeout": -1, + "defaultClientScopes": [ + "CREATE_STUDENT_TRANSCRIPT_REPORT", + "READ_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "READ_GRAD_PROGRAM_CODE_DATA", + "READ_GRAD_STUDENT_SPECIAL_DATA", + "READ_GRAD_STUDENT_REPORT_DATA", + "READ_STUDENT", + "READ_GRAD_ASSESSMENT_DATA", + "READ_GRAD_STUDENT_DATA", + "READ_GRAD_CAREER_PROGRAM_CODE_DATA", + "READ_GRAD_SCHOOL_DATA", + "READ_GRAD_REPORT_CODE_DATA", + "web-origins", + "READ_GRAD_SPECIAL_CASE_DATA", + "GRAD_BUSINESS_R", + "READ_GRAD_GRADUATION_STATUS", + "READ_GRAD_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_CERTIFICATE_DATA", + "GET_GRADUATION_DATA", + "READ_SCHOOL" + ], + "optionalClientScopes": [ + "address", + "phone" + ], + "access": { + "view": true, + "configure": true, + "manage": true + } + }, + { + "clientId": "edx-grad-api-service", + "surrogateAuthRequired": false, + "enabled": true, + "alwaysDisplayInConsole": false, + "clientAuthenticatorType": "client-secret", + "redirectUris": [], + "webOrigins": [], + "notBefore": 0, + "bearerOnly": false, + "consentRequired": false, + "standardFlowEnabled": false, + "implicitFlowEnabled": false, + "directAccessGrantsEnabled": false, + "serviceAccountsEnabled": true, + "publicClient": false, + "frontchannelLogout": false, + "protocol": "openid-connect", + "attributes": { + "saml.assertion.signature": "false", + "saml.multivalued.roles": "false", + "saml.force.post.binding": "false", + "saml.encrypt": "false", + "saml.server.signature": "false", + "saml.server.signature.keyinfo.ext": "false", + "exclude.session.state.from.auth.response": "false", + "client_credentials.use_refresh_token": "false", + "saml_force_name_id_format": "false", + "saml.client.signature": "false", + "tls.client.certificate.bound.access.tokens": "false", + "saml.authnstatement": "false", + "display.on.consent.screen": "false", + "saml.onetimeuse.condition": "false" + }, + "authenticationFlowBindingOverrides": {}, + "fullScopeAllowed": true, + "nodeReRegistrationTimeout": -1, + "defaultClientScopes": [ + "web-origins", + "READ_INSTITUTE_CODES", + "READ_GRAD_PROGRAM_RULES_DATA", + "READ_DISTRICT", + "READ_COLLECTION_CODES", + "READ_DISTRICT_NOTE", + "READ_SCHOOL" + ], + "optionalClientScopes": [ + "address", + "phone", + "offline_access", + "microprofile-jwt" + ], + "access": { + "view": true, + "configure": true, + "manage": true + } + }, + { + "clientId": "educ-grad-trax-api-service", + "name": "", + "description": "", + "surrogateAuthRequired": false, + "enabled": true, + "alwaysDisplayInConsole": false, + "clientAuthenticatorType": "client-secret", + "redirectUris": [], + "webOrigins": [], + "notBefore": 0, + "bearerOnly": false, + "consentRequired": false, + "standardFlowEnabled": false, + "implicitFlowEnabled": false, + "directAccessGrantsEnabled": false, + "serviceAccountsEnabled": true, + "authorizationServicesEnabled": true, + "publicClient": false, + "frontchannelLogout": false, + "protocol": "openid-connect", + "attributes": { + "saml.assertion.signature": "false", + "saml.force.post.binding": "false", + "saml.multivalued.roles": "false", + "saml.encrypt": "false", + "saml.server.signature": "false", + "saml.server.signature.keyinfo.ext": "false", + "exclude.session.state.from.auth.response": "false", + "client_credentials.use_refresh_token": "false", + "saml_force_name_id_format": "false", + "saml.client.signature": "false", + "tls.client.certificate.bound.access.tokens": "false", + "saml.authnstatement": "false", + "display.on.consent.screen": "false", + "saml.onetimeuse.condition": "false" + }, + "authenticationFlowBindingOverrides": {}, + "fullScopeAllowed": true, + "nodeReRegistrationTimeout": -1, + "defaultClientScopes": [ + "CREATE_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_NOTES_DATA", + "UPDATE_GRAD_GRADUATION_STATUS", + "READ_GRAD_CAREER_PROGRAM_CODE_DATA", + "READ_GRAD_STUDENT_EXAM_DATA", + "READ_GRAD_SCHOOL_DATA", + "UPDATE_GRAD_TRAX_STUDENT_DATA", + "CREATE_GRAD_STUDENT_STATUS_CODE_DATA", + "WRITE_STUDENT", + "READ_GRAD_PROGRAM_RULES_DATA", + "READ_GRAD_DOCUMENT_STATUS_CODE_DATA", + "RUN_RULE_ENGINE", + "READ_GRAD_AND_PEN_STUDENT_DATA", + "READ_GRAD_COURSE_REQUIREMENT_DATA", + "CREATE_SCHOOL_NON_GRADUATION", + "READ_SIGNATURE_IMAGE_BY_CODE", + "READ_SCHOOL", + "READ_GRAD_CERTIFICATE_CODE_DATA", + "UPDATE_GRAD_PROGRAM_SETS_DATA", + "DELETE_GRAD_UNGRAD_CODE_DATA", + "READ_GRAD_MESSAGING_CODE_DATA", + "CREATE_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "CREATE_GRAD_ASSESSMENT_REQUIREMENT_DATA", + "DELETE_GRAD_BATCH_JOB_CODE_DATA", + "READ_GRAD_ALGORITHM_RULES_DATA", + "READ_GRAD_COUNTRY_CODE_DATA", + "UPDATE_GRAD_STUDENT_REPORT_DATA", + "READ_GRAD_SPECIAL_CASE_DATA", + "READ_GRAD_GRADUATION_STATUS", + "CREATE_STUDENT_NON_GRAD_REQ", + "CREATE_GRAD_STUDENT_NOTES_DATA", + "GET_GRADUATION_TRANSCRIPT", + "DELETE_GRAD_PROGRAM_CODE_DATA", + "DELETE_GRAD_STUDENT_STATUS_CODE_DATA", + "READ_GRAD_PROGRAM_CODE_DATA", + "UPDATE_GRAD_TRAX_CACHE", + "LOAD_BATCH_DASHBOARD", + "READ_SIGNATURE_BLOCK_TYPE_CODE", + "UPDATE_GRAD_STUDENT_SPECIAL_DATA", + "READ_GRAD_STUDENT_UNGRAD_REASONS_DATA", + "CREATE_PACKING_SLIP", + "LOAD_STUDENT_IDS", + "CREATE_GRAD_STUDENT_UNGRAD_REASONS_DATA", + "GET_GRADUATION_DATA", + "DELETE_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_COURSE_DATA", + "DELETE_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "CREATE_STUDENT_TRANSCRIPT_REPORT", + "READ_GRAD_UNGRAD_CODE_DATA", + "CREATE_STUDENT_NON_GRAD", + "CREATE_GRAD_UNGRAD_CODE_DATA", + "READ_GRAD_STUDENT_DATA", + "READ_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "UPDATE_GRAD_BATCH_JOB_CODE_DATA", + "UPDATE_GRAD_PROGRAM_RULES_DATA", + "DELETE_GRAD_CERTIFICATE_CODE_DATA", + "CREATE_GRAD_PROGRAM_TYPE_CODE_DATA", + "READ_GRAD_ASSESSMENT_REQUIREMENT_DATA", + "CREATE_SCHOOL_DISTRIBUTION", + "CREATE_GRAD_PROGRAM_CODE_DATA", + "READ_GRAD_LETTER_GRADE_DATA", + "DELETE_GRAD_REPORT_CODE_DATA", + "READ_GRAD_TRAX_COURSE_DATA", + "READ_GRAD_ASSESSMENT_DATA", + "CREATE_STUDENT_CERTIFICATE", + "GET_GRADUATION_ACHIEVEMENT", + "READ_GRAD_STUDENT_STATUS_CODE_DATA", + "UPDATE_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "UPDATE_GRAD_COURSE_RESTRICTION_DATA", + "CREATE_GRAD_CAREER_PROGRAM_CODE_DATA", + "READ_GRAD_PROGRAM_TYPE_CODE_DATA", + "UPDATE_GRAD_STUDENT_CERTIFICATE_DATA", + "UPDATE_GRAD_PROGRAM_TYPE_CODE_DATA", + "CREATE_STUDENT_XML_TRANSCRIPT_REPORT", + "READ_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "READ_GRAD_PROVINCE_CODE_DATA", + "DELETE_GRAD_CAREER_PROGRAM_CODE_DATA", + "CREATE_STUDENT_ACHIEVEMENT_REPORT", + "READ_GRAD_STUDENT_REPORT_DATA", + "UPDATE_GRAD_UNGRAD_CODE_DATA", + "CREATE_SCHOOL_LABEL", + "GRAD_BUSINESS_R", + "DELETE_GRAD_PROGRAM_TYPE_CODE_DATA", + "READ_GRAD_STUDENT_ASSESSMENT_DATA", + "UPDATE_GRAD_REPORT_CODE_DATA", + "DELETE_GRAD_PROGRAM_RULES_DATA", + "READ_GRAD_TRANSCRIPT_CODE_DATA", + "READ_GRAD_STUDENT_CERTIFICATE_DATA", + "UPDATE_GRAD_STUDENT_NOTES_DATA", + "CREATE_SCHOOL_GRADUATION", + "DELETE_GRAD_STUDENT_DATA", + "READ_GRAD_HISTORY_ACTIVITY_CODE_DATA", + "UPDATE_GRAD_PROGRAM_CODE_DATA", + "READ_GRAD_PSI_DATA", + "UPDATE_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "CREATE_GRAD_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_SPECIAL_DATA", + "READ_GRAD_TRAX_STUDENT_DATA", + "READ_GRAD_STUDENT_CAREER_DATA", + "DELETE_GRAD_STUDENT_NOTES_DATA", + "READ_STUDENT", + "READ_GRAD_REPORT_CODE_DATA", + "CREATE_GRAD_CERTIFICATE_CODE_DATA", + "CREATE_OR_UPDATE_SIGNATURE_BLOCK_TYPE_CODE", + "READ_GRAD_BATCH_JOB_CODE_DATA", + "UPDATE_GRAD_CAREER_PROGRAM_CODE_DATA", + "UPDATE_GRAD_CERTIFICATE_CODE_DATA", + "CREATE_OR_UPDATE_SIGNATURE_IMAGE", + "READ_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "CREATE_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "READ_GRAD_COURSE_RESTRICTION_DATA", + "UPDATE_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "READ_GRAD_COURSE_DATA", + "RUN_GRAD_ALGORITHM", + "GET_GRADUATION_CERTIFICATE", + "web-origins", + "DELETE_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "CREATE_GRAD_REPORT_CODE_DATA", + "CREATE_GRAD_BATCH_JOB_CODE_DATA", + "DELETE_GRAD_STUDENT_REPORTS", + "UPDATE_GRAD_STUDENT_STATUS_CODE_DATA" + ], + "optionalClientScopes": [ + "address", + "phone", + "offline_access", + "microprofile-jwt" + ], + "access": { + "view": true, + "configure": true, + "manage": true + } + }, + { + "clientId": "educ-grad-graduation-api-service", + "name": "", + "description": "", + "surrogateAuthRequired": false, + "enabled": true, + "alwaysDisplayInConsole": false, + "clientAuthenticatorType": "client-secret", + "redirectUris": [], + "webOrigins": [], + "notBefore": 0, + "bearerOnly": false, + "consentRequired": false, + "standardFlowEnabled": false, + "implicitFlowEnabled": false, + "directAccessGrantsEnabled": false, + "serviceAccountsEnabled": true, + "authorizationServicesEnabled": true, + "publicClient": false, + "frontchannelLogout": false, + "protocol": "openid-connect", + "attributes": { + "saml.assertion.signature": "false", + "saml.multivalued.roles": "false", + "saml.force.post.binding": "false", + "saml.encrypt": "false", + "saml.server.signature": "false", + "saml.server.signature.keyinfo.ext": "false", + "exclude.session.state.from.auth.response": "false", + "client_credentials.use_refresh_token": "false", + "saml_force_name_id_format": "false", + "saml.client.signature": "false", + "tls.client.certificate.bound.access.tokens": "false", + "saml.authnstatement": "false", + "display.on.consent.screen": "false", + "saml.onetimeuse.condition": "false" + }, + "authenticationFlowBindingOverrides": {}, + "fullScopeAllowed": true, + "nodeReRegistrationTimeout": -1, + "defaultClientScopes": [ + "CREATE_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_NOTES_DATA", + "UPDATE_GRAD_GRADUATION_STATUS", + "READ_GRAD_CAREER_PROGRAM_CODE_DATA", + "READ_GRAD_STUDENT_EXAM_DATA", + "READ_GRAD_SCHOOL_DATA", + "UPDATE_GRAD_TRAX_STUDENT_DATA", + "CREATE_GRAD_STUDENT_STATUS_CODE_DATA", + "WRITE_STUDENT", + "READ_GRAD_PROGRAM_RULES_DATA", + "READ_GRAD_DOCUMENT_STATUS_CODE_DATA", + "RUN_RULE_ENGINE", + "READ_GRAD_AND_PEN_STUDENT_DATA", + "READ_GRAD_COURSE_REQUIREMENT_DATA", + "CREATE_SCHOOL_NON_GRADUATION", + "READ_SIGNATURE_IMAGE_BY_CODE", + "READ_SCHOOL", + "READ_EXAM_SPECIAL_CASE_CODE", + "READ_GRAD_CERTIFICATE_CODE_DATA", + "UPDATE_GRAD_PROGRAM_SETS_DATA", + "DELETE_GRAD_UNGRAD_CODE_DATA", + "READ_GRAD_MESSAGING_CODE_DATA", + "CREATE_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "CREATE_GRAD_ASSESSMENT_REQUIREMENT_DATA", + "DELETE_GRAD_BATCH_JOB_CODE_DATA", + "READ_GRAD_ALGORITHM_RULES_DATA", + "READ_GRAD_COUNTRY_CODE_DATA", + "UPDATE_GRAD_STUDENT_REPORT_DATA", + "READ_GRAD_SPECIAL_CASE_DATA", + "READ_GRAD_GRADUATION_STATUS", + "CREATE_STUDENT_NON_GRAD_REQ", + "CREATE_GRAD_STUDENT_NOTES_DATA", + "GET_GRADUATION_TRANSCRIPT", + "DELETE_GRAD_PROGRAM_CODE_DATA", + "DELETE_GRAD_STUDENT_STATUS_CODE_DATA", + "READ_GRAD_PROGRAM_CODE_DATA", + "LOAD_BATCH_DASHBOARD", + "READ_SIGNATURE_BLOCK_TYPE_CODE", + "UPDATE_GRAD_STUDENT_SPECIAL_DATA", + "READ_GRAD_STUDENT_UNGRAD_REASONS_DATA", + "CREATE_PACKING_SLIP", + "LOAD_STUDENT_IDS", + "CREATE_GRAD_STUDENT_UNGRAD_REASONS_DATA", + "READ_FINE_ART_APPLIED_SKILLS_CODE", + "GET_GRADUATION_DATA", + "DELETE_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_COURSE_DATA", + "DELETE_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "CREATE_STUDENT_TRANSCRIPT_REPORT", + "READ_GRAD_UNGRAD_CODE_DATA", + "CREATE_STUDENT_NON_GRAD", + "CREATE_GRAD_UNGRAD_CODE_DATA", + "READ_GRAD_STUDENT_DATA", + "READ_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "UPDATE_GRAD_BATCH_JOB_CODE_DATA", + "UPDATE_GRAD_PROGRAM_RULES_DATA", + "DELETE_GRAD_CERTIFICATE_CODE_DATA", + "CREATE_GRAD_PROGRAM_TYPE_CODE_DATA", + "READ_GRAD_ASSESSMENT_REQUIREMENT_DATA", + "CREATE_SCHOOL_DISTRIBUTION", + "CREATE_GRAD_PROGRAM_CODE_DATA", + "READ_GRAD_LETTER_GRADE_DATA", + "DELETE_GRAD_REPORT_CODE_DATA", + "READ_GRAD_TRAX_COURSE_DATA", + "READ_GRAD_ASSESSMENT_DATA", + "CREATE_STUDENT_CERTIFICATE", + "GET_GRADUATION_ACHIEVEMENT", + "READ_GRAD_STUDENT_STATUS_CODE_DATA", + "UPDATE_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "UPDATE_GRAD_COURSE_RESTRICTION_DATA", + "CREATE_GRAD_CAREER_PROGRAM_CODE_DATA", + "READ_GRAD_PROGRAM_TYPE_CODE_DATA", + "UPDATE_GRAD_STUDENT_CERTIFICATE_DATA", + "UPDATE_GRAD_PROGRAM_TYPE_CODE_DATA", + "CREATE_STUDENT_XML_TRANSCRIPT_REPORT", + "READ_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "READ_GRAD_PROVINCE_CODE_DATA", + "DELETE_GRAD_CAREER_PROGRAM_CODE_DATA", + "CREATE_STUDENT_ACHIEVEMENT_REPORT", + "READ_GRAD_STUDENT_REPORT_DATA", + "UPDATE_GRAD_UNGRAD_CODE_DATA", + "CREATE_SCHOOL_LABEL", + "GRAD_BUSINESS_R", + "DELETE_GRAD_PROGRAM_TYPE_CODE_DATA", + "READ_GRAD_STUDENT_ASSESSMENT_DATA", + "UPDATE_GRAD_REPORT_CODE_DATA", + "DELETE_GRAD_PROGRAM_RULES_DATA", + "READ_GRAD_TRANSCRIPT_CODE_DATA", + "READ_GRAD_STUDENT_CERTIFICATE_DATA", + "UPDATE_GRAD_STUDENT_NOTES_DATA", + "CREATE_SCHOOL_GRADUATION", + "DELETE_GRAD_STUDENT_DATA", + "READ_GRAD_HISTORY_ACTIVITY_CODE_DATA", + "UPDATE_GRAD_PROGRAM_CODE_DATA", + "READ_GRAD_PSI_DATA", + "UPDATE_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "CREATE_GRAD_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_SPECIAL_DATA", + "READ_GRAD_TRAX_STUDENT_DATA", + "READ_GRAD_STUDENT_CAREER_DATA", + "DELETE_GRAD_STUDENT_NOTES_DATA", + "READ_STUDENT", + "READ_GRAD_REPORT_CODE_DATA", + "CREATE_GRAD_CERTIFICATE_CODE_DATA", + "CREATE_OR_UPDATE_SIGNATURE_BLOCK_TYPE_CODE", + "READ_GRAD_BATCH_JOB_CODE_DATA", + "UPDATE_GRAD_CAREER_PROGRAM_CODE_DATA", + "UPDATE_GRAD_CERTIFICATE_CODE_DATA", + "CREATE_OR_UPDATE_SIGNATURE_IMAGE", + "READ_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "CREATE_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "READ_GRAD_COURSE_RESTRICTION_DATA", + "UPDATE_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "READ_EQUIVALENT_OR_CHALLENGE_CODE", + "READ_GRAD_COURSE_DATA", + "RUN_GRAD_ALGORITHM", + "GET_GRADUATION_CERTIFICATE", + "web-origins", + "DELETE_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "CREATE_GRAD_REPORT_CODE_DATA", + "CREATE_GRAD_BATCH_JOB_CODE_DATA", + "DELETE_GRAD_STUDENT_REPORTS", + "UPDATE_GRAD_STUDENT_STATUS_CODE_DATA" + ], + "optionalClientScopes": [ + "address", + "phone", + "offline_access", + "microprofile-jwt" + ], + "access": { + "view": true, + "configure": true, + "manage": true + } + }, + { + "clientId": "educ-grad-course-api-client", + "name": "", + "description": "", + "surrogateAuthRequired": false, + "enabled": true, + "alwaysDisplayInConsole": false, + "clientAuthenticatorType": "client-secret", + "redirectUris": [], + "webOrigins": [], + "notBefore": 0, + "bearerOnly": false, + "consentRequired": false, + "standardFlowEnabled": false, + "implicitFlowEnabled": false, + "directAccessGrantsEnabled": false, + "serviceAccountsEnabled": true, + "authorizationServicesEnabled": true, + "publicClient": false, + "frontchannelLogout": false, + "protocol": "openid-connect", + "attributes": { + "saml.assertion.signature": "false", + "saml.multivalued.roles": "false", + "saml.force.post.binding": "false", + "saml.encrypt": "false", + "saml.server.signature": "false", + "saml.server.signature.keyinfo.ext": "false", + "exclude.session.state.from.auth.response": "false", + "client_credentials.use_refresh_token": "false", + "saml_force_name_id_format": "false", + "saml.client.signature": "false", + "tls.client.certificate.bound.access.tokens": "false", + "saml.authnstatement": "false", + "display.on.consent.screen": "false", + "saml.onetimeuse.condition": "false" + }, + "authenticationFlowBindingOverrides": {}, + "fullScopeAllowed": true, + "nodeReRegistrationTimeout": -1, + "defaultClientScopes": [ + "CREATE_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_NOTES_DATA", + "UPDATE_GRAD_GRADUATION_STATUS", + "READ_GRAD_CAREER_PROGRAM_CODE_DATA", + "READ_GRAD_STUDENT_EXAM_DATA", + "READ_GRAD_SCHOOL_DATA", + "UPDATE_GRAD_TRAX_STUDENT_DATA", + "CREATE_GRAD_STUDENT_STATUS_CODE_DATA", + "WRITE_STUDENT", + "READ_GRAD_PROGRAM_RULES_DATA", + "READ_GRAD_DOCUMENT_STATUS_CODE_DATA", + "RUN_RULE_ENGINE", + "READ_GRAD_AND_PEN_STUDENT_DATA", + "READ_GRAD_COURSE_REQUIREMENT_DATA", + "CREATE_SCHOOL_NON_GRADUATION", + "READ_SIGNATURE_IMAGE_BY_CODE", + "READ_SCHOOL", + "READ_EXAM_SPECIAL_CASE_CODE", + "READ_GRAD_CERTIFICATE_CODE_DATA", + "UPDATE_GRAD_PROGRAM_SETS_DATA", + "DELETE_GRAD_UNGRAD_CODE_DATA", + "READ_GRAD_MESSAGING_CODE_DATA", + "CREATE_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "CREATE_GRAD_ASSESSMENT_REQUIREMENT_DATA", + "DELETE_GRAD_BATCH_JOB_CODE_DATA", + "READ_GRAD_ALGORITHM_RULES_DATA", + "READ_GRAD_COUNTRY_CODE_DATA", + "UPDATE_GRAD_STUDENT_REPORT_DATA", + "READ_GRAD_SPECIAL_CASE_DATA", + "READ_GRAD_GRADUATION_STATUS", + "CREATE_STUDENT_NON_GRAD_REQ", + "CREATE_GRAD_STUDENT_NOTES_DATA", + "GET_GRADUATION_TRANSCRIPT", + "DELETE_GRAD_PROGRAM_CODE_DATA", + "DELETE_GRAD_STUDENT_STATUS_CODE_DATA", + "READ_GRAD_PROGRAM_CODE_DATA", + "LOAD_BATCH_DASHBOARD", + "READ_SIGNATURE_BLOCK_TYPE_CODE", + "UPDATE_GRAD_STUDENT_SPECIAL_DATA", + "READ_GRAD_STUDENT_UNGRAD_REASONS_DATA", + "CREATE_PACKING_SLIP", + "LOAD_STUDENT_IDS", + "CREATE_GRAD_STUDENT_UNGRAD_REASONS_DATA", + "READ_FINE_ART_APPLIED_SKILLS_CODE", + "GET_GRADUATION_DATA", + "DELETE_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_COURSE_DATA", + "DELETE_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "CREATE_STUDENT_TRANSCRIPT_REPORT", + "READ_GRAD_UNGRAD_CODE_DATA", + "CREATE_STUDENT_NON_GRAD", + "CREATE_GRAD_UNGRAD_CODE_DATA", + "READ_GRAD_STUDENT_DATA", + "READ_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "UPDATE_GRAD_BATCH_JOB_CODE_DATA", + "UPDATE_GRAD_PROGRAM_RULES_DATA", + "DELETE_GRAD_CERTIFICATE_CODE_DATA", + "CREATE_GRAD_PROGRAM_TYPE_CODE_DATA", + "READ_GRAD_ASSESSMENT_REQUIREMENT_DATA", + "CREATE_SCHOOL_DISTRIBUTION", + "CREATE_GRAD_PROGRAM_CODE_DATA", + "READ_GRAD_LETTER_GRADE_DATA", + "DELETE_GRAD_REPORT_CODE_DATA", + "READ_GRAD_TRAX_COURSE_DATA", + "READ_GRAD_ASSESSMENT_DATA", + "CREATE_STUDENT_CERTIFICATE", + "GET_GRADUATION_ACHIEVEMENT", + "READ_GRAD_STUDENT_STATUS_CODE_DATA", + "UPDATE_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "UPDATE_GRAD_COURSE_RESTRICTION_DATA", + "CREATE_GRAD_CAREER_PROGRAM_CODE_DATA", + "READ_GRAD_PROGRAM_TYPE_CODE_DATA", + "UPDATE_GRAD_STUDENT_CERTIFICATE_DATA", + "UPDATE_GRAD_PROGRAM_TYPE_CODE_DATA", + "CREATE_STUDENT_XML_TRANSCRIPT_REPORT", + "READ_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "READ_GRAD_PROVINCE_CODE_DATA", + "DELETE_GRAD_CAREER_PROGRAM_CODE_DATA", + "CREATE_STUDENT_ACHIEVEMENT_REPORT", + "READ_GRAD_STUDENT_REPORT_DATA", + "UPDATE_GRAD_UNGRAD_CODE_DATA", + "CREATE_SCHOOL_LABEL", + "GRAD_BUSINESS_R", + "DELETE_GRAD_PROGRAM_TYPE_CODE_DATA", + "READ_GRAD_STUDENT_ASSESSMENT_DATA", + "UPDATE_GRAD_REPORT_CODE_DATA", + "DELETE_GRAD_PROGRAM_RULES_DATA", + "READ_GRAD_TRANSCRIPT_CODE_DATA", + "READ_GRAD_STUDENT_CERTIFICATE_DATA", + "UPDATE_GRAD_STUDENT_NOTES_DATA", + "CREATE_SCHOOL_GRADUATION", + "DELETE_GRAD_STUDENT_DATA", + "READ_GRAD_HISTORY_ACTIVITY_CODE_DATA", + "UPDATE_GRAD_PROGRAM_CODE_DATA", + "READ_GRAD_PSI_DATA", + "UPDATE_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "CREATE_GRAD_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_SPECIAL_DATA", + "READ_GRAD_TRAX_STUDENT_DATA", + "READ_GRAD_STUDENT_CAREER_DATA", + "DELETE_GRAD_STUDENT_NOTES_DATA", + "READ_STUDENT", + "READ_GRAD_REPORT_CODE_DATA", + "CREATE_GRAD_CERTIFICATE_CODE_DATA", + "CREATE_OR_UPDATE_SIGNATURE_BLOCK_TYPE_CODE", + "READ_GRAD_BATCH_JOB_CODE_DATA", + "UPDATE_GRAD_CAREER_PROGRAM_CODE_DATA", + "UPDATE_GRAD_CERTIFICATE_CODE_DATA", + "CREATE_OR_UPDATE_SIGNATURE_IMAGE", + "READ_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "CREATE_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "READ_GRAD_COURSE_RESTRICTION_DATA", + "UPDATE_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "READ_EQUIVALENT_OR_CHALLENGE_CODE", + "READ_GRAD_COURSE_DATA", + "RUN_GRAD_ALGORITHM", + "GET_GRADUATION_CERTIFICATE", + "web-origins", + "DELETE_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "CREATE_GRAD_REPORT_CODE_DATA", + "CREATE_GRAD_BATCH_JOB_CODE_DATA", + "DELETE_GRAD_STUDENT_REPORTS", + "UPDATE_GRAD_STUDENT_STATUS_CODE_DATA" + ], + "optionalClientScopes": [ + "address", + "phone", + "offline_access", + "microprofile-jwt" + ], + "access": { + "view": true, + "configure": true, + "manage": true + } + }, + { + "clientId": "educ-grad-batch-api-service", + "name": "", + "description": "", + "surrogateAuthRequired": false, + "enabled": true, + "alwaysDisplayInConsole": false, + "clientAuthenticatorType": "client-secret", + "redirectUris": [], + "webOrigins": [], + "notBefore": 0, + "bearerOnly": false, + "consentRequired": false, + "standardFlowEnabled": false, + "implicitFlowEnabled": false, + "directAccessGrantsEnabled": false, + "serviceAccountsEnabled": true, + "authorizationServicesEnabled": true, + "publicClient": false, + "frontchannelLogout": false, + "protocol": "openid-connect", + "attributes": { + "saml.assertion.signature": "false", + "saml.multivalued.roles": "false", + "saml.force.post.binding": "false", + "saml.encrypt": "false", + "saml.server.signature": "false", + "saml.server.signature.keyinfo.ext": "false", + "exclude.session.state.from.auth.response": "false", + "client_credentials.use_refresh_token": "false", + "saml_force_name_id_format": "false", + "saml.client.signature": "false", + "tls.client.certificate.bound.access.tokens": "false", + "saml.authnstatement": "false", + "display.on.consent.screen": "false", + "saml.onetimeuse.condition": "false" + }, + "authenticationFlowBindingOverrides": {}, + "fullScopeAllowed": true, + "nodeReRegistrationTimeout": -1, + "defaultClientScopes": [ + "CREATE_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_NOTES_DATA", + "UPDATE_GRAD_GRADUATION_STATUS", + "READ_GRAD_CAREER_PROGRAM_CODE_DATA", + "READ_GRAD_STUDENT_EXAM_DATA", + "READ_GRAD_SCHOOL_DATA", + "UPDATE_GRAD_TRAX_STUDENT_DATA", + "CREATE_GRAD_STUDENT_STATUS_CODE_DATA", + "WRITE_STUDENT", + "READ_GRAD_PROGRAM_RULES_DATA", + "READ_GRAD_DOCUMENT_STATUS_CODE_DATA", + "RUN_RULE_ENGINE", + "READ_GRAD_AND_PEN_STUDENT_DATA", + "READ_GRAD_COURSE_REQUIREMENT_DATA", + "CREATE_SCHOOL_NON_GRADUATION", + "READ_SIGNATURE_IMAGE_BY_CODE", + "READ_SCHOOL", + "RUN_ARCHIVE_SCHOOL_REPORTS", + "READ_EXAM_SPECIAL_CASE_CODE", + "READ_GRAD_CERTIFICATE_CODE_DATA", + "UPDATE_GRAD_PROGRAM_SETS_DATA", + "DELETE_GRAD_UNGRAD_CODE_DATA", + "READ_GRAD_MESSAGING_CODE_DATA", + "CREATE_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "CREATE_GRAD_ASSESSMENT_REQUIREMENT_DATA", + "DELETE_GRAD_BATCH_JOB_CODE_DATA", + "READ_GRAD_ALGORITHM_RULES_DATA", + "READ_GRAD_COUNTRY_CODE_DATA", + "UPDATE_GRAD_STUDENT_REPORT_DATA", + "READ_GRAD_SPECIAL_CASE_DATA", + "READ_GRAD_GRADUATION_STATUS", + "CREATE_STUDENT_NON_GRAD_REQ", + "CREATE_GRAD_STUDENT_NOTES_DATA", + "GET_GRADUATION_TRANSCRIPT", + "DELETE_GRAD_PROGRAM_CODE_DATA", + "DELETE_GRAD_STUDENT_STATUS_CODE_DATA", + "READ_GRAD_PROGRAM_CODE_DATA", + "LOAD_BATCH_DASHBOARD", + "READ_SIGNATURE_BLOCK_TYPE_CODE", + "UPDATE_GRAD_STUDENT_SPECIAL_DATA", + "READ_GRAD_STUDENT_UNGRAD_REASONS_DATA", + "CREATE_PACKING_SLIP", + "LOAD_STUDENT_IDS", + "CREATE_GRAD_STUDENT_UNGRAD_REASONS_DATA", + "READ_GRAD_STUDENT_GRADE_CODES", + "READ_FINE_ART_APPLIED_SKILLS_CODE", + "GET_GRADUATION_DATA", + "DELETE_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_COURSE_DATA", + "WRITE_EVENT_HISTORY", + "DELETE_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "CREATE_STUDENT_TRANSCRIPT_REPORT", + "READ_GRAD_UNGRAD_CODE_DATA", + "CREATE_STUDENT_NON_GRAD", + "CREATE_GRAD_UNGRAD_CODE_DATA", + "READ_GRAD_STUDENT_DATA", + "READ_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "UPDATE_GRAD_BATCH_JOB_CODE_DATA", + "UPDATE_GRAD_PROGRAM_RULES_DATA", + "DELETE_GRAD_CERTIFICATE_CODE_DATA", + "CREATE_GRAD_PROGRAM_TYPE_CODE_DATA", + "READ_GRAD_ASSESSMENT_REQUIREMENT_DATA", + "CREATE_SCHOOL_DISTRIBUTION", + "CREATE_GRAD_PROGRAM_CODE_DATA", + "READ_GRAD_LETTER_GRADE_DATA", + "DELETE_GRAD_REPORT_CODE_DATA", + "READ_GRAD_TRAX_COURSE_DATA", + "READ_GRAD_ASSESSMENT_DATA", + "CREATE_STUDENT_CERTIFICATE", + "GET_GRADUATION_ACHIEVEMENT", + "READ_GRAD_STUDENT_STATUS_CODE_DATA", + "UPDATE_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "UPDATE_GRAD_COURSE_RESTRICTION_DATA", + "RUN_DELETE_STUDENT_REPORTS", + "CREATE_GRAD_CAREER_PROGRAM_CODE_DATA", + "READ_GRAD_PROGRAM_TYPE_CODE_DATA", + "UPDATE_GRAD_STUDENT_CERTIFICATE_DATA", + "UPDATE_GRAD_PROGRAM_TYPE_CODE_DATA", + "CREATE_STUDENT_XML_TRANSCRIPT_REPORT", + "READ_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "READ_GRAD_PROVINCE_CODE_DATA", + "DELETE_GRAD_CAREER_PROGRAM_CODE_DATA", + "CREATE_STUDENT_ACHIEVEMENT_REPORT", + "READ_GRAD_STUDENT_REPORT_DATA", + "RUN_ARCHIVE_STUDENTS", + "UPDATE_GRAD_UNGRAD_CODE_DATA", + "CREATE_SCHOOL_LABEL", + "GRAD_BUSINESS_R", + "DELETE_GRAD_PROGRAM_TYPE_CODE_DATA", + "READ_GRAD_STUDENT_ASSESSMENT_DATA", + "UPDATE_GRAD_REPORT_CODE_DATA", + "DELETE_GRAD_PROGRAM_RULES_DATA", + "READ_GRAD_TRANSCRIPT_CODE_DATA", + "READ_GRAD_STUDENT_CERTIFICATE_DATA", + "UPDATE_GRAD_STUDENT_NOTES_DATA", + "CREATE_SCHOOL_GRADUATION", + "DELETE_GRAD_STUDENT_DATA", + "READ_GRAD_HISTORY_ACTIVITY_CODE_DATA", + "UPDATE_GRAD_PROGRAM_CODE_DATA", + "READ_GRAD_PSI_DATA", + "UPDATE_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "CREATE_GRAD_PROGRAM_RULES_DATA", + "READ_GRAD_STUDENT_SPECIAL_DATA", + "READ_GRAD_TRAX_STUDENT_DATA", + "READ_GRAD_STUDENT_CAREER_DATA", + "DELETE_GRAD_STUDENT_NOTES_DATA", + "READ_STUDENT", + "READ_GRAD_REPORT_CODE_DATA", + "ARCHIVE_GRADUATION_STUDENT_RECORD", + "CREATE_GRAD_CERTIFICATE_CODE_DATA", + "CREATE_OR_UPDATE_SIGNATURE_BLOCK_TYPE_CODE", + "READ_GRAD_BATCH_JOB_CODE_DATA", + "UPDATE_GRAD_CAREER_PROGRAM_CODE_DATA", + "UPDATE_GRAD_CERTIFICATE_CODE_DATA", + "CREATE_OR_UPDATE_SIGNATURE_IMAGE", + "READ_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "CREATE_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "READ_GRAD_COURSE_RESTRICTION_DATA", + "UPDATE_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "ARCHIVE_SCHOOL_REPORT", + "READ_EQUIVALENT_OR_CHALLENGE_CODE", + "READ_GRAD_COURSE_DATA", + "RUN_GRAD_ALGORITHM", + "GET_GRADUATION_CERTIFICATE", + "web-origins", + "DELETE_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "READ_EVENT_HISTORY", + "DELETE_STUDENT_REPORT", + "CREATE_GRAD_REPORT_CODE_DATA", + "CREATE_GRAD_BATCH_JOB_CODE_DATA", + "DELETE_GRAD_STUDENT_REPORTS", + "UPDATE_GRAD_STUDENT_STATUS_CODE_DATA" + ], + "optionalClientScopes": [ + "address", + "phone", + "offline_access", + "microprofile-jwt" + ], + "access": { + "view": true, + "configure": true, + "manage": true + } + }, + { + "clientId": "grad-business-api-client", + "name": "", + "description": "", + "rootUrl": "", + "adminUrl": "", + "baseUrl": "", + "surrogateAuthRequired": false, + "enabled": true, + "alwaysDisplayInConsole": false, + "clientAuthenticatorType": "client-secret", + "redirectUris": [], + "webOrigins": [], + "notBefore": 0, + "bearerOnly": false, + "consentRequired": false, + "standardFlowEnabled": false, + "implicitFlowEnabled": false, + "directAccessGrantsEnabled": false, + "serviceAccountsEnabled": true, + "authorizationServicesEnabled": true, + "publicClient": false, + "frontchannelLogout": false, + "protocol": "openid-connect", + "attributes": { + "saml.assertion.signature": "false", + "saml.multivalued.roles": "false", + "saml.force.post.binding": "false", + "saml.encrypt": "false", + "oauth2.device.authorization.grant.enabled": "false", + "saml.server.signature": "false", + "backchannel.logout.revoke.offline.tokens": "false", + "saml.server.signature.keyinfo.ext": "false", + "exclude.session.state.from.auth.response": "false", + "oidc.ciba.grant.enabled": "false", + "backchannel.logout.session.required": "true", + "client_credentials.use_refresh_token": "false", + "saml_force_name_id_format": "false", + "saml.client.signature": "false", + "tls.client.certificate.bound.access.tokens": "false", + "saml.authnstatement": "false", + "display.on.consent.screen": "false", + "saml.onetimeuse.condition": "false" + }, + "authenticationFlowBindingOverrides": {}, + "fullScopeAllowed": true, + "nodeReRegistrationTimeout": -1, + "defaultClientScopes": [ + "web-origins", + "READ_GRAD_LETTER_GRADE_DATA", + "READ_GRAD_GRADUATION_STATUS", + "READ_EQUIVALENT_OR_CHALLENGE_CODE", + "READ_GRAD_STUDENT_REPORT_DATA", + "READ_GRAD_SCHOOL_DATA" + ], + "optionalClientScopes": [ + "address", + "phone", + "offline_access", + "microprofile-jwt" + ], + "access": { + "view": true, + "configure": true, + "manage": true + } + }, + { + "clientId": "grad-admin-service", + "name": "grad-admin-service", + "description": "Service client for the GRAD NodeJS backend to make callouts to non-grad services ", + "rootUrl": "", + "adminUrl": "", + "baseUrl": "", + "surrogateAuthRequired": false, + "enabled": true, + "alwaysDisplayInConsole": false, + "clientAuthenticatorType": "client-secret", + "redirectUris": [], + "webOrigins": [], + "notBefore": 0, + "bearerOnly": false, + "consentRequired": false, + "standardFlowEnabled": false, + "implicitFlowEnabled": false, + "directAccessGrantsEnabled": false, + "serviceAccountsEnabled": true, + "authorizationServicesEnabled": true, + "publicClient": false, + "frontchannelLogout": false, + "protocol": "openid-connect", + "attributes": { + "oidc.ciba.grant.enabled": "false", + "client.secret.creation.time": "1736534233", + "backchannel.logout.session.required": "true", + "display.on.consent.screen": "false", + "oauth2.device.authorization.grant.enabled": "false", + "backchannel.logout.revoke.offline.tokens": "false" + }, + "authenticationFlowBindingOverrides": {}, + "fullScopeAllowed": true, + "nodeReRegistrationTimeout": -1, + "defaultClientScopes": [ + "web-origins", + "acr", + "READ_SCHOOL", + "READ_DISTRICT", + "READ_INSTITUTE_CODES" + ], + "optionalClientScopes": [ + "address", + "phone", + "offline_access", + "microprofile-jwt" + ], + "access": { + "view": true, + "configure": true, + "manage": true + } + } +] diff --git a/Keycloak/grad-client-scopes.lst b/Keycloak/grad-client-scopes.lst index c94b3b4..d41eaf5 100644 --- a/Keycloak/grad-client-scopes.lst +++ b/Keycloak/grad-client-scopes.lst @@ -1,97 +1,1155 @@ -READ_GRAD_STUDENT_NOTES_DATA -UPDATE_GRAD_GRADUATION_STATUS -READ_GRAD_CAREER_PROGRAM_CODE_DATA -READ_GRAD_STUDENT_EXAM_DATA -READ_GRAD_SCHOOL_DATA -CREATE_GRAD_STUDENT_STATUS_CODE_DATA -READ_GRAD_PROGRAM_RULES_DATA -READ_GRAD_DOCUMENT_STATUS_CODE_DATA -RUN_RULE_ENGINE -READ_GRAD_AND_PEN_STUDENT_DATA -READ_GRAD_COURSE_REQUIREMENT_DATA -READ_SIGNATURE_IMAGE_BY_CODE -READ_GRAD_CERTIFICATE_CODE_DATA -UPDATE_GRAD_PROGRAM_SETS_DATA -DELETE_GRAD_UNGRAD_CODE_DATA -READ_GRAD_MESSAGING_CODE_DATA -READ_GRAD_ALGORITHM_RULES_DATA -READ_GRAD_COUNTRY_CODE_DATA -UPDATE_GRAD_STUDENT_REPORT_DATA -READ_GRAD_SPECIAL_CASE_DATA -READ_GRAD_GRADUATION_STATUS -CREATE_GRAD_STUDENT_NOTES_DATA -DELETE_GRAD_PROGRAM_CODE_DATA -DELETE_GRAD_STUDENT_STATUS_CODE_DATA -READ_GRAD_PROGRAM_CODE_DATA -LOAD_BATCH_DASHBOARD -READ_SIGNATURE_BLOCK_TYPE_CODE -UPDATE_GRAD_STUDENT_SPECIAL_DATA -CREATE_PACKING_SLIP -LOAD_STUDENT_IDS -READ_GRAD_STUDENT_COURSE_DATA -CREATE_STUDENT_TRANSCRIPT_REPORT -READ_GRAD_UNGRAD_CODE_DATA -CREATE_GRAD_UNGRAD_CODE_DATA -READ_GRAD_STUDENT_DATA -READ_GRAD_REQUIREMENT_TYPE_CODE_DATA -UPDATE_GRAD_PROGRAM_RULES_DATA -DELETE_GRAD_CERTIFICATE_CODE_DATA -CREATE_GRAD_PROGRAM_TYPE_CODE_DATA -CREATE_SCHOOL_DISTRIBUTION -CREATE_GRAD_PROGRAM_CODE_DATA -READ_GRAD_LETTER_GRADE_DATA -DELETE_GRAD_REPORT_CODE_DATA -READ_GRAD_ASSESSMENT_DATA -CREATE_STUDENT_CERTIFICATE -READ_GRAD_STUDENT_STATUS_CODE_DATA -UPDATE_GRAD_COURSE_RESTRICTION_DATA -CREATE_GRAD_CAREER_PROGRAM_CODE_DATA -READ_GRAD_PROGRAM_TYPE_CODE_DATA -UPDATE_GRAD_STUDENT_CERTIFICATE_DATA -UPDATE_GRAD_PROGRAM_TYPE_CODE_DATA -CREATE_STUDENT_XML_TRANSCRIPT_REPORT -READ_GRAD_SPECIAL_PROGRAM_RULES_DATA -READ_GRAD_PROVINCE_CODE_DATA -DELETE_GRAD_CAREER_PROGRAM_CODE_DATA -CREATE_STUDENT_ACHIEVEMENT_REPORT -READ_GRAD_STUDENT_REPORT_DATA -UPDATE_GRAD_UNGRAD_CODE_DATA -DELETE_GRAD_PROGRAM_TYPE_CODE_DATA -READ_GRAD_STUDENT_ASSESSMENT_DATA -UPDATE_GRAD_REPORT_CODE_DATA -DELETE_GRAD_PROGRAM_RULES_DATA -READ_GRAD_TRANSCRIPT_CODE_DATA -READ_GRAD_STUDENT_CERTIFICATE_DATA -UPDATE_GRAD_STUDENT_NOTES_DATA -READ_GRAD_HISTORY_ACTIVITY_CODE_DATA -UPDATE_GRAD_PROGRAM_CODE_DATA -READ_GRAD_PSI_DATA -CREATE_GRAD_PROGRAM_RULES_DATA -READ_GRAD_STUDENT_SPECIAL_DATA -READ_GRAD_STUDENT_CAREER_DATA -DELETE_GRAD_STUDENT_NOTES_DATA -READ_GRAD_REPORT_CODE_DATA -CREATE_GRAD_CERTIFICATE_CODE_DATA -UPDATE_GRAD_CAREER_PROGRAM_CODE_DATA -UPDATE_GRAD_CERTIFICATE_CODE_DATA -CREATE_OR_UPDATE_SIGNATURE_IMAGE -READ_GRAD_SPECIAL_PROGRAM_CODE_DATA -READ_GRAD_COURSE_RESTRICTION_DATA -READ_GRAD_COURSE_DATA -RUN_GRAD_ALGORITHM -CREATE_GRAD_REPORT_CODE_DATA -UPDATE_GRAD_STUDENT_STATUS_CODE_DATA -CREATE_GRAD_SPECIAL_PROGRAM_RULES_DATA -CREATE_GRAD_SPECIAL_PROGRAM_CODE_DATA -CREATE_GRAD_ASSESSMENT_REQUIREMENT_DATA -READ_GRAD_STUDENT_UNGRAD_REASONS_DATA -CREATE_GRAD_STUDENT_UNGRAD_REASONS_DATA -DELETE_GRAD_SPECIAL_PROGRAM_RULES_DATA -DELETE_GRAD_REQUIREMENT_TYPE_CODE_DATA -READ_GRAD_ASSESSMENT_REQUIREMENT_DATA -UPDATE_GRAD_SPECIAL_PROGRAM_RULES_DATA -UPDATE_GRAD_SPECIAL_PROGRAM_CODE_DATA -CREATE_OR_UPDATE_SIGNATURE_BLOCK_TYPE_CODE -CREATE_GRAD_REQUIREMENT_TYPE_CODE_DATA -UPDATE_GRAD_REQUIREMENT_TYPE_CODE_DATA -DELETE_GRAD_SPECIAL_PROGRAM_CODE_DATA +[ + { + "name": "READ_GRAD_ALGORITHM_RULES_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_DISTRICT", + "description": "Read scope for district", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "false" + } + }, + { + "name": "READ_SCHOLARSHIPS_CODES", + "description": "Read Scholarships Codes", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "false" + } + }, + { + "name": "UPDATE_GRAD_TRAX_CACHE", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "false" + } + }, + { + "name": "READ_DISTRICT_NOTE", + "description": "Read scope for district address", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "false" + } + }, + { + "name": "READ_COLLECTION_CODES", + "description": "Read Student Data Collection Collection Codes", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "false" + } + }, + { + "name": "DELETE_GRAD_PROGRAM_TYPE_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_ASSESSMENT_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_GRAD_PROGRAM_TYPE_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "DELETE_GRAD_CAREER_PROGRAM_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_STUDENT", + "description": "Read scope for student", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "false" + } + }, + { + "name": "DELETE_GRAD_CAREER_PROGRAM_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_STUDENT_ASSESSMENT_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_AND_PEN_STUDENT_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_CAREER_PROGRAM_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_COUNTRY_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_COURSE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "DELETE_GRAD_STUDENT_REPORTS", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "UPDATE_GRAD_CAREER_PROGRAM_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_INSTITUTE_CODES", + "description": "READ_INSTITUTE_CODES", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "false" + } + }, + { + "name": "READ_INDEPENDENT_AUTHORITY", + "description": "Read scope for independent authority", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "false" + } + }, + { + "name": "READ_EDX_USERS", + "description": "Reading users in EDX", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "false" + } + }, + { + "name": "READ_GRAD_PSI_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_STUDENT_CERTIFICATE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_PROGRAM_TYPE_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "UPDATE_GRAD_PROGRAM_TYPE_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "DELETE_GRAD_CAREER_PROGRAM_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_STUDENT_ASSESSMENT_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_GRAD_CAREER_PROGRAM_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "UPDATE_GRAD_COURSE_RESTRICTION_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_STUDENT_EXAM_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_STUDENT_NON_GRAD_REQ", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "false" + } + }, + { + "name": "READ_GRAD_STUDENT_REPORT_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_STUDENT_UNGRAD_REASONS_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_SCHOOL", + "description": "Read scope for school", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "false" + } + }, + { + "name": "RUN_GRAD_ALGORITHM", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "UPDATE_GRAD_GRADUATION_STATUS", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "UPDATE_GRAD_PROGRAM_RULES_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "UPDATE_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_SIGNATURE_IMAGE_BY_CODE", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_HISTORY_ACTIVITY_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_GRAD_CERTIFICATE_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_GRAD_REPORT_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_GRAD_STUDENT_NOTES_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_GRAD_STUDENT_STATUS_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_GRAD_STUDENT_UNGRAD_REASONS_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_GRAD_UNGRAD_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_STUDENT_ACHIEVEMENT_REPORT", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "DELETE_GRAD_CERTIFICATE_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "DELETE_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "DELETE_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "DELETE_GRAD_STUDENT_STATUS_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_CERTIFICATE_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_COURSE_REQUIREMENT_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_GRADUATION_STATUS", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_MESSAGING_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_PROGRAM_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_PROGRAM_RULES_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_REPORT_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_SCHOOL_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_SPECIAL_PROGRAM_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_STUDENT_CAREER_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_STUDENT_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_STUDENT_NOTES_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_STUDENT_SPECIAL_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_UNGRAD_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_OR_UPDATE_SIGNATURE_BLOCK_TYPE_CODE", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_STUDENT_CERTIFICATE", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "DELETE_GRAD_PROGRAM_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "DELETE_GRAD_PROGRAM_RULES_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "DELETE_GRAD_REPORT_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "DELETE_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "DELETE_GRAD_STUDENT_NOTES_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "RUN_RULE_ENGINE", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "UPDATE_GRAD_PROGRAM_SETS_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "UPDATE_GRAD_REPORT_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "UPDATE_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "UPDATE_GRAD_STUDENT_CERTIFICATE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "UPDATE_GRAD_UNGRAD_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_SIGNATURE_BLOCK_TYPE_CODE", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_DOCUMENT_STATUS_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_PACKING_SLIP", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_ASSESSMENT_REQUIREMENT_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_COURSE_RESTRICTION_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_LETTER_GRADE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_PROVINCE_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_REQUIREMENT_TYPE_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_SPECIAL_CASE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_STUDENT_COURSE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "UPDATE_GRAD_BATCH_JOB_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_GRAD_BATCH_JOB_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "LOAD_BATCH_DASHBOARD", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_STUDENT_STATUS_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_TRANSCRIPT_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "UPDATE_GRAD_CERTIFICATE_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "UPDATE_GRAD_PROGRAM_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "UPDATE_GRAD_SPECIAL_PROGRAM_RULES_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "UPDATE_GRAD_STUDENT_NOTES_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "UPDATE_GRAD_STUDENT_REPORT_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "UPDATE_GRAD_STUDENT_SPECIAL_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "UPDATE_GRAD_STUDENT_STATUS_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_STUDENT_NON_GRAD", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_GRAD_PROGRAM_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_GRAD_PROGRAM_RULES_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_OR_UPDATE_SIGNATURE_IMAGE", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_STUDENT_TRANSCRIPT_REPORT", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "DELETE_GRAD_UNGRAD_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "LOAD_STUDENT_IDS", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_SCHOOL_DISTRIBUTION", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_STUDENT_XML_TRANSCRIPT_REPORT", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "GET_GRADUATION_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "GRAD_BUSINESS_R", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_GRAD_ASSESSMENT_REQUIREMENT_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "GET_GRADUATION_TRANSCRIPT", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "GET_GRADUATION_CERTIFICATE", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "GET_GRADUATION_ACHIEVEMENT", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_TRAX_STUDENT_DATA", + "description": "Permission to read TRAX Student related Data", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_TRAX_COURSE_DATA", + "description": "Permission to read TRAX Course related Data", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "UPDATE_GRAD_TRAX_STUDENT_DATA", + "description": "Permission to update Trax Student related tables such as TRAX_STUDENT_NO and STUDENT_MASTER.", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_SCHOOL_GRADUATION", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "false" + } + }, + { + "name": "READ_GRAD_BATCH_JOB_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_SCHOOL_NON_GRADUATION", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "false" + } + }, + { + "name": "DELETE_STUDENT_REPORT", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "CREATE_SCHOOL_LABEL", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "DELETE_GRAD_BATCH_JOB_CODE_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "RUN_DELETE_STUDENT_REPORTS", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_GRAD_STUDENT_GRADE_CODES", + "description": "", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "DELETE_GRAD_STUDENT_DATA", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_EQUIVALENT_OR_CHALLENGE_CODE", + "description": "Read scope for equivalent or challenge code", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_EXAM_SPECIAL_CASE_CODE", + "description": "Read scope for exam special case code", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "READ_FINE_ART_APPLIED_SKILLS_CODE", + "description": "Read scope for fine arts applied skills code", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "RUN_ARCHIVE_STUDENTS", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "ARCHIVE_GRADUATION_STUDENT_RECORD", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "RUN_ARCHIVE_SCHOOL_REPORTS", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "ARCHIVE_SCHOOL_REPORT", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "WRITE_EVENT_HISTORY", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + }, + { + "name": "WRITE_STUDENT", + "description": "Write scope for student", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "false" + } + }, + { + "name": "READ_EVENT_HISTORY", + "protocol": "openid-connect", + "attributes": { + "include.in.token.scope": "true", + "display.on.consent.screen": "true" + } + } +] diff --git a/Keycloak/grad-roles.dat b/Keycloak/grad-roles.dat index e24a10a..a5efe0b 100644 --- a/Keycloak/grad-roles.dat +++ b/Keycloak/grad-roles.dat @@ -1,3 +1,24 @@ -{"name": "GRAD_SYSTEM_COORDINATOR","description": "Role for GRAD System Coordinator. Has full access to GRAD","composite": false, "clientRole": false, "containerId": "master"} -{"name": "GRAD_PROGRAM_AREA_BA","description": "Role for GRAD Business Analyst","composite": false,"clientRole": false,"containerId": "master"} -{"name": "GRAD_INFO_OFFICER","description": "Role for GRAD Info Officer","composite": false,"clientRole": false,"containerId": "master"} +[ { + + "name": "GRAD_SYSTEM_COORDINATOR", + "composite": false, + "clientRole": false, + "containerId": "master" + }, + + { + + "name": "GRAD_PROGRAM_AREA_BA", + "composite": false, + "clientRole": false, + "containerId": "master" + }, + { + + "name": "GRAD_INFO_OFFICER", + "composite": false, + "clientRole": false, + "containerId": "master" + } + + ] diff --git a/Keycloak/update-kc.sh b/Keycloak/update-kc.sh new file mode 100644 index 0000000..496a1f6 --- /dev/null +++ b/Keycloak/update-kc.sh @@ -0,0 +1,108 @@ +# IAC script for KC update +# ENVS + +KC_BASE_URL=$1 +KC_PASSWORD=$2 +KC_USERNAME=$3 +KC_REALM_ID=$4 +SCRIPTS_PATH=$5 +KC_TOKEN_URL=$6 +TKN_FILE="/tmp/token.txt" +REFRESH_INTERVAL="30" + + + +curl -o roles.sh $SCRIPTS_PATH/grad-roles.dat +curl -o client_scopes.sh $SCRIPTS_PATH/grad-client-scopes.lst +curl -o clients.sh $SCRIPTS_PATH/clients.dat + +echo Fetching SOAM initial token +response=$(curl -s -w POST \ + -d "client_id=admin-cli" \ + -d "username=$KC_USERNAME" \ + -d "password=$KC_PASSWORD" \ + -d "grant_type=password" \ + "$KC_TOKEN_URL/$KC_REALM_ID/protocol/openid-connect/token") + TKN=$(echo "$response" | jq -r '.access_token') + REFRESH_TOKEN=$(echo "$response" | jq -r '.refresh_token') + echo "$TKN" > "$TKN_FILE" + + +echo starting refresh token loop +while true; do + response=$(curl -s -w POST \ + -d "client_id=admin-cli" \ + -d "grant_type=refresh_token" \ + -d "refresh_token=$REFRESH_TOKEN" \ + "$KC_TOKEN_URL/$KC_REALM_ID/protocol/openid-connect/token") + TKN=$(echo "$response" | jq -r '.access_token') + REFRESH_TOKEN=$(echo "$response" | jq -r '.refresh_token') + echo "$TKN" > "$TKN_FILE" + sleep "$REFRESH_INTERVAL" + done & + REFRESH_PID=$! + +#Create Roles +echo -e "CREATE Roles \n" +jq -c '.[]' roles.sh | while read -r role; do + result=$(curl -s -w "%{http_code}" -X POST "$KC_BASE_URL/$KC_REALM_ID/roles" \ + --header "Authorization: Bearer "$(cat "$TKN_FILE")" " \ + --header "Content-Type: application/json" \ + --data-raw "$role") + echo -e " Response create role : $result\n" +done + +#Create Scopes +echo -e "CREATE Scopes\n" +jq -c '.[]' client_scopes.sh | while read -r scope; do + result=$(curl -s -w "%{http_code}" -X POST "$KC_BASE_URL/$KC_REALM_ID/client-scopes" \ + --header "Authorization: Bearer "$(cat "$TKN_FILE")" " \ + --header "Content-Type: application/json" \ + --data-raw "$scope") + echo -e "Create scope Response : $result\n" +done + +#Create Clients +echo -e "CREATE Clients \n" +existing_clients="/tmp/existing_clients.json" +curl -s -X GET "$KC_BASE_URL/$KC_REALM_ID/clients" \ + -H "Content-Type: application/json" \ + -H "Authorization: Bearer "$(cat "$TKN_FILE")" " >"$existing_clients" + + +jq -c '.[]' clients.sh | while read -r client; do + +default_scopes=$(echo "$client" | jq -r '.defaultClientScopes[]') +clientId=$(echo "$client" | jq -r '.clientId') +CLIENT_UUID=$(curl -s -X GET "$KC_BASE_URL/$KC_REALM_ID/clients" \ + -H "Content-Type: application/json" \ + -H "Authorization: Bearer "$(cat "$TKN_FILE")" " \ + | jq '.[] | select(.clientId=="'"$clientId"'")' | jq -r '.id') +existing_scopes=$( jq -r '.[] | select(.clientId=="'"$clientId"'") |.defaultClientScopes[]' "$existing_clients") + +if [ -z "$CLIENT_UUID" ]; then + result=$(curl -s -w "%{http_code}" -X POST "$KC_BASE_URL/$KC_REALM_ID/clients" \ + --header "Authorization: Bearer "$(cat "$TKN_FILE")" " \ + --header "Content-Type: application/json" \ + --data-raw "$client") + clientId=$(echo "$client" | jq -r '.clientId') + echo -e " Response client "$clientId" create : $result\n" +else + echo "$default_scopes" | while read -r scope; do + if ! (echo "$existing_scopes" | grep -q "$scope"); then + SCOPE_UUID=$(curl -s -X GET "$KC_BASE_URL/$KC_REALM_ID/client-scopes" \ + -H "Content-Type: application/json" \ + -H "Authorization: Bearer "$(cat "$TKN_FILE")" " \ + | jq '.[] | select(.name=="'"$scope"'")' | jq -r '.id') + + result=$(curl -s -w "%{http_code}" -X PUT "$KC_BASE_URL/$KC_REALM_ID/clients/$CLIENT_UUID/default-client-scopes/$SCOPE_UUID" \ + --header "Authorization: Bearer "$(cat "$TKN_FILE")" " \ + --header "Content-Type: application/json" \ + ) + echo -e " Response client "$clientId" update scope "$scope" : $result\n" + + fi + done +fi +done +kill $REFRESH_PID