From 1d8b7dae90ba4be0a89504e81da1491a9f48721b Mon Sep 17 00:00:00 2001
From: Sven Ketelsen <sven.ketelsen@netgo.de>
Date: Wed, 12 Jan 2022 19:43:30 +0100
Subject: [PATCH] bugfix: added group mapper to default keycloak client config

---
 .../templates/keycloak-realm-create-client.json.j2  | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/roles/keycloak/templates/keycloak-realm-create-client.json.j2 b/roles/keycloak/templates/keycloak-realm-create-client.json.j2
index b815645..8ce27a8 100644
--- a/roles/keycloak/templates/keycloak-realm-create-client.json.j2
+++ b/roles/keycloak/templates/keycloak-realm-create-client.json.j2
@@ -50,6 +50,19 @@
         "access.token.claim": "true",
         "userinfo.token.claim": "true"
       }
+    },
+    {
+      "name": "groups",
+      "protocol": "openid-connect",
+      "protocolMapper": "oidc-group-membership-mapper",
+      "consentRequired": false,
+      "config": {
+        "full.path": "true",
+        "id.token.claim": "true",
+        "access.token.claim": "true",
+        "claim.name": "groups",
+        "userinfo.token.claim": "true"
+      }
     }
   ],
   "publicClient": false,