public class OIDCLoginProtocol extends Object implements LoginProtocol
LoginProtocol.Error| Constructor and Description |
|---|
OIDCLoginProtocol() |
OIDCLoginProtocol(KeycloakSession session,
RealmModel realm,
javax.ws.rs.core.UriInfo uriInfo,
javax.ws.rs.core.HttpHeaders headers,
EventBuilder event) |
public static final String LOGIN_PROTOCOL
public static final String STATE_PARAM
public static final String LOGOUT_STATE_PARAM
public static final String SCOPE_PARAM
public static final String CODE_PARAM
public static final String RESPONSE_TYPE_PARAM
public static final String GRANT_TYPE_PARAM
public static final String REDIRECT_URI_PARAM
public static final String CLIENT_ID_PARAM
public static final String NONCE_PARAM
public static final String MAX_AGE_PARAM
public static final String PROMPT_PARAM
public static final String LOGIN_HINT_PARAM
public static final String REQUEST_PARAM
public static final String REQUEST_URI_PARAM
public static final String UI_LOCALES_PARAM
public static final String CLAIMS_PARAM
public static final String ACR_PARAM
public static final String ID_TOKEN_HINT
public static final String LOGOUT_REDIRECT_URI
public static final String ISSUER
public static final String RESPONSE_MODE_PARAM
public static final String PROMPT_VALUE_NONE
public static final String PROMPT_VALUE_LOGIN
public static final String PROMPT_VALUE_CONSENT
public static final String PROMPT_VALUE_SELECT_ACCOUNT
public static final String CLIENT_SECRET_BASIC
public static final String CLIENT_SECRET_POST
public static final String CLIENT_SECRET_JWT
public static final String PRIVATE_KEY_JWT
public static final String TLS_CLIENT_AUTH
public static final String CODE_CHALLENGE_PARAM
public static final String CODE_CHALLENGE_METHOD_PARAM
public static final int PKCE_CODE_CHALLENGE_MIN_LENGTH
public static final int PKCE_CODE_CHALLENGE_MAX_LENGTH
public static final int PKCE_CODE_VERIFIER_MIN_LENGTH
public static final int PKCE_CODE_VERIFIER_MAX_LENGTH
public static final String PKCE_METHOD_PLAIN
public static final String PKCE_METHOD_S256
protected KeycloakSession session
protected RealmModel realm
protected javax.ws.rs.core.UriInfo uriInfo
protected javax.ws.rs.core.HttpHeaders headers
protected EventBuilder event
protected OIDCResponseType responseType
protected OIDCResponseMode responseMode
public OIDCLoginProtocol(KeycloakSession session, RealmModel realm, javax.ws.rs.core.UriInfo uriInfo, javax.ws.rs.core.HttpHeaders headers, EventBuilder event)
public OIDCLoginProtocol()
public OIDCLoginProtocol setSession(KeycloakSession session)
setSession in interface LoginProtocolpublic OIDCLoginProtocol setRealm(RealmModel realm)
setRealm in interface LoginProtocolpublic OIDCLoginProtocol setUriInfo(javax.ws.rs.core.UriInfo uriInfo)
setUriInfo in interface LoginProtocolpublic OIDCLoginProtocol setHttpHeaders(javax.ws.rs.core.HttpHeaders headers)
setHttpHeaders in interface LoginProtocolpublic OIDCLoginProtocol setEventBuilder(EventBuilder event)
setEventBuilder in interface LoginProtocolpublic javax.ws.rs.core.Response authenticated(AuthenticationSessionModel authSession, UserSessionModel userSession, ClientSessionContext clientSessionCtx)
authenticated in interface LoginProtocolpublic javax.ws.rs.core.Response sendError(AuthenticationSessionModel authSession, LoginProtocol.Error error)
sendError in interface LoginProtocolpublic javax.ws.rs.core.Response backchannelLogout(UserSessionModel userSession, AuthenticatedClientSessionModel clientSession)
backchannelLogout in interface LoginProtocolpublic javax.ws.rs.core.Response frontchannelLogout(UserSessionModel userSession, AuthenticatedClientSessionModel clientSession)
frontchannelLogout in interface LoginProtocolpublic javax.ws.rs.core.Response finishLogout(UserSessionModel userSession)
finishLogout in interface LoginProtocolpublic boolean requireReauthentication(UserSessionModel userSession, AuthenticationSessionModel authSession)
requireReauthentication in interface LoginProtocolprotected boolean isPromptLogin(AuthenticationSessionModel authSession)
protected boolean isAuthTimeExpired(UserSessionModel userSession, AuthenticationSessionModel authSession)
protected boolean isReAuthRequiredForKcAction(UserSessionModel userSession, AuthenticationSessionModel authSession)
public boolean sendPushRevocationPolicyRequest(RealmModel realm, ClientModel resource, int notBefore, String managementUrl)
LoginProtocolsendPushRevocationPolicyRequest in interface LoginProtocoltrue if revocation policy was successfully updated at the client, false otherwise.Copyright © 2021 JBoss by Red Hat. All rights reserved.