- Open your Keycloak realm.
- Import
keycloak-gitlab.json. - Fix URLs of the client.
gschueler
/ basic-app.json
Last active
November 5, 2020 18:46
Basic Rundeck aclpolicy, allows access to one project for one group
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "description": "MyGroup allowed access to MyProject only", | |
| "context": { | |
| "application": "rundeck" | |
| }, | |
| "for": { | |
| "project": [ | |
| { | |
| "match": { | |
| "name": "MyProject" |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| export TKN=$(curl -X POST 'http://localhost:8080/auth/realms/master/protocol/openid-connect/token' \ | |
| -H "Content-Type: application/x-www-form-urlencoded" \ | |
| -d "username=admin" \ | |
| -d 'password=admin' \ | |
| -d 'grant_type=password' \ | |
| -d 'client_id=admin-cli' | jq -r '.access_token') | |
| curl -X GET 'http://localhost:8080/auth/admin/realms' \ |
pkirkovsky
/ yubikey-reset.sh
Last active
February 28, 2025 10:02
Utility for resetting a Yubikey to factory defaults using gpg-connect-agent. This will wipe out any stored keys and reset PINs to default values.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Adapted from https://developers.yubico.com/ykneo-openpgp/ResetApplet.html | |
| gpg-connect-agent <<EOF | |
| /hex | |
| scd serialno | |
| scd apdu 00 20 00 81 08 40 40 40 40 40 40 40 40 | |
| scd apdu 00 20 00 81 08 40 40 40 40 40 40 40 40 | |
| scd apdu 00 20 00 81 08 40 40 40 40 40 40 40 40 | |
| scd apdu 00 20 00 81 08 40 40 40 40 40 40 40 40 | |
| scd apdu 00 20 00 83 08 40 40 40 40 40 40 40 40 | |
| scd apdu 00 20 00 83 08 40 40 40 40 40 40 40 40 |
v-dimitrov
/ LG G6 Debloat List (SAFE, no root, no functionality lost)
Last active
February 21, 2024 15:53
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| pm uninstall -k --user 0 com.google.android.apps.tachyon && | |
| pm uninstall -k --user 0 com.google.android.music && | |
| pm uninstall -k --user 0 com.google.android.apps.docs.editors.sheets && | |
| pm uninstall -k --user 0 com.google.android.apps.docs.editors.slides && | |
| pm uninstall -k --user 0 com.google.android.apps.docs.editors.docs && | |
| pm uninstall -k --user 0 com.google.android.videos && | |
| pm uninstall -k --user 0 com.android.gallery3d && | |
| pm uninstall -k --user 0 com.android.calendar && | |
| pm uninstall -k --user 0 com.evernote && | |
| pm uninstall -k --user 0 com.evernote.promohelper && |
drmalex07
/ README-fail2ban-keycloak.md
Last active
July 29, 2024 21:25
Use fail2ban to block brute-force attacks to keycloak server. #keycloak #fail2ban #brute-force-attack
Add regular-expression filter under /etc/fail2ban/filter.d/keycloak.conf:
[INCLUDES]
before = common.conf
[Definition]
_threadName = [a-z][-_0-9a-z]*(\s[a-z][-_0-9a-z]*)*
_userId = (null|[0-9a-fA-F]{8}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{12})