Class ValidateOTP
java.lang.Object
org.keycloak.authentication.authenticators.directgrant.AbstractDirectGrantAuthenticator
org.keycloak.authentication.authenticators.directgrant.ValidateOTP
- All Implemented Interfaces:
Authenticator,AuthenticatorFactory,ConfigurableAuthenticatorFactory,CredentialValidator<OTPCredentialProvider>,ConfiguredProvider,Provider,ProviderFactory<Authenticator>
public class ValidateOTP
extends AbstractDirectGrantAuthenticator
implements CredentialValidator<OTPCredentialProvider>
- Version:
- $Revision: 1 $
- Author:
- Bill Burke
-
Field Summary
FieldsFields inherited from interface org.keycloak.authentication.ConfigurableAuthenticatorFactory
REQUIREMENT_CHOICES -
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionvoidauthenticate(AuthenticationFlowContext context) Initial call for the authenticator.booleanconfiguredFor(KeycloakSession session, RealmModel realm, UserModel user) Is this authenticator configured for this user.getCredentialProvider(KeycloakSession session) Friendly name for the authenticatorgetId()General authenticator type, i.e.What requirement settings are allowed.booleanIs this authenticator configurable?booleanDoes this authenticator have required actions that can set if the user does not have this authenticator set up?booleanDoes this authenticator require that the user has already been identified? That AuthenticatorContext.getUser() is not null?voidsetRequiredActions(KeycloakSession session, RealmModel realm, UserModel user) Set actions to configure authenticatorMethods inherited from class org.keycloak.authentication.authenticators.directgrant.AbstractDirectGrantAuthenticator
action, close, create, errorResponse, init, postInitMethods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, waitMethods inherited from interface org.keycloak.authentication.Authenticator
areRequiredActionsEnabled, getRequiredActionsMethods inherited from interface org.keycloak.authentication.ConfigurableAuthenticatorFactory
getOptionalReferenceCategoriesMethods inherited from interface org.keycloak.provider.ConfiguredProvider
getConfigMethods inherited from interface org.keycloak.authentication.CredentialValidator
getCredentials, getTypeMethods inherited from interface org.keycloak.provider.ProviderFactory
dependsOn, getConfigMetadata, order
-
Field Details
-
PROVIDER_ID
- See Also:
-
-
Constructor Details
-
ValidateOTP
public ValidateOTP()
-
-
Method Details
-
authenticate
Description copied from interface:AuthenticatorInitial call for the authenticator. This method should check the current HTTP request to determine if the request satisfies the Authenticator's requirements. If it doesn't, it should send back a challenge response by calling the AuthenticationFlowContext.challenge(Response). If this challenge is a authentication, the action URL of the form must point to /realms/{realm}/login-actions/authenticate?code={session-code}&execution={executionId} or /realms/{realm}/login-actions/registration?code={session-code}&execution={executionId} {session-code} pertains to the code generated from AuthenticationFlowContext.generateAccessCode(). The {executionId} pertains to the AuthenticationExecutionModel.getId() value obtained from AuthenticationFlowContext.getExecution(). The action URL will invoke the action() method described below.- Specified by:
authenticatein interfaceAuthenticator
-
requiresUser
public boolean requiresUser()Description copied from interface:AuthenticatorDoes this authenticator require that the user has already been identified? That AuthenticatorContext.getUser() is not null?- Specified by:
requiresUserin interfaceAuthenticator- Returns:
-
configuredFor
Description copied from interface:AuthenticatorIs this authenticator configured for this user.- Specified by:
configuredForin interfaceAuthenticator- Returns:
-
setRequiredActions
Description copied from interface:AuthenticatorSet actions to configure authenticator- Specified by:
setRequiredActionsin interfaceAuthenticator
-
isUserSetupAllowed
public boolean isUserSetupAllowed()Description copied from interface:ConfigurableAuthenticatorFactoryDoes this authenticator have required actions that can set if the user does not have this authenticator set up?- Specified by:
isUserSetupAllowedin interfaceConfigurableAuthenticatorFactory- Returns:
-
getDisplayType
Description copied from interface:ConfigurableAuthenticatorFactoryFriendly name for the authenticator- Specified by:
getDisplayTypein interfaceConfigurableAuthenticatorFactory- Returns:
-
getReferenceCategory
Description copied from interface:ConfigurableAuthenticatorFactoryGeneral authenticator type, i.e. totp, password, cert.- Specified by:
getReferenceCategoryin interfaceConfigurableAuthenticatorFactory- Returns:
- null if not a referenceable category
-
isConfigurable
public boolean isConfigurable()Description copied from interface:ConfigurableAuthenticatorFactoryIs this authenticator configurable?- Specified by:
isConfigurablein interfaceConfigurableAuthenticatorFactory- Returns:
-
getRequirementChoices
Description copied from interface:ConfigurableAuthenticatorFactoryWhat requirement settings are allowed.- Specified by:
getRequirementChoicesin interfaceConfigurableAuthenticatorFactory- Returns:
-
getHelpText
- Specified by:
getHelpTextin interfaceConfiguredProvider
-
getConfigProperties
- Specified by:
getConfigPropertiesin interfaceConfiguredProvider
-
getId
- Specified by:
getIdin interfaceProviderFactory<Authenticator>
-
getCredentialProvider
- Specified by:
getCredentialProviderin interfaceCredentialValidator<OTPCredentialProvider>
-