pulumi-keycloak-kotlin/com.pulumi.keycloak.saml.kotlin/ClientArgs

ClientArgs

data class ClientArgs(val assertionConsumerPostUrl: Output<String>? = null, val assertionConsumerRedirectUrl: Output<String>? = null, val authenticationFlowBindingOverrides: Output<ClientAuthenticationFlowBindingOverridesArgs>? = null, val baseUrl: Output<String>? = null, val canonicalizationMethod: Output<String>? = null, val clientId: Output<String>? = null, val clientSignatureRequired: Output<Boolean>? = null, val description: Output<String>? = null, val enabled: Output<Boolean>? = null, val encryptAssertions: Output<Boolean>? = null, val encryptionCertificate: Output<String>? = null, val extraConfig: Output<Map<String, Any>>? = null, val forceNameIdFormat: Output<Boolean>? = null, val forcePostBinding: Output<Boolean>? = null, val frontChannelLogout: Output<Boolean>? = null, val fullScopeAllowed: Output<Boolean>? = null, val idpInitiatedSsoRelayState: Output<String>? = null, val idpInitiatedSsoUrlName: Output<String>? = null, val includeAuthnStatement: Output<Boolean>? = null, val loginTheme: Output<String>? = null, val logoutServicePostBindingUrl: Output<String>? = null, val logoutServiceRedirectBindingUrl: Output<String>? = null, val masterSamlProcessingUrl: Output<String>? = null, val name: Output<String>? = null, val nameIdFormat: Output<String>? = null, val realmId: Output<String>? = null, val rootUrl: Output<String>? = null, val signAssertions: Output<Boolean>? = null, val signDocuments: Output<Boolean>? = null, val signatureAlgorithm: Output<String>? = null, val signatureKeyName: Output<String>? = null, val signingCertificate: Output<String>? = null, val signingPrivateKey: Output<String>? = null, val validRedirectUris: Output<List<String>>? = null) : ConvertibleToJava<ClientArgs>

# keycloak.saml.Client

Allows for creating and managing Keycloak clients that use the SAML protocol. Clients are entities that can use Keycloak for user authentication. Typically, clients are applications that redirect users to Keycloak for authentication in order to take advantage of Keycloak's user sessions for SSO.

Import

Clients can be imported using the format {{realm_id}}/{{client_keycloak_id}}, where client_keycloak_id is the unique ID that Keycloak assigns to the client upon creation. This value can be found in the URI when editing this client in the GUI, and is typically a GUID. Example:

$ terraform import keycloak_saml_client.saml_client my-realm/dcbc4c73-e478-4928-ae2e-d5e420223352

Constructors

ClientArgs

constructor(assertionConsumerPostUrl: Output<String>? = null, assertionConsumerRedirectUrl: Output<String>? = null, authenticationFlowBindingOverrides: Output<ClientAuthenticationFlowBindingOverridesArgs>? = null, baseUrl: Output<String>? = null, canonicalizationMethod: Output<String>? = null, clientId: Output<String>? = null, clientSignatureRequired: Output<Boolean>? = null, description: Output<String>? = null, enabled: Output<Boolean>? = null, encryptAssertions: Output<Boolean>? = null, encryptionCertificate: Output<String>? = null, extraConfig: Output<Map<String, Any>>? = null, forceNameIdFormat: Output<Boolean>? = null, forcePostBinding: Output<Boolean>? = null, frontChannelLogout: Output<Boolean>? = null, fullScopeAllowed: Output<Boolean>? = null, idpInitiatedSsoRelayState: Output<String>? = null, idpInitiatedSsoUrlName: Output<String>? = null, includeAuthnStatement: Output<Boolean>? = null, loginTheme: Output<String>? = null, logoutServicePostBindingUrl: Output<String>? = null, logoutServiceRedirectBindingUrl: Output<String>? = null, masterSamlProcessingUrl: Output<String>? = null, name: Output<String>? = null, nameIdFormat: Output<String>? = null, realmId: Output<String>? = null, rootUrl: Output<String>? = null, signAssertions: Output<Boolean>? = null, signDocuments: Output<Boolean>? = null, signatureAlgorithm: Output<String>? = null, signatureKeyName: Output<String>? = null, signingCertificate: Output<String>? = null, signingPrivateKey: Output<String>? = null, validRedirectUris: Output<List<String>>? = null)