| Modifier and Type | Field and Description |
|---|---|
protected ClientModel |
AuthenticationProcessor.client |
| Modifier and Type | Method and Description |
|---|---|
ClientModel |
AuthenticationProcessor.getClient() |
ClientModel |
AuthenticationProcessor.Result.getClient() |
ClientModel |
ClientAuthenticationFlowContext.getClient()
Current client attached to this flow.
|
| Modifier and Type | Method and Description |
|---|---|
Map<String,Object> |
ClientAuthenticatorFactory.getAdapterConfiguration(ClientModel client)
Get configuration, which needs to be used for adapter ( keycloak.json ) of particular client.
|
void |
AuthenticationProcessor.setClient(ClientModel client) |
void |
AuthenticationProcessor.Result.setClient(ClientModel client) |
void |
ClientAuthenticationFlowContext.setClient(ClientModel client)
Attach a specific client to this flow.
|
| Modifier and Type | Method and Description |
|---|---|
Map<String,Object> |
X509ClientAuthenticator.getAdapterConfiguration(ClientModel client) |
Map<String,Object> |
JWTClientSecretAuthenticator.getAdapterConfiguration(ClientModel client) |
Map<String,Object> |
JWTClientAuthenticator.getAdapterConfiguration(ClientModel client) |
Map<String,Object> |
ClientIdAndSecretAuthenticator.getAdapterConfiguration(ClientModel client) |
protected PublicKey |
JWTClientAuthenticator.getSignatureValidationKey(ClientModel client,
ClientAuthenticationFlowContext context,
JWSInput jws) |
| Constructor and Description |
|---|
AuthorizationService(KeycloakSession session,
ClientModel client,
AdminPermissionEvaluator auth,
AdminEventBuilder adminEvent) |
ResourceServerService(AuthorizationProvider authorization,
ResourceServer resourceServer,
ClientModel client,
AdminPermissionEvaluator auth,
AdminEventBuilder adminEvent) |
| Modifier and Type | Field and Description |
|---|---|
protected ClientModel |
ClientModelIdentity.client |
| Constructor and Description |
|---|
ClientModelIdentity(KeycloakSession session,
ClientModel client) |
| Modifier and Type | Method and Description |
|---|---|
javax.ws.rs.core.Response |
AbstractOAuth2IdentityProvider.exchangeFromToken(javax.ws.rs.core.UriInfo uriInfo,
EventBuilder event,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
UserModel tokenSubject,
javax.ws.rs.core.MultivaluedMap<String,String> params) |
protected javax.ws.rs.core.Response |
OIDCIdentityProvider.exchangeSessionToken(javax.ws.rs.core.UriInfo uriInfo,
EventBuilder event,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
UserModel tokenSubject) |
protected javax.ws.rs.core.Response |
AbstractOAuth2IdentityProvider.exchangeSessionToken(javax.ws.rs.core.UriInfo uriInfo,
EventBuilder event,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
UserModel tokenSubject) |
protected javax.ws.rs.core.Response |
OIDCIdentityProvider.exchangeStoredToken(javax.ws.rs.core.UriInfo uriInfo,
EventBuilder event,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
UserModel tokenSubject) |
protected javax.ws.rs.core.Response |
AbstractOAuth2IdentityProvider.exchangeStoredToken(javax.ws.rs.core.UriInfo uriInfo,
EventBuilder event,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
UserModel tokenSubject) |
| Modifier and Type | Method and Description |
|---|---|
protected javax.ws.rs.core.Response |
AbstractIdentityProvider.exchangeErrorResponse(javax.ws.rs.core.UriInfo uriInfo,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
String errorCode,
String reason) |
javax.ws.rs.core.Response |
ExchangeTokenToIdentityProviderToken.exchangeFromToken(javax.ws.rs.core.UriInfo uriInfo,
EventBuilder event,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
UserModel tokenSubject,
javax.ws.rs.core.MultivaluedMap<String,String> params) |
javax.ws.rs.core.Response |
AbstractIdentityProvider.exchangeNotLinked(javax.ws.rs.core.UriInfo uriInfo,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
UserModel tokenSubject) |
javax.ws.rs.core.Response |
AbstractIdentityProvider.exchangeNotLinkedNoStore(javax.ws.rs.core.UriInfo uriInfo,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
UserModel tokenSubject) |
javax.ws.rs.core.Response |
AbstractIdentityProvider.exchangeTokenExpired(javax.ws.rs.core.UriInfo uriInfo,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
UserModel tokenSubject) |
protected String |
AbstractIdentityProvider.getLinkingUrl(javax.ws.rs.core.UriInfo uriInfo,
ClientModel authorizedClient,
UserSessionModel tokenUserSession) |
| Modifier and Type | Method and Description |
|---|---|
SignatureVerifierContext |
MacSecretClientSignatureVerifierProvider.verifier(ClientModel client,
JWSInput input) |
SignatureVerifierContext |
ECDSAClientSignatureVerifierProvider.verifier(ClientModel client,
JWSInput input) |
SignatureVerifierContext |
AsymmetricClientSignatureVerifierProvider.verifier(ClientModel client,
JWSInput input) |
SignatureVerifierContext |
ClientSignatureVerifierProvider.verifier(ClientModel client,
JWSInput input) |
| Constructor and Description |
|---|
ClientAsymmetricSignatureVerifierContext(KeycloakSession session,
ClientModel client,
JWSInput input) |
ClientECDSASignatureVerifierContext(KeycloakSession session,
ClientModel client,
JWSInput input) |
ClientMacSignatureVerifierContext(KeycloakSession session,
ClientModel client,
String algorithm) |
| Modifier and Type | Method and Description |
|---|---|
EventBuilder |
EventBuilder.client(ClientModel client) |
| Modifier and Type | Method and Description |
|---|---|
static ResourceServerRepresentation |
ExportUtils.exportAuthorizationSettings(KeycloakSession session,
ClientModel client) |
static ClientRepresentation |
ExportUtils.exportClient(KeycloakSession session,
ClientModel client)
Full export of application including claims and secret
|
| Modifier and Type | Method and Description |
|---|---|
ClientModel |
ApplicationsBean.ApplicationEntry.getClient() |
ClientModel |
AuthorizationBean.ResourceBean.getClientOwner() |
| Modifier and Type | Method and Description |
|---|---|
static boolean |
ApplicationsBean.isAdminClient(ClientModel client) |
| Constructor and Description |
|---|
ApplicationEntry(KeycloakSession session,
List<RoleModel> realmRolesAvailable,
MultivaluedHashMap<String,ApplicationsBean.ClientRoleEntry> resourceRolesAvailable,
ClientModel client,
List<String> clientScopesGranted,
List<String> additionalGrants) |
ResourceServerBean(ClientModel clientModel) |
| Modifier and Type | Field and Description |
|---|---|
protected ClientModel |
FreeMarkerLoginFormsProvider.client |
| Modifier and Type | Field and Description |
|---|---|
protected ClientModel |
ClientBean.client |
| Constructor and Description |
|---|
ClientBean(KeycloakSession session,
ClientModel client) |
OAuthGrantBean(String code,
ClientModel client,
List<ClientScopeModel> clientScopesRequested) |
| Modifier and Type | Method and Description |
|---|---|
<T> T |
DefaultTokenManager.decodeClientJWT(String token,
ClientModel client,
Class<T> clazz) |
| Modifier and Type | Method and Description |
|---|---|
static PublicKey |
PublicKeyStorageManager.getClientPublicKey(KeycloakSession session,
ClientModel client,
JWSInput input) |
static KeyWrapper |
PublicKeyStorageManager.getClientPublicKeyWrapper(KeycloakSession session,
ClientModel client,
JWK.Use keyUse,
String algAlgorithm) |
static KeyWrapper |
PublicKeyStorageManager.getClientPublicKeyWrapper(KeycloakSession session,
ClientModel client,
JWSInput input) |
| Constructor and Description |
|---|
ClientPublicKeyLoader(KeycloakSession session,
ClientModel client) |
ClientPublicKeyLoader(KeycloakSession session,
ClientModel client,
JWK.Use keyUse) |
| Modifier and Type | Method and Description |
|---|---|
void |
MigrateTo3_2_0.addRoles(ClientModel realmAccess) |
static void |
MigrationUtils.migrateOldOfflineToken(KeycloakSession session,
RealmModel realm,
ClientModel client,
UserModel user) |
| Modifier and Type | Field and Description |
|---|---|
protected ClientModel |
ClientConfigResolver.client |
| Modifier and Type | Method and Description |
|---|---|
default ClientModel |
RealmProvider.addClient(RealmModel realm,
String clientId)
Deprecated.
Use the corresponding method from
ClientProvider. |
default ClientModel |
ClientProvider.addClient(RealmModel realm,
String clientId)
Adds a client with given
clientId to the given realm. |
ClientModel |
RealmProvider.addClient(RealmModel realm,
String id,
String clientId)
Deprecated.
Use the corresponding method from
ClientProvider. |
ClientModel |
ClientProvider.addClient(RealmModel realm,
String id,
String clientId)
Adds a client with given internal ID and
clientId to the given realm. |
ClientModel |
RealmModel.addClient(String name) |
ClientModel |
RealmModel.addClient(String id,
String clientId) |
ClientModel |
UserConsentModel.getClient() |
ClientModel |
RealmModel.ClientRemovedEvent.getClient() |
ClientModel |
KeycloakContext.getClient() |
ClientModel |
RealmProvider.getClientByClientId(RealmModel realm,
String clientId)
Deprecated.
Use the corresponding method from
ClientProvider. |
ClientModel |
RealmModel.getClientByClientId(String clientId) |
default ClientModel |
RealmProvider.getClientByClientId(String clientId,
RealmModel realm)
Deprecated.
Use the corresponding method from
ClientProvider. |
ClientModel |
RealmProvider.getClientById(RealmModel realm,
String id)
Deprecated.
Use the corresponding method from
ClientProvider. |
ClientModel |
RealmModel.getClientById(String id) |
default ClientModel |
RealmProvider.getClientById(String id,
RealmModel realm)
Deprecated.
Use the corresponding method from
ClientProvider. |
ClientModel |
RealmModel.ClientCreationEvent.getCreatedClient() |
ClientModel |
RealmModel.getMasterAdminClient() |
ClientModel |
RealmModel.ClientUpdatedEvent.getUpdatedClient() |
| Modifier and Type | Method and Description |
|---|---|
List<ClientModel> |
RealmModel.getAlwaysDisplayInConsoleClients() |
List<ClientModel> |
RealmProvider.getAlwaysDisplayInConsoleClients(RealmModel realm)
Deprecated.
Use the corresponding method from
ClientProvider. |
List<ClientModel> |
ClientProvider.getAlwaysDisplayInConsoleClients(RealmModel realm)
Returns a list of clients that are expected to always show up in account console.
|
List<ClientModel> |
RealmModel.getClients() |
List<ClientModel> |
RealmModel.getClients(Integer firstResult,
Integer maxResults) |
default List<ClientModel> |
RealmProvider.getClients(RealmModel realm)
Deprecated.
Use the corresponding method from
ClientProvider. |
default List<ClientModel> |
ClientProvider.getClients(RealmModel realm)
Returns all the clients of the given realm.
|
List<ClientModel> |
RealmProvider.getClients(RealmModel realm,
Integer firstResult,
Integer maxResults)
Deprecated.
Use the corresponding method from
ClientProvider. |
List<ClientModel> |
ClientProvider.getClients(RealmModel realm,
Integer firstResult,
Integer maxResults)
Returns the clients of the given realm.
|
List<ClientModel> |
RealmModel.searchClientByClientId(String clientId,
Integer firstResult,
Integer maxResults) |
List<ClientModel> |
RealmProvider.searchClientsByClientId(RealmModel realm,
String clientId,
Integer firstResult,
Integer maxResults)
Deprecated.
Use the corresponding method from
ClientProvider. |
default List<ClientModel> |
RealmProvider.searchClientsByClientId(String clientId,
Integer firstResult,
Integer maxResults,
RealmModel realm)
Deprecated.
Use the corresponding method from
ClientProvider. |
| Modifier and Type | Method and Description |
|---|---|
RoleModel |
RealmProvider.addClientRole(RealmModel realm,
ClientModel client,
String name)
TODO: To be @deprecated Use the corresponding method from
??RoleProvider. |
RoleModel |
RealmProvider.addClientRole(RealmModel realm,
ClientModel client,
String id,
String name)
TODO: To be @deprecated Use the corresponding method from
??RoleProvider. |
AuthenticatedClientSessionModel |
UserSessionProvider.createClientSession(RealmModel realm,
ClientModel client,
UserSessionModel userSession) |
<T> T |
TokenManager.decodeClientJWT(String token,
ClientModel client,
Class<T> clazz) |
long |
UserSessionProvider.getActiveUserSessions(RealmModel realm,
ClientModel client) |
RoleModel |
RealmProvider.getClientRole(RealmModel realm,
ClientModel client,
String name)
TODO: To be @deprecated Use the corresponding method from
??RoleProvider. |
Set<RoleModel> |
RoleMapperModel.getClientRoleMappings(ClientModel app)
Returns set of client roles that are directly set to this object for the given client.
|
Set<RoleModel> |
RealmProvider.getClientRoles(RealmModel realm,
ClientModel client)
TODO: To be @deprecated Use the corresponding method from
??RoleProvider. |
Set<RoleModel> |
RealmProvider.getClientRoles(RealmModel realm,
ClientModel client,
Integer first,
Integer max) |
AuthenticatedClientSessionModel |
UserSessionProvider.getClientSession(UserSessionModel userSession,
ClientModel client,
UUID clientSessionId,
boolean offline) |
long |
UserSessionProvider.getOfflineSessionsCount(RealmModel realm,
ClientModel client) |
List<UserSessionModel> |
UserSessionProvider.getOfflineUserSessions(RealmModel realm,
ClientModel client,
int first,
int max) |
UserModel |
UserProvider.getServiceAccount(ClientModel client) |
List<UserSessionModel> |
UserSessionProvider.getUserSessions(RealmModel realm,
ClientModel client) |
List<UserSessionModel> |
UserSessionProvider.getUserSessions(RealmModel realm,
ClientModel client,
int firstResult,
int maxResults) |
void |
UserSessionProvider.onClientRemoved(RealmModel realm,
ClientModel client) |
void |
UserProvider.preRemove(RealmModel realm,
ClientModel client) |
Set<RoleModel> |
RealmProvider.searchForClientRoles(RealmModel realm,
ClientModel client,
String search,
Integer first,
Integer max) |
void |
KeycloakContext.setClient(ClientModel client) |
void |
RealmModel.setMasterAdminClient(ClientModel client) |
| Constructor and Description |
|---|
ClientConfigResolver(ClientModel client) |
UserConsentModel(ClientModel client) |
| Modifier and Type | Field and Description |
|---|---|
protected ClientModel |
ClientAdapter.updated |
| Modifier and Type | Field and Description |
|---|---|
protected Map<String,ClientModel> |
RealmCacheSession.managedApplications |
| Modifier and Type | Method and Description |
|---|---|
ClientModel |
RealmCacheSession.addClient(RealmModel realm,
String clientId) |
ClientModel |
RealmCacheSession.addClient(RealmModel realm,
String id,
String clientId) |
ClientModel |
RealmAdapter.addClient(String name) |
ClientModel |
RealmAdapter.addClient(String id,
String clientId) |
protected ClientModel |
RealmCacheSession.cacheClient(RealmModel realm,
ClientModel delegate,
Long revision) |
ClientModel |
RealmCacheSession.getClientByClientId(RealmModel realm,
String clientId) |
ClientModel |
RealmAdapter.getClientByClientId(String clientId) |
ClientModel |
RealmCacheSession.getClientById(RealmModel realm,
String id) |
ClientModel |
RealmAdapter.getClientById(String id) |
ClientModel |
RealmAdapter.getMasterAdminClient() |
protected ClientModel |
RealmCacheSession.validateCache(RealmModel realm,
CachedClient cached) |
| Modifier and Type | Method and Description |
|---|---|
List<ClientModel> |
RealmAdapter.getAlwaysDisplayInConsoleClients() |
List<ClientModel> |
RealmCacheSession.getAlwaysDisplayInConsoleClients(RealmModel realm) |
List<ClientModel> |
RealmAdapter.getClients() |
List<ClientModel> |
RealmAdapter.getClients(Integer firstResult,
Integer maxResults) |
List<ClientModel> |
RealmCacheSession.getClients(RealmModel realm) |
List<ClientModel> |
RealmCacheSession.getClients(RealmModel realm,
Integer firstResult,
Integer maxResults) |
List<ClientModel> |
RealmAdapter.searchClientByClientId(String clientId,
Integer firstResult,
Integer maxResults) |
List<ClientModel> |
RealmCacheSession.searchClientsByClientId(RealmModel realm,
String clientId,
Integer firstResult,
Integer maxResults) |
| Constructor and Description |
|---|
CachedClient(Long revision,
RealmModel realm,
ClientModel model) |
| Modifier and Type | Method and Description |
|---|---|
static ClientRemovedEvent |
ClientRemovedEvent.create(ClientModel client) |
| Modifier and Type | Class and Description |
|---|---|
class |
ClientAdapter |
| Modifier and Type | Method and Description |
|---|---|
ClientModel |
JpaRealmProvider.addClient(RealmModel realm,
String clientId) |
ClientModel |
JpaRealmProvider.addClient(RealmModel realm,
String id,
String clientId) |
ClientModel |
RealmAdapter.addClient(String name) |
ClientModel |
RealmAdapter.addClient(String id,
String clientId) |
ClientModel |
JpaRealmProvider.getClientByClientId(RealmModel realm,
String clientId) |
ClientModel |
RealmAdapter.getClientByClientId(String clientId) |
ClientModel |
JpaRealmProvider.getClientById(RealmModel realm,
String id) |
ClientModel |
RealmAdapter.getClientById(String id) |
ClientModel |
RealmAdapter.getMasterAdminClient() |
| Modifier and Type | Method and Description |
|---|---|
List<ClientModel> |
RealmAdapter.getAlwaysDisplayInConsoleClients() |
List<ClientModel> |
JpaRealmProvider.getAlwaysDisplayInConsoleClients(RealmModel realm) |
List<ClientModel> |
RealmAdapter.getClients() |
List<ClientModel> |
RealmAdapter.getClients(Integer firstResult,
Integer maxResults) |
List<ClientModel> |
JpaRealmProvider.getClients(RealmModel realm,
Integer firstResult,
Integer maxResults) |
List<ClientModel> |
RealmAdapter.searchClientByClientId(String clientId,
Integer firstResult,
Integer maxResults) |
List<ClientModel> |
JpaRealmProvider.searchClientsByClientId(RealmModel realm,
String clientId,
Integer firstResult,
Integer maxResults) |
| Modifier and Type | Method and Description |
|---|---|
void |
JpaUserSessionPersisterProvider.onClientRemoved(RealmModel realm,
ClientModel client) |
| Modifier and Type | Class and Description |
|---|---|
class |
AbstractClientModel<E extends AbstractEntity> |
class |
MapClientAdapter |
| Modifier and Type | Method and Description |
|---|---|
ClientModel |
MapClientProvider.addClient(RealmModel realm,
String id,
String clientId) |
ClientModel |
MapClientProvider.getClientByClientId(RealmModel realm,
String clientId) |
ClientModel |
MapClientProvider.getClientById(RealmModel realm,
String id) |
| Modifier and Type | Method and Description |
|---|---|
List<ClientModel> |
MapClientProvider.getAlwaysDisplayInConsoleClients(RealmModel realm) |
List<ClientModel> |
MapClientProvider.getClients(RealmModel realm) |
List<ClientModel> |
MapClientProvider.getClients(RealmModel realm,
Integer firstResult,
Integer maxResults) |
Stream<ClientModel> |
MapClientProvider.getClientsStream(RealmModel realm) |
List<ClientModel> |
MapClientProvider.searchClientsByClientId(RealmModel realm,
String clientId,
Integer firstResult,
Integer maxResults) |
| Modifier and Type | Method and Description |
|---|---|
ClientModel |
PersistentAuthenticatedClientSessionAdapter.getClient() |
| Modifier and Type | Method and Description |
|---|---|
void |
UserSessionPersisterProvider.onClientRemoved(RealmModel realm,
ClientModel client) |
void |
DisabledUserSessionPersisterProvider.onClientRemoved(RealmModel realm,
ClientModel client) |
| Constructor and Description |
|---|
PersistentAuthenticatedClientSessionAdapter(PersistentClientSessionModel model,
RealmModel realm,
ClientModel client,
UserSessionModel userSession) |
| Modifier and Type | Method and Description |
|---|---|
ClientModel |
AuthenticationSessionAdapter.getClient() |
ClientModel |
AuthenticatedClientSessionAdapter.getClient() |
| Modifier and Type | Method and Description |
|---|---|
AuthenticationSessionModel |
RootAuthenticationSessionAdapter.createAuthenticationSession(ClientModel client) |
AuthenticatedClientSessionModel |
InfinispanUserSessionProvider.createClientSession(RealmModel realm,
ClientModel client,
UserSessionModel userSession) |
long |
InfinispanUserSessionProvider.getActiveUserSessions(RealmModel realm,
ClientModel client) |
AuthenticationSessionModel |
RootAuthenticationSessionAdapter.getAuthenticationSession(ClientModel client,
String tabId) |
AuthenticatedClientSessionAdapter |
InfinispanUserSessionProvider.getClientSession(UserSessionModel userSession,
ClientModel client,
UUID clientSessionId,
boolean offline) |
long |
InfinispanUserSessionProvider.getOfflineSessionsCount(RealmModel realm,
ClientModel client) |
List<UserSessionModel> |
InfinispanUserSessionProvider.getOfflineUserSessions(RealmModel realm,
ClientModel client,
int first,
int max) |
List<UserSessionModel> |
InfinispanUserSessionProvider.getUserSessions(RealmModel realm,
ClientModel client) |
List<UserSessionModel> |
InfinispanUserSessionProvider.getUserSessions(RealmModel realm,
ClientModel client,
int firstResult,
int maxResults) |
protected List<UserSessionModel> |
InfinispanUserSessionProvider.getUserSessions(RealmModel realm,
ClientModel client,
int firstResult,
int maxResults,
boolean offline) |
protected long |
InfinispanUserSessionProvider.getUserSessionsCount(RealmModel realm,
ClientModel client,
boolean offline) |
void |
InfinispanUserSessionProvider.onClientRemoved(RealmModel realm,
ClientModel client) |
void |
InfinispanAuthenticationSessionProvider.onClientRemoved(RealmModel realm,
ClientModel client) |
| Constructor and Description |
|---|
AuthenticatedClientSessionAdapter(KeycloakSession kcSession,
InfinispanUserSessionProvider provider,
AuthenticatedClientSessionEntity entity,
ClientModel client,
UserSessionModel userSession,
InfinispanChangelogBasedTransaction<String,UserSessionEntity> userSessionUpdateTx,
InfinispanChangelogBasedTransaction<UUID,AuthenticatedClientSessionEntity> clientSessionUpdateTx,
boolean offline) |
| Modifier and Type | Method and Description |
|---|---|
static ClientModel |
RepresentationToModel.createClient(KeycloakSession session,
RealmModel realm,
ClientRepresentation resourceRep,
boolean addDefaultRoles)
Does not create scope or role mappings!
|
static ClientModel |
KeycloakModelUtils.createClient(RealmModel realm,
String name) |
static ClientModel |
SystemClientUtil.getSystemClient(RealmModel realm) |
| Modifier and Type | Method and Description |
|---|---|
static void |
RepresentationToModel.createClientRoleMappings(ClientModel clientModel,
UserModel user,
List<String> roleNames) |
static void |
RepresentationToModel.createClientScopeMappings(RealmModel realm,
ClientModel clientModel,
List<ScopeMappingRepresentation> mappings) |
static void |
RepresentationToModel.createFederatedClientRoleMappings(UserFederatedStorageProvider federatedStorage,
RealmModel realm,
ClientModel clientModel,
UserRepresentation userRep,
List<String> roleNames) |
static ResourceServer |
RepresentationToModel.createResourceServer(ClientModel client,
KeycloakSession session,
boolean addDefaultRoles) |
static ClientScopeModel |
KeycloakModelUtils.findClientScopeById(RealmModel realm,
ClientModel client,
String clientScopeId)
Lookup clientScope OR client by id.
|
static UserCredentialModel |
KeycloakModelUtils.generateSecret(ClientModel client) |
Set<RoleModel> |
UserModelDelegate.getClientRoleMappings(ClientModel app) |
static Set<RoleModel> |
KeycloakModelUtils.getClientScopeMappings(ClientModel client,
ScopeContainerModel container) |
static void |
RepresentationToModel.importAuthorizationSettings(ClientRepresentation clientRepresentation,
ClientModel client,
KeycloakSession session) |
static ClientRepresentation |
ModelToRepresentation.toRepresentation(ClientModel clientModel,
KeycloakSession session) |
static ResourceServerRepresentation |
ModelToRepresentation.toRepresentation(ResourceServer model,
ClientModel client) |
static void |
RepresentationToModel.updateClient(ClientRepresentation rep,
ClientModel resource) |
static void |
RepresentationToModel.updateClientProtocolMappers(ClientRepresentation rep,
ClientModel resource) |
| Modifier and Type | Method and Description |
|---|---|
protected void |
AbstractLoginProtocolFactory.addDefaultClientScopes(RealmModel realm,
ClientModel newClient) |
protected abstract void |
AbstractLoginProtocolFactory.addDefaults(ClientModel realm) |
protected AuthenticationSessionModel |
AuthorizationEndpointBase.createAuthenticationSession(ClientModel client,
String requestState) |
javax.ws.rs.core.Response |
ClientInstallationProvider.generateInstallation(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI serverBaseUri) |
default boolean |
LoginProtocol.sendPushRevocationPolicyRequest(RealmModel realm,
ClientModel resource,
int notBefore,
String managementUrl)
Send not-before revocation policy to the given client.
|
void |
LoginProtocolFactory.setupClientDefaults(ClientRepresentation rep,
ClientModel newClient)
Setup default values for new clients.
|
| Modifier and Type | Method and Description |
|---|---|
protected void |
AbstractLoginProtocolFactory.addDefaultClientScopes(RealmModel realm,
List<ClientModel> newClients) |
| Modifier and Type | Method and Description |
|---|---|
protected void |
DockerAuthV2ProtocolFactory.addDefaults(ClientModel client) |
void |
DockerAuthV2ProtocolFactory.setupClientDefaults(ClientRepresentation rep,
ClientModel newClient) |
| Modifier and Type | Method and Description |
|---|---|
javax.ws.rs.core.Response |
DockerVariableOverrideInstallationProvider.generateInstallation(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI serverBaseUri) |
javax.ws.rs.core.Response |
DockerRegistryConfigFileInstallationProvider.generateInstallation(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI serverBaseUri) |
javax.ws.rs.core.Response |
DockerComposeYamlInstallationProvider.generateInstallation(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI serverBaseUri) |
| Modifier and Type | Method and Description |
|---|---|
protected void |
OIDCLoginProtocolFactory.addDefaults(ClientModel client) |
AccessToken |
TokenManager.createClientAccessToken(KeycloakSession session,
RealmModel realm,
ClientModel client,
UserModel user,
UserSessionModel userSession,
ClientSessionContext clientSessionCtx) |
static TokenManager.NotBeforeCheck |
TokenManager.NotBeforeCheck.forModel(ClientModel clientModel) |
static OIDCAdvancedConfigWrapper |
OIDCAdvancedConfigWrapper.fromClientModel(ClientModel client) |
static Set<RoleModel> |
TokenManager.getAccess(UserModel user,
ClientModel client,
Set<ClientScopeModel> clientScopes) |
static Set<ClientScopeModel> |
TokenManager.getRequestedClientScopes(String scopeParam,
ClientModel client)
Return client itself + all default client scopes of client + optional client scopes requested by scope parameter
|
protected AccessToken |
TokenManager.initToken(RealmModel realm,
ClientModel client,
UserModel user,
UserSessionModel session,
ClientSessionContext clientSessionCtx,
javax.ws.rs.core.UriInfo uriInfo) |
static boolean |
TokenManager.isValidScope(String scopes,
ClientModel client) |
TokenManager.RefreshResult |
TokenManager.refreshAccessToken(KeycloakSession session,
javax.ws.rs.core.UriInfo uriInfo,
ClientConnection connection,
RealmModel realm,
ClientModel authorizedClient,
String encodedRefreshToken,
EventBuilder event,
javax.ws.rs.core.HttpHeaders headers,
org.jboss.resteasy.spi.HttpRequest request) |
TokenManager.AccessTokenResponseBuilder |
TokenManager.responseBuilder(RealmModel realm,
ClientModel client,
EventBuilder event,
KeycloakSession session,
UserSessionModel userSession,
ClientSessionContext clientSessionCtx) |
boolean |
OIDCLoginProtocol.sendPushRevocationPolicyRequest(RealmModel realm,
ClientModel resource,
int notBefore,
String managementUrl) |
void |
OIDCLoginProtocolFactory.setupClientDefaults(ClientRepresentation rep,
ClientModel newClient) |
static boolean |
TokenManager.verifyConsentStillAvailable(KeycloakSession session,
UserModel user,
ClientModel client,
Set<ClientScopeModel> requestedClientScopes) |
RefreshToken |
TokenManager.verifyRefreshToken(KeycloakSession session,
RealmModel realm,
ClientModel client,
org.jboss.resteasy.spi.HttpRequest request,
String encodedRefreshToken,
boolean checkExpiration) |
| Constructor and Description |
|---|
AccessTokenResponseBuilder(RealmModel realm,
ClientModel client,
EventBuilder event,
KeycloakSession session,
UserSessionModel userSession,
ClientSessionContext clientSessionCtx) |
| Modifier and Type | Method and Description |
|---|---|
protected javax.ws.rs.core.Response |
TokenEndpoint.exchangeClientToOIDCClient(UserModel targetUser,
UserSessionModel targetUserSession,
String requestedTokenType,
ClientModel targetClient,
String audience,
String scope) |
protected javax.ws.rs.core.Response |
TokenEndpoint.exchangeClientToSAML2Client(UserModel targetUser,
UserSessionModel targetUserSession,
String requestedTokenType,
ClientModel targetClient,
String audience,
String scope) |
| Modifier and Type | Method and Description |
|---|---|
static AuthorizationEndpointRequest |
AuthorizationEndpointRequestParserProcessor.parseRequest(EventBuilder event,
KeycloakSession session,
ClientModel client,
javax.ws.rs.core.MultivaluedMap<String,String> requestParams) |
| Modifier and Type | Method and Description |
|---|---|
javax.ws.rs.core.Response |
KeycloakOIDCJbossSubsystemClientInstallation.generateInstallation(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI baseUri) |
javax.ws.rs.core.Response |
KeycloakOIDCJbossSubsystemClientCliInstallation.generateInstallation(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI baseUri) |
javax.ws.rs.core.Response |
KeycloakOIDCClientInstallation.generateInstallation(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI baseUri) |
static Map<String,Object> |
KeycloakOIDCClientInstallation.getClientCredentialsAdapterConfig(KeycloakSession session,
ClientModel client) |
static boolean |
KeycloakOIDCClientInstallation.showClientCredentialsAdapterConfig(ClientModel client) |
| Modifier and Type | Method and Description |
|---|---|
ClientModel |
AuthorizeClientUtil.ClientAuthResult.getClient() |
| Modifier and Type | Method and Description |
|---|---|
static Set<String> |
WebOriginsUtils.resolveValidWebOrigins(KeycloakSession session,
ClientModel client) |
static void |
PairwiseSubMapperValidator.validate(KeycloakSession session,
ClientModel client,
ProtocolMapperModel mapperModel) |
static String |
RedirectUtils.verifyRedirectUri(KeycloakSession session,
String redirectUri,
ClientModel client) |
static String |
RedirectUtils.verifyRedirectUri(KeycloakSession session,
String redirectUri,
ClientModel client,
boolean requireRedirectUri) |
| Modifier and Type | Method and Description |
|---|---|
protected void |
SamlProtocolFactory.addDefaults(ClientModel client) |
protected LogoutRequestType |
SamlProtocol.createLogoutRequest(String logoutUrl,
AuthenticatedClientSessionModel clientSession,
ClientModel client,
SamlProtocolExtensionsAwareBuilder.NodeGenerator... extensions) |
static PublicKey |
SamlProtocolUtils.getEncryptionKey(ClientModel client)
Returns public part of SAML encryption key from the client settings.
|
static String |
SamlProtocol.getLogoutServiceUrl(KeycloakSession session,
ClientModel client,
String bindingType) |
AuthenticationSessionModel |
SamlService.getOrCreateLoginSessionForIdpInitiatedSso(KeycloakSession session,
RealmModel realm,
ClientModel client,
String relayState)
Creates a client session object for SAML IdP-initiated SSO session.
|
static PublicKey |
SamlProtocolUtils.getPublicKey(ClientModel client,
String attribute) |
static PublicKey |
SamlProtocolUtils.getSignatureValidationKey(ClientModel client)
Returns public part of SAML signing key from the client settings.
|
protected javax.ws.rs.core.Response |
SamlService.BindingProtocol.loginRequest(String relayState,
AuthnRequestType requestAbstractType,
ClientModel client) |
protected javax.ws.rs.core.Response |
SamlService.BindingProtocol.logoutRequest(LogoutRequestType logoutRequest,
ClientModel client,
String relayState) |
void |
SamlProtocolFactory.setupClientDefaults(ClientRepresentation clientRep,
ClientModel newClient) |
static void |
SamlProtocolUtils.verifyDocumentSignature(ClientModel client,
Document document)
Verifies a signature of the given SAML document using settings for the given client.
|
protected abstract void |
SamlService.BindingProtocol.verifySignature(SAMLDocumentHolder documentHolder,
ClientModel client) |
protected void |
SamlService.PostBindingProtocol.verifySignature(SAMLDocumentHolder documentHolder,
ClientModel client) |
protected void |
SamlService.RedirectBindingProtocol.verifySignature(SAMLDocumentHolder documentHolder,
ClientModel client) |
| Constructor and Description |
|---|
SamlClient(ClientModel client) |
| Modifier and Type | Method and Description |
|---|---|
static void |
KeycloakSamlClientInstallation.baseXml(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI baseUri,
SamlClient samlClient,
StringBuilder buffer) |
javax.ws.rs.core.Response |
SamlSPDescriptorClientInstallation.generateInstallation(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI serverBaseUri) |
javax.ws.rs.core.Response |
ModAuthMellonClientInstallation.generateInstallation(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI serverBaseUri) |
javax.ws.rs.core.Response |
KeycloakSamlSubsystemInstallation.generateInstallation(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI baseUri) |
javax.ws.rs.core.Response |
KeycloakSamlSubsystemCliInstallation.generateInstallation(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI baseUri) |
javax.ws.rs.core.Response |
KeycloakSamlClientInstallation.generateInstallation(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI baseUri) |
static String |
SamlSPDescriptorClientInstallation.getSPDescriptorForClient(ClientModel client) |
| Modifier and Type | Method and Description |
|---|---|
ClientModel |
DefaultKeycloakContext.getClient() |
| Modifier and Type | Method and Description |
|---|---|
void |
DefaultKeycloakContext.setClient(ClientModel client) |
| Modifier and Type | Method and Description |
|---|---|
ClientModel |
DynamicClientUpdateContext.getAuthenticatedClient() |
ClientModel |
DynamicClientRegisterContext.getAuthenticatedClient() |
ClientModel |
ClientUpdateContext.getAuthenticatedClient()
returns
UserModel of the authenticated client. |
ClientModel |
AdminClientUpdateContext.getAuthenticatedClient() |
ClientModel |
AdminClientRegisterContext.getAuthenticatedClient() |
ClientModel |
DynamicClientUpdateContext.getClientToBeUpdated() |
default ClientModel |
ClientUpdateContext.getClientToBeUpdated()
returns
ClientModel of the current client to be updated. |
ClientModel |
AdminClientUpdateContext.getClientToBeUpdated() |
| Constructor and Description |
|---|
AdminClientUpdateContext(ClientRepresentation clientRepresentation,
AdminAuth adminAuth,
ClientModel client) |
DynamicClientUpdateContext(ClientRegistrationContext context,
ClientModel client,
JsonWebToken token,
RealmModel realm) |
| Modifier and Type | Method and Description |
|---|---|
ClientRepresentation |
AbstractClientRegistrationProvider.get(ClientModel client) |
void |
ClientRegistrationAuth.requireDelete(ClientModel client) |
RegistrationAuth |
ClientRegistrationAuth.requireUpdate(ClientRegistrationContext context,
ClientModel client) |
void |
ClientRegistrationAuth.requireView(ClientModel client) |
static String |
ClientRegistrationTokenUtils.updateRegistrationAccessToken(KeycloakSession session,
ClientModel client,
RegistrationAuth registrationAuth) |
static String |
ClientRegistrationTokenUtils.updateRegistrationAccessToken(KeycloakSession session,
RealmModel realm,
ClientModel client,
RegistrationAuth registrationAuth) |
void |
AbstractClientRegistrationProvider.validateClient(ClientModel clientModel,
OIDCClientRepresentation oidcClient,
boolean create) |
| Modifier and Type | Method and Description |
|---|---|
void |
ClientRegistrationPolicy.afterRegister(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ClientRegistrationPolicy.afterUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ClientRegistrationPolicy.beforeDelete(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
ClientRegistrationPolicy.beforeUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ClientRegistrationPolicy.beforeView(ClientRegistrationProvider provider,
ClientModel clientModel) |
static void |
ClientRegistrationPolicyManager.triggerAfterRegister(ClientRegistrationContext context,
RegistrationAuth authType,
ClientModel client) |
static void |
ClientRegistrationPolicyManager.triggerAfterUpdate(ClientRegistrationContext context,
RegistrationAuth authType,
ClientModel client) |
static void |
ClientRegistrationPolicyManager.triggerBeforeRemove(KeycloakSession session,
ClientRegistrationProvider provider,
RegistrationAuth authType,
ClientModel client) |
static void |
ClientRegistrationPolicyManager.triggerBeforeUpdate(ClientRegistrationContext context,
RegistrationAuth authType,
ClientModel client) |
static void |
ClientRegistrationPolicyManager.triggerBeforeView(KeycloakSession session,
ClientRegistrationProvider provider,
RegistrationAuth authType,
ClientModel client) |
| Modifier and Type | Method and Description |
|---|---|
void |
TrustedHostClientRegistrationPolicy.afterRegister(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ScopeClientRegistrationPolicy.afterRegister(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ProtocolMappersClientRegistrationPolicy.afterRegister(ClientRegistrationContext context,
ClientModel clientModel) |
void |
MaxClientsClientRegistrationPolicy.afterRegister(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ConsentRequiredClientRegistrationPolicy.afterRegister(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ClientScopesClientRegistrationPolicy.afterRegister(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ClientDisabledClientRegistrationPolicy.afterRegister(ClientRegistrationContext context,
ClientModel clientModel) |
void |
TrustedHostClientRegistrationPolicy.afterUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ScopeClientRegistrationPolicy.afterUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ProtocolMappersClientRegistrationPolicy.afterUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
MaxClientsClientRegistrationPolicy.afterUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ConsentRequiredClientRegistrationPolicy.afterUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ClientScopesClientRegistrationPolicy.afterUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ClientDisabledClientRegistrationPolicy.afterUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
TrustedHostClientRegistrationPolicy.beforeDelete(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
ScopeClientRegistrationPolicy.beforeDelete(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
ProtocolMappersClientRegistrationPolicy.beforeDelete(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
MaxClientsClientRegistrationPolicy.beforeDelete(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
ConsentRequiredClientRegistrationPolicy.beforeDelete(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
ClientScopesClientRegistrationPolicy.beforeDelete(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
ClientDisabledClientRegistrationPolicy.beforeDelete(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
TrustedHostClientRegistrationPolicy.beforeUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ScopeClientRegistrationPolicy.beforeUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ProtocolMappersClientRegistrationPolicy.beforeUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
MaxClientsClientRegistrationPolicy.beforeUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ConsentRequiredClientRegistrationPolicy.beforeUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ClientScopesClientRegistrationPolicy.beforeUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ClientDisabledClientRegistrationPolicy.beforeUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
TrustedHostClientRegistrationPolicy.beforeView(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
ScopeClientRegistrationPolicy.beforeView(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
ProtocolMappersClientRegistrationPolicy.beforeView(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
MaxClientsClientRegistrationPolicy.beforeView(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
ConsentRequiredClientRegistrationPolicy.beforeView(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
ClientScopesClientRegistrationPolicy.beforeView(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
ClientDisabledClientRegistrationPolicy.beforeView(ClientRegistrationProvider provider,
ClientModel clientModel) |
| Modifier and Type | Method and Description |
|---|---|
static ClientModel |
ClientManager.createClient(KeycloakSession session,
RealmModel realm,
ClientRepresentation rep,
boolean addDefaultRoles)
Should not be called from an import.
|
ClientModel |
Auth.getClient() |
| Modifier and Type | Method and Description |
|---|---|
Set<ClientModel> |
UserSessionManager.findClientsWithOfflineToken(RealmModel realm,
UserModel user) |
| Modifier and Type | Method and Description |
|---|---|
void |
RealmManager.addQueryCompositeRoles(ClientModel realmAccess) |
static void |
AuthenticationManager.backchannelLogoutUserFromClient(KeycloakSession session,
RealmModel realm,
UserModel user,
ClientModel client,
javax.ws.rs.core.UriInfo uriInfo,
javax.ws.rs.core.HttpHeaders headers)
Logout all clientSessions of this user and client
|
void |
ClientManager.clientIdChanged(ClientModel client,
String newClientId) |
void |
ClientManager.enableServiceAccount(ClientModel client) |
AuthenticationSessionModel |
AuthenticationSessionManager.getAuthenticationSessionByIdAndClient(RealmModel realm,
String authSessionId,
ClientModel client,
String tabId) |
static <CLIENT_SESSION extends CommonClientSessionModel> |
ClientSessionCode.getClientSession(String code,
String tabId,
KeycloakSession session,
RealmModel realm,
ClientModel client,
EventBuilder event,
Class<CLIENT_SESSION> sessionClass) |
AuthenticationSessionModel |
AuthenticationSessionManager.getCurrentAuthenticationSession(RealmModel realm,
ClientModel client,
String tabId)
Returns current authentication session if it exists, otherwise returns
null. |
static String |
ResourceAdminManager.getManagementUrl(KeycloakSession session,
ClientModel client) |
boolean |
Auth.hasClientRole(ClientModel app,
String role) |
boolean |
Auth.hasOneOfAppRole(ClientModel app,
String... roles) |
GlobalRequestResult |
ResourceAdminManager.logoutClient(RealmModel realm,
ClientModel resource) |
protected GlobalRequestResult |
ResourceAdminManager.logoutClient(RealmModel realm,
ClientModel resource,
int notBefore) |
boolean |
ResourceAdminManager.logoutClientSession(RealmModel realm,
ClientModel resource,
AuthenticatedClientSessionModel clientSession) |
protected boolean |
ResourceAdminManager.logoutClientSessions(RealmModel realm,
ClientModel resource,
List<AuthenticatedClientSessionModel> clientSessions) |
static <CLIENT_SESSION extends CommonClientSessionModel> |
ClientSessionCode.parseResult(String code,
String tabId,
KeycloakSession session,
RealmModel realm,
ClientModel client,
EventBuilder event,
Class<CLIENT_SESSION> sessionClass) |
static <CLIENT_SESSION extends CommonClientSessionModel> |
ClientSessionCode.parseResult(String code,
String tabId,
KeycloakSession session,
RealmModel realm,
ClientModel client,
EventBuilder event,
CLIENT_SESSION clientSession) |
GlobalRequestResult |
ResourceAdminManager.pushClientRevocationPolicy(RealmModel realm,
ClientModel client) |
protected GlobalRequestResult |
ResourceAdminManager.pushRevocationPolicy(RealmModel realm,
ClientModel resource,
int notBefore) |
boolean |
ClientManager.removeClient(RealmModel realm,
ClientModel client) |
boolean |
UserSessionManager.revokeOfflineToken(UserModel user,
ClientModel client) |
protected boolean |
ResourceAdminManager.sendLogoutRequest(RealmModel realm,
ClientModel resource,
List<String> adapterSessionIds,
List<String> userSessions,
int notBefore,
String managementUrl) |
protected boolean |
ResourceAdminManager.sendPushRevocationPolicyRequest(RealmModel realm,
ClientModel resource,
int notBefore,
String managementUrl) |
protected boolean |
ResourceAdminManager.sendTestNodeAvailabilityRequest(RealmModel realm,
ClientModel client,
String managementUrl) |
GlobalRequestResult |
ResourceAdminManager.testNodesAvailability(RealmModel realm,
ClientModel client) |
ClientManager.InstallationAdapterConfig |
ClientManager.toInstallationRepresentation(RealmModel realmModel,
ClientModel clientModel,
URI baseUri) |
String |
ClientManager.toJBossSubsystemConfig(RealmModel realmModel,
ClientModel clientModel,
URI baseUri) |
Set<String> |
ClientManager.validateRegisteredNodes(ClientModel client) |
| Constructor and Description |
|---|
Auth(RealmModel realm,
AccessToken token,
UserModel user,
ClientModel client,
UserSessionModel session,
boolean cookie) |
| Modifier and Type | Field and Description |
|---|---|
protected ClientModel |
AbstractSecuredLocalService.client |
| Modifier and Type | Method and Description |
|---|---|
protected ClientModel |
ClientsManagementService.authorizeClient() |
| Modifier and Type | Method and Description |
|---|---|
Cors |
Cors.allowedOrigins(KeycloakSession session,
ClientModel client) |
static void |
LoginActionsServiceChecks.checkIsClientValid(KeycloakSession session,
ClientModel client)
Verifies whether the client denoted by client ID in token's
iss (issuedFor)
field both exists and is enabled. |
| Constructor and Description |
|---|
AbstractSecuredLocalService(RealmModel realm,
ClientModel client) |
| Constructor and Description |
|---|
AccountConsole(RealmModel realm,
ClientModel client,
Theme theme) |
AccountFormService(RealmModel realm,
ClientModel client,
EventBuilder event) |
AccountRestService(KeycloakSession session,
Auth auth,
ClientModel client,
EventBuilder event) |
LinkedAccountsResource(KeycloakSession session,
org.jboss.resteasy.spi.HttpRequest request,
ClientModel client,
Auth auth,
EventBuilder event,
UserModel user) |
| Modifier and Type | Field and Description |
|---|---|
protected ClientModel |
ClientRoleMappingsResource.client |
protected ClientModel |
ClientResource.client |
protected ClientModel |
ClientAttributeCertificateResource.client |
protected ClientModel |
ScopeMappedClientResource.scopedClient |
| Modifier and Type | Method and Description |
|---|---|
ClientModel |
AdminAuth.getClient() |
| Modifier and Type | Method and Description |
|---|---|
AdminEventBuilder |
AdminEventBuilder.authClient(ClientModel client) |
protected Set<RoleRepresentation> |
RoleResource.getClientRoleComposites(ClientModel app,
RoleModel role) |
boolean |
AdminAuth.hasAppRole(ClientModel app,
String role) |
boolean |
AdminAuth.hasOneOfAppRole(ClientModel app,
String... roles) |
static ManagementPermissionReference |
ClientResource.toMgmtRef(ClientModel client,
AdminPermissionManagement permissions) |
| Modifier and Type | Method and Description |
|---|---|
ClientModel |
AdminPermissionManagement.getRealmManagementClient() |
| Modifier and Type | Method and Description |
|---|---|
boolean |
UserPermissionManagement.canClientImpersonate(ClientModel client,
UserModel user) |
boolean |
ClientPermissionEvaluator.canConfigure(ClientModel client) |
boolean |
ClientPermissionManagement.canExchangeTo(ClientModel authorizedClient,
ClientModel to) |
boolean |
IdentityProviderPermissionManagement.canExchangeTo(ClientModel authorizedClient,
IdentityProviderModel to) |
boolean |
ClientPermissionEvaluator.canManage(ClientModel client) |
boolean |
ClientPermissionEvaluator.canMapClientScopeRoles(ClientModel client) |
boolean |
ClientPermissionEvaluator.canMapCompositeRoles(ClientModel client) |
boolean |
ClientPermissionEvaluator.canMapRoles(ClientModel client) |
boolean |
ClientPermissionEvaluator.canView(ClientModel client) |
Policy |
ClientPermissionManagement.configurePermission(ClientModel client) |
Policy |
ClientPermissionManagement.exchangeToPermission(ClientModel client) |
Map<String,Boolean> |
ClientPermissionEvaluator.getAccess(ClientModel client) |
Map<String,String> |
ClientPermissionManagement.getPermissions(ClientModel client) |
boolean |
ClientPermissionManagement.isPermissionsEnabled(ClientModel client) |
boolean |
ClientPermissionEvaluator.isPermissionsEnabled(ClientModel client) |
Policy |
ClientPermissionManagement.managePermission(ClientModel client) |
Policy |
ClientPermissionManagement.mapRolesClientScopePermission(ClientModel client) |
Policy |
ClientPermissionManagement.mapRolesCompositePermission(ClientModel client) |
Policy |
ClientPermissionManagement.mapRolesPermission(ClientModel client) |
void |
ClientPermissionEvaluator.requireConfigure(ClientModel client) |
void |
ClientPermissionEvaluator.requireManage(ClientModel client) |
void |
ClientPermissionEvaluator.requireView(ClientModel client) |
Resource |
ClientPermissionManagement.resource(ClientModel client) |
ResourceServer |
ClientPermissionManagement.resourceServer(ClientModel client) |
void |
ClientPermissionManagement.setPermissionsEnabled(ClientModel client,
boolean enable) |
void |
ClientPermissionEvaluator.setPermissionsEnabled(ClientModel client,
boolean enable) |
Policy |
ClientPermissionManagement.viewPermission(ClientModel client) |
| Modifier and Type | Method and Description |
|---|---|
static CertificateRepresentation |
CertificateInfoHelper.getCertificateFromClient(ClientModel client,
String attributePrefix) |
static void |
CertificateInfoHelper.updateClientModelCertificateInfo(ClientModel client,
CertificateRepresentation rep,
String attributePrefix) |
| Modifier and Type | Method and Description |
|---|---|
ClientModel |
CommonClientSessionModel.getClient() |
| Modifier and Type | Method and Description |
|---|---|
AuthenticationSessionModel |
RootAuthenticationSessionModel.createAuthenticationSession(ClientModel client)
Create new authentication session and returns it.
|
AuthenticationSessionModel |
RootAuthenticationSessionModel.getAuthenticationSession(ClientModel client,
String tabId) |
void |
AuthenticationSessionProvider.onClientRemoved(RealmModel realm,
ClientModel client) |
| Modifier and Type | Method and Description |
|---|---|
javax.ws.rs.core.Response |
TwitterIdentityProvider.exchangeFromToken(javax.ws.rs.core.UriInfo uriInfo,
EventBuilder builder,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
UserModel tokenSubject,
javax.ws.rs.core.MultivaluedMap<String,String> params) |
protected javax.ws.rs.core.Response |
TwitterIdentityProvider.exchangeSessionToken(javax.ws.rs.core.UriInfo uriInfo,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
UserModel tokenSubject) |
protected javax.ws.rs.core.Response |
TwitterIdentityProvider.exchangeStoredToken(javax.ws.rs.core.UriInfo uriInfo,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
UserModel tokenSubject) |
| Modifier and Type | Method and Description |
|---|---|
ClientModel |
ClientStorageManager.addClient(RealmModel realm,
String clientId) |
ClientModel |
ClientStorageManager.addClient(RealmModel realm,
String id,
String clientId) |
ClientModel |
ClientStorageManager.getClientByClientId(RealmModel realm,
String clientId) |
ClientModel |
ClientStorageManager.getClientById(RealmModel realm,
String id) |
| Modifier and Type | Method and Description |
|---|---|
List<ClientModel> |
ClientStorageManager.getAlwaysDisplayInConsoleClients(RealmModel realm) |
List<ClientModel> |
ClientStorageManager.getClients(RealmModel realm) |
List<ClientModel> |
ClientStorageManager.getClients(RealmModel realm,
Integer firstResult,
Integer maxResults) |
List<ClientModel> |
ClientStorageManager.searchClientsByClientId(RealmModel realm,
String clientId,
Integer firstResult,
Integer maxResults) |
| Modifier and Type | Method and Description |
|---|---|
UserModel |
UserStorageManager.getServiceAccount(ClientModel client) |
static boolean |
StorageId.isLocalStorage(ClientModel client) |
void |
UserStorageManager.preRemove(RealmModel realm,
ClientModel client) |
static String |
StorageId.resolveProviderId(ClientModel client) |
| Modifier and Type | Method and Description |
|---|---|
Set<RoleModel> |
InMemoryUserAdapter.getClientRoleMappings(ClientModel app) |
Set<RoleModel> |
AbstractUserAdapterFederatedStorage.getClientRoleMappings(ClientModel app)
Gets role mappings from federated storage and automatically appends default roles.
|
Set<RoleModel> |
AbstractUserAdapter.getClientRoleMappings(ClientModel app) |
| Modifier and Type | Class and Description |
|---|---|
class |
AbstractClientStorageAdapter
Helper base class for ClientModel implementations for ClientStorageProvider implementations.
|
class |
AbstractReadOnlyClientStorageAdapter |
class |
UnsupportedOperationsClientStorageAdapter
Base helper class.
|
| Modifier and Type | Method and Description |
|---|---|
ClientModel |
ClientLookupProvider.getClientByClientId(RealmModel realm,
String clientId)
Exact search for a client by its public client identifier.
|
default ClientModel |
ClientLookupProvider.getClientByClientId(String clientId,
RealmModel realm)
Deprecated.
|
ClientModel |
ClientLookupProvider.getClientById(RealmModel realm,
String id)
Exact search for a client by its internal ID.
|
default ClientModel |
ClientLookupProvider.getClientById(String id,
RealmModel realm)
Deprecated.
|
| Modifier and Type | Method and Description |
|---|---|
List<ClientModel> |
ClientLookupProvider.searchClientsByClientId(RealmModel realm,
String clientId,
Integer firstResult,
Integer maxResults)
Case-insensitive search for clients that contain the given string in their public client identifier.
|
default List<ClientModel> |
ClientLookupProvider.searchClientsByClientId(String clientId,
Integer firstResult,
Integer maxResults,
RealmModel realm)
|
| Modifier and Type | Method and Description |
|---|---|
void |
UserFederatedStorageProvider.preRemove(RealmModel realm,
ClientModel client) |
| Modifier and Type | Method and Description |
|---|---|
void |
JpaUserFederatedStorageProvider.preRemove(RealmModel realm,
ClientModel client) |
| Modifier and Type | Method and Description |
|---|---|
Set<RoleModel> |
RoleLDAPStorageMapper.LDAPRoleMappingsUserDelegate.getClientRoleMappings(ClientModel client) |
| Modifier and Type | Class and Description |
|---|---|
class |
OpenshiftSAClientAdapter |
| Modifier and Type | Method and Description |
|---|---|
ClientModel |
OpenshiftClientStorageProvider.getClientByClientId(RealmModel realm,
String clientId) |
ClientModel |
OpenshiftClientStorageProvider.getClientById(RealmModel realm,
String id) |
| Modifier and Type | Method and Description |
|---|---|
List<ClientModel> |
OpenshiftClientStorageProvider.searchClientsByClientId(RealmModel realm,
String clientId,
Integer firstResult,
Integer maxResults) |
| Modifier and Type | Method and Description |
|---|---|
static void |
ValidationUtil.validateClient(KeycloakSession session,
ClientModel client,
boolean create,
ValidationUtil.ErrorHandler errorHandler) |
static void |
ValidationUtil.validateClient(KeycloakSession session,
ClientModel client,
OIDCClientRepresentation oidcClient,
boolean create,
ValidationUtil.ErrorHandler errorHandler) |
| Modifier and Type | Method and Description |
|---|---|
ValidationResult |
DefaultClientValidationProvider.validate(ValidationContext<ClientModel> context) |
| Constructor and Description |
|---|
ClientValidationContext(ValidationContext.Event event,
KeycloakSession session,
ClientModel objectToValidate) |
OIDCContext(ValidationContext.Event event,
KeycloakSession session,
ClientModel objectToValidate,
OIDCClientRepresentation oidcClient) |
Copyright © 2020 JBoss by Red Hat. All rights reserved.