baschno/buun-stack
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(keycloak): support direct access grant

Browse Source
This commit is contained in:
Masaki Yatsu
2025-09-18 23:21:31 +09:00
parent b5a73d5428
commit d1eef065a4
2 changed files with 19 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
keycloak/scripts/create-client.ts
View File

@@ -26,6 +26,7 @@ const main = async () => {
const sessionIdle = process.env.KEYCLOAK_CLIENT_SESSION_IDLE;
const sessionMax = process.env.KEYCLOAK_CLIENT_SESSION_MAX;
const directAccessGrants = process.env.KEYCLOAK_CLIENT_DIRECT_ACCESS_GRANTS;
const kcAdminClient = new KcAdminClient({
baseUrl: `https://${keycloakHost}`,
@@ -55,6 +56,7 @@ const main = async () => {
enabled: true,
redirectUris: redirectUris,
publicClient: clientSecret && clientSecret !== '' ? false : true,
directAccessGrantsEnabled: directAccessGrants === 'true',
};
// Add session timeout settings if provided
@@ -70,6 +72,10 @@ const main = async () => {
console.log(`Setting Client Session Max Lifespan: ${sessionMax}`);
}
if (directAccessGrants === 'true') {
console.log('Enabling Direct Access Grants (Resource Owner Password Credentials)');
}
const createdClient = await kcAdminClient.clients.create(clientConfig);
console.log(`Client created successfully with ID: ${createdClient.id}`);
} catch (error) {