public abstract class AbstractX509ClientCertificateAuthenticator extends Object implements Authenticator
| Modifier and Type | Class and Description |
|---|---|
protected static class |
AbstractX509ClientCertificateAuthenticator.CertificateValidatorConfigBuilder |
protected static class |
AbstractX509ClientCertificateAuthenticator.UserIdentityExtractorBuilder |
protected static class |
AbstractX509ClientCertificateAuthenticator.UserIdentityToModelMapperBuilder |
| Constructor and Description |
|---|
AbstractX509ClientCertificateAuthenticator() |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, waitaction, areRequiredActionsEnabled, authenticate, getRequiredActionspublic static final String DEFAULT_ATTRIBUTE_NAME
protected static ServicesLogger logger
public static final String REGULAR_EXPRESSION
public static final String ENABLE_CRL
public static final String ENABLE_OCSP
public static final String ENABLE_CRLDP
public static final String CANONICAL_DN
public static final String TIMESTAMP_VALIDATION
public static final String SERIALNUMBER_HEX
public static final String CRL_RELATIVE_PATH
public static final String OCSPRESPONDER_URI
public static final String OCSPRESPONDER_CERTIFICATE
public static final String MAPPING_SOURCE_SELECTION
public static final String MAPPING_SOURCE_CERT_SUBJECTDN
public static final String MAPPING_SOURCE_CERT_SUBJECTDN_EMAIL
public static final String MAPPING_SOURCE_CERT_SUBJECTALTNAME_EMAIL
public static final String MAPPING_SOURCE_CERT_SUBJECTALTNAME_OTHERNAME
public static final String MAPPING_SOURCE_CERT_SUBJECTDN_CN
public static final String MAPPING_SOURCE_CERT_ISSUERDN
public static final String MAPPING_SOURCE_CERT_SERIALNUMBER
public static final String MAPPING_SOURCE_CERT_SHA256_THUMBPRINT
public static final String MAPPING_SOURCE_CERT_SERIALNUMBER_ISSUERDN
public static final String MAPPING_SOURCE_CERT_CERTIFICATE_PEM
public static final String USER_MAPPER_SELECTION
public static final String USER_ATTRIBUTE_MAPPER
public static final String USERNAME_EMAIL_MAPPER
public static final String CUSTOM_ATTRIBUTE_NAME
public static final String CERTIFICATE_KEY_USAGE
public static final String CERTIFICATE_EXTENDED_KEY_USAGE
public static final String CONFIRMATION_PAGE_DISALLOWED
public AbstractX509ClientCertificateAuthenticator()
protected javax.ws.rs.core.Response createInfoResponse(AuthenticationFlowContext context, String infoMessage, Object... parameters)
public CertificateValidator.CertificateValidatorBuilder certificateValidationParameters(KeycloakSession session, X509AuthenticatorConfigModel config) throws Exception
Exceptionprotected X509Certificate[] getCertificateChain(AuthenticationFlowContext context)
protected void saveX509CertificateAuditDataToAuthSession(AuthenticationFlowContext context, X509Certificate cert)
protected void recordX509CertificateAuditDataViaContextEvent(AuthenticationFlowContext context)
public UserIdentityExtractor getUserIdentityExtractor(X509AuthenticatorConfigModel config)
public UserIdentityToModelMapper getUserIdentityToModelMapper(X509AuthenticatorConfigModel config)
public boolean requiresUser()
AuthenticatorrequiresUser in interface Authenticatorpublic boolean configuredFor(KeycloakSession session, RealmModel realm, UserModel user)
AuthenticatorconfiguredFor in interface Authenticatorpublic void setRequiredActions(KeycloakSession session, RealmModel realm, UserModel user)
AuthenticatorsetRequiredActions in interface AuthenticatorCopyright © 2021 JBoss by Red Hat. All rights reserved.