From fff95d98a54205c69d9d824964d6e0c87b10e40a Mon Sep 17 00:00:00 2001
From: Danijel Simeunovic <danijel.simeunovic@fortedigital.com>
Date: Wed, 13 May 2026 23:15:28 +0200
Subject: [PATCH] remove protocol mappers

---
 infra/values/base/keycloak-values.yaml | 51 ++------------------------
 1 file changed, 3 insertions(+), 48 deletions(-)

diff --git a/infra/values/base/keycloak-values.yaml b/infra/values/base/keycloak-values.yaml
index 95dfc29..5e5432e 100644
--- a/infra/values/base/keycloak-values.yaml
+++ b/infra/values/base/keycloak-values.yaml
@@ -90,22 +90,7 @@ keycloakConfigCli:
               "k8s.secret.name": "gitea-oidc-credentials",
               "k8s.secret.client-id-key": "key",
               "k8s.secret.client-secret-key": "secret"
-            },
-            "protocolMappers": [
-              {
-                "name": "email_verified",
-                "protocol": "openid-connect",
-                "protocolMapper": "oidc-hardcoded-claim-mapper",
-                "config": {
-                  "claim.name": "email_verified",
-                  "claim.value": "true",
-                  "jsonType.label": "boolean",
-                  "id.token.claim": "true",
-                  "access.token.claim": "true",
-                  "userinfo.token.claim": "true"
-                }
-              }
-            ]
+            }
           },
           {
             "clientId": "grafana",
@@ -124,23 +109,7 @@ keycloakConfigCli:
               "k8s.secret.name": "grafana-oidc-credentials",
               "k8s.secret.client-id-key": "client-id",
               "k8s.secret.client-secret-key": "client-secret"
-            },
-            "protocolMappers": [
-              {
-                "name": "client-roles",
-                "protocol": "openid-connect",
-                "protocolMapper": "oidc-usermodel-client-role-mapper",
-                "config": {
-                  "claim.name": "resource_access.grafana.roles",
-                  "jsonType.label": "String",
-                  "multivalued": "true",
-                  "usermodel.clientRoleMapping.clientId": "grafana",
-                  "id.token.claim": "true",
-                  "access.token.claim": "true",
-                  "userinfo.token.claim": "true"
-                }
-              }
-            ]
+            }
           },
           {
             "clientId": "argocd",
@@ -159,21 +128,7 @@ keycloakConfigCli:
               "k8s.secret.name": "argocd-oidc-credentials",
               "k8s.secret.client-id-key": "client-id",
               "k8s.secret.client-secret-key": "client-secret"
-            },
-            "protocolMappers": [
-              {
-                "name": "groups",
-                "protocol": "openid-connect",
-                "protocolMapper": "oidc-group-membership-mapper",
-                "config": {
-                  "claim.name": "groups",
-                  "full.path": "false",
-                  "id.token.claim": "true",
-                  "access.token.claim": "true",
-                  "userinfo.token.claim": "true"
-                }
-              }
-            ]
+            }
           }
         ],
         "groups": [