public abstract class AbstractX509ClientCertificateAuthenticator extends Object implements Authenticator
Modifier and Type | Class and Description |
---|---|
protected static class |
AbstractX509ClientCertificateAuthenticator.CertificateValidatorConfigBuilder |
protected static class |
AbstractX509ClientCertificateAuthenticator.UserIdentityExtractorBuilder |
protected static class |
AbstractX509ClientCertificateAuthenticator.UserIdentityToModelMapperBuilder |
Constructor and Description |
---|
AbstractX509ClientCertificateAuthenticator() |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
action, areRequiredActionsEnabled, authenticate, getRequiredActions
public static final String DEFAULT_ATTRIBUTE_NAME
protected static ServicesLogger logger
public static final String REGULAR_EXPRESSION
public static final String ENABLE_CRL
public static final String ENABLE_OCSP
public static final String ENABLE_CRLDP
public static final String CANONICAL_DN
public static final String TIMESTAMP_VALIDATION
public static final String SERIALNUMBER_HEX
public static final String CRL_RELATIVE_PATH
public static final String OCSPRESPONDER_URI
public static final String OCSPRESPONDER_CERTIFICATE
public static final String MAPPING_SOURCE_SELECTION
public static final String MAPPING_SOURCE_CERT_SUBJECTDN
public static final String MAPPING_SOURCE_CERT_SUBJECTDN_EMAIL
public static final String MAPPING_SOURCE_CERT_SUBJECTALTNAME_EMAIL
public static final String MAPPING_SOURCE_CERT_SUBJECTALTNAME_OTHERNAME
public static final String MAPPING_SOURCE_CERT_SUBJECTDN_CN
public static final String MAPPING_SOURCE_CERT_ISSUERDN
public static final String MAPPING_SOURCE_CERT_SERIALNUMBER
public static final String MAPPING_SOURCE_CERT_SHA256_THUMBPRINT
public static final String MAPPING_SOURCE_CERT_SERIALNUMBER_ISSUERDN
public static final String MAPPING_SOURCE_CERT_CERTIFICATE_PEM
public static final String USER_MAPPER_SELECTION
public static final String USER_ATTRIBUTE_MAPPER
public static final String USERNAME_EMAIL_MAPPER
public static final String CUSTOM_ATTRIBUTE_NAME
public static final String CERTIFICATE_KEY_USAGE
public static final String CERTIFICATE_EXTENDED_KEY_USAGE
public static final String CONFIRMATION_PAGE_DISALLOWED
public AbstractX509ClientCertificateAuthenticator()
protected javax.ws.rs.core.Response createInfoResponse(AuthenticationFlowContext context, String infoMessage, Object... parameters)
public CertificateValidator.CertificateValidatorBuilder certificateValidationParameters(KeycloakSession session, X509AuthenticatorConfigModel config) throws Exception
Exception
protected X509Certificate[] getCertificateChain(AuthenticationFlowContext context)
protected void saveX509CertificateAuditDataToAuthSession(AuthenticationFlowContext context, X509Certificate cert)
protected void recordX509CertificateAuditDataViaContextEvent(AuthenticationFlowContext context)
public UserIdentityExtractor getUserIdentityExtractor(X509AuthenticatorConfigModel config)
public UserIdentityToModelMapper getUserIdentityToModelMapper(X509AuthenticatorConfigModel config)
public boolean requiresUser()
Authenticator
requiresUser
in interface Authenticator
public boolean configuredFor(KeycloakSession session, RealmModel realm, UserModel user)
Authenticator
configuredFor
in interface Authenticator
public void setRequiredActions(KeycloakSession session, RealmModel realm, UserModel user)
Authenticator
setRequiredActions
in interface Authenticator
Copyright © 2020 JBoss by Red Hat. All rights reserved.