Uses of Interface
org.keycloak.sessions.AuthenticationSessionModel
Packages that use AuthenticationSessionModel
Package
Description
-
Uses of AuthenticationSessionModel in org.keycloak.authentication
Fields in org.keycloak.authentication declared as AuthenticationSessionModelModifier and TypeFieldDescriptionprotected AuthenticationSessionModelAuthenticationProcessor.authenticationSessionprotected AuthenticationSessionModelRequiredActionContextResult.authenticationSessionMethods in org.keycloak.authentication that return AuthenticationSessionModelModifier and TypeMethodDescriptionstatic AuthenticationSessionModelAuthenticationProcessor.clone(KeycloakSession session, AuthenticationSessionModel authSession) AuthenticationFlowContext.getAuthenticationSession()AuthenticationSessionModel attached to this flowAuthenticationProcessor.getAuthenticationSession()AuthenticationProcessor.Result.getAuthenticationSession()FormContext.getAuthenticationSession()AuthenticationSessionModel attached to this flowRequiredActionContext.getAuthenticationSession()RequiredActionContextResult.getAuthenticationSession()static AuthenticationSessionModelAuthenticationProcessor.recreate(KeycloakSession session, AuthenticationSessionModel authSession) Methods in org.keycloak.authentication with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionstatic ClientSessionContextAuthenticationProcessor.attachSession(AuthenticationSessionModel authSession, UserSessionModel userSession, KeycloakSession session, RealmModel realm, ClientConnection connection, EventBuilder event) static AuthenticationSessionModelAuthenticationProcessor.clone(KeycloakSession session, AuthenticationSessionModel authSession) AuthenticatorUtil.getAuthCallbacksFactoryIds(AuthenticationSessionModel authSession) Get set of Authentication factories IDs defined in authentication session as CALLBACKS_FACTORY_IDS_NOTEstatic StringAuthenticationProcessor.getClientData(KeycloakSession session, AuthenticationSessionModel authSession) CredentialAction.getCredentialType(KeycloakSession session, AuthenticationSessionModel authenticationSession) default voidRequiredActionProvider.initiatedActionCanceled(KeycloakSession session, AuthenticationSessionModel authSession) Callback to let the action know that an application-initiated action was canceled.static booleanAuthenticatorUtil.isForcedReauthentication(AuthenticationSessionModel authSession) static booleanAuthenticatorUtil.isForkedFlow(AuthenticationSessionModel authSession) static booleanAuthenticatorUtil.isPasswordValidated(AuthenticationSessionModel authSession) static booleanAuthenticatorUtil.isSSOAuthentication(AuthenticationSessionModel authSession) static AuthenticationSessionModelAuthenticationProcessor.recreate(KeycloakSession session, AuthenticationSessionModel authSession) static voidAuthenticationProcessor.resetFlow(AuthenticationSessionModel authSession, String flowPath) static voidAuthenticatorUtil.setAuthCallbacksFactoryIds(AuthenticationSessionModel authSession, String authFactoryId) Set authentication session note for callbacks defined for {@link AuthenticationFlowCallbackFactory) factoriesAuthenticationProcessor.setAuthenticationSession(AuthenticationSessionModel authenticationSession) Constructors in org.keycloak.authentication with parameters of type AuthenticationSessionModelModifierConstructorDescriptionRequiredActionContextResult(AuthenticationSessionModel authSession, RealmModel realm, EventBuilder eventBuilder, KeycloakSession session, HttpRequest httpRequest, UserModel user, RequiredActionFactory factory) -
Uses of AuthenticationSessionModel in org.keycloak.authentication.actiontoken
Methods in org.keycloak.authentication.actiontoken that return AuthenticationSessionModelModifier and TypeMethodDescriptionActionTokenContext.createAuthenticationSessionForClient(String clientId) ActionTokenContext.getAuthenticationSession()AbstractActionTokenHandler.startFreshAuthenticationSession(T token, ActionTokenContext<T> tokenContext) ActionTokenHandler.startFreshAuthenticationSession(T token, ActionTokenContext<T> tokenContext) Creates a fresh authentication session according to the information from the token.Methods in org.keycloak.authentication.actiontoken with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionAbstractActionTokenHandler.getAuthenticationSessionIdFromToken(T token, ActionTokenContext<T> tokenContext, AuthenticationSessionModel currentAuthSession) ActionTokenHandler.getAuthenticationSessionIdFromToken(T token, ActionTokenContext<T> tokenContext, AuthenticationSessionModel currentAuthSession) Returns a compound authentication session ID requested from within the given token that the handler should attempt to join.jakarta.ws.rs.core.ResponseActionTokenContext.ProcessAuthenticateFlow.processFlow(boolean action, String execution, AuthenticationSessionModel authSession, String flowPath, AuthenticationFlowModel flow, String errorMessage, AuthenticationProcessor processor) voidActionTokenContext.setAuthenticationSession(AuthenticationSessionModel authenticationSession, boolean isFresh) -
Uses of AuthenticationSessionModel in org.keycloak.authentication.authenticators.broker
Methods in org.keycloak.authentication.authenticators.broker with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionstatic UserModelAbstractIdpAuthenticator.getExistingUser(KeycloakSession session, RealmModel realm, AuthenticationSessionModel authSession) -
Uses of AuthenticationSessionModel in org.keycloak.authentication.authenticators.broker.util
Methods in org.keycloak.authentication.authenticators.broker.util with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionSerializedBrokeredIdentityContext.deserialize(KeycloakSession session, AuthenticationSessionModel authSession) SerializedBrokeredIdentityContext.readFromAuthenticationSession(AuthenticationSessionModel authSession, String noteKey) voidSerializedBrokeredIdentityContext.saveToAuthenticationSession(AuthenticationSessionModel authSession, String noteKey) -
Uses of AuthenticationSessionModel in org.keycloak.authentication.authenticators.util
Methods in org.keycloak.authentication.authenticators.util with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionstatic voidAuthenticatorUtils.updateCompletedExecutions(AuthenticationSessionModel authSession, UserSessionModel userSession, String executionId) Update the completed authenticators note on the new auth sessionConstructors in org.keycloak.authentication.authenticators.util with parameters of type AuthenticationSessionModelModifierConstructorDescriptionAcrStore(KeycloakSession session, AuthenticationSessionModel authSession) -
Uses of AuthenticationSessionModel in org.keycloak.authentication.requiredactions
Methods in org.keycloak.authentication.requiredactions with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionDeleteCredentialAction.getCredentialType(KeycloakSession session, AuthenticationSessionModel authenticationSession) RecoveryAuthnCodesAction.getCredentialType(KeycloakSession session, AuthenticationSessionModel authenticationSession) UpdateTotp.getCredentialType(KeycloakSession session, AuthenticationSessionModel authenticationSession) WebAuthnRegister.getCredentialType(KeycloakSession session, AuthenticationSessionModel authenticationSession) -
Uses of AuthenticationSessionModel in org.keycloak.broker.oidc
Methods in org.keycloak.broker.oidc with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionvoidAbstractOAuth2IdentityProvider.authenticationFinished(AuthenticationSessionModel authSession, BrokeredIdentityContext context) voidOIDCIdentityProvider.authenticationFinished(AuthenticationSessionModel authSession, BrokeredIdentityContext context) protected booleanOIDCIdentityProvider.isAuthTimeExpired(JsonWebToken idToken, AuthenticationSessionModel authSession) -
Uses of AuthenticationSessionModel in org.keycloak.broker.provider
Methods in org.keycloak.broker.provider that return AuthenticationSessionModelModifier and TypeMethodDescriptionIdentityProvider.AuthenticationCallback.getAndVerifyAuthenticationSession(String encodedCode) Common method to return current authenticationSession and verify if it is not expiredAuthenticationRequest.getAuthenticationSession()BrokeredIdentityContext.getAuthenticationSession()Methods in org.keycloak.broker.provider with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionvoidAbstractIdentityProvider.authenticationFinished(AuthenticationSessionModel authSession, BrokeredIdentityContext context) voidIdentityProvider.authenticationFinished(AuthenticationSessionModel authSession, BrokeredIdentityContext context) jakarta.ws.rs.core.ResponseIdentityProvider.AuthenticationCallback.retryLogin(IdentityProvider<?> identityProvider, AuthenticationSessionModel authSession) Indicates that login with the particular IDP should be retriedvoidBrokeredIdentityContext.setAuthenticationSession(AuthenticationSessionModel authenticationSession) Constructors in org.keycloak.broker.provider with parameters of type AuthenticationSessionModelModifierConstructorDescriptionAuthenticationRequest(KeycloakSession session, RealmModel realm, AuthenticationSessionModel authSession, HttpRequest httpRequest, jakarta.ws.rs.core.UriInfo uriInfo, IdentityBrokerState state, String redirectUri) -
Uses of AuthenticationSessionModel in org.keycloak.broker.saml
Methods in org.keycloak.broker.saml with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionvoidSAMLIdentityProvider.authenticationFinished(AuthenticationSessionModel authSession, BrokeredIdentityContext context) -
Uses of AuthenticationSessionModel in org.keycloak.email
Methods in org.keycloak.email with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionEmailTemplateProvider.setAuthenticationSession(AuthenticationSessionModel authenticationSession) -
Uses of AuthenticationSessionModel in org.keycloak.email.freemarker
Fields in org.keycloak.email.freemarker declared as AuthenticationSessionModelModifier and TypeFieldDescriptionprotected AuthenticationSessionModelFreeMarkerEmailTemplateProvider.authenticationSessionauthenticationSession can be null for some email sendings, it is filled only for email sendings performed as part of the authentication session (email verification, password reset, broker link etc.)!Methods in org.keycloak.email.freemarker with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionFreeMarkerEmailTemplateProvider.setAuthenticationSession(AuthenticationSessionModel authenticationSession) -
Uses of AuthenticationSessionModel in org.keycloak.forms.login
Methods in org.keycloak.forms.login with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionLoginFormsProvider.setAuthenticationSession(AuthenticationSessionModel authenticationSession) -
Uses of AuthenticationSessionModel in org.keycloak.forms.login.freemarker
Fields in org.keycloak.forms.login.freemarker declared as AuthenticationSessionModelModifier and TypeFieldDescriptionprotected AuthenticationSessionModelFreeMarkerLoginFormsProvider.authenticationSessionauthenticationSession can be null for some renderings, mainly error pagesMethods in org.keycloak.forms.login.freemarker with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionFreeMarkerLoginFormsProvider.setAuthenticationSession(AuthenticationSessionModel authenticationSession) -
Uses of AuthenticationSessionModel in org.keycloak.forms.login.freemarker.model
Constructors in org.keycloak.forms.login.freemarker.model with parameters of type AuthenticationSessionModelModifierConstructorDescriptionLogoutConfirmBean(String code, AuthenticationSessionModel logoutSession) -
Uses of AuthenticationSessionModel in org.keycloak.models
Methods in org.keycloak.models that return AuthenticationSessionModelModifier and TypeMethodDescriptionKeycloakContext.getAuthenticationSession()Get current AuthenticationSessionModel, can be null out of the AuthenticationSession context.Methods in org.keycloak.models with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionvoidKeycloakContext.setAuthenticationSession(AuthenticationSessionModel authenticationSession) -
Uses of AuthenticationSessionModel in org.keycloak.models.sessions.infinispan
Classes in org.keycloak.models.sessions.infinispan that implement AuthenticationSessionModelModifier and TypeClassDescriptionclassNOTE: Calling setter doesn't automatically enlist for updateMethods in org.keycloak.models.sessions.infinispan that return AuthenticationSessionModelModifier and TypeMethodDescriptionRootAuthenticationSessionAdapter.createAuthenticationSession(ClientModel client) RootAuthenticationSessionAdapter.getAuthenticationSession(ClientModel client, String tabId) Methods in org.keycloak.models.sessions.infinispan that return types with arguments of type AuthenticationSessionModel -
Uses of AuthenticationSessionModel in org.keycloak.models.sessions.infinispan.changes.remote.updater.authsession
Methods in org.keycloak.models.sessions.infinispan.changes.remote.updater.authsession that return AuthenticationSessionModelModifier and TypeMethodDescriptionRootAuthenticationSessionUpdater.createAuthenticationSession(ClientModel client) RootAuthenticationSessionUpdater.getAuthenticationSession(ClientModel client, String tabId) Methods in org.keycloak.models.sessions.infinispan.changes.remote.updater.authsession that return types with arguments of type AuthenticationSessionModel -
Uses of AuthenticationSessionModel in org.keycloak.models.utils
Methods in org.keycloak.models.utils with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionstatic voidSystemClientUtil.checkSkipLink(KeycloakSession session, AuthenticationSessionModel authSession) Cleanup system client URL to avoid links to account managementstatic AuthenticationFlowModelAuthenticationFlowResolver.resolveBrowserFlow(AuthenticationSessionModel authSession) static AuthenticationFlowModelAuthenticationFlowResolver.resolveDirectGrantFlow(AuthenticationSessionModel authSession) -
Uses of AuthenticationSessionModel in org.keycloak.protocol
Methods in org.keycloak.protocol that return AuthenticationSessionModelModifier and TypeMethodDescriptionprotected AuthenticationSessionModelAuthorizationEndpointBase.createAuthenticationSession(ClientModel client, String requestState) static AuthenticationSessionModelRestartLoginCookie.restartSession(KeycloakSession session, RealmModel realm, RootAuthenticationSessionModel rootSession, String expectedClientId, String encodedCookie) Methods in org.keycloak.protocol with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionjakarta.ws.rs.core.ResponseLoginProtocol.authenticated(AuthenticationSessionModel authSession, UserSessionModel userSession, ClientSessionContext clientSessionCtx) protected AuthenticationProcessorAuthorizationEndpointBase.createProcessor(AuthenticationSessionModel authSession, String flowId, String flowPath) jakarta.ws.rs.core.ResponseLoginProtocol.finishBrowserLogout(UserSessionModel userSession, AuthenticationSessionModel logoutSession) This method is called when browser logout is going to be finished.protected AuthenticationFlowModelAuthorizationEndpointBase.getAuthenticationFlow(AuthenticationSessionModel authSession) LoginProtocol.getClientData(AuthenticationSessionModel authSession) Returns client data, which will be wrapped in the "clientData" parameter sent within "authentication flow" requests.protected jakarta.ws.rs.core.ResponseAuthorizationEndpointBase.handleBrowserAuthenticationRequest(AuthenticationSessionModel authSession, LoginProtocol protocol, boolean isPassive, boolean redirectToAuthentication) Common method to handle browser authentication request in protocols unified way.booleanLoginProtocol.requireReauthentication(UserSessionModel userSession, AuthenticationSessionModel authSession) jakarta.ws.rs.core.ResponseLoginProtocol.sendError(AuthenticationSessionModel authSession, LoginProtocol.Error error, String errorMessage) static voidRestartLoginCookie.setRestartCookie(KeycloakSession session, AuthenticationSessionModel authSession) Constructors in org.keycloak.protocol with parameters of type AuthenticationSessionModel -
Uses of AuthenticationSessionModel in org.keycloak.protocol.docker
Methods in org.keycloak.protocol.docker with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionjakarta.ws.rs.core.ResponseDockerAuthV2Protocol.authenticated(AuthenticationSessionModel authSession, UserSessionModel userSession, ClientSessionContext clientSessionCtx) jakarta.ws.rs.core.ResponseDockerAuthV2Protocol.finishBrowserLogout(UserSessionModel userSession, AuthenticationSessionModel logoutSession) protected AuthenticationFlowModelDockerEndpoint.getAuthenticationFlow(AuthenticationSessionModel authSession) DockerAuthV2Protocol.getClientData(AuthenticationSessionModel authSession) booleanDockerAuthV2Protocol.requireReauthentication(UserSessionModel userSession, AuthenticationSessionModel clientSession) jakarta.ws.rs.core.ResponseDockerAuthV2Protocol.sendError(AuthenticationSessionModel clientSession, LoginProtocol.Error error, String errorMessage) -
Uses of AuthenticationSessionModel in org.keycloak.protocol.oidc
Methods in org.keycloak.protocol.oidc with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionstatic ClientSessionContextTokenManager.attachAuthenticationSession(KeycloakSession session, UserSessionModel userSession, AuthenticationSessionModel authSession) static ClientSessionContextTokenManager.attachAuthenticationSession(KeycloakSession session, UserSessionModel userSession, AuthenticationSessionModel authSession, boolean createTransientIfMissing) jakarta.ws.rs.core.ResponseOIDCLoginProtocol.authenticated(AuthenticationSessionModel authSession, UserSessionModel userSession, ClientSessionContext clientSessionCtx) jakarta.ws.rs.core.ResponseOIDCLoginProtocol.buildRedirectUri(OIDCRedirectUriBuilder redirectUriBuilder, AuthenticationSessionModel authSession, UserSessionModel userSession, ClientSessionContext clientSessionCtx) this method can be used in extension-implementations to theOIDCLoginProtocolto add additional parameters to the redirectUri after successful authentication and to store these e.g.jakarta.ws.rs.core.ResponseOIDCLoginProtocol.buildRedirectUri(OIDCRedirectUriBuilder redirectUriBuilder, AuthenticationSessionModel authSession, UserSessionModel userSession, ClientSessionContext clientSessionCtx, Exception ex, LoginProtocol.Error oidcError) this method can be used in extension-implementations to theOIDCLoginProtocolto add additional parameters to the redirectUri after failed authenticationjakarta.ws.rs.core.ResponseOIDCLoginProtocol.finishBrowserLogout(UserSessionModel userSession, AuthenticationSessionModel logoutSession) OIDCLoginProtocol.getClientData(AuthenticationSessionModel authSession) protected booleanOIDCLoginProtocol.isAuthTimeExpired(UserSessionModel userSession, AuthenticationSessionModel authSession) protected booleanOIDCLoginProtocol.isPromptLogin(AuthenticationSessionModel authSession) protected booleanOIDCLoginProtocol.isReAuthRequiredForKcAction(UserSessionModel userSession, AuthenticationSessionModel authSession) booleanOIDCLoginProtocol.requireReauthentication(UserSessionModel userSession, AuthenticationSessionModel authSession) jakarta.ws.rs.core.ResponseOIDCLoginProtocol.sendError(AuthenticationSessionModel authSession, LoginProtocol.Error error, String errorMessage) -
Uses of AuthenticationSessionModel in org.keycloak.protocol.oidc.endpoints
Methods in org.keycloak.protocol.oidc.endpoints with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionvoidAuthorizationEndpointChecker.AuthorizationCheckException.throwAsErrorPageException(AuthenticationSessionModel authenticationSession) -
Uses of AuthenticationSessionModel in org.keycloak.protocol.oidc.grants.device
Methods in org.keycloak.protocol.oidc.grants.device with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionstatic jakarta.ws.rs.core.ResponseDeviceGrantType.approveOAuth2DeviceAuthorization(AuthenticationSessionModel authSession, AuthenticatedClientSessionModel clientSession, KeycloakSession session) static jakarta.ws.rs.core.ResponseDeviceGrantType.denyOAuth2DeviceAuthorization(AuthenticationSessionModel authSession, LoginProtocol.Error error, KeycloakSession session) static booleanDeviceGrantType.isDeviceCodeDeniedForDeviceVerificationFlow(KeycloakSession session, RealmModel realm, AuthenticationSessionModel authSession) static booleanDeviceGrantType.isOAuth2DeviceVerificationFlow(AuthenticationSessionModel authSession) -
Uses of AuthenticationSessionModel in org.keycloak.protocol.oidc.grants.device.endpoints
Methods in org.keycloak.protocol.oidc.grants.device.endpoints that return AuthenticationSessionModelModifier and TypeMethodDescriptionprotected AuthenticationSessionModelDeviceEndpoint.createAuthenticationSession(ClientModel client, String scope) -
Uses of AuthenticationSessionModel in org.keycloak.protocol.oidc.tokenexchange
Methods in org.keycloak.protocol.oidc.tokenexchange that return AuthenticationSessionModelModifier and TypeMethodDescriptionprotected AuthenticationSessionModelAbstractTokenExchangeProvider.createSessionModel(UserSessionModel targetUserSession, RootAuthenticationSessionModel rootAuthSession, UserModel targetUser, ClientModel client, String scope) -
Uses of AuthenticationSessionModel in org.keycloak.protocol.oidc.utils
Methods in org.keycloak.protocol.oidc.utils with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionstatic URILogoutUtil.getRedirectUriWithAttachedState(String redirectUri, AuthenticationSessionModel logoutSession) static jakarta.ws.rs.core.ResponseLogoutUtil.sendResponseAfterLogoutFinished(KeycloakSession session, AuthenticationSessionModel logoutSession) -
Uses of AuthenticationSessionModel in org.keycloak.protocol.saml
Methods in org.keycloak.protocol.saml that return AuthenticationSessionModelModifier and TypeMethodDescriptionSamlService.getOrCreateLoginSessionForIdpInitiatedSso(KeycloakSession session, RealmModel realm, ClientModel client, String relayState) Creates a client session object for SAML IdP-initiated SSO session.Methods in org.keycloak.protocol.saml with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionjakarta.ws.rs.core.ResponseSamlProtocol.authenticated(AuthenticationSessionModel authSession, UserSessionModel userSession, ClientSessionContext clientSessionCtx) protected abstract jakarta.ws.rs.core.ResponseSamlService.BindingProtocol.error(KeycloakSession session, AuthenticationSessionModel authenticationSession, jakarta.ws.rs.core.Response.Status status, String message, Object... parameters) protected jakarta.ws.rs.core.ResponseSamlService.PostBindingProtocol.error(KeycloakSession session, AuthenticationSessionModel authenticationSession, jakarta.ws.rs.core.Response.Status status, String message, Object... parameters) protected jakarta.ws.rs.core.ResponseSamlService.RedirectBindingProtocol.error(KeycloakSession session, AuthenticationSessionModel authenticationSession, jakarta.ws.rs.core.Response.Status status, String message, Object... parameters) jakarta.ws.rs.core.ResponseSamlProtocol.finishBrowserLogout(UserSessionModel userSession, AuthenticationSessionModel logoutSession) SamlProtocol.getClientData(AuthenticationSessionModel authSession) protected StringSamlProtocol.getNameIdFormat(SamlClient samlClient, AuthenticationSessionModel authSession) protected booleanSamlProtocol.isPostBinding(AuthenticationSessionModel authSession) protected jakarta.ws.rs.core.ResponseSamlService.newBrowserAuthentication(AuthenticationSessionModel authSession, boolean isPassive, boolean redirectToAuthentication) protected jakarta.ws.rs.core.ResponseSamlService.newBrowserAuthentication(AuthenticationSessionModel authSession, boolean isPassive, boolean redirectToAuthentication, SamlProtocol samlProtocol) booleanSamlProtocol.requireReauthentication(UserSessionModel userSession, AuthenticationSessionModel authSession) jakarta.ws.rs.core.ResponseSamlProtocol.sendError(AuthenticationSessionModel authSession, LoginProtocol.Error error, String errorMessage) -
Uses of AuthenticationSessionModel in org.keycloak.protocol.saml.preprocessor
Methods in org.keycloak.protocol.saml.preprocessor with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptiondefault AuthnRequestTypeSamlAuthenticationPreprocessor.beforeProcessingLoginRequest(AuthnRequestType authnRequest, AuthenticationSessionModel authSession) Called before a login request is processed.default StatusResponseTypeSamlAuthenticationPreprocessor.beforeProcessingLoginResponse(StatusResponseType statusResponse, AuthenticationSessionModel authSession) Called before a login response is processed.default AuthnRequestTypeSamlAuthenticationPreprocessor.beforeSendingLoginRequest(AuthnRequestType authnRequest, AuthenticationSessionModel clientSession) Called before a login request is sent. -
Uses of AuthenticationSessionModel in org.keycloak.protocol.saml.profile.ecp
Methods in org.keycloak.protocol.saml.profile.ecp with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionprotected AuthenticationFlowModelSamlEcpProfileService.getAuthenticationFlow(AuthenticationSessionModel authSession) protected jakarta.ws.rs.core.ResponseSamlEcpProfileService.newBrowserAuthentication(AuthenticationSessionModel authSession, boolean isPassive, boolean redirectToAuthentication, SamlProtocol samlProtocol) -
Uses of AuthenticationSessionModel in org.keycloak.services
Methods in org.keycloak.services that return AuthenticationSessionModelMethods in org.keycloak.services with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionstatic jakarta.ws.rs.core.ResponseErrorPage.error(KeycloakSession session, AuthenticationSessionModel authenticationSession, jakarta.ws.rs.core.Response.Status status, String message, Object... parameters) voidDefaultKeycloakContext.setAuthenticationSession(AuthenticationSessionModel authenticationSession) Constructors in org.keycloak.services with parameters of type AuthenticationSessionModelModifierConstructorDescriptionErrorPageException(KeycloakSession session, AuthenticationSessionModel authSession, jakarta.ws.rs.core.Response.Status status, String errorMessage, Object... parameters) -
Uses of AuthenticationSessionModel in org.keycloak.services.clientpolicy.context
Methods in org.keycloak.services.clientpolicy.context that return AuthenticationSessionModelModifier and TypeMethodDescriptionAuthorizationRequestContext.getAuthenticationSession()ImplicitHybridTokenResponse.getAuthenticationSession()Constructors in org.keycloak.services.clientpolicy.context with parameters of type AuthenticationSessionModelModifierConstructorDescriptionAuthorizationRequestContext(OIDCResponseType parsedResponseType, AuthorizationEndpointRequest request, String redirectUri, jakarta.ws.rs.core.MultivaluedMap<String, String> requestParameters, AuthenticationSessionModel authenticationSession) ImplicitHybridTokenResponse(AuthenticationSessionModel authSession, ClientSessionContext clientSessionCtx, TokenManager.AccessTokenResponseBuilder accessTokenResponseBuilder) -
Uses of AuthenticationSessionModel in org.keycloak.services.managers
Methods in org.keycloak.services.managers that return AuthenticationSessionModelModifier and TypeMethodDescriptionstatic AuthenticationSessionModelAuthenticationManager.createOrJoinLogoutSession(KeycloakSession session, RealmModel realm, AuthenticationSessionManager asm, UserSessionModel userSession, boolean browserCookie, boolean initiateLogout) AuthenticationSessionManager.getAuthenticationSessionByEncodedIdAndClient(RealmModel realm, String encodedAuthSesionId, ClientModel client, String tabId) AuthenticationSessionManager.getAuthenticationSessionByIdAndClient(RealmModel realm, String authSessionId, ClientModel client, String tabId) AuthenticationSessionManager.getCurrentAuthenticationSession(RealmModel realm, ClientModel client, String tabId) Returns current authentication session if it exists, otherwise returnsnull.Methods in org.keycloak.services.managers with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionstatic jakarta.ws.rs.core.ResponseAuthenticationManager.actionRequired(KeycloakSession session, AuthenticationSessionModel authSession, HttpRequest request, EventBuilder event) static voidAuthenticationManager.evaluateRequiredActionTriggers(KeycloakSession session, AuthenticationSessionModel authSession, HttpRequest request, EventBuilder event, RealmModel realm, UserModel user) protected static jakarta.ws.rs.core.ResponseAuthenticationManager.executionActions(KeycloakSession session, AuthenticationSessionModel authSession, HttpRequest request, EventBuilder event, RealmModel realm, UserModel user, Set<String> ignoredActions) static jakarta.ws.rs.core.ResponseAuthenticationManager.finishedRequiredActions(KeycloakSession session, AuthenticationSessionModel authSession, UserSessionModel userSession, ClientConnection clientConnection, HttpRequest request, jakarta.ws.rs.core.UriInfo uriInfo, EventBuilder event) AuthenticationManager.getClientLogoutAction(AuthenticationSessionModel logoutAuthSession, String clientUuid) Returns the logout state of the particular client as per thelogoutAuthSessionAuthenticationSessionManager.getUserSession(AuthenticationSessionModel authSession) static voidAuthenticationManager.logSuccess(KeycloakSession session, AuthenticationSessionModel authSession) static UserModelAuthenticationManager.lookupUserForBruteForceLog(KeycloakSession session, RealmModel realm, AuthenticationSessionModel authenticationSession) static jakarta.ws.rs.core.ResponseAuthenticationManager.nextActionAfterAuthentication(KeycloakSession session, AuthenticationSessionModel authSession, ClientConnection clientConnection, HttpRequest request, jakarta.ws.rs.core.UriInfo uriInfo, EventBuilder event) static StringAuthenticationManager.nextRequiredAction(KeycloakSession session, AuthenticationSessionModel authSession, HttpRequest request, EventBuilder event) static jakarta.ws.rs.core.ResponseAuthenticationManager.redirectAfterSuccessfulFlow(KeycloakSession session, RealmModel realm, UserSessionModel userSession, ClientSessionContext clientSessionCtx, HttpRequest request, jakarta.ws.rs.core.UriInfo uriInfo, ClientConnection clientConnection, EventBuilder event, AuthenticationSessionModel authSession) static jakarta.ws.rs.core.ResponseAuthenticationManager.redirectAfterSuccessfulFlow(KeycloakSession session, RealmModel realm, UserSessionModel userSession, ClientSessionContext clientSessionCtx, HttpRequest request, jakarta.ws.rs.core.UriInfo uriInfo, ClientConnection clientConnection, EventBuilder event, AuthenticationSessionModel authSession, LoginProtocol protocol) static jakarta.ws.rs.core.ResponseAuthenticationManager.redirectToRequiredActions(KeycloakSession session, RealmModel realm, AuthenticationSessionModel authSession, jakarta.ws.rs.core.UriInfo uriInfo, String requiredAction) voidAuthenticationSessionManager.removeAuthenticationSession(RealmModel realm, AuthenticationSessionModel authSession, boolean expireRestartCookie) booleanAuthenticationSessionManager.removeTabIdInAuthenticationSession(RealmModel realm, AuthenticationSessionModel authSession) Remove authentication session from root session.static voidAuthenticationManager.setClientLogoutAction(AuthenticationSessionModel logoutAuthSession, String clientUuid, CommonClientSessionModel.Action action) Sets logout state of the particular client into thelogoutAuthSessionstatic voidAuthenticationManager.setClientScopesInSession(KeycloakSession session, AuthenticationSessionModel authSession) static voidAuthenticationManager.setKcActionStatus(String executedProviderId, RequiredActionContext.KcActionStatus status, AuthenticationSessionModel authSession) static voidAuthenticationManager.setKcActionToEnforced(String executedProviderId, AuthenticationSessionModel authSession) voidAuthenticationSessionManager.updateAuthenticationSessionAfterSuccessfulAuthentication(RealmModel realm, AuthenticationSessionModel authSession) This happens when one browser tab successfully finished authentication (including required actions and consent screen if applicable) Just authenticationSession of the current browser tab is removed from "root authentication session" and other tabs are kept, so authentication can be automatically finished in other browser tabs (typically with authChecker.js javascript) -
Uses of AuthenticationSessionModel in org.keycloak.services.resources
Methods in org.keycloak.services.resources that return AuthenticationSessionModelModifier and TypeMethodDescriptionIdentityBrokerService.getAndVerifyAuthenticationSession(String encodedCode) SessionCodeChecks.getAuthenticationSession()SessionCodeChecks.initialVerifyAuthSession()Methods in org.keycloak.services.resources that return types with arguments of type AuthenticationSessionModelMethods in org.keycloak.services.resources with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionprotected jakarta.ws.rs.core.ResponseIdentityBrokerService.browserAuthentication(AuthenticationSessionModel authSession, String errorMessage, Object... parameters) static <T extends JsonWebToken>
booleanLoginActionsServiceChecks.doesAuthenticationSessionFromCookieMatchOneFromToken(ActionTokenContext<T> context, AuthenticationSessionModel authSessionFromCookie, String authSessionCompoundIdFromToken) This check verifies that current authentication session is consistent with the one specified in token.protected jakarta.ws.rs.core.ResponseLoginActionsService.processAuthentication(boolean action, String execution, AuthenticationSessionModel authSession, String errorMessage) protected jakarta.ws.rs.core.ResponseLoginActionsService.processFlow(boolean action, String execution, AuthenticationSessionModel authSession, String flowPath, AuthenticationFlowModel flow, String errorMessage, AuthenticationProcessor processor) protected voidLoginActionsService.processLocaleParam(AuthenticationSessionModel authSession) protected jakarta.ws.rs.core.ResponseLoginActionsService.processRegistration(boolean action, String execution, AuthenticationSessionModel authSession, String errorMessage) protected jakarta.ws.rs.core.ResponseLoginActionsService.processResetCredentials(boolean actionRequest, String execution, AuthenticationSessionModel authSession, String errorMessage) static jakarta.ws.rs.core.ResponseLoginActionsService.redirectToAfterBrokerLoginEndpoint(KeycloakSession session, RealmModel realm, jakarta.ws.rs.core.UriInfo uriInfo, AuthenticationSessionModel authSession, boolean firstBrokerLogin) jakarta.ws.rs.core.ResponseIdentityBrokerService.retryLogin(IdentityProvider<?> identityProvider, AuthenticationSessionModel authSession) jakarta.ws.rs.core.ResponseIdentityBrokerService.validateUser(AuthenticationSessionModel authSession, UserModel user, RealmModel realm) -
Uses of AuthenticationSessionModel in org.keycloak.services.util
Methods in org.keycloak.services.util with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionAuthenticationFlowURLHelper.getLastExecutionUrl(AuthenticationSessionModel authSession) abstract jakarta.ws.rs.core.ResponseBrowserHistoryHelper.loadSavedResponse(KeycloakSession session, AuthenticationSessionModel authSession) static voidLocaleUtil.processLocaleParam(KeycloakSession session, RealmModel realm, AuthenticationSessionModel authSession) abstract jakarta.ws.rs.core.ResponseBrowserHistoryHelper.saveResponseAndRedirect(KeycloakSession session, AuthenticationSessionModel authSession, jakarta.ws.rs.core.Response response, boolean actionRequest, HttpRequest httpRequest) jakarta.ws.rs.core.ResponseAuthenticationFlowURLHelper.showPageExpired(AuthenticationSessionModel authSession) -
Uses of AuthenticationSessionModel in org.keycloak.sessions
Methods in org.keycloak.sessions that return AuthenticationSessionModelModifier and TypeMethodDescriptionRootAuthenticationSessionModel.createAuthenticationSession(ClientModel client) Create a new authentication session and returns it.RootAuthenticationSessionModel.getAuthenticationSession(ClientModel client, String tabId) Returns an authentication session for the particular client and tab or null if it doesn't yet exists.Methods in org.keycloak.sessions that return types with arguments of type AuthenticationSessionModelModifier and TypeMethodDescriptionRootAuthenticationSessionModel.getAuthenticationSessions()Returns authentication sessions for the root authentication session.Methods in org.keycloak.sessions with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionAuthenticationSessionCompoundId.fromAuthSession(AuthenticationSessionModel authSession) -
Uses of AuthenticationSessionModel in org.keycloak.social.twitter
Methods in org.keycloak.social.twitter with parameters of type AuthenticationSessionModelModifier and TypeMethodDescriptionvoidTwitterIdentityProvider.authenticationFinished(AuthenticationSessionModel authSession, BrokeredIdentityContext context)