Support for client profiles and policies

[TBeijen]

It looks like the provider does not support 'client profiles' and 'client policies', as can be found under realm settings.

• Is this correct?
• If so, what would it take to support this?

Relevant parts of REST API:

• https://www.keycloak.org/docs-api/22.0.4/rest-api/index.html#_get_adminrealmsrealmclient_policiespolicies
• https://www.keycloak.org/docs-api/22.0.4/rest-api/index.html#_get_adminrealmsrealmclient_policiesprofiles

JSON fragment from export realm:

  "clientPolicies": {
    "policies": [
      {
        "name": "Client secret rotation",
        "enabled": true,
        "conditions": [
          {
            "condition": "client-roles",
            "configuration": {
              "is-negative-logic": "true",
              "roles": [
                "no-rotation"
              ]
            }
          }
        ],
        "profiles": [
          "Client secret rotation"
        ]
      }
    ]
  }

[TBeijen]

We found out the current provider actively removes any profile and policy that might exist.

Even though the fields are 'optional', as stated in the RealmRepresentation, and dedicated endpoints exist (see OP), including the profile and policy seems mandatory.

So the impact of this issue changes from 'not implemented by provider' to 'cannot use client profiles and policies'.