public class AuthenticationManager extends Object
Modifier and Type | Class and Description |
---|---|
static class |
AuthenticationManager.AuthenticationStatus |
static class |
AuthenticationManager.AuthResult |
Modifier and Type | Field and Description |
---|---|
static String |
FORM_USERNAME |
static String |
KEYCLOAK_IDENTITY_COOKIE |
static String |
KEYCLOAK_LOGOUT_PROTOCOL |
static String |
KEYCLOAK_REMEMBER_ME |
static String |
KEYCLOAK_SESSION_COOKIE |
protected static org.jboss.logging.Logger |
logger |
protected BruteForceProtector |
protector |
Constructor and Description |
---|
AuthenticationManager() |
AuthenticationManager(BruteForceProtector protector) |
Modifier and Type | Method and Description |
---|---|
AuthenticationManager.AuthenticationStatus |
authenticateForm(KeycloakSession session,
ClientConnection clientConnection,
RealmModel realm,
javax.ws.rs.core.MultivaluedMap<String,String> formData) |
AuthenticationManager.AuthResult |
authenticateIdentityCookie(KeycloakSession session,
RealmModel realm,
javax.ws.rs.core.UriInfo uriInfo,
ClientConnection connection,
javax.ws.rs.core.HttpHeaders headers) |
static AuthenticationManager.AuthResult |
authenticateIdentityCookie(KeycloakSession session,
RealmModel realm,
javax.ws.rs.core.UriInfo uriInfo,
ClientConnection connection,
javax.ws.rs.core.HttpHeaders headers,
boolean checkActive) |
protected AuthenticationManager.AuthenticationStatus |
authenticateInternal(KeycloakSession session,
RealmModel realm,
javax.ws.rs.core.MultivaluedMap<String,String> formData,
String username) |
static void |
backchannelLogout(KeycloakSession session,
RealmModel realm,
UserSessionModel userSession,
javax.ws.rs.core.UriInfo uriInfo,
ClientConnection connection,
javax.ws.rs.core.HttpHeaders headers) |
static javax.ws.rs.core.Response |
browserLogout(KeycloakSession session,
RealmModel realm,
UserSessionModel userSession,
javax.ws.rs.core.UriInfo uriInfo,
ClientConnection connection,
javax.ws.rs.core.HttpHeaders headers) |
javax.ws.rs.core.Response |
checkNonFormAuthentication(KeycloakSession session,
ClientSessionModel clientSession,
RealmModel realm,
javax.ws.rs.core.UriInfo uriInfo,
org.jboss.resteasy.spi.HttpRequest request,
ClientConnection clientConnection,
javax.ws.rs.core.HttpHeaders headers,
EventBuilder event) |
static AccessToken |
createIdentityToken(RealmModel realm,
UserModel user,
UserSessionModel session,
String issuer) |
static void |
createLoginCookie(RealmModel realm,
UserModel user,
UserSessionModel session,
javax.ws.rs.core.UriInfo uriInfo,
ClientConnection connection) |
static void |
createRememberMeCookie(RealmModel realm,
String username,
javax.ws.rs.core.UriInfo uriInfo,
ClientConnection connection) |
protected static String |
encodeToken(RealmModel realm,
Object token) |
static void |
expireCookie(RealmModel realm,
String cookieName,
String path,
boolean httpOnly,
ClientConnection connection) |
static void |
expireIdentityCookie(RealmModel realm,
javax.ws.rs.core.UriInfo uriInfo,
ClientConnection connection) |
static void |
expireRememberMeCookie(RealmModel realm,
javax.ws.rs.core.UriInfo uriInfo,
ClientConnection connection) |
static void |
expireUserSessionCookie(KeycloakSession session,
UserSessionModel userSession,
RealmModel realm,
javax.ws.rs.core.UriInfo uriInfo,
javax.ws.rs.core.HttpHeaders headers,
ClientConnection connection) |
static javax.ws.rs.core.Response |
finishBrowserLogout(KeycloakSession session,
RealmModel realm,
UserSessionModel userSession,
javax.ws.rs.core.UriInfo uriInfo,
ClientConnection connection,
javax.ws.rs.core.HttpHeaders headers) |
protected static String |
getIdentityCookiePath(RealmModel realm,
javax.ws.rs.core.UriInfo uriInfo) |
static String |
getRealmCookiePath(RealmModel realm,
javax.ws.rs.core.UriInfo uriInfo) |
static String |
getRememberMeUsername(RealmModel realm,
javax.ws.rs.core.HttpHeaders headers) |
protected static void |
isEmailVerificationRequired(RealmModel realm,
UserModel user) |
static boolean |
isSessionValid(RealmModel realm,
UserSessionModel userSession) |
protected static void |
isTotpConfigurationRequired(RealmModel realm,
UserModel user) |
static javax.ws.rs.core.Response |
nextActionAfterAuthentication(KeycloakSession session,
UserSessionModel userSession,
ClientSessionModel clientSession,
ClientConnection clientConnection,
org.jboss.resteasy.spi.HttpRequest request,
javax.ws.rs.core.UriInfo uriInfo,
EventBuilder event) |
static javax.ws.rs.core.Response |
redirectAfterSuccessfulFlow(KeycloakSession session,
RealmModel realm,
UserSessionModel userSession,
ClientSessionModel clientSession,
org.jboss.resteasy.spi.HttpRequest request,
javax.ws.rs.core.UriInfo uriInfo,
ClientConnection clientConnection) |
protected static AuthenticationManager.AuthResult |
verifyIdentityToken(KeycloakSession session,
RealmModel realm,
javax.ws.rs.core.UriInfo uriInfo,
ClientConnection connection,
boolean checkActive,
String tokenString,
javax.ws.rs.core.HttpHeaders headers) |
protected static org.jboss.logging.Logger logger
public static final String FORM_USERNAME
public static final String KEYCLOAK_IDENTITY_COOKIE
public static final String KEYCLOAK_SESSION_COOKIE
public static final String KEYCLOAK_REMEMBER_ME
public static final String KEYCLOAK_LOGOUT_PROTOCOL
protected BruteForceProtector protector
public AuthenticationManager()
public AuthenticationManager(BruteForceProtector protector)
public static boolean isSessionValid(RealmModel realm, UserSessionModel userSession)
public static void expireUserSessionCookie(KeycloakSession session, UserSessionModel userSession, RealmModel realm, javax.ws.rs.core.UriInfo uriInfo, javax.ws.rs.core.HttpHeaders headers, ClientConnection connection)
public static void backchannelLogout(KeycloakSession session, RealmModel realm, UserSessionModel userSession, javax.ws.rs.core.UriInfo uriInfo, ClientConnection connection, javax.ws.rs.core.HttpHeaders headers)
public static javax.ws.rs.core.Response browserLogout(KeycloakSession session, RealmModel realm, UserSessionModel userSession, javax.ws.rs.core.UriInfo uriInfo, ClientConnection connection, javax.ws.rs.core.HttpHeaders headers)
public static javax.ws.rs.core.Response finishBrowserLogout(KeycloakSession session, RealmModel realm, UserSessionModel userSession, javax.ws.rs.core.UriInfo uriInfo, ClientConnection connection, javax.ws.rs.core.HttpHeaders headers)
public static AccessToken createIdentityToken(RealmModel realm, UserModel user, UserSessionModel session, String issuer)
public static void createLoginCookie(RealmModel realm, UserModel user, UserSessionModel session, javax.ws.rs.core.UriInfo uriInfo, ClientConnection connection)
public static void createRememberMeCookie(RealmModel realm, String username, javax.ws.rs.core.UriInfo uriInfo, ClientConnection connection)
public static String getRememberMeUsername(RealmModel realm, javax.ws.rs.core.HttpHeaders headers)
protected static String encodeToken(RealmModel realm, Object token)
public static void expireIdentityCookie(RealmModel realm, javax.ws.rs.core.UriInfo uriInfo, ClientConnection connection)
public static void expireRememberMeCookie(RealmModel realm, javax.ws.rs.core.UriInfo uriInfo, ClientConnection connection)
protected static String getIdentityCookiePath(RealmModel realm, javax.ws.rs.core.UriInfo uriInfo)
public static String getRealmCookiePath(RealmModel realm, javax.ws.rs.core.UriInfo uriInfo)
public static void expireCookie(RealmModel realm, String cookieName, String path, boolean httpOnly, ClientConnection connection)
public AuthenticationManager.AuthResult authenticateIdentityCookie(KeycloakSession session, RealmModel realm, javax.ws.rs.core.UriInfo uriInfo, ClientConnection connection, javax.ws.rs.core.HttpHeaders headers)
public static AuthenticationManager.AuthResult authenticateIdentityCookie(KeycloakSession session, RealmModel realm, javax.ws.rs.core.UriInfo uriInfo, ClientConnection connection, javax.ws.rs.core.HttpHeaders headers, boolean checkActive)
public javax.ws.rs.core.Response checkNonFormAuthentication(KeycloakSession session, ClientSessionModel clientSession, RealmModel realm, javax.ws.rs.core.UriInfo uriInfo, org.jboss.resteasy.spi.HttpRequest request, ClientConnection clientConnection, javax.ws.rs.core.HttpHeaders headers, EventBuilder event)
public static javax.ws.rs.core.Response redirectAfterSuccessfulFlow(KeycloakSession session, RealmModel realm, UserSessionModel userSession, ClientSessionModel clientSession, org.jboss.resteasy.spi.HttpRequest request, javax.ws.rs.core.UriInfo uriInfo, ClientConnection clientConnection)
public static javax.ws.rs.core.Response nextActionAfterAuthentication(KeycloakSession session, UserSessionModel userSession, ClientSessionModel clientSession, ClientConnection clientConnection, org.jboss.resteasy.spi.HttpRequest request, javax.ws.rs.core.UriInfo uriInfo, EventBuilder event)
protected static void isTotpConfigurationRequired(RealmModel realm, UserModel user)
protected static void isEmailVerificationRequired(RealmModel realm, UserModel user)
protected static AuthenticationManager.AuthResult verifyIdentityToken(KeycloakSession session, RealmModel realm, javax.ws.rs.core.UriInfo uriInfo, ClientConnection connection, boolean checkActive, String tokenString, javax.ws.rs.core.HttpHeaders headers)
public AuthenticationManager.AuthenticationStatus authenticateForm(KeycloakSession session, ClientConnection clientConnection, RealmModel realm, javax.ws.rs.core.MultivaluedMap<String,String> formData)
protected AuthenticationManager.AuthenticationStatus authenticateInternal(KeycloakSession session, RealmModel realm, javax.ws.rs.core.MultivaluedMap<String,String> formData, String username)
Copyright © 2015. All rights reserved.