Client scope / Include in token scope attribute (#339)

* add include.in.token.scope client scope attribute * add reference for include_in_token_scope * remove default value to keep default value from keycloak
treydock · Feb 20, 2025 · eb4d42f · eb4d42f
1 parent 149c85b
commit eb4d42f
Show file tree

Hide file tree

Showing 4 changed files with 18 additions and 1 deletion.
diff --git a/REFERENCE.md b/REFERENCE.md
@@ -1943,6 +1943,14 @@ display.on.consent.screen
 
 Default value: `true`
 
+##### `include_in_token_scope`
+
+Valid values: ``true``, ``false``
+
+include.in.token.scope
+
+Default value: `true`
+
 ##### `ensure`
 
 Valid values: `present`, `absent`

diff --git a/lib/puppet/provider/keycloak_client_scope/kcadm.rb b/lib/puppet/provider/keycloak_client_scope/kcadm.rb
@@ -30,6 +30,7 @@ def self.instances
         attributes = d['attributes'] || {}
         client_scope[:consent_screen_text] = attributes['consent.screen.text']
         client_scope[:display_on_consent_screen] = attributes['display.on.consent.screen']
+        client_scope[:include_in_token_scope] = attributes['include.in.token.scope']
         client_scopes << new(client_scope)
       end
     end
@@ -56,6 +57,7 @@ def create
     attributes = {}
     attributes['consent.screen.text'] = resource[:consent_screen_text]
     attributes['display.on.consent.screen'] = resource[:display_on_consent_screen]
+    attributes['include.in.token.scope'] = resource[:include_in_token_scope]
     data[:attributes] = attributes
 
     t = Tempfile.new('keycloak_client_scope')
@@ -107,6 +109,7 @@ def flush
       attributes = {}
       attributes['consent.screen.text'] = @property_flush[:consent_screen_text] if @property_flush[:consent_screen_text]
       attributes['display.on.consent.screen'] = @property_flush[:display_on_consent_screen] if @property_flush[:display_on_consent_screen]
+      attributes['include.in.token.scope'] = @property_flush[:include_in_token_scope] if @property_flush[:include_in_token_scope]
       data[:attributes] = attributes if attributes
 
       t = Tempfile.new('keycloak_client_scope')

diff --git a/lib/puppet/type/keycloak_client_scope.rb b/lib/puppet/type/keycloak_client_scope.rb
@@ -56,6 +56,11 @@
     defaultto :true
   end
 
+  newproperty(:include_in_token_scope, boolean: true) do
+    desc 'include.in.token.scope'
+    newvalues(:true, :false)
+  end
+
   def self.title_patterns
     [
       [

diff --git a/spec/unit/puppet/type/keycloak_client_scope_spec.rb b/spec/unit/puppet/type/keycloak_client_scope_spec.rb
@@ -72,7 +72,8 @@
 
   # Test boolean properties
   [
-    :display_on_consent_screen
+    :display_on_consent_screen,
+    :include_in_token_scope
   ].each do |p|
     it "accepts true for #{p}" do
       config[p] = true