Modifier and Type | Field and Description |
---|---|
protected ClientModel |
AuthenticationProcessor.client |
Modifier and Type | Method and Description |
---|---|
ClientModel |
ClientAuthenticationFlowContext.getClient()
Current client attached to this flow.
|
ClientModel |
AuthenticationProcessor.getClient() |
ClientModel |
AuthenticationProcessor.Result.getClient() |
Modifier and Type | Method and Description |
---|---|
Map<String,Object> |
ClientAuthenticatorFactory.getAdapterConfiguration(ClientModel client)
Get configuration, which needs to be used for adapter ( keycloak.json ) of particular client.
|
void |
ClientAuthenticationFlowContext.setClient(ClientModel client)
Attach a specific client to this flow.
|
void |
AuthenticationProcessor.setClient(ClientModel client) |
void |
AuthenticationProcessor.Result.setClient(ClientModel client) |
Modifier and Type | Method and Description |
---|---|
Map<String,Object> |
X509ClientAuthenticator.getAdapterConfiguration(ClientModel client) |
Map<String,Object> |
JWTClientSecretAuthenticator.getAdapterConfiguration(ClientModel client) |
Map<String,Object> |
JWTClientAuthenticator.getAdapterConfiguration(ClientModel client) |
Map<String,Object> |
ClientIdAndSecretAuthenticator.getAdapterConfiguration(ClientModel client) |
protected PublicKey |
JWTClientAuthenticator.getSignatureValidationKey(ClientModel client,
ClientAuthenticationFlowContext context,
JWSInput jws) |
Constructor and Description |
---|
AuthorizationService(KeycloakSession session,
ClientModel client,
AdminPermissionEvaluator auth,
AdminEventBuilder adminEvent) |
ResourceServerService(AuthorizationProvider authorization,
ResourceServer resourceServer,
ClientModel client,
AdminPermissionEvaluator auth,
AdminEventBuilder adminEvent) |
Modifier and Type | Field and Description |
---|---|
protected ClientModel |
ClientModelIdentity.client |
Constructor and Description |
---|
ClientModelIdentity(KeycloakSession session,
ClientModel client) |
Modifier and Type | Method and Description |
---|---|
javax.ws.rs.core.Response |
AbstractOAuth2IdentityProvider.exchangeFromToken(javax.ws.rs.core.UriInfo uriInfo,
EventBuilder event,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
UserModel tokenSubject,
javax.ws.rs.core.MultivaluedMap<String,String> params) |
protected javax.ws.rs.core.Response |
OIDCIdentityProvider.exchangeSessionToken(javax.ws.rs.core.UriInfo uriInfo,
EventBuilder event,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
UserModel tokenSubject) |
protected javax.ws.rs.core.Response |
AbstractOAuth2IdentityProvider.exchangeSessionToken(javax.ws.rs.core.UriInfo uriInfo,
EventBuilder event,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
UserModel tokenSubject) |
protected javax.ws.rs.core.Response |
OIDCIdentityProvider.exchangeStoredToken(javax.ws.rs.core.UriInfo uriInfo,
EventBuilder event,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
UserModel tokenSubject) |
protected javax.ws.rs.core.Response |
AbstractOAuth2IdentityProvider.exchangeStoredToken(javax.ws.rs.core.UriInfo uriInfo,
EventBuilder event,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
UserModel tokenSubject) |
Modifier and Type | Method and Description |
---|---|
protected javax.ws.rs.core.Response |
AbstractIdentityProvider.exchangeErrorResponse(javax.ws.rs.core.UriInfo uriInfo,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
String errorCode,
String reason) |
javax.ws.rs.core.Response |
ExchangeTokenToIdentityProviderToken.exchangeFromToken(javax.ws.rs.core.UriInfo uriInfo,
EventBuilder event,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
UserModel tokenSubject,
javax.ws.rs.core.MultivaluedMap<String,String> params) |
javax.ws.rs.core.Response |
AbstractIdentityProvider.exchangeNotLinked(javax.ws.rs.core.UriInfo uriInfo,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
UserModel tokenSubject) |
javax.ws.rs.core.Response |
AbstractIdentityProvider.exchangeNotLinkedNoStore(javax.ws.rs.core.UriInfo uriInfo,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
UserModel tokenSubject) |
javax.ws.rs.core.Response |
AbstractIdentityProvider.exchangeTokenExpired(javax.ws.rs.core.UriInfo uriInfo,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
UserModel tokenSubject) |
protected String |
AbstractIdentityProvider.getLinkingUrl(javax.ws.rs.core.UriInfo uriInfo,
ClientModel authorizedClient,
UserSessionModel tokenUserSession) |
Modifier and Type | Method and Description |
---|---|
SignatureVerifierContext |
ClientSignatureVerifierProvider.verifier(ClientModel client,
JWSInput input) |
SignatureVerifierContext |
MacSecretClientSignatureVerifierProvider.verifier(ClientModel client,
JWSInput input) |
SignatureVerifierContext |
ECDSAClientSignatureVerifierProvider.verifier(ClientModel client,
JWSInput input) |
SignatureVerifierContext |
AsymmetricClientSignatureVerifierProvider.verifier(ClientModel client,
JWSInput input) |
Constructor and Description |
---|
ClientAsymmetricSignatureVerifierContext(KeycloakSession session,
ClientModel client,
JWSInput input) |
ClientECDSASignatureVerifierContext(KeycloakSession session,
ClientModel client,
JWSInput input) |
ClientMacSignatureVerifierContext(KeycloakSession session,
ClientModel client,
String algorithm) |
Modifier and Type | Method and Description |
---|---|
EventBuilder |
EventBuilder.client(ClientModel client) |
Modifier and Type | Method and Description |
---|---|
static ResourceServerRepresentation |
ExportUtils.exportAuthorizationSettings(KeycloakSession session,
ClientModel client) |
static ClientRepresentation |
ExportUtils.exportClient(KeycloakSession session,
ClientModel client)
Full export of application including claims and secret
|
Modifier and Type | Method and Description |
---|---|
ClientModel |
ApplicationsBean.ApplicationEntry.getClient() |
ClientModel |
AuthorizationBean.ResourceBean.getClientOwner() |
Modifier and Type | Method and Description |
---|---|
static boolean |
ApplicationsBean.isAdminClient(ClientModel client) |
Constructor and Description |
---|
ApplicationEntry(KeycloakSession session,
List<RoleModel> realmRolesAvailable,
MultivaluedHashMap<String,ApplicationsBean.ClientRoleEntry> resourceRolesAvailable,
ClientModel client,
List<String> clientScopesGranted,
List<String> additionalGrants) |
ResourceServerBean(ClientModel clientModel) |
Modifier and Type | Field and Description |
---|---|
protected ClientModel |
FreeMarkerLoginFormsProvider.client |
Modifier and Type | Field and Description |
---|---|
protected ClientModel |
ClientBean.client |
Constructor and Description |
---|
ClientBean(KeycloakSession session,
ClientModel client) |
OAuthGrantBean(String code,
ClientModel client,
List<ClientScopeModel> clientScopesRequested) |
Modifier and Type | Method and Description |
---|---|
<T> T |
DefaultTokenManager.decodeClientJWT(String token,
ClientModel client,
Class<T> clazz) |
LogoutToken |
DefaultTokenManager.initLogoutToken(ClientModel client,
UserModel user,
AuthenticatedClientSessionModel clientSession) |
Modifier and Type | Method and Description |
---|---|
static PublicKey |
PublicKeyStorageManager.getClientPublicKey(KeycloakSession session,
ClientModel client,
JWSInput input) |
static KeyWrapper |
PublicKeyStorageManager.getClientPublicKeyWrapper(KeycloakSession session,
ClientModel client,
JWK.Use keyUse,
String algAlgorithm) |
static KeyWrapper |
PublicKeyStorageManager.getClientPublicKeyWrapper(KeycloakSession session,
ClientModel client,
JWSInput input) |
Constructor and Description |
---|
ClientPublicKeyLoader(KeycloakSession session,
ClientModel client) |
ClientPublicKeyLoader(KeycloakSession session,
ClientModel client,
JWK.Use keyUse) |
Modifier and Type | Method and Description |
---|---|
void |
MigrateTo3_2_0.addRoles(ClientModel realmAccess) |
static boolean |
MigrationUtils.isOIDCNonBearerOnlyClient(ClientModel c) |
static void |
MigrationUtils.migrateOldOfflineToken(KeycloakSession session,
RealmModel realm,
ClientModel client,
UserModel user) |
static void |
MigrationUtils.setDefaultClientAuthenticatorType(ClientModel s) |
Modifier and Type | Field and Description |
---|---|
protected ClientModel |
ClientConfigResolver.client |
Modifier and Type | Field and Description |
---|---|
static SearchableModelField<ClientModel> |
ClientModel.SearchableFields.ATTRIBUTE
Search for attribute value.
|
static SearchableModelField<ClientModel> |
ClientModel.SearchableFields.CLIENT_ID |
static SearchableModelField<ClientModel> |
ClientModel.SearchableFields.ENABLED |
static SearchableModelField<ClientModel> |
ClientModel.SearchableFields.ID |
static SearchableModelField<ClientModel> |
ClientModel.SearchableFields.REALM_ID |
static SearchableModelField<ClientModel> |
ClientModel.SearchableFields.SCOPE_MAPPING_ROLE |
Modifier and Type | Method and Description |
---|---|
default ClientModel |
RealmProvider.addClient(RealmModel realm,
String clientId)
Deprecated.
Use the corresponding method from
ClientProvider . |
default ClientModel |
ClientProvider.addClient(RealmModel realm,
String clientId)
Adds a client with given
clientId to the given realm. |
ClientModel |
RealmProvider.addClient(RealmModel realm,
String id,
String clientId)
Deprecated.
Use the corresponding method from
ClientProvider . |
ClientModel |
ClientProvider.addClient(RealmModel realm,
String id,
String clientId)
Adds a client with given internal ID and
clientId to the given realm. |
ClientModel |
RealmModel.addClient(String name) |
ClientModel |
RealmModel.addClient(String id,
String clientId) |
ClientModel |
UserConsentModel.getClient() |
ClientModel |
KeycloakContext.getClient() |
ClientModel |
ClientModel.ClientRemovedEvent.getClient() |
ClientModel |
ClientModel.ClientProtocolUpdatedEvent.getClient() |
ClientModel |
RealmModel.getClientByClientId(String clientId) |
default ClientModel |
RealmProvider.getClientByClientId(String clientId,
RealmModel realm)
Deprecated.
Use the corresponding method from
ClientProvider . |
ClientModel |
RealmModel.getClientById(String id) |
default ClientModel |
RealmProvider.getClientById(String id,
RealmModel realm)
Deprecated.
Use the corresponding method from
ClientProvider . |
ClientModel |
ClientModel.ClientCreationEvent.getCreatedClient() |
ClientModel |
RealmModel.getMasterAdminClient() |
ClientModel |
ClientModel.ClientUpdatedEvent.getUpdatedClient() |
Modifier and Type | Method and Description |
---|---|
Map<ClientModel,Set<String>> |
ClientProvider.getAllRedirectUrisOfEnabledClients(RealmModel realm)
Deprecated.
Do not use, this is only to support a deprecated logout endpoint and will vanish with it's removal
|
default List<ClientModel> |
RealmModel.getAlwaysDisplayInConsoleClients()
Deprecated.
Use
getAlwaysDisplayInConsoleClientsStream instead. |
default List<ClientModel> |
RealmProvider.getAlwaysDisplayInConsoleClients(RealmModel realm)
Deprecated.
Use the corresponding method from
ClientProvider . |
default List<ClientModel> |
ClientProvider.getAlwaysDisplayInConsoleClients(RealmModel realm)
Deprecated.
use the stream variant instead
|
Stream<ClientModel> |
RealmModel.getAlwaysDisplayInConsoleClientsStream()
Returns clients which are always displayed in the admin console as a stream.
|
Stream<ClientModel> |
ClientProvider.getAlwaysDisplayInConsoleClientsStream(RealmModel realm)
Returns a stream of clients that are expected to always show up in account console.
|
default List<ClientModel> |
RealmModel.getClients()
Deprecated.
Use
getClientsStream instead. |
default List<ClientModel> |
RealmModel.getClients(Integer firstResult,
Integer maxResults)
Deprecated.
Use
getClientsStream instead. |
default List<ClientModel> |
RealmProvider.getClients(RealmModel realm)
Deprecated.
Use the corresponding method from
ClientProvider . |
default List<ClientModel> |
ClientProvider.getClients(RealmModel realm)
Deprecated.
use the stream variant instead
Effectively the same as the call
getClients(realm, null, null) . |
default List<ClientModel> |
RealmProvider.getClients(RealmModel realm,
Integer firstResult,
Integer maxResults)
Deprecated.
Use the corresponding method from
ClientProvider . |
default List<ClientModel> |
ClientProvider.getClients(RealmModel realm,
Integer firstResult,
Integer maxResults)
Deprecated.
use the stream variant instead
|
Stream<ClientModel> |
RealmModel.getClientsStream()
Returns clients as a stream.
|
Stream<ClientModel> |
RealmModel.getClientsStream(Integer firstResult,
Integer maxResults)
Returns clients as a stream.
|
default Stream<ClientModel> |
ClientProvider.getClientsStream(RealmModel realm)
Returns all the clients of the given realm as a stream.
|
Stream<ClientModel> |
ClientProvider.getClientsStream(RealmModel realm,
Integer firstResult,
Integer maxResults)
Returns the clients of the given realm as a stream.
|
Stream<ClientModel> |
RealmModel.searchClientByAttributes(Map<String,String> attributes,
Integer firstResult,
Integer maxResults) |
default List<ClientModel> |
RealmModel.searchClientByClientId(String clientId,
Integer firstResult,
Integer maxResults)
Deprecated.
Use
searchClientByClientId instead. |
Stream<ClientModel> |
RealmModel.searchClientByClientIdStream(String clientId,
Integer firstResult,
Integer maxResults)
Search for clients by provided client's id.
|
default List<ClientModel> |
RealmProvider.searchClientsByClientId(String clientId,
Integer firstResult,
Integer maxResults,
RealmModel realm)
Deprecated.
Use the corresponding method from
ClientProvider . |
Modifier and Type | Method and Description |
---|---|
default RoleModel |
RoleProvider.addClientRole(ClientModel client,
String name)
Adds a client role with given
name to the given client. |
RoleModel |
RoleProvider.addClientRole(ClientModel client,
String id,
String name)
Adds a client role with given internal ID and
name to the given client. |
default RoleModel |
RealmProvider.addClientRole(RealmModel realm,
ClientModel client,
String name)
Deprecated.
Use the corresponding method from
RoleProvider . |
default RoleModel |
RealmProvider.addClientRole(RealmModel realm,
ClientModel client,
String id,
String name)
Deprecated.
Use the corresponding method from
RoleProvider . |
void |
ClientProvider.addClientScopes(RealmModel realm,
ClientModel client,
Set<ClientScopeModel> clientScopes,
boolean defaultScope)
Assign clientScopes to the client.
|
static OAuth2DeviceCodeModel |
OAuth2DeviceCodeModel.create(RealmModel realm,
ClientModel client,
String deviceCode,
String scope,
String nonce,
int expiresIn,
int pollingInterval,
Map<String,String> additionalParams) |
AuthenticatedClientSessionModel |
UserSessionProvider.createClientSession(RealmModel realm,
ClientModel client,
UserSessionModel userSession) |
<T> T |
TokenManager.decodeClientJWT(String token,
ClientModel client,
Class<T> clazz) |
long |
UserSessionProvider.getActiveUserSessions(RealmModel realm,
ClientModel client) |
String |
CibaConfig.getBackchannelTokenDeliveryMode(ClientModel client) |
default RoleModel |
RealmProvider.getClientRole(RealmModel realm,
ClientModel client,
String name)
Deprecated.
Use the corresponding method from
RoleProvider . |
Set<RoleModel> |
RoleMapperModel.getClientRoleMappings(ClientModel app)
Deprecated.
Use
getClientRoleMappingsStream instead. |
default Set<RoleModel> |
RoleMapperModel.Streams.getClientRoleMappings(ClientModel app) |
default Stream<RoleModel> |
RoleMapperModel.getClientRoleMappingsStream(ClientModel app)
Returns stream of client roles that are directly set to this object for the given client.
|
Stream<RoleModel> |
RoleMapperModel.Streams.getClientRoleMappingsStream(ClientModel app) |
default Set<RoleModel> |
RealmProvider.getClientRoles(RealmModel realm,
ClientModel client)
Deprecated.
Use the corresponding method from
RoleProvider . |
default Set<RoleModel> |
RealmProvider.getClientRoles(RealmModel realm,
ClientModel client,
Integer first,
Integer max)
Deprecated.
Use the corresponding method from
RoleProvider . |
default Stream<RoleModel> |
RoleProvider.getClientRolesStream(ClientModel client)
Returns all the client roles of the given client.
|
Stream<RoleModel> |
RoleProvider.getClientRolesStream(ClientModel client,
Integer first,
Integer max)
Returns the client roles of the given client.
|
AuthenticatedClientSessionModel |
UserSessionProvider.getClientSession(UserSessionModel userSession,
ClientModel client,
String clientSessionId,
boolean offline) |
default AuthenticatedClientSessionModel |
UserSessionProvider.getClientSession(UserSessionModel userSession,
ClientModel client,
UUID clientSessionId,
boolean offline)
Deprecated.
|
int |
OAuth2DeviceConfig.getLifespan(ClientModel client) |
long |
UserSessionProvider.getOfflineSessionsCount(RealmModel realm,
ClientModel client) |
default List<UserSessionModel> |
UserSessionProvider.getOfflineUserSessions(RealmModel realm,
ClientModel client,
int first,
int max)
Deprecated.
use
getOfflineUserSessionsStream
instead. |
Stream<UserSessionModel> |
UserSessionProvider.getOfflineUserSessionsStream(RealmModel realm,
ClientModel client,
Integer firstResult,
Integer maxResults)
Obtains the offline user sessions associated with the specified client, starting from the
firstResult and
containing at most maxResults . |
int |
OAuth2DeviceConfig.getPoolingInterval(ClientModel client) |
UserModel |
UserProvider.getServiceAccount(ClientModel client)
Return a UserModel representing service account of the client
|
default List<UserSessionModel> |
UserSessionProvider.getUserSessions(RealmModel realm,
ClientModel client)
Deprecated.
Use
getUserSessionsStream instead. |
default List<UserSessionModel> |
UserSessionProvider.getUserSessions(RealmModel realm,
ClientModel client,
int firstResult,
int maxResults)
Deprecated.
Use
getUserSessionsStream instead. |
Stream<UserSessionModel> |
UserSessionProvider.getUserSessionsStream(RealmModel realm,
ClientModel client)
Obtains the online user sessions associated with the specified client.
|
Stream<UserSessionModel> |
UserSessionProvider.getUserSessionsStream(RealmModel realm,
ClientModel client,
Integer firstResult,
Integer maxResults)
Obtains the online user sessions associated with the specified client, starting from the
firstResult and containing
at most maxResults . |
LogoutToken |
TokenManager.initLogoutToken(ClientModel client,
UserModel user,
AuthenticatedClientSessionModel clientSessionModel) |
boolean |
OAuth2DeviceConfig.isOAuth2DeviceAuthorizationGrantEnabled(ClientModel client) |
boolean |
CibaConfig.isOIDCCIBAGrantEnabled(ClientModel client) |
void |
UserSessionProvider.onClientRemoved(RealmModel realm,
ClientModel client) |
void |
UserProvider.preRemove(RealmModel realm,
ClientModel client)
Called when a client is removed.
|
void |
ClientProvider.removeClientScope(RealmModel realm,
ClientModel client,
ClientScopeModel clientScope)
Unassign clientScope from the client.
|
void |
RoleProvider.removeRoles(ClientModel client)
Removes all roles from the given client.
|
default Set<RoleModel> |
RealmProvider.searchForClientRoles(RealmModel realm,
ClientModel client,
String search,
Integer first,
Integer max)
Deprecated.
Use the corresponding method from
RoleProvider . |
void |
KeycloakContext.setClient(ClientModel client) |
void |
RealmModel.setMasterAdminClient(ClientModel client) |
Constructor and Description |
---|
ClientConfigResolver(ClientModel client) |
UserConsentModel(ClientModel client) |
Modifier and Type | Field and Description |
---|---|
protected ClientModel |
ClientAdapter.updated |
Modifier and Type | Field and Description |
---|---|
protected Map<String,ClientModel> |
RealmCacheSession.managedApplications |
Modifier and Type | Method and Description |
---|---|
ClientModel |
RealmCacheSession.addClient(RealmModel realm,
String clientId) |
ClientModel |
RealmCacheSession.addClient(RealmModel realm,
String id,
String clientId) |
ClientModel |
RealmAdapter.addClient(String name) |
ClientModel |
RealmAdapter.addClient(String id,
String clientId) |
protected ClientModel |
RealmCacheSession.cacheClient(RealmModel realm,
ClientModel delegate,
Long revision) |
ClientModel |
RealmCacheSession.getClientByClientId(RealmModel realm,
String clientId) |
ClientModel |
RealmAdapter.getClientByClientId(String clientId) |
ClientModel |
RealmCacheSession.getClientById(RealmModel realm,
String id) |
ClientModel |
RealmAdapter.getClientById(String id) |
ClientModel |
RealmAdapter.getMasterAdminClient() |
protected ClientModel |
RealmCacheSession.validateCache(RealmModel realm,
CachedClient cached) |
Constructor and Description |
---|
CachedClient(Long revision,
RealmModel realm,
ClientModel model) |
Modifier and Type | Method and Description |
---|---|
static ClientRemovedEvent |
ClientRemovedEvent.create(ClientModel client) |
Modifier and Type | Class and Description |
---|---|
class |
ClientModelLazyDelegate |
static class |
ClientModelLazyDelegate.WithId |
Constructor and Description |
---|
ClientModelLazyDelegate(Supplier<ClientModel> delegateSupplier) |
WithId(String id,
Supplier<ClientModel> delegateSupplier) |
Modifier and Type | Class and Description |
---|---|
class |
ClientAdapter |
Modifier and Type | Method and Description |
---|---|
ClientModel |
JpaRealmProvider.addClient(RealmModel realm,
String clientId) |
ClientModel |
JpaRealmProvider.addClient(RealmModel realm,
String id,
String clientId) |
ClientModel |
RealmAdapter.addClient(String name) |
ClientModel |
RealmAdapter.addClient(String id,
String clientId) |
ClientModel |
JpaRealmProvider.getClientByClientId(RealmModel realm,
String clientId) |
ClientModel |
RealmAdapter.getClientByClientId(String clientId) |
ClientModel |
JpaRealmProvider.getClientById(RealmModel realm,
String id) |
ClientModel |
RealmAdapter.getClientById(String id) |
ClientModel |
RealmAdapter.getMasterAdminClient() |
Modifier and Type | Method and Description |
---|---|
int |
JpaUserSessionPersisterProvider.getUserSessionsCount(RealmModel realm,
ClientModel clientModel,
boolean offline) |
Stream<UserSessionModel> |
JpaUserSessionPersisterProvider.loadUserSessionsStream(RealmModel realm,
ClientModel client,
boolean offline,
Integer firstResult,
Integer maxResults) |
void |
JpaUserSessionPersisterProvider.onClientRemoved(RealmModel realm,
ClientModel client) |
Modifier and Type | Method and Description |
---|---|
ClientModel |
MapAuthenticationSessionAdapter.getClient() |
Modifier and Type | Method and Description |
---|---|
AuthenticationSessionModel |
MapRootAuthenticationSessionAdapter.createAuthenticationSession(ClientModel client) |
AuthenticationSessionModel |
MapRootAuthenticationSessionAdapter.getAuthenticationSession(ClientModel client,
String tabId) |
void |
MapRootAuthenticationSessionProvider.onClientRemoved(RealmModel realm,
ClientModel client) |
Modifier and Type | Class and Description |
---|---|
class |
AbstractClientModel<E extends AbstractEntity> |
class |
MapClientAdapter<K> |
Modifier and Type | Method and Description |
---|---|
ClientModel |
MapClientProvider.addClient(RealmModel realm,
String id,
String clientId) |
ClientModel |
MapClientProvider.getClientByClientId(RealmModel realm,
String clientId) |
ClientModel |
MapClientProvider.getClientById(RealmModel realm,
String id) |
Modifier and Type | Method and Description |
---|---|
Map<ClientModel,Set<String>> |
MapClientProvider.getAllRedirectUrisOfEnabledClients(RealmModel realm) |
Stream<ClientModel> |
MapClientProvider.getAlwaysDisplayInConsoleClientsStream(RealmModel realm) |
Stream<ClientModel> |
MapClientProvider.getClientsStream(RealmModel realm) |
Stream<ClientModel> |
MapClientProvider.getClientsStream(RealmModel realm,
Integer firstResult,
Integer maxResults) |
Stream<ClientModel> |
MapClientProvider.searchClientsByAttributes(RealmModel realm,
Map<String,String> attributes,
Integer firstResult,
Integer maxResults) |
Stream<ClientModel> |
MapClientProvider.searchClientsByClientIdStream(RealmModel realm,
String clientId,
Integer firstResult,
Integer maxResults) |
Modifier and Type | Method and Description |
---|---|
void |
MapClientProvider.addClientScopes(RealmModel realm,
ClientModel client,
Set<ClientScopeModel> clientScopes,
boolean defaultScope) |
Map<String,ClientScopeModel> |
MapClientProvider.getClientScopes(RealmModel realm,
ClientModel client,
boolean defaultScopes) |
void |
MapClientProvider.removeClientScope(RealmModel realm,
ClientModel client,
ClientScopeModel clientScope) |
Constructor and Description |
---|
MapClientProvider(KeycloakSession session,
MapStorage<K,MapClientEntity<K>,ClientModel> clientStore,
ConcurrentMap<K,ConcurrentMap<String,Integer>> clientRegisteredNodesStore) |
Modifier and Type | Method and Description |
---|---|
Stream<RoleModel> |
MapGroupAdapter.getClientRoleMappingsStream(ClientModel app) |
Modifier and Type | Method and Description |
---|---|
ClientModel |
MapRealmProvider.addClient(RealmModel realm,
String id,
String clientId)
Deprecated.
|
ClientModel |
MapRealmAdapter.addClient(String name) |
ClientModel |
MapRealmAdapter.addClient(String id,
String clientId) |
ClientModel |
MapRealmProvider.getClientByClientId(RealmModel realm,
String clientId)
Deprecated.
|
ClientModel |
MapRealmAdapter.getClientByClientId(String clientId) |
ClientModel |
MapRealmProvider.getClientById(RealmModel realm,
String id)
Deprecated.
|
ClientModel |
MapRealmAdapter.getClientById(String id) |
ClientModel |
MapRealmAdapter.getMasterAdminClient() |
Modifier and Type | Method and Description |
---|---|
RoleModel |
MapRealmProvider.addClientRole(ClientModel client,
String id,
String name)
Deprecated.
|
void |
MapRealmProvider.addClientScopes(RealmModel realm,
ClientModel client,
Set<ClientScopeModel> clientScopes,
boolean defaultScope)
Deprecated.
|
RoleModel |
MapRealmProvider.getClientRole(ClientModel client,
String name)
Deprecated.
|
Stream<RoleModel> |
MapRealmProvider.getClientRolesStream(ClientModel client,
Integer first,
Integer max)
Deprecated.
|
Map<String,ClientScopeModel> |
MapRealmProvider.getClientScopes(RealmModel realm,
ClientModel client,
boolean defaultScopes)
Deprecated.
|
void |
MapRealmProvider.removeClientScope(RealmModel realm,
ClientModel client,
ClientScopeModel clientScope)
Deprecated.
|
void |
MapRealmProvider.removeRoles(ClientModel client)
Deprecated.
|
Stream<RoleModel> |
MapRealmProvider.searchForClientRolesStream(ClientModel client,
String search,
Integer first,
Integer max)
Deprecated.
|
void |
MapRealmAdapter.setMasterAdminClient(ClientModel client) |
Modifier and Type | Method and Description |
---|---|
RoleModel |
MapRoleProvider.addClientRole(ClientModel client,
String id,
String name) |
RoleModel |
MapRoleProvider.getClientRole(ClientModel client,
String name) |
Stream<RoleModel> |
MapRoleProvider.getClientRolesStream(ClientModel client) |
Stream<RoleModel> |
MapRoleProvider.getClientRolesStream(ClientModel client,
Integer first,
Integer max) |
void |
MapRoleProvider.removeRoles(ClientModel client) |
Stream<RoleModel> |
MapRoleProvider.searchForClientRolesStream(ClientModel client,
String search,
Integer first,
Integer max) |
Modifier and Type | Field and Description |
---|---|
static Map<SearchableModelField<ClientModel>,MapModelCriteriaBuilder.UpdatePredicatesFunc<Object,MapClientEntity<Object>,ClientModel>> |
MapFieldPredicates.CLIENT_PREDICATES |
static Map<SearchableModelField<ClientModel>,MapModelCriteriaBuilder.UpdatePredicatesFunc<Object,MapClientEntity<Object>,ClientModel>> |
MapFieldPredicates.CLIENT_PREDICATES |
Modifier and Type | Method and Description |
---|---|
Stream<RoleModel> |
MapUserAdapter.getClientRoleMappingsStream(ClientModel app) |
UserModel |
MapUserProvider.getServiceAccount(ClientModel client) |
void |
MapUserProvider.preRemove(RealmModel realm,
ClientModel client) |
Modifier and Type | Field and Description |
---|---|
protected ClientModel |
AbstractAuthenticatedClientSessionModel.client |
Modifier and Type | Method and Description |
---|---|
ClientModel |
MapAuthenticatedClientSessionAdapter.getClient() |
Constructor and Description |
---|
AbstractAuthenticatedClientSessionModel(KeycloakSession session,
RealmModel realm,
ClientModel client,
UserSessionModel userSession,
MapAuthenticatedClientSessionEntity<K> entity) |
MapAuthenticatedClientSessionAdapter(KeycloakSession session,
RealmModel realm,
ClientModel client,
UserSessionModel userSession,
MapAuthenticatedClientSessionEntity<K> entity) |
Modifier and Type | Method and Description |
---|---|
ClientModel |
PersistentAuthenticatedClientSessionAdapter.getClient() |
Modifier and Type | Method and Description |
---|---|
int |
UserSessionPersisterProvider.getUserSessionsCount(RealmModel realm,
ClientModel clientModel,
boolean offline)
Retrieves the count of user client-sessions for the given client
|
int |
DisabledUserSessionPersisterProvider.getUserSessionsCount(RealmModel realm,
ClientModel clientModel,
boolean offline) |
Stream<UserSessionModel> |
UserSessionPersisterProvider.loadUserSessionsStream(RealmModel realm,
ClientModel client,
boolean offline,
Integer firstResult,
Integer maxResults)
Loads the user sessions for the given
ClientModel in the given RealmModel if present. |
Stream<UserSessionModel> |
DisabledUserSessionPersisterProvider.loadUserSessionsStream(RealmModel realm,
ClientModel client,
boolean offline,
Integer firstResult,
Integer maxResults) |
void |
UserSessionPersisterProvider.onClientRemoved(RealmModel realm,
ClientModel client) |
void |
DisabledUserSessionPersisterProvider.onClientRemoved(RealmModel realm,
ClientModel client) |
Constructor and Description |
---|
PersistentAuthenticatedClientSessionAdapter(KeycloakSession session,
PersistentClientSessionModel model,
RealmModel realm,
ClientModel client,
UserSessionModel userSession) |
Modifier and Type | Method and Description |
---|---|
ClientModel |
AuthenticationSessionAdapter.getClient() |
ClientModel |
AuthenticatedClientSessionAdapter.getClient() |
Modifier and Type | Method and Description |
---|---|
AuthenticationSessionModel |
RootAuthenticationSessionAdapter.createAuthenticationSession(ClientModel client) |
AuthenticatedClientSessionModel |
InfinispanUserSessionProvider.createClientSession(RealmModel realm,
ClientModel client,
UserSessionModel userSession) |
long |
InfinispanUserSessionProvider.getActiveUserSessions(RealmModel realm,
ClientModel client) |
AuthenticationSessionModel |
RootAuthenticationSessionAdapter.getAuthenticationSession(ClientModel client,
String tabId) |
AuthenticatedClientSessionAdapter |
InfinispanUserSessionProvider.getClientSession(UserSessionModel userSession,
ClientModel client,
String clientSessionId,
boolean offline) |
AuthenticatedClientSessionAdapter |
InfinispanUserSessionProvider.getClientSession(UserSessionModel userSession,
ClientModel client,
UUID clientSessionId,
boolean offline) |
long |
InfinispanUserSessionProvider.getOfflineSessionsCount(RealmModel realm,
ClientModel client) |
Stream<UserSessionModel> |
InfinispanUserSessionProvider.getOfflineUserSessionsStream(RealmModel realm,
ClientModel client,
Integer first,
Integer max) |
protected long |
InfinispanUserSessionProvider.getUserSessionsCount(RealmModel realm,
ClientModel client,
boolean offline) |
Stream<UserSessionModel> |
InfinispanUserSessionProvider.getUserSessionsStream(RealmModel realm,
ClientModel client) |
Stream<UserSessionModel> |
InfinispanUserSessionProvider.getUserSessionsStream(RealmModel realm,
ClientModel client,
Integer firstResult,
Integer maxResults) |
protected Stream<UserSessionModel> |
InfinispanUserSessionProvider.getUserSessionsStream(RealmModel realm,
ClientModel client,
Integer firstResult,
Integer maxResults,
boolean offline) |
void |
InfinispanUserSessionProvider.onClientRemoved(RealmModel realm,
ClientModel client) |
void |
InfinispanAuthenticationSessionProvider.onClientRemoved(RealmModel realm,
ClientModel client) |
Constructor and Description |
---|
AuthenticatedClientSessionAdapter(KeycloakSession kcSession,
InfinispanUserSessionProvider provider,
AuthenticatedClientSessionEntity entity,
ClientModel client,
UserSessionModel userSession,
InfinispanChangelogBasedTransaction<UUID,AuthenticatedClientSessionEntity> clientSessionUpdateTx,
boolean offline) |
Modifier and Type | Method and Description |
---|---|
static ClientModel |
RepresentationToModel.createClient(KeycloakSession session,
RealmModel realm,
ClientRepresentation resourceRep)
Does not create scope or role mappings!
|
static ClientModel |
KeycloakModelUtils.createManagementClient(RealmModel realm,
String name) |
static ClientModel |
KeycloakModelUtils.createPublicClient(RealmModel realm,
String name) |
static ClientModel |
SystemClientUtil.getSystemClient(RealmModel realm) |
Modifier and Type | Method and Description |
---|---|
protected void |
AbstractLoginProtocolFactory.addDefaultClientScopes(RealmModel realm,
ClientModel newClient) |
protected abstract void |
AbstractLoginProtocolFactory.addDefaults(ClientModel realm) |
protected AuthenticationSessionModel |
AuthorizationEndpointBase.createAuthenticationSession(ClientModel client,
String requestState) |
javax.ws.rs.core.Response |
ClientInstallationProvider.generateInstallation(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI serverBaseUri) |
default boolean |
LoginProtocol.sendPushRevocationPolicyRequest(RealmModel realm,
ClientModel resource,
int notBefore,
String managementUrl)
Send not-before revocation policy to the given client.
|
void |
LoginProtocolFactory.setupClientDefaults(ClientRepresentation rep,
ClientModel newClient)
Setup default values for new clients.
|
Modifier and Type | Method and Description |
---|---|
protected void |
AbstractLoginProtocolFactory.addDefaultClientScopes(RealmModel realm,
Stream<ClientModel> newClients) |
Modifier and Type | Method and Description |
---|---|
protected void |
DockerAuthV2ProtocolFactory.addDefaults(ClientModel client) |
void |
DockerAuthV2ProtocolFactory.setupClientDefaults(ClientRepresentation rep,
ClientModel newClient) |
Modifier and Type | Method and Description |
---|---|
javax.ws.rs.core.Response |
DockerVariableOverrideInstallationProvider.generateInstallation(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI serverBaseUri) |
javax.ws.rs.core.Response |
DockerRegistryConfigFileInstallationProvider.generateInstallation(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI serverBaseUri) |
javax.ws.rs.core.Response |
DockerComposeYamlInstallationProvider.generateInstallation(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI serverBaseUri) |
Modifier and Type | Method and Description |
---|---|
protected void |
OIDCLoginProtocolFactory.addDefaults(ClientModel client) |
AccessToken |
TokenManager.createClientAccessToken(KeycloakSession session,
RealmModel realm,
ClientModel client,
UserModel user,
UserSessionModel userSession,
ClientSessionContext clientSessionCtx) |
static TokenManager.NotBeforeCheck |
TokenManager.NotBeforeCheck.forModel(ClientModel clientModel) |
static OIDCAdvancedConfigWrapper |
OIDCAdvancedConfigWrapper.fromClientModel(ClientModel client) |
static Set<RoleModel> |
TokenManager.getAccess(UserModel user,
ClientModel client,
Stream<ClientScopeModel> clientScopes) |
static Stream<ClientScopeModel> |
TokenManager.getRequestedClientScopes(String scopeParam,
ClientModel client)
Return client itself + all default client scopes of client + optional client scopes requested by scope parameter
|
protected AccessToken |
TokenManager.initToken(RealmModel realm,
ClientModel client,
UserModel user,
UserSessionModel session,
ClientSessionContext clientSessionCtx,
javax.ws.rs.core.UriInfo uriInfo) |
static boolean |
TokenManager.isValidScope(String scopes,
ClientModel client) |
TokenManager.RefreshResult |
TokenManager.refreshAccessToken(KeycloakSession session,
javax.ws.rs.core.UriInfo uriInfo,
ClientConnection connection,
RealmModel realm,
ClientModel authorizedClient,
String encodedRefreshToken,
EventBuilder event,
javax.ws.rs.core.HttpHeaders headers,
org.jboss.resteasy.spi.HttpRequest request) |
TokenManager.AccessTokenResponseBuilder |
TokenManager.responseBuilder(RealmModel realm,
ClientModel client,
EventBuilder event,
KeycloakSession session,
UserSessionModel userSession,
ClientSessionContext clientSessionCtx) |
boolean |
OIDCLoginProtocol.sendPushRevocationPolicyRequest(RealmModel realm,
ClientModel resource,
int notBefore,
String managementUrl) |
void |
OIDCLoginProtocolFactory.setupClientDefaults(ClientRepresentation rep,
ClientModel newClient) |
static boolean |
TokenManager.verifyConsentStillAvailable(KeycloakSession session,
UserModel user,
ClientModel client,
Stream<ClientScopeModel> requestedClientScopes) |
RefreshToken |
TokenManager.verifyRefreshToken(KeycloakSession session,
RealmModel realm,
ClientModel client,
org.jboss.resteasy.spi.HttpRequest request,
String encodedRefreshToken,
boolean checkExpiration) |
Constructor and Description |
---|
AccessTokenResponseBuilder(RealmModel realm,
ClientModel client,
EventBuilder event,
KeycloakSession session,
UserSessionModel userSession,
ClientSessionContext clientSessionCtx) |
Modifier and Type | Method and Description |
---|---|
protected javax.ws.rs.core.Response |
TokenEndpoint.exchangeClientToOIDCClient(UserModel targetUser,
UserSessionModel targetUserSession,
String requestedTokenType,
ClientModel targetClient,
String audience,
String scope) |
protected javax.ws.rs.core.Response |
TokenEndpoint.exchangeClientToSAML2Client(UserModel targetUser,
UserSessionModel targetUserSession,
String requestedTokenType,
ClientModel targetClient,
String audience,
String scope) |
Modifier and Type | Method and Description |
---|---|
static AuthorizationEndpointRequest |
AuthorizationEndpointRequestParserProcessor.parseRequest(EventBuilder event,
KeycloakSession session,
ClientModel client,
javax.ws.rs.core.MultivaluedMap<String,String> requestParams) |
Constructor and Description |
---|
CibaGrantType(javax.ws.rs.core.MultivaluedMap<String,String> formParams,
ClientModel client,
KeycloakSession session,
TokenEndpoint tokenEndpoint,
RealmModel realm,
EventBuilder event,
Cors cors) |
Modifier and Type | Field and Description |
---|---|
protected ClientModel |
CIBAAuthenticationRequest.client |
Modifier and Type | Method and Description |
---|---|
ClientModel |
CIBAAuthenticationRequest.getClient() |
Modifier and Type | Method and Description |
---|---|
void |
CIBAAuthenticationRequest.setClient(ClientModel client) |
Constructor and Description |
---|
CIBAAuthenticationRequest(KeycloakSession session,
UserModel user,
ClientModel client) |
Modifier and Type | Method and Description |
---|---|
protected ClientModel |
AbstractCibaEndpoint.authenticateClient() |
Constructor and Description |
---|
DeviceGrantType(javax.ws.rs.core.MultivaluedMap<String,String> formParams,
ClientModel client,
KeycloakSession session,
TokenEndpoint tokenEndpoint,
RealmModel realm,
EventBuilder event,
Cors cors) |
Modifier and Type | Method and Description |
---|---|
protected AuthenticationSessionModel |
DeviceEndpoint.createAuthenticationSession(ClientModel client) |
Modifier and Type | Method and Description |
---|---|
javax.ws.rs.core.Response |
KeycloakOIDCJbossSubsystemClientInstallation.generateInstallation(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI baseUri) |
javax.ws.rs.core.Response |
KeycloakOIDCJbossSubsystemClientCliInstallation.generateInstallation(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI baseUri) |
javax.ws.rs.core.Response |
KeycloakOIDCClientInstallation.generateInstallation(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI baseUri) |
static Map<String,Object> |
KeycloakOIDCClientInstallation.getClientCredentialsAdapterConfig(KeycloakSession session,
ClientModel client) |
static boolean |
KeycloakOIDCClientInstallation.showClientCredentialsAdapterConfig(ClientModel client) |
Modifier and Type | Method and Description |
---|---|
ClientModel |
AuthorizeClientUtil.ClientAuthResult.getClient() |
Modifier and Type | Method and Description |
---|---|
static Set<String> |
WebOriginsUtils.resolveValidWebOrigins(KeycloakSession session,
ClientModel client) |
static void |
PairwiseSubMapperValidator.validate(KeycloakSession session,
ClientModel client,
ProtocolMapperModel mapperModel) |
static String |
RedirectUtils.verifyRedirectUri(KeycloakSession session,
String redirectUri,
ClientModel client) |
static String |
RedirectUtils.verifyRedirectUri(KeycloakSession session,
String redirectUri,
ClientModel client,
boolean requireRedirectUri) |
Modifier and Type | Method and Description |
---|---|
ClientModel |
ArtifactResolver.selectSourceClient(KeycloakSession session,
String artifact)
Returns client model that issued artifact
|
ClientModel |
DefaultSamlArtifactResolver.selectSourceClient(KeycloakSession session,
String artifact) |
Modifier and Type | Method and Description |
---|---|
protected void |
SamlProtocolFactory.addDefaults(ClientModel client) |
protected LogoutRequestType |
SamlProtocol.createLogoutRequest(String logoutUrl,
AuthenticatedClientSessionModel clientSession,
ClientModel client,
SamlProtocolExtensionsAwareBuilder.NodeGenerator... extensions) |
static PublicKey |
SamlProtocolUtils.getEncryptionKey(ClientModel client)
Returns public part of SAML encryption key from the client settings.
|
static String |
SamlProtocol.getLogoutServiceUrl(KeycloakSession session,
ClientModel client,
String bindingType,
boolean backChannelLogout) |
AuthenticationSessionModel |
SamlService.getOrCreateLoginSessionForIdpInitiatedSso(KeycloakSession session,
RealmModel realm,
ClientModel client,
String relayState)
Creates a client session object for SAML IdP-initiated SSO session.
|
static PublicKey |
SamlProtocolUtils.getPublicKey(ClientModel client,
String attribute) |
static PublicKey |
SamlProtocolUtils.getSignatureValidationKey(ClientModel client)
Returns public part of SAML signing key from the client settings.
|
protected javax.ws.rs.core.Response |
SamlService.BindingProtocol.loginRequest(String relayState,
AuthnRequestType requestAbstractType,
ClientModel client) |
protected javax.ws.rs.core.Response |
SamlService.BindingProtocol.logoutRequest(LogoutRequestType logoutRequest,
ClientModel client,
String relayState) |
void |
SamlProtocolFactory.setupClientDefaults(ClientRepresentation clientRep,
ClientModel newClient) |
static boolean |
SamlProtocol.useArtifactForLogout(ClientModel client) |
static void |
SamlProtocolUtils.verifyDocumentSignature(ClientModel client,
Document document)
Verifies a signature of the given SAML document using settings for the given client.
|
protected abstract void |
SamlService.BindingProtocol.verifySignature(SAMLDocumentHolder documentHolder,
ClientModel client) |
protected void |
SamlService.PostBindingProtocol.verifySignature(SAMLDocumentHolder documentHolder,
ClientModel client) |
protected void |
SamlService.RedirectBindingProtocol.verifySignature(SAMLDocumentHolder documentHolder,
ClientModel client) |
Constructor and Description |
---|
SamlClient(ClientModel client) |
Modifier and Type | Method and Description |
---|---|
static void |
KeycloakSamlClientInstallation.baseXml(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI baseUri,
SamlClient samlClient,
StringBuilder buffer) |
javax.ws.rs.core.Response |
SamlSPDescriptorClientInstallation.generateInstallation(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI serverBaseUri) |
javax.ws.rs.core.Response |
ModAuthMellonClientInstallation.generateInstallation(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI serverBaseUri) |
javax.ws.rs.core.Response |
KeycloakSamlSubsystemInstallation.generateInstallation(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI baseUri) |
javax.ws.rs.core.Response |
KeycloakSamlSubsystemCliInstallation.generateInstallation(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI baseUri) |
javax.ws.rs.core.Response |
KeycloakSamlClientInstallation.generateInstallation(KeycloakSession session,
RealmModel realm,
ClientModel client,
URI baseUri) |
static String |
SamlSPDescriptorClientInstallation.getSPDescriptorForClient(ClientModel client) |
Modifier and Type | Method and Description |
---|---|
ClientModel |
DefaultKeycloakContext.getClient() |
Modifier and Type | Method and Description |
---|---|
void |
DefaultKeycloakContext.setClient(ClientModel client) |
Modifier and Type | Method and Description |
---|---|
default ClientModel |
ClientCRUDContext.getAuthenticatedClient()
returns
UserModel of the authenticated client. |
ClientModel |
DynamicClientViewContext.getTargetClient() |
ClientModel |
DynamicClientUpdatedContext.getTargetClient() |
ClientModel |
DynamicClientUpdateContext.getTargetClient() |
ClientModel |
DynamicClientUnregisterContext.getTargetClient() |
ClientModel |
DynamicClientRegisteredContext.getTargetClient() |
default ClientModel |
ClientCRUDContext.getTargetClient()
returns
ClientModel of the existing client to be updated/read/updated/deleted. |
ClientModel |
AdminClientViewContext.getTargetClient() |
ClientModel |
AdminClientUpdatedContext.getTargetClient() |
ClientModel |
AdminClientUpdateContext.getTargetClient() |
ClientModel |
AdminClientUnregisterContext.getTargetClient() |
ClientModel |
AdminClientRegisteredContext.getTargetClient() |
Modifier and Type | Method and Description |
---|---|
void |
ConsentRequiredExecutor.beforeUpdate(ClientModel clientToBeUpdated,
ClientRepresentation proposedClient) |
Modifier and Type | Method and Description |
---|---|
ClientRepresentation |
AbstractClientRegistrationProvider.get(ClientModel client) |
void |
ClientRegistrationAuth.requireDelete(ClientModel client) |
RegistrationAuth |
ClientRegistrationAuth.requireUpdate(ClientRegistrationContext context,
ClientModel client) |
void |
ClientRegistrationAuth.requireView(ClientModel client) |
void |
ClientRegistrationAuth.requireView(ClientModel client,
boolean allowPublicClient) |
static String |
ClientRegistrationTokenUtils.updateRegistrationAccessToken(KeycloakSession session,
ClientModel client,
RegistrationAuth registrationAuth) |
static String |
ClientRegistrationTokenUtils.updateRegistrationAccessToken(KeycloakSession session,
RealmModel realm,
ClientModel client,
RegistrationAuth registrationAuth) |
void |
AbstractClientRegistrationProvider.validateClient(ClientModel clientModel,
OIDCClientRepresentation oidcClient,
boolean create) |
Modifier and Type | Method and Description |
---|---|
void |
ClientRegistrationPolicy.afterRegister(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ClientRegistrationPolicy.afterUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ClientRegistrationPolicy.beforeDelete(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
ClientRegistrationPolicy.beforeUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ClientRegistrationPolicy.beforeView(ClientRegistrationProvider provider,
ClientModel clientModel) |
static void |
ClientRegistrationPolicyManager.triggerAfterRegister(ClientRegistrationContext context,
RegistrationAuth authType,
ClientModel client) |
static void |
ClientRegistrationPolicyManager.triggerAfterUpdate(ClientRegistrationContext context,
RegistrationAuth authType,
ClientModel client) |
static void |
ClientRegistrationPolicyManager.triggerBeforeRemove(KeycloakSession session,
ClientRegistrationProvider provider,
RegistrationAuth authType,
ClientModel client) |
static void |
ClientRegistrationPolicyManager.triggerBeforeUpdate(ClientRegistrationContext context,
RegistrationAuth authType,
ClientModel client) |
static void |
ClientRegistrationPolicyManager.triggerBeforeView(KeycloakSession session,
ClientRegistrationProvider provider,
RegistrationAuth authType,
ClientModel client) |
Modifier and Type | Method and Description |
---|---|
void |
TrustedHostClientRegistrationPolicy.afterRegister(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ScopeClientRegistrationPolicy.afterRegister(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ProtocolMappersClientRegistrationPolicy.afterRegister(ClientRegistrationContext context,
ClientModel clientModel) |
void |
MaxClientsClientRegistrationPolicy.afterRegister(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ConsentRequiredClientRegistrationPolicy.afterRegister(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ClientScopesClientRegistrationPolicy.afterRegister(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ClientDisabledClientRegistrationPolicy.afterRegister(ClientRegistrationContext context,
ClientModel clientModel) |
void |
TrustedHostClientRegistrationPolicy.afterUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ScopeClientRegistrationPolicy.afterUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ProtocolMappersClientRegistrationPolicy.afterUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
MaxClientsClientRegistrationPolicy.afterUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ConsentRequiredClientRegistrationPolicy.afterUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ClientScopesClientRegistrationPolicy.afterUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ClientDisabledClientRegistrationPolicy.afterUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
TrustedHostClientRegistrationPolicy.beforeDelete(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
ScopeClientRegistrationPolicy.beforeDelete(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
ProtocolMappersClientRegistrationPolicy.beforeDelete(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
MaxClientsClientRegistrationPolicy.beforeDelete(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
ConsentRequiredClientRegistrationPolicy.beforeDelete(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
ClientScopesClientRegistrationPolicy.beforeDelete(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
ClientDisabledClientRegistrationPolicy.beforeDelete(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
TrustedHostClientRegistrationPolicy.beforeUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ScopeClientRegistrationPolicy.beforeUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ProtocolMappersClientRegistrationPolicy.beforeUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
MaxClientsClientRegistrationPolicy.beforeUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ConsentRequiredClientRegistrationPolicy.beforeUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ClientScopesClientRegistrationPolicy.beforeUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
ClientDisabledClientRegistrationPolicy.beforeUpdate(ClientRegistrationContext context,
ClientModel clientModel) |
void |
TrustedHostClientRegistrationPolicy.beforeView(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
ScopeClientRegistrationPolicy.beforeView(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
ProtocolMappersClientRegistrationPolicy.beforeView(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
MaxClientsClientRegistrationPolicy.beforeView(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
ConsentRequiredClientRegistrationPolicy.beforeView(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
ClientScopesClientRegistrationPolicy.beforeView(ClientRegistrationProvider provider,
ClientModel clientModel) |
void |
ClientDisabledClientRegistrationPolicy.beforeView(ClientRegistrationProvider provider,
ClientModel clientModel) |
Modifier and Type | Method and Description |
---|---|
static ClientModel |
ClientManager.createClient(KeycloakSession session,
RealmModel realm,
ClientRepresentation rep)
Should not be called from an import.
|
ClientModel |
Auth.getClient() |
Modifier and Type | Method and Description |
---|---|
Set<ClientModel> |
UserSessionManager.findClientsWithOfflineToken(RealmModel realm,
UserModel user) |
Modifier and Type | Method and Description |
---|---|
void |
RealmManager.addQueryCompositeRoles(ClientModel realmAccess) |
static void |
AuthenticationManager.backchannelLogoutUserFromClient(KeycloakSession session,
RealmModel realm,
UserModel user,
ClientModel client,
javax.ws.rs.core.UriInfo uriInfo,
javax.ws.rs.core.HttpHeaders headers)
Logout all clientSessions of this user and client
|
void |
ClientManager.clientIdChanged(ClientModel client,
ClientRepresentation newClientRepresentation) |
void |
ClientManager.enableServiceAccount(ClientModel client) |
AuthenticationSessionModel |
AuthenticationSessionManager.getAuthenticationSessionByIdAndClient(RealmModel realm,
String authSessionId,
ClientModel client,
String tabId) |
static String |
ResourceAdminManager.getBackchannelLogoutUrl(KeycloakSession session,
ClientModel client) |
static <CLIENT_SESSION extends CommonClientSessionModel> |
ClientSessionCode.getClientSession(String code,
String tabId,
KeycloakSession session,
RealmModel realm,
ClientModel client,
EventBuilder event,
Class<CLIENT_SESSION> sessionClass) |
AuthenticationSessionModel |
AuthenticationSessionManager.getCurrentAuthenticationSession(RealmModel realm,
ClientModel client,
String tabId)
Returns current authentication session if it exists, otherwise returns
null . |
static String |
ResourceAdminManager.getManagementUrl(KeycloakSession session,
ClientModel client) |
boolean |
Auth.hasClientRole(ClientModel app,
String role) |
boolean |
Auth.hasOneOfAppRole(ClientModel app,
String... roles) |
GlobalRequestResult |
ResourceAdminManager.logoutClient(RealmModel realm,
ClientModel resource) |
protected GlobalRequestResult |
ResourceAdminManager.logoutClient(RealmModel realm,
ClientModel resource,
int notBefore) |
javax.ws.rs.core.Response |
ResourceAdminManager.logoutClientSession(RealmModel realm,
ClientModel resource,
AuthenticatedClientSessionModel clientSession) |
protected javax.ws.rs.core.Response |
ResourceAdminManager.logoutClientSessions(RealmModel realm,
ClientModel resource,
List<AuthenticatedClientSessionModel> clientSessions) |
javax.ws.rs.core.Response |
ResourceAdminManager.logoutClientSessionWithBackchannelLogoutUrl(ClientModel resource,
AuthenticatedClientSessionModel clientSession) |
static <CLIENT_SESSION extends CommonClientSessionModel> |
ClientSessionCode.parseResult(String code,
String tabId,
KeycloakSession session,
RealmModel realm,
ClientModel client,
EventBuilder event,
Class<CLIENT_SESSION> sessionClass) |
static <CLIENT_SESSION extends CommonClientSessionModel> |
ClientSessionCode.parseResult(String code,
String tabId,
KeycloakSession session,
RealmModel realm,
ClientModel client,
EventBuilder event,
CLIENT_SESSION clientSession) |
GlobalRequestResult |
ResourceAdminManager.pushClientRevocationPolicy(RealmModel realm,
ClientModel client) |
protected GlobalRequestResult |
ResourceAdminManager.pushRevocationPolicy(RealmModel realm,
ClientModel resource,
int notBefore) |
boolean |
ClientManager.removeClient(RealmModel realm,
ClientModel client) |
static boolean |
UserConsentManager.revokeConsentToClient(KeycloakSession session,
ClientModel client,
UserModel user)
Revoke consent of given user to given client
|
boolean |
UserSessionManager.revokeOfflineToken(UserModel user,
ClientModel client) |
protected javax.ws.rs.core.Response |
ResourceAdminManager.sendBackChannelLogoutRequestToClientUri(ClientModel resource,
AuthenticatedClientSessionModel clientSessionModel,
String managementUrl) |
protected javax.ws.rs.core.Response |
ResourceAdminManager.sendLogoutRequest(RealmModel realm,
ClientModel resource,
List<String> adapterSessionIds,
List<String> userSessions,
int notBefore,
String managementUrl) |
protected boolean |
ResourceAdminManager.sendPushRevocationPolicyRequest(RealmModel realm,
ClientModel resource,
int notBefore,
String managementUrl) |
protected boolean |
ResourceAdminManager.sendTestNodeAvailabilityRequest(RealmModel realm,
ClientModel client,
String managementUrl) |
GlobalRequestResult |
ResourceAdminManager.testNodesAvailability(RealmModel realm,
ClientModel client) |
ClientManager.InstallationAdapterConfig |
ClientManager.toInstallationRepresentation(RealmModel realmModel,
ClientModel clientModel,
URI baseUri) |
String |
ClientManager.toJBossSubsystemConfig(RealmModel realmModel,
ClientModel clientModel,
URI baseUri) |
Set<String> |
ClientManager.validateRegisteredNodes(ClientModel client) |
Constructor and Description |
---|
Auth(RealmModel realm,
AccessToken token,
UserModel user,
ClientModel client,
UserSessionModel session,
boolean cookie) |
Modifier and Type | Field and Description |
---|---|
protected ClientModel |
AbstractSecuredLocalService.client |
Modifier and Type | Method and Description |
---|---|
protected ClientModel |
ClientsManagementService.authorizeClient() |
Modifier and Type | Method and Description |
---|---|
Cors |
Cors.allowedOrigins(KeycloakSession session,
ClientModel client) |
static void |
LoginActionsServiceChecks.checkIsClientValid(KeycloakSession session,
ClientModel client)
Verifies whether the client denoted by client ID in token's
iss (issuedFor )
field both exists and is enabled. |
Constructor and Description |
---|
AbstractSecuredLocalService(RealmModel realm,
ClientModel client) |
Constructor and Description |
---|
AccountConsole(RealmModel realm,
ClientModel client,
Theme theme) |
AccountFormService(RealmModel realm,
ClientModel client,
EventBuilder event) |
AccountRestService(KeycloakSession session,
Auth auth,
ClientModel client,
EventBuilder event,
AccountRestApiVersion version) |
LinkedAccountsResource(KeycloakSession session,
org.jboss.resteasy.spi.HttpRequest request,
ClientModel client,
Auth auth,
EventBuilder event,
UserModel user) |
Modifier and Type | Field and Description |
---|---|
protected ClientModel |
ClientRoleMappingsResource.client |
protected ClientModel |
ClientResource.client |
protected ClientModel |
ClientAttributeCertificateResource.client |
protected ClientModel |
ScopeMappedClientResource.scopedClient |
Modifier and Type | Method and Description |
---|---|
ClientModel |
AdminAuth.getClient() |
Modifier and Type | Method and Description |
---|---|
AdminEventBuilder |
AdminEventBuilder.authClient(ClientModel client) |
protected Stream<RoleRepresentation> |
RoleResource.getClientRoleComposites(ClientModel app,
RoleModel role) |
boolean |
AdminAuth.hasAppRole(ClientModel app,
String role) |
boolean |
AdminAuth.hasOneOfAppRole(ClientModel app,
String... roles) |
static ManagementPermissionReference |
ClientResource.toMgmtRef(ClientModel client,
AdminPermissionManagement permissions) |
Modifier and Type | Method and Description |
---|---|
ClientModel |
AdminPermissionManagement.getRealmManagementClient() |
Modifier and Type | Method and Description |
---|---|
boolean |
UserPermissionManagement.canClientImpersonate(ClientModel client,
UserModel user) |
boolean |
ClientPermissionEvaluator.canConfigure(ClientModel client) |
boolean |
ClientPermissionManagement.canExchangeTo(ClientModel authorizedClient,
ClientModel to) |
boolean |
IdentityProviderPermissionManagement.canExchangeTo(ClientModel authorizedClient,
IdentityProviderModel to) |
boolean |
ClientPermissionEvaluator.canManage(ClientModel client) |
boolean |
ClientPermissionEvaluator.canMapClientScopeRoles(ClientModel client) |
boolean |
ClientPermissionEvaluator.canMapCompositeRoles(ClientModel client) |
boolean |
ClientPermissionEvaluator.canMapRoles(ClientModel client) |
boolean |
ClientPermissionEvaluator.canView(ClientModel client) |
Policy |
ClientPermissionManagement.configurePermission(ClientModel client) |
Policy |
ClientPermissionManagement.exchangeToPermission(ClientModel client) |
Map<String,Boolean> |
ClientPermissionEvaluator.getAccess(ClientModel client) |
Map<String,String> |
ClientPermissionManagement.getPermissions(ClientModel client) |
boolean |
ClientPermissionManagement.isPermissionsEnabled(ClientModel client) |
boolean |
ClientPermissionEvaluator.isPermissionsEnabled(ClientModel client) |
Policy |
ClientPermissionManagement.managePermission(ClientModel client) |
Policy |
ClientPermissionManagement.mapRolesClientScopePermission(ClientModel client) |
Policy |
ClientPermissionManagement.mapRolesCompositePermission(ClientModel client) |
Policy |
ClientPermissionManagement.mapRolesPermission(ClientModel client) |
void |
ClientPermissionEvaluator.requireConfigure(ClientModel client) |
void |
ClientPermissionEvaluator.requireManage(ClientModel client) |
void |
ClientPermissionEvaluator.requireView(ClientModel client) |
Resource |
ClientPermissionManagement.resource(ClientModel client) |
ResourceServer |
ClientPermissionManagement.resourceServer(ClientModel client) |
void |
ClientPermissionManagement.setPermissionsEnabled(ClientModel client,
boolean enable) |
void |
ClientPermissionEvaluator.setPermissionsEnabled(ClientModel client,
boolean enable) |
Policy |
ClientPermissionManagement.viewPermission(ClientModel client) |
Modifier and Type | Method and Description |
---|---|
static CertificateRepresentation |
CertificateInfoHelper.getCertificateFromClient(ClientModel client,
String attributePrefix) |
static ClientMappingsRepresentation |
ScopeMappedUtil.toClientMappingsRepresentation(ClientModel client,
ScopeContainerModel scopeContainer) |
static void |
CertificateInfoHelper.updateClientModelCertificateInfo(ClientModel client,
CertificateRepresentation rep,
String attributePrefix) |
Modifier and Type | Method and Description |
---|---|
ClientModel |
CommonClientSessionModel.getClient() |
Modifier and Type | Method and Description |
---|---|
AuthenticationSessionModel |
RootAuthenticationSessionModel.createAuthenticationSession(ClientModel client)
Create a new authentication session and returns it.
|
AuthenticationSessionModel |
RootAuthenticationSessionModel.getAuthenticationSession(ClientModel client,
String tabId)
Returns an authentication session for the particular client and tab or null if it doesn't yet exists.
|
void |
AuthenticationSessionProvider.onClientRemoved(RealmModel realm,
ClientModel client)
Removes all associated root authentication sessions to the given realm and client which was removed.
|
Modifier and Type | Method and Description |
---|---|
javax.ws.rs.core.Response |
TwitterIdentityProvider.exchangeFromToken(javax.ws.rs.core.UriInfo uriInfo,
EventBuilder builder,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
UserModel tokenSubject,
javax.ws.rs.core.MultivaluedMap<String,String> params) |
protected javax.ws.rs.core.Response |
TwitterIdentityProvider.exchangeSessionToken(javax.ws.rs.core.UriInfo uriInfo,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
UserModel tokenSubject) |
protected javax.ws.rs.core.Response |
TwitterIdentityProvider.exchangeStoredToken(javax.ws.rs.core.UriInfo uriInfo,
ClientModel authorizedClient,
UserSessionModel tokenUserSession,
UserModel tokenSubject) |
Modifier and Type | Method and Description |
---|---|
ClientModel |
ClientStorageManager.addClient(RealmModel realm,
String clientId) |
ClientModel |
ClientStorageManager.addClient(RealmModel realm,
String id,
String clientId) |
ClientModel |
ClientStorageManager.getClientByClientId(RealmModel realm,
String clientId) |
ClientModel |
ClientStorageManager.getClientById(RealmModel realm,
String id) |
Modifier and Type | Method and Description |
---|---|
Map<ClientModel,Set<String>> |
ClientStorageManager.getAllRedirectUrisOfEnabledClients(RealmModel realm) |
Stream<ClientModel> |
ClientStorageManager.getAlwaysDisplayInConsoleClientsStream(RealmModel realm) |
Stream<ClientModel> |
ClientStorageManager.getClientsStream(RealmModel realm) |
Stream<ClientModel> |
ClientStorageManager.getClientsStream(RealmModel realm,
Integer firstResult,
Integer maxResults) |
protected Stream<ClientModel> |
ClientStorageManager.query(org.keycloak.storage.ClientStorageManager.PaginatedQuery paginatedQuery,
RealmModel realm,
Integer firstResult,
Integer maxResults) |
Stream<ClientModel> |
ClientStorageManager.searchClientsByAttributes(RealmModel realm,
Map<String,String> attributes,
Integer firstResult,
Integer maxResults) |
Stream<ClientModel> |
ClientStorageManager.searchClientsByClientIdStream(RealmModel realm,
String clientId,
Integer firstResult,
Integer maxResults) |
Modifier and Type | Method and Description |
---|---|
RoleModel |
RoleStorageManager.addClientRole(ClientModel client,
String name) |
RoleModel |
RoleStorageManager.addClientRole(ClientModel client,
String id,
String name) |
void |
ClientStorageManager.addClientScopes(RealmModel realm,
ClientModel client,
Set<ClientScopeModel> clientScopes,
boolean defaultScope) |
RoleModel |
RoleStorageManager.getClientRole(ClientModel client,
String name) |
Stream<RoleModel> |
RoleStorageManager.getClientRolesStream(ClientModel client) |
Stream<RoleModel> |
RoleStorageManager.getClientRolesStream(ClientModel client,
Integer first,
Integer max) |
Map<String,ClientScopeModel> |
ClientStorageManager.getClientScopes(RealmModel realm,
ClientModel client,
boolean defaultScopes) |
UserModel |
UserStorageManager.getServiceAccount(ClientModel client) |
static boolean |
StorageId.isLocalStorage(ClientModel client) |
void |
UserStorageManager.preRemove(RealmModel realm,
ClientModel client) |
void |
ClientStorageManager.removeClientScope(RealmModel realm,
ClientModel client,
ClientScopeModel clientScope) |
void |
RoleStorageManager.removeRoles(ClientModel client) |
static String |
StorageId.resolveProviderId(ClientModel client) |
Stream<RoleModel> |
RoleStorageManager.searchForClientRolesStream(ClientModel client,
String search,
Integer first,
Integer max)
Obtaining roles from an external role storage is time-bounded.
|
Modifier and Type | Method and Description |
---|---|
Set<RoleModel> |
AbstractUserAdapterFederatedStorage.getClientRoleMappings(ClientModel app)
Gets role mappings from federated storage and automatically appends default roles.
|
Set<RoleModel> |
AbstractUserAdapterFederatedStorage.Streams.getClientRoleMappings(ClientModel app) |
Set<RoleModel> |
AbstractUserAdapter.getClientRoleMappings(ClientModel app) |
Set<RoleModel> |
AbstractUserAdapter.Streams.getClientRoleMappings(ClientModel app) |
Stream<RoleModel> |
InMemoryUserAdapter.getClientRoleMappingsStream(ClientModel app) |
Stream<RoleModel> |
AbstractUserAdapterFederatedStorage.Streams.getClientRoleMappingsStream(ClientModel app) |
Stream<RoleModel> |
AbstractUserAdapter.Streams.getClientRoleMappingsStream(ClientModel app) |
Modifier and Type | Class and Description |
---|---|
class |
AbstractClientStorageAdapter
Helper base class for ClientModel implementations for ClientStorageProvider implementations.
|
class |
AbstractReadOnlyClientStorageAdapter |
class |
UnsupportedOperationsClientStorageAdapter
Base helper class.
|
Modifier and Type | Method and Description |
---|---|
ClientModel |
ClientLookupProvider.getClientByClientId(RealmModel realm,
String clientId)
Exact search for a client by its public client identifier.
|
default ClientModel |
ClientLookupProvider.getClientByClientId(String clientId,
RealmModel realm)
Deprecated.
|
ClientModel |
ClientLookupProvider.getClientById(RealmModel realm,
String id)
Exact search for a client by its internal ID.
|
default ClientModel |
ClientLookupProvider.getClientById(String id,
RealmModel realm)
Deprecated.
|
Modifier and Type | Method and Description |
---|---|
Stream<ClientModel> |
ClientLookupProvider.searchClientsByAttributes(RealmModel realm,
Map<String,String> attributes,
Integer firstResult,
Integer maxResults) |
default List<ClientModel> |
ClientLookupProvider.searchClientsByClientId(String clientId,
Integer firstResult,
Integer maxResults,
RealmModel realm)
|
Stream<ClientModel> |
ClientLookupProvider.searchClientsByClientIdStream(RealmModel realm,
String clientId,
Integer firstResult,
Integer maxResults)
Case-insensitive search for clients that contain the given string in their public client identifier.
|
Modifier and Type | Method and Description |
---|---|
Map<String,ClientScopeModel> |
ClientLookupProvider.getClientScopes(RealmModel realm,
ClientModel client,
boolean defaultScopes)
Return all default scopes (if
defaultScope is true ) or all optional scopes (if defaultScope is false ) linked with the client |
Modifier and Type | Method and Description |
---|---|
void |
UserFederatedStorageProvider.preRemove(RealmModel realm,
ClientModel client) |
Modifier and Type | Method and Description |
---|---|
void |
JpaUserFederatedStorageProvider.preRemove(RealmModel realm,
ClientModel client) |
Modifier and Type | Method and Description |
---|---|
Stream<RoleModel> |
RoleLDAPStorageMapper.LDAPRoleMappingsUserDelegate.getClientRoleMappingsStream(ClientModel client) |
Modifier and Type | Class and Description |
---|---|
class |
OpenshiftSAClientAdapter |
Modifier and Type | Method and Description |
---|---|
ClientModel |
OpenshiftClientStorageProvider.getClientByClientId(RealmModel realm,
String clientId) |
ClientModel |
OpenshiftClientStorageProvider.getClientById(RealmModel realm,
String id) |
Modifier and Type | Method and Description |
---|---|
Stream<ClientModel> |
OpenshiftClientStorageProvider.searchClientsByAttributes(RealmModel realm,
Map<String,String> attributes,
Integer firstResult,
Integer maxResults) |
Stream<ClientModel> |
OpenshiftClientStorageProvider.searchClientsByClientIdStream(RealmModel realm,
String clientId,
Integer firstResult,
Integer maxResults) |
Modifier and Type | Method and Description |
---|---|
Map<String,ClientScopeModel> |
OpenshiftClientStorageProvider.getClientScopes(RealmModel realm,
ClientModel client,
boolean defaultScopes) |
Modifier and Type | Method and Description |
---|---|
RoleModel |
RoleLookupProvider.getClientRole(ClientModel client,
String name)
Exact search for a client role by given name.
|
Stream<RoleModel> |
RoleLookupProvider.searchForClientRolesStream(ClientModel client,
String search,
Integer first,
Integer max)
Case-insensitive search for client roles that contain the given string in their name or description.
|
Modifier and Type | Method and Description |
---|---|
static void |
ValidationUtil.validateClient(KeycloakSession session,
ClientModel client,
boolean create,
ValidationUtil.ErrorHandler errorHandler) |
static void |
ValidationUtil.validateClient(KeycloakSession session,
ClientModel client,
OIDCClientRepresentation oidcClient,
boolean create,
ValidationUtil.ErrorHandler errorHandler) |
Modifier and Type | Method and Description |
---|---|
ValidationResult |
DefaultClientValidationProvider.validate(ValidationContext<ClientModel> context) |
Constructor and Description |
---|
ClientValidationContext(ValidationContext.Event event,
KeycloakSession session,
ClientModel objectToValidate) |
OIDCContext(ValidationContext.Event event,
KeycloakSession session,
ClientModel objectToValidate,
OIDCClientRepresentation oidcClient) |
Copyright © 2021 JBoss by Red Hat. All rights reserved.