Package org.keycloak.services.clientpolicy.executor
package org.keycloak.services.clientpolicy.executor
-
ClassDescriptionThis executor specifies what action is executed on the client to which a client policy is adopted.Factory that enforces the grant to only use scopes that are already present in the initial assertion.Check that switch "fullScopeAllowed" is not enabled for the clientsCheck that switch "fullScopeAllowed" is not enabled for the clientsExecutor factory for SAML client that ensures REDIRECT is not used for responses and forces POST binding configuration option in the client creation/update.Executor factory that enforces that all URLs configured in a SAML client are secure (https).Policy executor that enforces client and server (full document or assertion) signature is ON.