Class SHA256PairwiseSubMapper
java.lang.Object
org.keycloak.protocol.oidc.mappers.AbstractOIDCProtocolMapper
org.keycloak.protocol.oidc.mappers.AbstractPairwiseSubMapper
org.keycloak.protocol.oidc.mappers.SHA256PairwiseSubMapper
- All Implemented Interfaces:
LogoutTokenMapper,OIDCAccessTokenMapper,OIDCIDTokenMapper,TokenIntrospectionTokenMapper,UserInfoTokenMapper,ProtocolMapper,ConfiguredProvider,Provider,ProviderFactory<ProtocolMapper>
-
Field Summary
FieldsFields inherited from class org.keycloak.protocol.oidc.mappers.AbstractPairwiseSubMapper
PROVIDER_ID_SUFFIXFields inherited from class org.keycloak.protocol.oidc.mappers.AbstractOIDCProtocolMapper
TOKEN_MAPPER_CATEGORY -
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionstatic ProtocolMapperRepresentationcreatePairwiseMapper(String sectorIdentifierUri, String salt) generateSub(ProtocolMapperModel mappingModel, String sectorIdentifier, String localSub) Generates a pairwise subject identifier.Override to add additional provider configuration properties.voidvalidateAdditionalConfig(KeycloakSession session, RealmModel realm, ProtocolMapperContainerModel mapperContainer, ProtocolMapperModel mapperModel) Override to add additional configuration validation.Methods inherited from class org.keycloak.protocol.oidc.mappers.AbstractPairwiseSubMapper
getConfigProperties, getDisplayCategory, getId, setAccessTokenSubject, setIDTokenSubject, setLogoutTokenSubject, setUserInfoTokenSubject, transformAccessToken, transformIDToken, transformIntrospectionToken, transformLogoutToken, transformUserInfoToken, validateConfigMethods inherited from class org.keycloak.protocol.oidc.mappers.AbstractOIDCProtocolMapper
close, create, getEffectiveModel, getProtocol, getShouldUseLightweightToken, init, postInit, setClaim, setClaim, setClaim, transformAccessTokenResponseMethods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, waitMethods inherited from interface org.keycloak.provider.ConfiguredProvider
getConfigMethods inherited from interface org.keycloak.protocol.ProtocolMapper
getPriorityMethods inherited from interface org.keycloak.provider.ProviderFactory
dependsOn, getConfigMetadata, order
-
Field Details
-
PROVIDER_ID
- See Also:
-
-
Constructor Details
-
SHA256PairwiseSubMapper
public SHA256PairwiseSubMapper()
-
-
Method Details
-
createPairwiseMapper
public static ProtocolMapperRepresentation createPairwiseMapper(String sectorIdentifierUri, String salt) -
validateAdditionalConfig
public void validateAdditionalConfig(KeycloakSession session, RealmModel realm, ProtocolMapperContainerModel mapperContainer, ProtocolMapperModel mapperModel) throws ProtocolMapperConfigException Description copied from class:AbstractPairwiseSubMapperOverride to add additional configuration validation. Called when instance of mapperModel is created/updated for this protocolMapper through admin endpoint.- Overrides:
validateAdditionalConfigin classAbstractPairwiseSubMappermapperContainer- client or clientScope- Throws:
ProtocolMapperConfigException- if configuration provided in mapperModel is not valid
-
getHelpText
-
getAdditionalConfigProperties
Description copied from class:AbstractPairwiseSubMapperOverride to add additional provider configuration properties. By default, a pairwise sub mapper will only contain configuration for a sector identifier URI.- Overrides:
getAdditionalConfigPropertiesin classAbstractPairwiseSubMapper- Returns:
- A list of provider configuration properties.
-
generateSub
public String generateSub(ProtocolMapperModel mappingModel, String sectorIdentifier, String localSub) Description copied from class:AbstractPairwiseSubMapperGenerates a pairwise subject identifier.- Specified by:
generateSubin classAbstractPairwiseSubMappersectorIdentifier- client sector identifierlocalSub- local subject identifier (user id)- Returns:
- A pairwise subject identifier
-
getDisplayType
-
getIdPrefix
- Specified by:
getIdPrefixin classAbstractPairwiseSubMapper
-