Package org.keycloak.authentication
Class AuthenticationProcessor
java.lang.Object
org.keycloak.authentication.AuthenticationProcessor
- Direct Known Subclasses:
ResetCredentialsActionTokenHandler.ResetCredsAuthenticationProcessor
- Version:
- $Revision: 1 $
- Author:
- Bill Burke
-
Nested Class Summary
Nested Classes -
Field Summary
FieldsModifier and TypeFieldDescriptionprotected Runnablestatic final Stringprotected AuthenticationSessionModelstatic final Stringstatic final Stringstatic final Stringprotected booleanprotected ClientModelprotected ClientConnectionstatic final Stringstatic final Stringprotected EventBuilderstatic final Stringprotected Stringprotected Stringstatic final Stringstatic final Stringprotected org.keycloak.authentication.AuthenticationProcessor.ForwardedFormMessageStoreThis could be an error message forwarded from another authenticatorprotected org.keycloak.authentication.AuthenticationProcessor.ForwardedFormMessageStoreThis could be an success message forwarded from another authenticatorprotected org.keycloak.authentication.AuthenticationProcessor.ForwardedFormMessageStoreThis could be an success message forwarded from another authenticatorstatic final Stringprotected static final org.jboss.logging.Loggerprotected BruteForceProtectorprotected RealmModelprotected HttpRequestprotected KeycloakSessionprotected jakarta.ws.rs.core.UriInfoprotected UserSessionModel -
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionstatic ClientSessionContextattachSession(AuthenticationSessionModel authSession, UserSessionModel userSession, KeycloakSession session, RealmModel realm, ClientConnection connection, EventBuilder event) jakarta.ws.rs.core.Responsejakarta.ws.rs.core.Responsejakarta.ws.rs.core.Responsejakarta.ws.rs.core.ResponseauthenticationAction(String execution) protected jakarta.ws.rs.core.Responsevoidstatic AuthenticationSessionModelclone(KeycloakSession session, AuthenticationSessionModel authSession) createAuthenticatorContext(AuthenticationExecutionModel model, Authenticator authenticator, List<AuthenticationExecutionModel> executions) createClientAuthenticatorContext(AuthenticationExecutionModel model, ClientAuthenticator clientAuthenticator, List<AuthenticationExecutionModel> executions) createFlowExecution(String flowId, AuthenticationExecutionModel execution) voidjakarta.ws.rs.core.ResponsefinishAuthentication(LoginProtocol protocol) static StringgetClientData(KeycloakSession session, AuthenticationSessionModel authSession) getEvent()getRealm()getRefreshUrl(boolean authSessionIdParam) jakarta.ws.rs.core.UriInfojakarta.ws.rs.core.ResponsehandleBrowserException(Exception failure) jakarta.ws.rs.core.Responsejakarta.ws.rs.core.ResponsehandleClientAuthException(Exception failure) booleanbooleanvoidnewEvent()static AuthenticationSessionModelrecreate(KeycloakSession session, AuthenticationSessionModel authSession) jakarta.ws.rs.core.Responsevoidstatic voidresetFlow(AuthenticationSessionModel authSession, String flowPath) setAuthenticationSession(AuthenticationSessionModel authenticationSession) voidsetAutheticatedUser(UserModel user) setBrowserFlow(boolean browserFlow) voidsetClient(ClientModel client) setConnection(ClientConnection connection) setEventBuilder(EventBuilder eventBuilder) setFlowPath(String flowPath) This is the path segment to append when generating an action URL.setForwardedErrorMessage(FormMessage forwardedErrorMessage) setForwardedInfoMessage(FormMessage forwardedInfoMessage) setForwardedSuccessMessage(FormMessage forwardedSuccessMessage) setRealm(RealmModel realm) setRequest(HttpRequest request) setSession(KeycloakSession session) setUriInfo(jakarta.ws.rs.core.UriInfo uriInfo) voidvalidateUser(UserModel authenticatedUser)
-
Field Details
-
CURRENT_AUTHENTICATION_EXECUTION
- See Also:
-
LAST_PROCESSED_EXECUTION
- See Also:
-
CURRENT_FLOW_PATH
- See Also:
-
FORKED_FROM
- See Also:
-
AUTHN_CREDENTIALS
- See Also:
-
BROKER_SESSION_ID
- See Also:
-
BROKER_USER_ID
- See Also:
-
FORWARDED_PASSIVE_LOGIN
- See Also:
-
AUTHENTICATION_SELECTOR_SCREEN_DISPLAYED
- See Also:
-
FIRST_OFFLINE_ACCESS
- See Also:
-
logger
protected static final org.jboss.logging.Logger logger -
realm
-
userSession
-
authenticationSession
-
connection
-
uriInfo
protected jakarta.ws.rs.core.UriInfo uriInfo -
session
-
event
-
request
-
flowId
-
flowPath
-
browserFlow
protected boolean browserFlow -
protector
-
afterResetListener
-
forwardedErrorMessageStore
protected org.keycloak.authentication.AuthenticationProcessor.ForwardedFormMessageStore forwardedErrorMessageStoreThis could be an error message forwarded from another authenticator -
forwardedSuccessMessageStore
protected org.keycloak.authentication.AuthenticationProcessor.ForwardedFormMessageStore forwardedSuccessMessageStoreThis could be an success message forwarded from another authenticator -
forwardedInfoMessageStore
protected org.keycloak.authentication.AuthenticationProcessor.ForwardedFormMessageStore forwardedInfoMessageStoreThis could be an success message forwarded from another authenticator -
client
-
clientAuthAttributes
-
-
Constructor Details
-
AuthenticationProcessor
public AuthenticationProcessor()
-
-
Method Details
-
isBrowserFlow
public boolean isBrowserFlow() -
setBrowserFlow
-
getBruteForceProtector
-
getRealm
-
getClient
-
setClient
-
getClientAuthAttributes
-
getAuthenticationSession
-
getConnection
-
getUriInfo
public jakarta.ws.rs.core.UriInfo getUriInfo() -
getSession
-
getUserSession
-
setRealm
-
setAuthenticationSession
public AuthenticationProcessor setAuthenticationSession(AuthenticationSessionModel authenticationSession) -
setConnection
-
setUriInfo
-
setSession
-
setEventBuilder
-
setRequest
-
setFlowId
-
setFlowPath
This is the path segment to append when generating an action URL.- Parameters:
flowPath-
-
setForwardedErrorMessage
-
setForwardedSuccessMessage
-
setForwardedInfoMessage
-
generateCode
-
newEvent
-
getEvent
-
getRequest
-
getFlowPath
-
setAutheticatedUser
-
clearAuthenticatedUser
public void clearAuthenticatedUser() -
getClientData
-
getRefreshUrl
-
logFailure
public void logFailure() -
isSuccessful
-
handleBrowserExceptionList
-
handleBrowserException
-
handleClientAuthException
-
createFlowExecution
public AuthenticationFlow createFlowExecution(String flowId, AuthenticationExecutionModel execution) -
authenticate
- Throws:
AuthenticationFlowException
-
authenticateClient
- Throws:
AuthenticationFlowException
-
redirectToFlow
public jakarta.ws.rs.core.Response redirectToFlow() -
resetFlow
public void resetFlow() -
resetFlow
-
recreate
public static AuthenticationSessionModel recreate(KeycloakSession session, AuthenticationSessionModel authSession) -
clone
public static AuthenticationSessionModel clone(KeycloakSession session, AuthenticationSessionModel authSession) -
authenticationAction
-
authenticateOnly
- Throws:
AuthenticationFlowException
-
attachSession
-
attachSession
public static ClientSessionContext attachSession(AuthenticationSessionModel authSession, UserSessionModel userSession, KeycloakSession session, RealmModel realm, ClientConnection connection, EventBuilder event) -
evaluateRequiredActionTriggers
public void evaluateRequiredActionTriggers() -
finishAuthentication
-
validateUser
-
authenticationComplete
protected jakarta.ws.rs.core.Response authenticationComplete() -
nextRequiredAction
-
createAuthenticatorContext
public AuthenticationProcessor.Result createAuthenticatorContext(AuthenticationExecutionModel model, Authenticator authenticator, List<AuthenticationExecutionModel> executions) -
createClientAuthenticatorContext
public AuthenticationProcessor.Result createClientAuthenticatorContext(AuthenticationExecutionModel model, ClientAuthenticator clientAuthenticator, List<AuthenticationExecutionModel> executions)
-