Package org.keycloak.protocol.oid4vc.utils

Class OID4VCUtil

java.lang.Object

org.keycloak.protocol.oid4vc.utils.OID4VCUtil

public class OID4VCUtil
extends Object

Method Summary

Modifier and Type	Method	Description
static void	checkIssuedVerifiableCredential(KeycloakSession session, UserModel user, String issuedCredentialId, CredentialScopeModel expectedCredentialScope, ClientModel expectedClient)	Check issued-credential present on the user with expected ID and expected issued-credential-id and credential-scope
static List<IssuedVerifiableCredentialModel>	getIssuedVerifiableCredentialsByUserAndClient(KeycloakSession session, UserModel user, ClientModel client)
static String	getOfferAsUri(KeycloakSession session, String nonce)
static boolean	hasVerifiableCredential(KeycloakSession session, UserModel user, CredentialScopeModel credentialScope)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Method Details

getOfferAsUri

public static String getOfferAsUri(KeycloakSession session,
 String nonce)

Parameters:

session - Keycloak session

nonce - nonce, which is part of the credential offer URI

Returns:

Credential offer as URI, which can be shared with the wallet

hasVerifiableCredential

public static boolean hasVerifiableCredential(KeycloakSession session,
 UserModel user,
 CredentialScopeModel credentialScope)

Parameters:

session - Keycloak session

user - user

credentialScope - credential scope

Returns:

true if particular user has verifiable credential set on his account

checkIssuedVerifiableCredential

public static void checkIssuedVerifiableCredential(KeycloakSession session,
 UserModel user,
 String issuedCredentialId,
 CredentialScopeModel expectedCredentialScope,
 ClientModel expectedClient)

Check issued-credential present on the user with expected ID and expected issued-credential-id and credential-scope

Parameters:

session - kc session

user - user

issuedCredentialId - issued credential ID

expectedCredentialScope - expected credential scope

expectedClient - expected client

Throws:

IllegalStateException - in case that issued-credential not present or does not match with user, client or clientScope

getIssuedVerifiableCredentialsByUserAndClient

public static List<IssuedVerifiableCredentialModel> getIssuedVerifiableCredentialsByUserAndClient(KeycloakSession session,
 UserModel user,
 ClientModel client)