public class SSSDFederationProvider extends Object implements UserStorageProvider, UserLookupProvider, CredentialInputUpdater, CredentialInputValidator, ImportedUserValidation
UserStorageProvider.EditMode
Modifier and Type | Field and Description |
---|---|
protected UserStorageProviderModel |
model |
protected KeycloakSession |
session |
protected static Set<String> |
supportedCredentialTypes |
Constructor and Description |
---|
SSSDFederationProvider(KeycloakSession session,
UserStorageProviderModel model,
SSSDFederationProviderFactory sssdFederationProviderFactory) |
Modifier and Type | Method and Description |
---|---|
void |
close() |
void |
disableCredentialType(RealmModel realm,
UserModel user,
String credentialType) |
protected UserModel |
findOrCreateAuthenticatedUser(RealmModel realm,
String username)
Called after successful authentication
|
Set<String> |
getDisableableCredentialTypes(RealmModel realm,
UserModel user)
Returns a set of credential types that can be disabled by disableCredentialType() method
|
UserModel |
getUserByEmail(String email,
RealmModel realm) |
UserModel |
getUserById(String id,
RealmModel realm) |
UserModel |
getUserByUsername(String username,
RealmModel realm) |
protected UserModel |
importUserToKeycloak(RealmModel realm,
String username) |
boolean |
isConfiguredFor(RealmModel realm,
UserModel user,
String credentialType) |
boolean |
isValid(RealmModel realm,
UserModel local) |
boolean |
isValid(RealmModel realm,
UserModel user,
CredentialInput input)
Tests whether a credential is valid
|
void |
preRemove(RealmModel realm)
Callback when a realm is removed.
|
void |
preRemove(RealmModel realm,
GroupModel group)
Callback when a group is removed.
|
void |
preRemove(RealmModel realm,
RoleModel role)
Callback when a role is removed.
|
boolean |
supportsCredentialType(String credentialType) |
boolean |
updateCredential(RealmModel realm,
UserModel user,
CredentialInput input) |
UserModel |
validate(RealmModel realm,
UserModel user)
If this method returns null, then the user in local storage will be removed
|
UserModel |
validateAndProxy(RealmModel realm,
UserModel local) |
protected KeycloakSession session
protected UserStorageProviderModel model
public SSSDFederationProvider(KeycloakSession session, UserStorageProviderModel model, SSSDFederationProviderFactory sssdFederationProviderFactory)
public UserModel getUserByUsername(String username, RealmModel realm)
getUserByUsername
in interface UserLookupProvider
public UserModel validate(RealmModel realm, UserModel user)
ImportedUserValidation
validate
in interface ImportedUserValidation
protected UserModel findOrCreateAuthenticatedUser(RealmModel realm, String username)
realm
- realmusername
- username without realm prefixprotected UserModel importUserToKeycloak(RealmModel realm, String username)
public UserModel getUserById(String id, RealmModel realm)
getUserById
in interface UserLookupProvider
public UserModel getUserByEmail(String email, RealmModel realm)
getUserByEmail
in interface UserLookupProvider
public void preRemove(RealmModel realm)
UserStorageProvider
preRemove
in interface UserStorageProvider
public void preRemove(RealmModel realm, RoleModel role)
UserStorageProvider
preRemove
in interface UserStorageProvider
public void preRemove(RealmModel realm, GroupModel group)
UserStorageProvider
preRemove
in interface UserStorageProvider
public boolean isValid(RealmModel realm, UserModel local)
public boolean supportsCredentialType(String credentialType)
supportsCredentialType
in interface CredentialInputUpdater
supportsCredentialType
in interface CredentialInputValidator
public boolean isConfiguredFor(RealmModel realm, UserModel user, String credentialType)
isConfiguredFor
in interface CredentialInputValidator
public boolean isValid(RealmModel realm, UserModel user, CredentialInput input)
CredentialInputValidator
isValid
in interface CredentialInputValidator
realm
- The realm in which to which the credential belongs touser
- The user for which to test the credentialinput
- the credential details to verifypublic UserModel validateAndProxy(RealmModel realm, UserModel local)
public boolean updateCredential(RealmModel realm, UserModel user, CredentialInput input)
updateCredential
in interface CredentialInputUpdater
public void disableCredentialType(RealmModel realm, UserModel user, String credentialType)
disableCredentialType
in interface CredentialInputUpdater
public Set<String> getDisableableCredentialTypes(RealmModel realm, UserModel user)
CredentialInputUpdater
getDisableableCredentialTypes
in interface CredentialInputUpdater
Copyright © 2020 JBoss by Red Hat. All rights reserved.