public class OIDCLoginProtocol extends Object implements LoginProtocol
LoginProtocol.Error
Constructor and Description |
---|
OIDCLoginProtocol() |
OIDCLoginProtocol(KeycloakSession session,
RealmModel realm,
javax.ws.rs.core.UriInfo uriInfo,
javax.ws.rs.core.HttpHeaders headers,
EventBuilder event) |
public static final String LOGIN_PROTOCOL
public static final String STATE_PARAM
public static final String LOGOUT_STATE_PARAM
public static final String SCOPE_PARAM
public static final String CODE_PARAM
public static final String RESPONSE_TYPE_PARAM
public static final String GRANT_TYPE_PARAM
public static final String REDIRECT_URI_PARAM
public static final String CLIENT_ID_PARAM
public static final String NONCE_PARAM
public static final String MAX_AGE_PARAM
public static final String PROMPT_PARAM
public static final String LOGIN_HINT_PARAM
public static final String REQUEST_PARAM
public static final String REQUEST_URI_PARAM
public static final String UI_LOCALES_PARAM
public static final String CLAIMS_PARAM
public static final String ACR_PARAM
public static final String ID_TOKEN_HINT
public static final String LOGOUT_REDIRECT_URI
public static final String ISSUER
public static final String RESPONSE_MODE_PARAM
public static final String PROMPT_VALUE_NONE
public static final String PROMPT_VALUE_LOGIN
public static final String PROMPT_VALUE_CONSENT
public static final String PROMPT_VALUE_SELECT_ACCOUNT
public static final String CLIENT_SECRET_BASIC
public static final String CLIENT_SECRET_POST
public static final String CLIENT_SECRET_JWT
public static final String PRIVATE_KEY_JWT
public static final String TLS_CLIENT_AUTH
public static final String CODE_CHALLENGE_PARAM
public static final String CODE_CHALLENGE_METHOD_PARAM
public static final int PKCE_CODE_CHALLENGE_MIN_LENGTH
public static final int PKCE_CODE_CHALLENGE_MAX_LENGTH
public static final int PKCE_CODE_VERIFIER_MIN_LENGTH
public static final int PKCE_CODE_VERIFIER_MAX_LENGTH
public static final String PKCE_METHOD_PLAIN
public static final String PKCE_METHOD_S256
protected KeycloakSession session
protected RealmModel realm
protected javax.ws.rs.core.UriInfo uriInfo
protected javax.ws.rs.core.HttpHeaders headers
protected EventBuilder event
protected OIDCResponseType responseType
protected OIDCResponseMode responseMode
public OIDCLoginProtocol(KeycloakSession session, RealmModel realm, javax.ws.rs.core.UriInfo uriInfo, javax.ws.rs.core.HttpHeaders headers, EventBuilder event)
public OIDCLoginProtocol()
public OIDCLoginProtocol setSession(KeycloakSession session)
setSession
in interface LoginProtocol
public OIDCLoginProtocol setRealm(RealmModel realm)
setRealm
in interface LoginProtocol
public OIDCLoginProtocol setUriInfo(javax.ws.rs.core.UriInfo uriInfo)
setUriInfo
in interface LoginProtocol
public OIDCLoginProtocol setHttpHeaders(javax.ws.rs.core.HttpHeaders headers)
setHttpHeaders
in interface LoginProtocol
public OIDCLoginProtocol setEventBuilder(EventBuilder event)
setEventBuilder
in interface LoginProtocol
public javax.ws.rs.core.Response authenticated(AuthenticationSessionModel authSession, UserSessionModel userSession, ClientSessionContext clientSessionCtx)
authenticated
in interface LoginProtocol
public javax.ws.rs.core.Response sendError(AuthenticationSessionModel authSession, LoginProtocol.Error error)
sendError
in interface LoginProtocol
public javax.ws.rs.core.Response backchannelLogout(UserSessionModel userSession, AuthenticatedClientSessionModel clientSession)
backchannelLogout
in interface LoginProtocol
public javax.ws.rs.core.Response frontchannelLogout(UserSessionModel userSession, AuthenticatedClientSessionModel clientSession)
frontchannelLogout
in interface LoginProtocol
public javax.ws.rs.core.Response finishLogout(UserSessionModel userSession)
finishLogout
in interface LoginProtocol
public boolean requireReauthentication(UserSessionModel userSession, AuthenticationSessionModel authSession)
requireReauthentication
in interface LoginProtocol
protected boolean isPromptLogin(AuthenticationSessionModel authSession)
protected boolean isAuthTimeExpired(UserSessionModel userSession, AuthenticationSessionModel authSession)
protected boolean isReAuthRequiredForKcAction(UserSessionModel userSession, AuthenticationSessionModel authSession)
public boolean sendPushRevocationPolicyRequest(RealmModel realm, ClientModel resource, int notBefore, String managementUrl)
LoginProtocol
sendPushRevocationPolicyRequest
in interface LoginProtocol
true
if revocation policy was successfully updated at the client, false
otherwise.Copyright © 2021 JBoss by Red Hat. All rights reserved.