agtic/keycloak_theme
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Prevent exposing too much information in the kcContext.realm of the single page account UI

Browse Source
This commit is contained in:
Joseph Garrone 2024-07-28 20:01:11 +02:00
parent fcdbb04ea6
commit 4ac14dc074
1 changed files with 12 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
src/bin/keycloakify/generateFtl/kcContextDeclarationTemplate.ftl
View File

@ -208,6 +208,18 @@ function decodeHtmlEntities(htmlStr){
) || ( ) || (
key == "attributes" && key == "attributes" &&
areSamePath(path, ["realm"]) areSamePath(path, ["realm"])
) || (
xKeycloakify.pageId == "index.ftl" &&
xKeycloakify.themeType == "account" &&
areSamePath(path, ["realm"]) &&
![
"name",
"registrationEmailAsUsername",
"editUsernameAllowed",
"isInternationalizationEnabled",
"identityFederationEnabled",
"userManagedAccessAllowed"
]?seq_contains(key)
) )
> >
<#-- <#local outSeq += ["/*" + path?join(".") + "." + key + " excluded*/"]> --> <#-- <#local outSeq += ["/*" + path?join(".") + "." + key + " excluded*/"]> -->