export type KeycloakCredential = {
    type: string;
    value: string;
    temporary: boolean;
};
export type KeycloakUser = {
    access?: Record<string, unknown>;
    attributes?: Record<string, unknown>;
    clientConsents?: [];
    clientRoles?: [];
    createdTimestamp?: number;
    credentials?: KeycloakCredential[];
    disableableCredentialTypes?: string[];
    email?: string;
    emailVerified?: boolean;
    enabled?: boolean;
    federatedIdentities?: [];
    federationLink?: string;
    firstName?: string;
    groups?: string[];
    id?: string;
    lastName?: string;
    notBefore?: number;
    origin?: string;
    realmRoles?: string[];
    requiredActions?: string[];
    self?: string;
    serviceAccountClientId?: string;
    username: string;
};
export type KeycloakGroup = {
    access?: Record<string, unknown>;
    attributes?: Record<string, unknown>;
    clientRoles?: Record<string, unknown>;
    id?: string;
    name: string;
    path?: string;
    realmRoles?: string[];
    subGroups?: KeycloakGroup[];
};
export type KeycloakClient = {
    access?: Record<string, unknown>;
    adminUrl?: string;
    alwaysDisplayInConsole?: boolean;
    attributes?: Record<string, unknown>;
    authenticationFlowBindingOverrides?: Record<string, unknown>;
    authorizationServicesEnabled?: boolean;
    authorizationSettings?: Record<string, unknown>;
    baseUrl?: string;
    bearerOnly?: boolean;
    clientAuthenticatorType?: string;
    clientId: string;
    consentRequired?: boolean;
    defaultClientScopes?: string[];
    description?: string;
    directAccessGrantsEnabled?: boolean;
    enabled?: boolean;
    frontchannelLogout?: boolean;
    fullScopeAllowed?: boolean;
    id?: string;
    implicitFlowEnabled?: boolean;
    name?: string;
    nodeReRegistrationTimeout?: number;
    notBefore?: number;
    oauth2DeviceAuthorizationGrantEnabled?: boolean;
    optionalClientScopes?: string[];
    origin?: string;
    protocol?: string;
    protocolMappers?: [];
    publicClient?: boolean;
    redirectUris?: string[];
    registeredNodes?: Record<string, unknown>;
    registrationAccessToken?: string;
    rootUrl?: string;
    secret?: string;
    serviceAccountsEnabled?: boolean;
    standardFlowEnabled?: boolean;
    surrogateAuthRequired?: boolean;
    webOrigins?: string[];
};
export declare const KEYCLOAK_OAUTH2_PARAMS = "KEYCLOAK_OAUTH2_PARAMS";
export type KeycloakAccessToken = {
    exp: number;
    iat: number;
    jti: string;
    iss: string;
    aud: string[];
    sub: string;
    typ: string;
    azp: string;
    session_state?: string;
    acr: string;
    'allowed-origins': string[];
    realm_access: {
        roles: string[];
    };
    resource_access: Record<string, {
        roles: string[];
    }>;
    scope: string;
    sid: string;
    email_verified: boolean;
    name?: string;
    preferred_username: string;
    given_name?: string;
    family_name?: string;
    email?: string;
    groups?: string[];
    entity?: {
        accountId: string;
        entityId: string;
        entityUserId?: string;
        rootEntityId?: string;
        branches?: string[];
    };
    clientHost?: string;
    clientId?: string;
    clientAddress?: string;
};
export type KeycloakResponseAccessToken = {
    access_token: string;
    expires_in: number;
    refresh_expires_in: number;
    refresh_token?: string;
    token_type: string;
    id_token: string;
    'not-before-policy': number;
    session_state?: '087e93d0-63b5-4b41-b379-81d5227e33d3';
    scope: string;
};
//# sourceMappingURL=keycloak-provider.interface.d.ts.map