Although each realm can have variations in what information we collect., or what authentication process is setup, there is a minimum set of recommendations that should be follow in each realm setup.
...
Field | Mandatory | Type | |
|---|---|---|---|
| 1 | First name | Mandatory | Native to keycloak |
| 2 | Surname | Mandatory | Native to keycloak |
| 3 | Username | Mandatory | Native to keycloak |
| 4 | Email address | Mandatory | Native to keycloak |
| 5 | Phone number | Mandatory | +CCC NNNNNNN |
| 6 | WhatsAppID | Mandatory | +CCC NNNNNNN |
| 7 | Preferred Language | Mandatory | additional field |
| 8 | Gender (or Age, or Age range) | Optional | additional field |
| 9 | Date of birth | Optional | additional field |
| 10 | Type of worker | per realm | additional field |
| 11 | Employee ID | per realm | additional field |
| 12 | Health Unit | per realm | additional field |
| 13 | City/Town | Optional | additional field |
| 14 | SubNational L2 | per realm | additional field |
| 15 | SubNational L1 | per realm | additional field |
Information not collected:
...
Enrolment via FreeOTP, Google or Microsoft authenticator
valid for 60 30 days per application/device
Example: if a user authenticates Firefox on a given laptop, and then uses Google Chrome on the same device, the user will need to authenticate again.
...