public interface IdentityStore
Modifier and Type | Method and Description |
---|---|
void |
add(LDAPObject ldapObject)
Persists the specified IdentityType
|
void |
addMemberToGroup(String groupDn,
String memberAttrName,
String value)
Adds a member to a group.
|
int |
countQueryResults(LDAPQuery LDAPQuery) |
List<LDAPObject> |
fetchQueryResults(LDAPQuery LDAPQuery) |
LDAPConfig |
getConfig()
Returns the configuration for this IdentityStore instance
|
Set<LDAPCapabilityRepresentation> |
queryServerCapabilities()
Query the LDAP server RootDSE and extract the
LDAPCapabilityRepresentation
of all supported extensions, controls and features the server announces. |
void |
remove(LDAPObject ldapObject)
Removes the specified IdentityType
|
void |
removeMemberFromGroup(String groupDn,
String memberAttrName,
String value)
Removes a member from a group.
|
void |
update(LDAPObject ldapObject)
Updates the specified IdentityType
|
void |
updatePassword(LDAPObject user,
String password,
LDAPOperationDecorator passwordUpdateDecorator)
Updates the specified credential value.
|
void |
validatePassword(LDAPObject user,
String password)
Validates the specified credentials.
|
LDAPConfig getConfig()
void add(LDAPObject ldapObject)
ldapObject
- void update(LDAPObject ldapObject)
ldapObject
- void remove(LDAPObject ldapObject)
ldapObject
- void addMemberToGroup(String groupDn, String memberAttrName, String value)
groupDn
- The DN of the group objectmemberAttrName
- The member attribute namevalue
- The value (it can be uid or dn depending the group type)void removeMemberFromGroup(String groupDn, String memberAttrName, String value)
groupDn
- The DN of the group objectmemberAttrName
- The member attribute namevalue
- The value (it can be uid or dn depending the group type)List<LDAPObject> fetchQueryResults(LDAPQuery LDAPQuery)
int countQueryResults(LDAPQuery LDAPQuery)
Set<LDAPCapabilityRepresentation> queryServerCapabilities()
LDAPCapabilityRepresentation
of all supported extensions, controls and features the server announces. The LDAP Wiki
provides a list of known capabilities.
Will throw a ModelException
on any LDAP error, or when the searchResult is empty.void validatePassword(LDAPObject user, String password) throws AuthenticationException
user
- Keycloak userpassword
- Ldap passwordAuthenticationException
- if authentication is not successfulvoid updatePassword(LDAPObject user, String password, LDAPOperationDecorator passwordUpdateDecorator)
user
- Keycloak userpassword
- Ldap passwordpasswordUpdateDecorator
- Callback to be executed before/after password update. Can be nullCopyright © 2021 JBoss by Red Hat. All rights reserved.