feat: Add three missing Keycloak 26.x WebAuthn realm fields: (#628)

Author: chris-sanders

README.md

@@ -73,11 +73,14 @@ spec:
     webAuthnPolicyAuthenticatorAttachment: not specified
     webAuthnPolicyAvoidSameAuthenticatorRegister: false
     webAuthnPolicyCreateTimeout: 0
+    webAuthnPolicyExtraOrigins: []
     webAuthnPolicyPasswordlessAcceptableAaguids: []
     webAuthnPolicyPasswordlessAttestationConveyancePreference: not specified
     webAuthnPolicyPasswordlessAuthenticatorAttachment: not specified
     webAuthnPolicyPasswordlessAvoidSameAuthenticatorRegister: false
     webAuthnPolicyPasswordlessCreateTimeout: 0
+    webAuthnPolicyPasswordlessExtraOrigins: []
+    webAuthnPolicyPasswordlessPasskeysEnabled: false
     webAuthnPolicyPasswordlessRequireResidentKey: not specified
     webAuthnPolicyPasswordlessRpId: ""
     webAuthnPolicyPasswordlessSignatureAlgorithms:

api/v1beta1/keycloakrealm_types.go

@@ -466,11 +466,14 @@ type KeycloakAPIRealm struct {
 	WebAuthnPolicyAuthenticatorAttachment                     string   `json:"webAuthnPolicyAuthenticatorAttachment,omitempty"`
 	WebAuthnPolicyAvoidSameAuthenticatorRegister              *bool    `json:"webAuthnPolicyAvoidSameAuthenticatorRegister,omitempty"`
 	WebAuthnPolicyCreateTimeout                               int32    `json:"webAuthnPolicyCreateTimeout,omitempty"`
+	WebAuthnPolicyExtraOrigins                                []string `json:"webAuthnPolicyExtraOrigins,omitempty"`
 	WebAuthnPolicyPasswordlessAcceptableAaguids               []string `json:"webAuthnPolicyPasswordlessAcceptableAaguids,omitempty"`
 	WebAuthnPolicyPasswordlessAttestationConveyancePreference string   `json:"webAuthnPolicyPasswordlessAttestationConveyancePreference,omitempty"`
 	WebAuthnPolicyPasswordlessAuthenticatorAttachment         string   `json:"webAuthnPolicyPasswordlessAuthenticatorAttachment,omitempty"`
 	WebAuthnPolicyPasswordlessAvoidSameAuthenticatorRegister  *bool    `json:"webAuthnPolicyPasswordlessAvoidSameAuthenticatorRegister,omitempty"`
 	WebAuthnPolicyPasswordlessCreateTimeout                   int32    `json:"webAuthnPolicyPasswordlessCreateTimeout,omitempty"`
+	WebAuthnPolicyPasswordlessExtraOrigins                    []string `json:"webAuthnPolicyPasswordlessExtraOrigins,omitempty"`
+	WebAuthnPolicyPasswordlessPasskeysEnabled                 *bool    `json:"webAuthnPolicyPasswordlessPasskeysEnabled,omitempty"`
 	WebAuthnPolicyPasswordlessRequireResidentKey              string   `json:"webAuthnPolicyPasswordlessRequireResidentKey,omitempty"`
 	WebAuthnPolicyPasswordlessRpEntityName                    string   `json:"webAuthnPolicyPasswordlessRpEntityName,omitempty"`
 	WebAuthnPolicyPasswordlessRpId                            string   `json:"webAuthnPolicyPasswordlessRpId,omitempty"`

api/v1beta1/zz_generated.deepcopy.go

@@ -1521,6 +1521,10 @@ spec:
                   webAuthnPolicyCreateTimeout:
                     format: int32
                     type: integer
+                  webAuthnPolicyExtraOrigins:
+                    items:
+                      type: string
+                    type: array
                   webAuthnPolicyPasswordlessAcceptableAaguids:
                     items:
                       type: string
@@ -1534,6 +1538,12 @@ spec:
                   webAuthnPolicyPasswordlessCreateTimeout:
                     format: int32
                     type: integer
+                  webAuthnPolicyPasswordlessExtraOrigins:
+                    items:
+                      type: string
+                    type: array
+                  webAuthnPolicyPasswordlessPasskeysEnabled:
+                    type: boolean
                   webAuthnPolicyPasswordlessRequireResidentKey:
                     type: string
                   webAuthnPolicyPasswordlessRpEntityName:

chart/keycloak-controller/crds/keycloak.infra.doodle.com_keycloakrealms.yaml

@@ -1521,6 +1521,10 @@ spec:
                   webAuthnPolicyCreateTimeout:
                     format: int32
                     type: integer
+                  webAuthnPolicyExtraOrigins:
+                    items:
+                      type: string
+                    type: array
                   webAuthnPolicyPasswordlessAcceptableAaguids:
                     items:
                       type: string
@@ -1534,6 +1538,12 @@ spec:
                   webAuthnPolicyPasswordlessCreateTimeout:
                     format: int32
                     type: integer
+                  webAuthnPolicyPasswordlessExtraOrigins:
+                    items:
+                      type: string
+                    type: array
+                  webAuthnPolicyPasswordlessPasskeysEnabled:
+                    type: boolean
                   webAuthnPolicyPasswordlessRequireResidentKey:
                     type: string
                   webAuthnPolicyPasswordlessRpEntityName:

config/base/crd/bases/keycloak.infra.doodle.com_keycloakrealms.yaml

@@ -37,11 +37,14 @@ spec:
     webAuthnPolicyAuthenticatorAttachment: not specified
     webAuthnPolicyAvoidSameAuthenticatorRegister: false
     webAuthnPolicyCreateTimeout: 0
+    webAuthnPolicyExtraOrigins: []
     webAuthnPolicyPasswordlessAcceptableAaguids: []
     webAuthnPolicyPasswordlessAttestationConveyancePreference: not specified
     webAuthnPolicyPasswordlessAuthenticatorAttachment: not specified
     webAuthnPolicyPasswordlessAvoidSameAuthenticatorRegister: false
     webAuthnPolicyPasswordlessCreateTimeout: 0
+    webAuthnPolicyPasswordlessExtraOrigins: []
+    webAuthnPolicyPasswordlessPasskeysEnabled: false
     webAuthnPolicyPasswordlessRequireResidentKey: not specified
     webAuthnPolicyPasswordlessRpId: ""
     webAuthnPolicyPasswordlessSignatureAlgorithms: