From 4ac14dc074a84d894147e9e3131786536417fb44 Mon Sep 17 00:00:00 2001
From: Joseph Garrone <joseph.garrone.gj@gmail.com>
Date: Sun, 28 Jul 2024 20:01:11 +0200
Subject: [PATCH] Prevent exposing too much information in the kcContext.realm
 of the single page account UI

---
 .../generateFtl/kcContextDeclarationTemplate.ftl     | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/src/bin/keycloakify/generateFtl/kcContextDeclarationTemplate.ftl b/src/bin/keycloakify/generateFtl/kcContextDeclarationTemplate.ftl
index b2484948..51881ee4 100644
--- a/src/bin/keycloakify/generateFtl/kcContextDeclarationTemplate.ftl
+++ b/src/bin/keycloakify/generateFtl/kcContextDeclarationTemplate.ftl
@@ -208,6 +208,18 @@ function decodeHtmlEntities(htmlStr){
                 ) || (
                     key == "attributes" &&
                     areSamePath(path, ["realm"])
+                ) || (
+                    xKeycloakify.pageId == "index.ftl" &&
+                    xKeycloakify.themeType == "account" &&
+                    areSamePath(path, ["realm"]) &&
+                    ![ 
+                        "name",
+                        "registrationEmailAsUsername",
+                        "editUsernameAllowed",
+                        "isInternationalizationEnabled",
+                        "identityFederationEnabled",
+                        "userManagedAccessAllowed"
+                    ]?seq_contains(key)
                 )
             >
                 <#-- <#local outSeq += ["/*" + path?join(".") + "." + key + " excluded*/"]> -->