Package org.keycloak.authentication
Interface AbstractAuthenticationFlowContext
- All Known Subinterfaces:
- AuthenticationFlowContext,- ClientAuthenticationFlowContext
- All Known Implementing Classes:
- AuthenticationProcessor.Result
public interface AbstractAuthenticationFlowContext
- Version:
- $Revision: 1 $
- Author:
- Bill Burke
- 
Method SummaryModifier and TypeMethodDescriptionvoidThere was no failure or challenge.voidchallenge(jakarta.ws.rs.core.Response challenge) Sends a challenge response back to the HTTP client.voidfailure(AuthenticationFlowError error) Aborts the current flowvoidfailure(AuthenticationFlowError error, jakarta.ws.rs.core.Response response) Aborts the current flow.voidfailure(AuthenticationFlowError error, jakarta.ws.rs.core.Response response, String eventDetails, String userErrorMessage) Aborts the current flow.voidfailureChallenge(AuthenticationFlowError error, jakarta.ws.rs.core.Response challenge) Same behavior as forceChallenge(), but the error count in brute force attack detection will be incremented.voidforceChallenge(jakarta.ws.rs.core.Response challenge) Sends the challenge back to the HTTP client regardless of the current execution requirementGenerates access code and updates clientsession timestamp Access codes must be included in form action callbacks as a query parameter.Get any configuration associated with the current executiongetCategoryRequirementFromCurrentFlow(String authenticatorCategory) Information about the IP address from the connecting HTTP client.getError()Get the error condition of a failed execution.getEvent()Current event builder being usedGet details of the event that caused an errorThe current execution in the flowThis could be an error message forwarded from another authenticator that is restarting or continuing the flo.This could be an info message forwarded from another authenticator.This could be an success message forwarded from another authenticator that is restarting or continuing the flow.getRealm()Current realmCurrent sessionGet the current status of the current execution.jakarta.ws.rs.core.UriInfoUriInfo of the current requestA custom error message that can be displayed to the usernewEvent()Create a refresh new EventBuilder to use within this contextvoidsetForwardedInfoMessage(String message, Object... parameters) voidsuccess()Mark the current execution as successful.voidMark the current execution as successful and the auth session sets the credential type in the authentication session as the last credential used to authenticate the user.
- 
Method Details- 
getEventEventBuilder getEvent()Current event builder being used- Returns:
 
- 
newEventEventBuilder newEvent()Create a refresh new EventBuilder to use within this context- Returns:
 
- 
getExecutionAuthenticationExecutionModel getExecution()The current execution in the flow- Returns:
 
- 
getTopLevelFlowAuthenticationFlowModel getTopLevelFlow()- Returns:
- the top level flow (root flow) of this authentication
 
- 
getRealmRealmModel getRealm()Current realm- Returns:
 
- 
getConnectionClientConnection getConnection()Information about the IP address from the connecting HTTP client.- Returns:
 
- 
getUriInfojakarta.ws.rs.core.UriInfo getUriInfo()UriInfo of the current request- Returns:
 
- 
getSessionKeycloakSession getSession()Current session- Returns:
 
- 
getHttpRequestHttpRequest getHttpRequest()
- 
getProtectorBruteForceProtector getProtector()
- 
getAuthenticatorConfigAuthenticatorConfigModel getAuthenticatorConfig()Get any configuration associated with the current execution- Returns:
 
- 
getForwardedErrorMessageFormMessage getForwardedErrorMessage()This could be an error message forwarded from another authenticator that is restarting or continuing the flo. For example the brokering API sends this when the broker failed authentication and we want to continue authentication locally. forwardedErrorMessage can then be displayed by whatever form is challenging.
- 
getForwardedSuccessMessageFormMessage getForwardedSuccessMessage()This could be an success message forwarded from another authenticator that is restarting or continuing the flow. For example a reset password sends an email, then resets the flow with a success message. forwardedSuccessMessage can then be displayed by whatever form is challenging.
- 
getForwardedInfoMessageFormMessage getForwardedInfoMessage()This could be an info message forwarded from another authenticator. This info message will be usually displayed only once on the first screen shown to the user during authentication. The authenticator forwarding the info message does not know which the screen would be. For example during user re-authentication, the user should see info message like "Please re-authenticate", but at the beginning of the authentication, it is not 100% clear which screen will be the first shown screen where this message should be displayed
- 
setForwardedInfoMessage- Parameters:
- message- to be forwarded
- parameters- parameters of the message if any
- See Also:
 
- 
generateAccessCodeString generateAccessCode()Generates access code and updates clientsession timestamp Access codes must be included in form action callbacks as a query parameter.- Returns:
 
- 
getCategoryRequirementFromCurrentFlowAuthenticationExecutionModel.Requirement getCategoryRequirementFromCurrentFlow(String authenticatorCategory) 
- 
successvoid success()Mark the current execution as successful. The flow will then continue
- 
successMark the current execution as successful and the auth session sets the credential type in the authentication session as the last credential used to authenticate the user.- Parameters:
- credentialType- The credential used to authenticate the user
 
- 
failureAborts the current flow- Parameters:
- error-
 
- 
failureAborts the current flow.- Parameters:
- error-
- response- Response that will be sent back to HTTP client
 
- 
failurevoid failure(AuthenticationFlowError error, jakarta.ws.rs.core.Response response, String eventDetails, String userErrorMessage) Aborts the current flow.- Parameters:
- error-
- response- Response that will be sent back to HTTP client
- eventDetails- Details about the error event
- userErrorMessage- A message describing the error to the user
 
- 
challengevoid challenge(jakarta.ws.rs.core.Response challenge) Sends a challenge response back to the HTTP client. If the current execution requirement is optional, this response will not be sent. If the current execution requirement is alternative, then this challenge will be sent if no other alternative execution was successful.- Parameters:
- challenge-
 
- 
forceChallengevoid forceChallenge(jakarta.ws.rs.core.Response challenge) Sends the challenge back to the HTTP client regardless of the current execution requirement- Parameters:
- challenge-
 
- 
failureChallengeSame behavior as forceChallenge(), but the error count in brute force attack detection will be incremented. For example, if a user enters in a bad password, the user is directed to try again, but Keycloak will keep track of how many failures have happened.- Parameters:
- error-
- challenge-
 
- 
attemptedvoid attempted()There was no failure or challenge. The authenticator was attempted, but not fulfilled. If the current execution requirement is alternative or optional, then this status is ignored by the flow.
- 
getStatusFlowStatus getStatus()Get the current status of the current execution.- Returns:
- may return null if not set yet.
 
- 
getErrorAuthenticationFlowError getError()Get the error condition of a failed execution.- Returns:
- may return null if there was no error
 
- 
getEventDetailsString getEventDetails()Get details of the event that caused an error- Returns:
- may return null if not set
 
- 
getUserErrorMessageString getUserErrorMessage()A custom error message that can be displayed to the user- Returns:
- Optional error message
 
 
-