| Package | Description |
|---|---|
| org.keycloak.authorization.admin | |
| org.keycloak.authorization.admin.representation | |
| org.keycloak.authorization.jpa.store | |
| org.keycloak.authorization.model |
Provides the domain model and any other type related with it
|
| org.keycloak.authorization.permission | |
| org.keycloak.authorization.permission.evaluator | |
| org.keycloak.authorization.policy.evaluation |
Provides classes related with the evaluation of policies.
|
| org.keycloak.authorization.policy.provider |
Provides classes and a SPI to plug different policy providers.
|
| org.keycloak.authorization.protection.permission | |
| org.keycloak.authorization.protection.policy | |
| org.keycloak.authorization.protection.resource | |
| org.keycloak.authorization.store |
Provides classes and a SPI to plug different metadata storage implementations.
|
| org.keycloak.models.cache.infinispan.authorization | |
| org.keycloak.models.cache.infinispan.authorization.entities | |
| org.keycloak.models.utils | |
| org.keycloak.services.resources.admin.permissions |
| Modifier and Type | Field and Description |
|---|---|
protected ResourceServer |
PolicyService.resourceServer |
protected ResourceServer |
PolicyResourceService.resourceServer |
| Modifier and Type | Method and Description |
|---|---|
ResourceServer |
ResourceServerService.create(boolean newClient) |
| Modifier and Type | Method and Description |
|---|---|
protected void |
PolicyEvaluationService.EvaluationDecisionCollector.grantPermission(AuthorizationProvider authorizationProvider,
List<Permission> permissions,
ResourcePermission permission,
Collection<Scope> grantedScopes,
ResourceServer resourceServer,
AuthorizationRequest request,
Result result) |
| Modifier and Type | Method and Description |
|---|---|
static PolicyEvaluationResponse |
PolicyEvaluationResponseBuilder.build(PolicyEvaluationService.EvaluationDecisionCollector decision,
ResourceServer resourceServer,
AuthorizationProvider authorization,
KeycloakIdentity identity) |
| Modifier and Type | Class and Description |
|---|---|
class |
ResourceServerAdapter |
| Modifier and Type | Method and Description |
|---|---|
ResourceServer |
JPAResourceServerStore.create(String clientId) |
ResourceServer |
JPAResourceServerStore.findById(String id) |
ResourceServer |
ScopeAdapter.getResourceServer() |
ResourceServer |
PolicyAdapter.getResourceServer() |
ResourceServer |
PermissionTicketAdapter.getResourceServer() |
| Modifier and Type | Method and Description |
|---|---|
Policy |
JPAPolicyStore.create(AbstractPolicyRepresentation representation,
ResourceServer resourceServer) |
Scope |
JPAScopeStore.create(String name,
ResourceServer resourceServer) |
Resource |
JPAResourceStore.create(String name,
ResourceServer resourceServer,
String owner) |
Scope |
JPAScopeStore.create(String id,
String name,
ResourceServer resourceServer) |
Resource |
JPAResourceStore.create(String id,
String name,
ResourceServer resourceServer,
String owner) |
PermissionTicket |
JPAPermissionTicketStore.create(String resourceId,
String scopeId,
String requester,
ResourceServer resourceServer) |
static ResourceServerEntity |
ResourceServerAdapter.toEntity(javax.persistence.EntityManager em,
ResourceServer resource) |
| Modifier and Type | Method and Description |
|---|---|
ResourceServer |
Scope.getResourceServer()
Returns the
ResourceServer instance to where this scope belongs to. |
ResourceServer |
Policy.getResourceServer()
Returns the
ResourceServer where this policy belongs to. |
ResourceServer |
PermissionTicket.getResourceServer()
Returns the
ResourceServer where this policy belongs to. |
| Modifier and Type | Method and Description |
|---|---|
ResourceServer |
ResourcePermission.getResourceServer()
Returns the resource server associated with this permission.
|
| Modifier and Type | Method and Description |
|---|---|
static void |
Permissions.all(ResourceServer resourceServer,
Identity identity,
AuthorizationProvider authorization,
AuthorizationRequest request,
Consumer<ResourcePermission> evaluator)
Returns a list of permissions for all resources and scopes that belong to the given
resourceServer and
identity. |
static ResourcePermission |
Permissions.createResourcePermissions(Resource resource,
ResourceServer resourceServer,
Collection<Scope> requestedScopes,
AuthorizationProvider authorization,
AuthorizationRequest request) |
static ResourcePermission |
Permissions.permission(ResourceServer server,
Resource resource,
Scope scope) |
static Set<Scope> |
Permissions.resolveScopes(Resource resource,
ResourceServer resourceServer,
Collection<Scope> requestedScopes,
AuthorizationProvider authorization) |
| Constructor and Description |
|---|
ResourcePermission(Resource resource,
Collection<Scope> scopes,
ResourceServer resourceServer) |
ResourcePermission(Resource resource,
Collection<Scope> scopes,
ResourceServer resourceServer,
Map<String,? extends Collection<String>> claims) |
ResourcePermission(Resource resource,
ResourceServer resourceServer,
Map<String,? extends Collection<String>> claims) |
| Modifier and Type | Method and Description |
|---|---|
Collection<Permission> |
UnboundedPermissionEvaluator.evaluate(ResourceServer resourceServer,
AuthorizationRequest request) |
Collection<Permission> |
PermissionEvaluator.evaluate(ResourceServer resourceServer,
AuthorizationRequest request) |
PermissionEvaluator |
Evaluators.from(EvaluationContext evaluationContext,
ResourceServer resourceServer,
AuthorizationRequest request) |
| Modifier and Type | Method and Description |
|---|---|
protected void |
DecisionPermissionCollector.grantPermission(AuthorizationProvider authorizationProvider,
List<Permission> permissions,
ResourcePermission permission,
Collection<Scope> grantedScopes,
ResourceServer resourceServer,
AuthorizationRequest request,
Result result) |
| Constructor and Description |
|---|
DecisionPermissionCollector(AuthorizationProvider authorizationProvider,
ResourceServer resourceServer,
AuthorizationRequest request) |
PermissionTicketAwareDecisionResultCollector(AuthorizationRequest request,
PermissionTicketToken ticket,
Identity identity,
ResourceServer resourceServer,
AuthorizationProvider authorization) |
| Modifier and Type | Method and Description |
|---|---|
default PolicyProviderAdminService |
PolicyProviderFactory.getAdminResource(ResourceServer resourceServer,
AuthorizationProvider authorization) |
| Constructor and Description |
|---|
AbstractPermissionService(KeycloakIdentity identity,
ResourceServer resourceServer,
AuthorizationProvider authorization) |
PermissionService(KeycloakIdentity identity,
ResourceServer resourceServer,
AuthorizationProvider authorization) |
PermissionTicketService(KeycloakIdentity identity,
ResourceServer resourceServer,
AuthorizationProvider authorization) |
| Constructor and Description |
|---|
UserManagedPermissionService(KeycloakIdentity identity,
ResourceServer resourceServer,
AuthorizationProvider authorization,
AdminEventBuilder eventBuilder) |
| Constructor and Description |
|---|
ResourceService(KeycloakSession session,
ResourceServer resourceServer,
Identity identity,
ResourceSetService resourceManager) |
| Modifier and Type | Method and Description |
|---|---|
ResourceServer |
ResourceServerStore.create(String clientId)
Creates a
ResourceServer instance backed by this persistent storage implementation. |
ResourceServer |
ResourceServerStore.findById(String id)
Returns a
ResourceServer instance based on its identifier. |
| Modifier and Type | Method and Description |
|---|---|
Policy |
PolicyStore.create(AbstractPolicyRepresentation representation,
ResourceServer resourceServer)
Creates a new
Policy instance. |
Scope |
ScopeStore.create(String name,
ResourceServer resourceServer)
Creates a new
Scope instance. |
Resource |
ResourceStore.create(String name,
ResourceServer resourceServer,
String owner)
Creates a
Resource instance backed by this persistent storage implementation. |
Scope |
ScopeStore.create(String id,
String name,
ResourceServer resourceServer)
Creates a new
Scope instance. |
Resource |
ResourceStore.create(String id,
String name,
ResourceServer resourceServer,
String owner)
Creates a
Resource instance backed by this persistent storage implementation. |
PermissionTicket |
PermissionTicketStore.create(String resourceId,
String scopeId,
String requester,
ResourceServer resourceServer)
Creates a new
PermissionTicket instance. |
| Modifier and Type | Field and Description |
|---|---|
protected ResourceServer |
ResourceServerAdapter.updated |
| Modifier and Type | Method and Description |
|---|---|
ResourceServer |
StoreFactoryCacheSession.ResourceServerCache.create(String clientId) |
ResourceServer |
StoreFactoryCacheSession.ResourceServerCache.findById(String id) |
ResourceServer |
ResourceServerAdapter.getDelegateForUpdate() |
ResourceServer |
ScopeAdapter.getResourceServer() |
ResourceServer |
PolicyAdapter.getResourceServer() |
ResourceServer |
PermissionTicketAdapter.getResourceServer() |
| Modifier and Type | Method and Description |
|---|---|
Policy |
StoreFactoryCacheSession.PolicyCache.create(AbstractPolicyRepresentation representation,
ResourceServer resourceServer) |
Scope |
StoreFactoryCacheSession.ScopeCache.create(String name,
ResourceServer resourceServer) |
Resource |
StoreFactoryCacheSession.ResourceCache.create(String name,
ResourceServer resourceServer,
String owner) |
Scope |
StoreFactoryCacheSession.ScopeCache.create(String id,
String name,
ResourceServer resourceServer) |
Resource |
StoreFactoryCacheSession.ResourceCache.create(String id,
String name,
ResourceServer resourceServer,
String owner) |
PermissionTicket |
StoreFactoryCacheSession.PermissionTicketCache.create(String resourceId,
String scopeId,
String requester,
ResourceServer resourceServer) |
| Constructor and Description |
|---|
CachedResourceServer(Long revision,
ResourceServer resourceServer) |
| Modifier and Type | Method and Description |
|---|---|
static ResourceServer |
RepresentationToModel.createResourceServer(ClientModel client,
KeycloakSession session,
boolean addDefaultRoles) |
static ResourceServer |
RepresentationToModel.toModel(ResourceServerRepresentation rep,
AuthorizationProvider authorization) |
| Modifier and Type | Method and Description |
|---|---|
static Resource |
RepresentationToModel.toModel(ResourceRepresentation resource,
ResourceServer resourceServer,
AuthorizationProvider authorization) |
static Scope |
RepresentationToModel.toModel(ScopeRepresentation scope,
ResourceServer resourceServer,
AuthorizationProvider authorization) |
static Scope |
RepresentationToModel.toModel(ScopeRepresentation scope,
ResourceServer resourceServer,
AuthorizationProvider authorization,
boolean updateIfExists) |
static ResourceServerRepresentation |
ModelToRepresentation.toRepresentation(ResourceServer model,
ClientModel client) |
| Modifier and Type | Method and Description |
|---|---|
ResourceServer |
AdminPermissionManagement.realmResourceServer() |
ResourceServer |
ClientPermissionManagement.resourceServer(ClientModel client) |
ResourceServer |
RolePermissionManagement.resourceServer(RoleModel role) |
| Modifier and Type | Method and Description |
|---|---|
Policy |
RolePermissionManagement.manageUsersPolicy(ResourceServer server) |
Policy |
RolePermissionManagement.rolePolicy(ResourceServer server,
RoleModel role) |
Policy |
RolePermissionManagement.viewUsersPolicy(ResourceServer server) |
Copyright © 2021 JBoss by Red Hat. All rights reserved.