Package org.keycloak.authentication.authenticators.directgrant

Class ValidatePassword

java.lang.Object
org.keycloak.authentication.authenticators.directgrant.AbstractDirectGrantAuthenticator
org.keycloak.authentication.authenticators.directgrant.ValidatePassword
All Implemented Interfaces:
Authenticator, AuthenticatorFactory, ConfigurableAuthenticatorFactory, ConfiguredProvider, Provider, ProviderFactory<Authenticator>
public class ValidatePassword extends AbstractDirectGrantAuthenticator
Version:
$Revision: 1 $
Author:
Bill Burke

  • Field Details

  • Constructor Details

    • ValidatePassword

      public ValidatePassword()

  • Method Details

    • authenticate

      public void authenticate(AuthenticationFlowContext context)
      Description copied from interface: Authenticator
      Initial call for the authenticator. This method should check the current HTTP request to determine if the request satifies the Authenticator's requirements. If it doesn't, it should send back a challenge response by calling the AuthenticationFlowContext.challenge(Response). If this challenge is a authentication, the action URL of the form must point to /realms/{realm}/login-actions/authenticate?code={session-code}&execution={executionId} or /realms/{realm}/login-actions/registration?code={session-code}&execution={executionId} {session-code} pertains to the code generated from AuthenticationFlowContext.generateAccessCode(). The {executionId} pertains to the AuthenticationExecutionModel.getId() value obtained from AuthenticationFlowContext.getExecution(). The action URL will invoke the action() method described below.

    • requiresUser

      public boolean requiresUser()
      Description copied from interface: Authenticator
      Does this authenticator require that the user has already been identified? That AuthenticatorContext.getUser() is not null?
      Returns:

    • configuredFor

      public boolean configuredFor(KeycloakSession session, RealmModel realm, UserModel user)
      Description copied from interface: Authenticator
      Is this authenticator configured for this user.
      Returns:

    • setRequiredActions

      public void setRequiredActions(KeycloakSession session, RealmModel realm, UserModel user)
      Description copied from interface: Authenticator
      Set actions to configure authenticator

    • isUserSetupAllowed

      public boolean isUserSetupAllowed()
      Description copied from interface: ConfigurableAuthenticatorFactory
      Does this authenticator have required actions that can set if the user does not have this authenticator set up?
      Returns:

    • getDisplayType

      public String getDisplayType()
      Description copied from interface: ConfigurableAuthenticatorFactory
      Friendly name for the authenticator
      Returns:

    • getReferenceCategory

      public String getReferenceCategory()
      Description copied from interface: ConfigurableAuthenticatorFactory
      General authenticator type, i.e. totp, password, cert.
      Returns:
      null if not a referencable category

    • isConfigurable

      public boolean isConfigurable()
      Description copied from interface: ConfigurableAuthenticatorFactory
      Is this authenticator configurable?
      Returns:

    • getRequirementChoices

      public AuthenticationExecutionModel.Requirement[] getRequirementChoices()
      Description copied from interface: ConfigurableAuthenticatorFactory
      What requirement settings are allowed.
      Returns:

    • getHelpText

      public String getHelpText()

    • getConfigProperties

      public List<ProviderConfigProperty> getConfigProperties()

    • getId

      public String getId()

    • retrievePassword

      protected String retrievePassword(AuthenticationFlowContext context)