Chapter 5. Profiles
Red Hat Single Sign-On has two profiles, product and preview. The product profile is enabled by default, which disables some tech preview features. To enable the features you can either switch to the preview profile or enable individual features.
To enable the preview profile start the server with:
bin/standalone.sh|bat -Dkeycloak.profile=preview
You can set this permanently by creating the file standalone/configuration/profile.properties (or domain/servers/server-one/configuration/profile.properties for server-one in domain mode). Add the following to the file:
profile=preview
The features that can be enabled and disabled are:
- Authorization - authorization services
- Impersonation - ability for admins to impersonate users
- Script - write custom authenticators using JavaScript
The product profile disables authorization and script.
To disable a specific feature start the server with:
bin/standalone.sh|bat -Dkeycloak.profile.feature.<feature name>=disabled
For example to disable Impersonation use -Dkeycloak.profile.feature.impersonation=disabled.
You can set this permanently in the profile.properties file by adding:
feature.impersonation=disabled
To enable a specific feature without enabling the full preview profile you can start the server with:
bin/standalone.sh|bat -Dkeycloak.profile.feature.<feature name>=enabled`
For example to enable Authorization Services use -Dkeycloak.profile.feature.authorization=enabled.
You can set this permanently in the profile.properties file by adding:
feature.authorization=enabled
Where did the comment section go?
Red Hat's documentation publication system recently went through an upgrade to enable speedier, more mobile-friendly content. We decided to re-evaluate our commenting platform to ensure that it meets your expectations and serves as an optimal feedback mechanism. During this redesign, we invite your input on providing feedback on Red Hat documentation via the discussion platform.