Package org.keycloak.services.managers

Class AppAuthManager

java.lang.Object

org.keycloak.services.managers.AuthenticationManager

org.keycloak.services.managers.AppAuthManager

public class AppAuthManager
extends AuthenticationManager

Author:

Bill Burke, Stian Thorgersen

Nested Class Summary

Nested Classes

Modifier and Type	Class	Description
static class	AppAuthManager.BearerTokenAuthenticator

Nested classes/interfaces inherited from class org.keycloak.services.managers.AuthenticationManager

AuthenticationManager.AuthenticationStatus, AuthenticationManager.AuthResult

Field Summary

Fields inherited from class org.keycloak.services.managers.AuthenticationManager

AUTH_TIME, AUTH_TIME_BROKER, CLIENT_LOGOUT_STATE, END_AFTER_REQUIRED_ACTIONS, FORCED_REAUTHENTICATION, FORM_USERNAME, INITIATING_IDP_PARAM, INVALIDATE_ACTION_TOKEN, KEYCLOAK_LOGOUT_PROTOCOL, KEYCLOAK_SESSION_COOKIE, logger, LOGOUT_INITIATING_IDP, LOGOUT_WITH_SYSTEM_CLIENT, PASSWORD_VALIDATED, SET_REDIRECT_URI_AFTER_REQUIRED_ACTIONS, SSO_AUTH, USER_SESSION_PERSISTENT_STATE

Constructor Summary

Constructors

Constructor	Description
AppAuthManager()

Method Summary

Modifier and Type	Method	Description
AuthenticationManager.AuthResult	authenticateIdentityCookie(KeycloakSession session, RealmModel realm)
static String	extractAuthorizationHeaderToken(jakarta.ws.rs.core.HttpHeaders headers)	Extracts the token string from the Authorization Bearer Header.
static String	extractAuthorizationHeaderTokenOrReturnNull(jakarta.ws.rs.core.HttpHeaders headers)	Extracts the token string from the Authorization Bearer Header.

Methods inherited from class org.keycloak.services.managers.AuthenticationManager

actionRequired, authenticateIdentityCookie, backchannelLogout, backchannelLogout, backchannelLogout, backchannelLogoutUserFromClient, browserLogout, createIdentityToken, createLoginCookie, createOrJoinLogoutSession, createRememberMeCookie, createRequiredAction, evaluateRequiredActionTriggers, executionActions, expireAuthSessionCookie, expireIdentityCookie, expireRememberMeCookie, expireUserSessionCookie, finishBrowserLogout, finishedRequiredActions, finishUnconfirmedUserSession, getClientLogoutAction, getRealmCookiePath, getRememberMeUsername, getSessionIdFromSessionCookie, isOfflineSessionValid, isSessionValid, isSSOAuthentication, logSuccess, lookupUserForBruteForceLog, nextActionAfterAuthentication, nextRequiredAction, redirectAfterSuccessfulFlow, redirectAfterSuccessfulFlow, redirectToRequiredActions, setClientLogoutAction, setClientScopesInSession, setKcActionStatus, verifyIdentityToken

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

AppAuthManager

public AppAuthManager()

Method Details

authenticateIdentityCookie

public AuthenticationManager.AuthResult authenticateIdentityCookie(KeycloakSession session,
 RealmModel realm)

Overrides:

authenticateIdentityCookie in class AuthenticationManager

extractAuthorizationHeaderTokenOrReturnNull

public static String extractAuthorizationHeaderTokenOrReturnNull(jakarta.ws.rs.core.HttpHeaders headers)

Extracts the token string from the Authorization Bearer Header.

Parameters:

headers -

Returns:

the token string or null if the Authorization header is not of type Bearer, or the token string is missing.

extractAuthorizationHeaderToken

public static String extractAuthorizationHeaderToken(jakarta.ws.rs.core.HttpHeaders headers)

Extracts the token string from the Authorization Bearer Header.

Parameters:

headers -

Returns:

the token string or null of the Authorization header is missing

Throws:

jakarta.ws.rs.NotAuthorizedException - if the Authorization header is not of type Bearer, or the token string is missing.