Realm
data class RealmKeystoreEcdsaGeneratedArgs(val active: Output<Boolean>? = null, val ellipticCurveKey: Output<String>? = null, val enabled: Output<Boolean>? = null, val name: Output<String>? = null, val priority: Output<Int>? = null, val realmId: Output<String>? = null) : ConvertibleToJava<RealmKeystoreEcdsaGeneratedArgs>
Allows for creating and managing acdsa_generated Realm keystores within Keycloak. A realm keystore manages generated key pairs that are used by Keycloak to perform cryptographic signatures and encryption.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as keycloak from "@pulumi/keycloak";
const realm = new keycloak.Realm("realm", {realm: "my-realm"});
const keystoreEcdsaGenerated = new keycloak.RealmKeystoreEcdsaGenerated("keystore_ecdsa_generated", {
name: "my-ecdsa-generated-key",
realmId: realm.id,
enabled: true,
active: true,
priority: 100,
ellipticCurveKey: "P-256",
});Content copied to clipboard
import pulumi
import pulumi_keycloak as keycloak
realm = keycloak.Realm("realm", realm="my-realm")
keystore_ecdsa_generated = keycloak.RealmKeystoreEcdsaGenerated("keystore_ecdsa_generated",
name="my-ecdsa-generated-key",
realm_id=realm.id,
enabled=True,
active=True,
priority=100,
elliptic_curve_key="P-256")Content copied to clipboard
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Keycloak = Pulumi.Keycloak;
return await Deployment.RunAsync(() =>
{
var realm = new Keycloak.Realm("realm", new()
{
RealmName = "my-realm",
});
var keystoreEcdsaGenerated = new Keycloak.RealmKeystoreEcdsaGenerated("keystore_ecdsa_generated", new()
{
Name = "my-ecdsa-generated-key",
RealmId = realm.Id,
Enabled = true,
Active = true,
Priority = 100,
EllipticCurveKey = "P-256",
});
});Content copied to clipboard
package main
import (
"github.com/pulumi/pulumi-keycloak/sdk/v6/go/keycloak"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
realm, err := keycloak.NewRealm(ctx, "realm", &keycloak.RealmArgs{
Realm: pulumi.String("my-realm"),
})
if err != nil {
return err
}
_, err = keycloak.NewRealmKeystoreEcdsaGenerated(ctx, "keystore_ecdsa_generated", &keycloak.RealmKeystoreEcdsaGeneratedArgs{
Name: pulumi.String("my-ecdsa-generated-key"),
RealmId: realm.ID(),
Enabled: pulumi.Bool(true),
Active: pulumi.Bool(true),
Priority: pulumi.Int(100),
EllipticCurveKey: pulumi.String("P-256"),
})
if err != nil {
return err
}
return nil
})
}Content copied to clipboard
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.keycloak.Realm;
import com.pulumi.keycloak.RealmArgs;
import com.pulumi.keycloak.RealmKeystoreEcdsaGenerated;
import com.pulumi.keycloak.RealmKeystoreEcdsaGeneratedArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var realm = new Realm("realm", RealmArgs.builder()
.realm("my-realm")
.build());
var keystoreEcdsaGenerated = new RealmKeystoreEcdsaGenerated("keystoreEcdsaGenerated", RealmKeystoreEcdsaGeneratedArgs.builder()
.name("my-ecdsa-generated-key")
.realmId(realm.id())
.enabled(true)
.active(true)
.priority(100)
.ellipticCurveKey("P-256")
.build());
}
}Content copied to clipboard
resources:
realm:
type: keycloak:Realm
properties:
realm: my-realm
keystoreEcdsaGenerated:
type: keycloak:RealmKeystoreEcdsaGenerated
name: keystore_ecdsa_generated
properties:
name: my-ecdsa-generated-key
realmId: ${realm.id}
enabled: true
active: true
priority: 100
ellipticCurveKey: P-256Content copied to clipboard
Import
Realm keys can be imported using realm name and keystore id, you can find it in web UI. Example: bash
$ pulumi import keycloak:index/realmKeystoreEcdsaGenerated:RealmKeystoreEcdsaGenerated keystore_ecdsa_generated my-realm/618cfba7-49aa-4c09-9a19-2f699b576f0bContent copied to clipboard