OIDC Client examples from docs don't work anymore

[thomasdarimont]

Describe the bug

The current example OIDC client configuration causes an error on terraform apply.

Version

26.3.4

Expected behavior

The example client configuration should just work.

Actual behavior

No response

How to Reproduce?

resource "keycloak_openid_client" "openid_client" {
  realm_id            = keycloak_realm.realm.id
  client_id           = "test-client"

  name                = "test client"
  enabled             = true

  access_type         = "CONFIDENTIAL"
  valid_redirect_uris = [
    "http://localhost:8080/openid-callback"
  ]

  login_theme = "keycloak"

  extra_config = {
    "key1" = "value1"
    "key2" = "value2"
  }
}

terraform apply yields:

keycloak_realm.test: Creating...
keycloak_realm.test: Creation complete after 1s [id=gh-1162]
keycloak_openid_client.openid_client: Creating...
╷
│ Error: valid_redirect_uris cannot be set when standard or implicit flow is not enabled
│
│   with keycloak_openid_client.openid_client,
│   on main.tf line 32, in resource "keycloak_openid_client" "openid_client":
│   32: resource "keycloak_openid_client" "openid_client" {
│
╵

The cause is that the example does not specify standard_flow_enabled = true. However, standard_flow_enabled is set to true by default in Keycloak when a new client is created.

Anything else?

We should update the documentation and fix the defaults for the OIDC client configuration.

[thomasdarimont]

I wonder what broke this example, any idea what caused this @sschu ?

[thomasdarimont]

The Example Usage with client_secret_wo is also missing the standard_flow_enabled = true setting.

[sschu]

Yeah, the documentation is definitely wrong as already reported here: #1287 I think it would be good to fix this before the next release...