org.keycloak.adapters.undertow

Class UndertowSessionTokenStore

java.lang.Object

org.keycloak.adapters.undertow.UndertowSessionTokenStore

All Implemented Interfaces:

AdapterTokenStore

public class UndertowSessionTokenStore
extends Object
implements AdapterTokenStore

Per-request object. Storage of tokens in undertow session.

Author:

Marek Posolda

Field Summary

Fields

Modifier and Type	Field and Description
protected static org.jboss.logging.Logger	log

Constructor Summary

Constructors

Constructor and Description
UndertowSessionTokenStore(io.undertow.server.HttpServerExchange exchange, KeycloakDeployment deployment, UndertowUserSessionManagement sessionManagement, io.undertow.security.api.SecurityContext securityContext)

Method Summary

Methods

Modifier and Type	Method and Description
void	checkCurrentToken() Impl can validate if current token exists and perform refreshing if it exists and is expired
boolean	isCached(RequestAuthenticator authenticator) Check if we are logged already (we have already valid and successfully refreshed accessToken).
void	logout() Handle logout on store side and possibly propagate logout call to Keycloak
void	refreshCallback(RefreshableKeycloakSecurityContext securityContext) Callback invoked after successful token refresh
void	saveAccountInfo(KeycloakAccount account) Finish successful OAuth2 login and store validated account

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

log

protected static org.jboss.logging.Logger log

Constructor Detail

UndertowSessionTokenStore

public UndertowSessionTokenStore(io.undertow.server.HttpServerExchange exchange,
                         KeycloakDeployment deployment,
                         UndertowUserSessionManagement sessionManagement,
                         io.undertow.security.api.SecurityContext securityContext)

Method Detail

checkCurrentToken

public void checkCurrentToken()

Description copied from interface: AdapterTokenStore

Impl can validate if current token exists and perform refreshing if it exists and is expired

Specified by:

checkCurrentToken in interface AdapterTokenStore

isCached

public boolean isCached(RequestAuthenticator authenticator)

Description copied from interface: AdapterTokenStore

Check if we are logged already (we have already valid and successfully refreshed accessToken). Establish security context if yes

Specified by:

isCached in interface AdapterTokenStore

Parameters:

authenticator - used for actual request authentication

Returns:

true if we are logged-in already

saveAccountInfo

public void saveAccountInfo(KeycloakAccount account)

Description copied from interface: AdapterTokenStore

Finish successful OAuth2 login and store validated account

Specified by:

saveAccountInfo in interface AdapterTokenStore

logout

public void logout()

Description copied from interface: AdapterTokenStore

Handle logout on store side and possibly propagate logout call to Keycloak

Specified by:

logout in interface AdapterTokenStore

refreshCallback

public void refreshCallback(RefreshableKeycloakSecurityContext securityContext)

Description copied from interface: AdapterTokenStore

Callback invoked after successful token refresh

Specified by:

refreshCallback in interface AdapterTokenStore

Parameters:

securityContext - context where refresh was performed