Modifier and Type | Method and Description |
---|---|
AuthorizationProvider |
DefaultAuthorizationProviderFactory.create(KeycloakSession session) |
AuthorizationProvider |
AuthorizationProviderFactory.create(KeycloakSession session,
RealmModel realm) |
AuthorizationProvider |
DefaultAuthorizationProviderFactory.create(KeycloakSession session,
RealmModel realm) |
Constructor and Description |
---|
AuthorizationService(AuthorizationProvider authorization) |
Modifier and Type | Field and Description |
---|---|
protected AuthorizationProvider |
PolicyService.authorization |
protected AuthorizationProvider |
PolicyResourceService.authorization |
Modifier and Type | Method and Description |
---|---|
protected void |
PolicyEvaluationService.EvaluationDecisionCollector.grantPermission(AuthorizationProvider authorizationProvider,
Set<Permission> permissions,
ResourcePermission permission,
Collection<Scope> grantedScopes,
ResourceServer resourceServer,
AuthorizationRequest request,
Result result) |
protected AbstractPolicyRepresentation |
PolicyTypeService.toRepresentation(Policy policy,
String fields,
AuthorizationProvider authorization) |
protected AbstractPolicyRepresentation |
PolicyTypeResourceService.toRepresentation(Policy policy,
String fields,
AuthorizationProvider authorization) |
protected AbstractPolicyRepresentation |
PolicyService.toRepresentation(Policy model,
String fields,
AuthorizationProvider authorization) |
protected AbstractPolicyRepresentation |
PolicyResourceService.toRepresentation(Policy policy,
String fields,
AuthorizationProvider authorization) |
protected AbstractPolicyRepresentation |
PermissionService.toRepresentation(Policy policy,
String fields,
AuthorizationProvider authorization) |
Modifier and Type | Method and Description |
---|---|
static PolicyEvaluationResponse |
PolicyEvaluationResponseBuilder.build(PolicyEvaluationService.EvaluationDecisionCollector decision,
ResourceServer resourceServer,
AuthorizationProvider authorization,
KeycloakIdentity identity) |
Constructor and Description |
---|
KeycloakAuthorizationRequest(AuthorizationProvider authorization,
TokenManager tokenManager,
EventBuilder event,
org.jboss.resteasy.spi.HttpRequest request,
Cors cors,
ClientConnection clientConnection) |
Constructor and Description |
---|
JPAPermissionTicketStore(javax.persistence.EntityManager entityManager,
AuthorizationProvider provider) |
JPAPolicyStore(javax.persistence.EntityManager entityManager,
AuthorizationProvider provider) |
JPAResourceServerStore(javax.persistence.EntityManager entityManager,
AuthorizationProvider provider) |
JPAResourceStore(javax.persistence.EntityManager entityManager,
AuthorizationProvider provider) |
JPAScopeStore(javax.persistence.EntityManager entityManager,
AuthorizationProvider provider) |
JPAStoreFactory(javax.persistence.EntityManager entityManager,
AuthorizationProvider provider) |
Modifier and Type | Method and Description |
---|---|
static void |
Permissions.all(ResourceServer resourceServer,
Identity identity,
AuthorizationProvider authorization,
AuthorizationRequest request,
Consumer<ResourcePermission> evaluator)
Returns a list of permissions for all resources and scopes that belong to the given
resourceServer and
identity . |
static ResourcePermission |
Permissions.createResourcePermissions(Resource resource,
ResourceServer resourceServer,
Collection<Scope> requestedScopes,
AuthorizationProvider authorization,
AuthorizationRequest request) |
static Set<Scope> |
Permissions.resolveScopes(Resource resource,
ResourceServer resourceServer,
Collection<Scope> requestedScopes,
AuthorizationProvider authorization) |
Constructor and Description |
---|
Evaluators(AuthorizationProvider authorizationProvider) |
Modifier and Type | Method and Description |
---|---|
AuthorizationProvider |
Evaluation.getAuthorizationProvider() |
AuthorizationProvider |
DefaultEvaluation.getAuthorizationProvider() |
Modifier and Type | Method and Description |
---|---|
void |
PolicyEvaluator.evaluate(ResourcePermission permission,
AuthorizationProvider authorizationProvider,
EvaluationContext executionContext,
Decision decision,
Map<Policy,Map<Object,Decision.Effect>> decisionCache)
Starts the evaluation of the configured authorization policies.
|
void |
DefaultPolicyEvaluator.evaluate(ResourcePermission permission,
AuthorizationProvider authorizationProvider,
EvaluationContext executionContext,
Decision decision,
Map<Policy,Map<Object,Decision.Effect>> decisionCache) |
protected void |
DecisionPermissionCollector.grantPermission(AuthorizationProvider authorizationProvider,
Set<Permission> permissions,
ResourcePermission permission,
Collection<Scope> grantedScopes,
ResourceServer resourceServer,
AuthorizationRequest request,
Result result) |
Modifier and Type | Method and Description |
---|---|
PolicyProvider |
PolicyProviderFactory.create(AuthorizationProvider authorization) |
default PolicyProviderAdminService |
PolicyProviderFactory.getAdminResource(ResourceServer resourceServer,
AuthorizationProvider authorization) |
default void |
PolicyProviderFactory.onCreate(Policy policy,
R representation,
AuthorizationProvider authorization) |
default void |
PolicyProviderFactory.onExport(Policy policy,
PolicyRepresentation representation,
AuthorizationProvider authorizationProvider) |
default void |
PolicyProviderFactory.onImport(Policy policy,
PolicyRepresentation representation,
AuthorizationProvider authorization) |
default void |
PolicyProviderFactory.onRemove(Policy policy,
AuthorizationProvider authorization) |
default void |
PolicyProviderFactory.onUpdate(Policy policy,
R representation,
AuthorizationProvider authorization) |
R |
PolicyProviderFactory.toRepresentation(Policy policy,
AuthorizationProvider authorization) |
Modifier and Type | Method and Description |
---|---|
PolicyProvider |
AggregatePolicyProviderFactory.create(AuthorizationProvider authorization) |
void |
AggregatePolicyProviderFactory.onCreate(Policy policy,
AggregatePolicyRepresentation representation,
AuthorizationProvider authorization) |
void |
AggregatePolicyProviderFactory.onImport(Policy policy,
PolicyRepresentation representation,
AuthorizationProvider authorization) |
void |
AggregatePolicyProviderFactory.onRemove(Policy policy,
AuthorizationProvider authorization) |
void |
AggregatePolicyProviderFactory.onUpdate(Policy policy,
AggregatePolicyRepresentation representation,
AuthorizationProvider authorization) |
AggregatePolicyRepresentation |
AggregatePolicyProviderFactory.toRepresentation(Policy policy,
AuthorizationProvider authorization) |
Modifier and Type | Method and Description |
---|---|
PolicyProvider |
ClientPolicyProviderFactory.create(AuthorizationProvider authorization) |
void |
ClientPolicyProviderFactory.onCreate(Policy policy,
ClientPolicyRepresentation representation,
AuthorizationProvider authorization) |
void |
ClientPolicyProviderFactory.onExport(Policy policy,
PolicyRepresentation representation,
AuthorizationProvider authorization) |
void |
ClientPolicyProviderFactory.onImport(Policy policy,
PolicyRepresentation representation,
AuthorizationProvider authorization) |
void |
ClientPolicyProviderFactory.onUpdate(Policy policy,
ClientPolicyRepresentation representation,
AuthorizationProvider authorization) |
ClientPolicyRepresentation |
ClientPolicyProviderFactory.toRepresentation(Policy policy,
AuthorizationProvider authorization) |
Constructor and Description |
---|
ClientPolicyProvider(BiFunction<Policy,AuthorizationProvider,ClientPolicyRepresentation> representationFunction) |
Modifier and Type | Method and Description |
---|---|
PolicyProvider |
ClientScopePolicyProviderFactory.create(AuthorizationProvider authorization) |
void |
ClientScopePolicyProviderFactory.onCreate(Policy policy,
ClientScopePolicyRepresentation representation,
AuthorizationProvider authorization) |
void |
ClientScopePolicyProviderFactory.onExport(Policy policy,
PolicyRepresentation representation,
AuthorizationProvider authorizationProvider) |
void |
ClientScopePolicyProviderFactory.onImport(Policy policy,
PolicyRepresentation representation,
AuthorizationProvider authorization) |
void |
ClientScopePolicyProviderFactory.onUpdate(Policy policy,
ClientScopePolicyRepresentation representation,
AuthorizationProvider authorization) |
ClientScopePolicyRepresentation |
ClientScopePolicyProviderFactory.toRepresentation(Policy policy,
AuthorizationProvider authorization) |
Constructor and Description |
---|
ClientScopePolicyProvider(BiFunction<Policy,AuthorizationProvider,ClientScopePolicyRepresentation> representationFunction) |
Modifier and Type | Method and Description |
---|---|
PolicyProvider |
GroupPolicyProviderFactory.create(AuthorizationProvider authorization) |
void |
GroupPolicyProviderFactory.onCreate(Policy policy,
GroupPolicyRepresentation representation,
AuthorizationProvider authorization) |
void |
GroupPolicyProviderFactory.onExport(Policy policy,
PolicyRepresentation representation,
AuthorizationProvider authorization) |
void |
GroupPolicyProviderFactory.onImport(Policy policy,
PolicyRepresentation representation,
AuthorizationProvider authorization) |
void |
GroupPolicyProviderFactory.onUpdate(Policy policy,
GroupPolicyRepresentation representation,
AuthorizationProvider authorization) |
GroupPolicyRepresentation |
GroupPolicyProviderFactory.toRepresentation(Policy policy,
AuthorizationProvider authorization) |
Constructor and Description |
---|
GroupPolicyProvider(BiFunction<Policy,AuthorizationProvider,GroupPolicyRepresentation> representationFunction) |
Modifier and Type | Method and Description |
---|---|
PolicyProvider |
JSPolicyProviderFactory.create(AuthorizationProvider authorization) |
void |
JSPolicyProviderFactory.onCreate(Policy policy,
JSPolicyRepresentation representation,
AuthorizationProvider authorization) |
void |
DeployedScriptPolicyFactory.onCreate(Policy policy,
JSPolicyRepresentation representation,
AuthorizationProvider authorization) |
void |
JSPolicyProviderFactory.onImport(Policy policy,
PolicyRepresentation representation,
AuthorizationProvider authorization) |
void |
JSPolicyProviderFactory.onRemove(Policy policy,
AuthorizationProvider authorization) |
void |
JSPolicyProviderFactory.onUpdate(Policy policy,
JSPolicyRepresentation representation,
AuthorizationProvider authorization) |
JSPolicyRepresentation |
JSPolicyProviderFactory.toRepresentation(Policy policy,
AuthorizationProvider authorization) |
JSPolicyRepresentation |
DeployedScriptPolicyFactory.toRepresentation(Policy policy,
AuthorizationProvider authorization) |
Modifier and Type | Method and Description |
---|---|
PolicyProvider |
UMAPolicyProviderFactory.create(AuthorizationProvider authorization) |
PolicyProvider |
ScopePolicyProviderFactory.create(AuthorizationProvider authorization) |
PolicyProvider |
ResourcePolicyProviderFactory.create(AuthorizationProvider authorization) |
void |
ResourcePolicyProviderFactory.onCreate(Policy policy,
ResourcePermissionRepresentation representation,
AuthorizationProvider authorization) |
void |
ScopePolicyProviderFactory.onCreate(Policy policy,
ScopePermissionRepresentation representation,
AuthorizationProvider authorization) |
void |
UMAPolicyProviderFactory.onCreate(Policy policy,
UmaPermissionRepresentation representation,
AuthorizationProvider authorization) |
void |
UMAPolicyProviderFactory.onImport(Policy policy,
PolicyRepresentation representation,
AuthorizationProvider authorization) |
void |
UMAPolicyProviderFactory.onRemove(Policy policy,
AuthorizationProvider authorization) |
void |
ResourcePolicyProviderFactory.onRemove(Policy policy,
AuthorizationProvider authorization) |
void |
ResourcePolicyProviderFactory.onUpdate(Policy policy,
ResourcePermissionRepresentation representation,
AuthorizationProvider authorization) |
void |
ScopePolicyProviderFactory.onUpdate(Policy policy,
ScopePermissionRepresentation representation,
AuthorizationProvider authorization) |
void |
UMAPolicyProviderFactory.onUpdate(Policy policy,
UmaPermissionRepresentation representation,
AuthorizationProvider authorization) |
UmaPermissionRepresentation |
UMAPolicyProviderFactory.toRepresentation(Policy policy,
AuthorizationProvider authorization) |
ScopePermissionRepresentation |
ScopePolicyProviderFactory.toRepresentation(Policy policy,
AuthorizationProvider authorization) |
ResourcePermissionRepresentation |
ResourcePolicyProviderFactory.toRepresentation(Policy policy,
AuthorizationProvider authorization) |
Modifier and Type | Method and Description |
---|---|
PolicyProvider |
RegexPolicyProviderFactory.create(AuthorizationProvider authorization) |
void |
RegexPolicyProviderFactory.onCreate(Policy policy,
RegexPolicyRepresentation representation,
AuthorizationProvider authorization) |
void |
RegexPolicyProviderFactory.onImport(Policy policy,
PolicyRepresentation representation,
AuthorizationProvider authorization) |
void |
RegexPolicyProviderFactory.onUpdate(Policy policy,
RegexPolicyRepresentation representation,
AuthorizationProvider authorization) |
RegexPolicyRepresentation |
RegexPolicyProviderFactory.toRepresentation(Policy policy,
AuthorizationProvider authorization) |
Constructor and Description |
---|
RegexPolicyProvider(BiFunction<Policy,AuthorizationProvider,RegexPolicyRepresentation> representationFunction) |
Modifier and Type | Method and Description |
---|---|
PolicyProvider |
RolePolicyProviderFactory.create(AuthorizationProvider authorization) |
void |
RolePolicyProviderFactory.onCreate(Policy policy,
RolePolicyRepresentation representation,
AuthorizationProvider authorization) |
void |
RolePolicyProviderFactory.onExport(Policy policy,
PolicyRepresentation representation,
AuthorizationProvider authorizationProvider) |
void |
RolePolicyProviderFactory.onImport(Policy policy,
PolicyRepresentation representation,
AuthorizationProvider authorization) |
void |
RolePolicyProviderFactory.onUpdate(Policy policy,
RolePolicyRepresentation representation,
AuthorizationProvider authorization) |
RolePolicyRepresentation |
RolePolicyProviderFactory.toRepresentation(Policy policy,
AuthorizationProvider authorization) |
Constructor and Description |
---|
RolePolicyProvider(BiFunction<Policy,AuthorizationProvider,RolePolicyRepresentation> representationFunction) |
Modifier and Type | Method and Description |
---|---|
PolicyProvider |
TimePolicyProviderFactory.create(AuthorizationProvider authorization) |
void |
TimePolicyProviderFactory.onCreate(Policy policy,
TimePolicyRepresentation representation,
AuthorizationProvider authorization) |
void |
TimePolicyProviderFactory.onImport(Policy policy,
PolicyRepresentation representation,
AuthorizationProvider authorization) |
void |
TimePolicyProviderFactory.onRemove(Policy policy,
AuthorizationProvider authorization) |
void |
TimePolicyProviderFactory.onUpdate(Policy policy,
TimePolicyRepresentation representation,
AuthorizationProvider authorization) |
TimePolicyRepresentation |
TimePolicyProviderFactory.toRepresentation(Policy policy,
AuthorizationProvider authorization) |
Modifier and Type | Method and Description |
---|---|
PolicyProvider |
UserPolicyProviderFactory.create(AuthorizationProvider authorization) |
void |
UserPolicyProviderFactory.onCreate(Policy policy,
UserPolicyRepresentation representation,
AuthorizationProvider authorization) |
void |
UserPolicyProviderFactory.onExport(Policy policy,
PolicyRepresentation representation,
AuthorizationProvider authorizationProvider) |
void |
UserPolicyProviderFactory.onImport(Policy policy,
PolicyRepresentation representation,
AuthorizationProvider authorization) |
void |
UserPolicyProviderFactory.onUpdate(Policy policy,
UserPolicyRepresentation representation,
AuthorizationProvider authorization) |
UserPolicyRepresentation |
UserPolicyProviderFactory.toRepresentation(Policy policy,
AuthorizationProvider authorization) |
Constructor and Description |
---|
UserPolicyProvider(BiFunction<Policy,AuthorizationProvider,UserPolicyRepresentation> representationFunction) |
Constructor and Description |
---|
ProtectionService(AuthorizationProvider authorization) |
Constructor and Description |
---|
AbstractPermissionService(KeycloakIdentity identity,
ResourceServer resourceServer,
AuthorizationProvider authorization) |
PermissionService(KeycloakIdentity identity,
ResourceServer resourceServer,
AuthorizationProvider authorization) |
PermissionTicketService(KeycloakIdentity identity,
ResourceServer resourceServer,
AuthorizationProvider authorization) |
Constructor and Description |
---|
UserManagedPermissionService(KeycloakIdentity identity,
ResourceServer resourceServer,
AuthorizationProvider authorization,
AdminEventBuilder eventBuilder) |
Constructor and Description |
---|
RequesterBean(PermissionTicket ticket,
AuthorizationProvider authorization) |
Modifier and Type | Method and Description |
---|---|
static Policy |
RepresentationToModel.toModel(AbstractPolicyRepresentation representation,
AuthorizationProvider authorization,
Policy model) |
static PermissionTicket |
RepresentationToModel.toModel(PermissionTicketRepresentation representation,
String resourceServerId,
AuthorizationProvider authorization) |
static Resource |
RepresentationToModel.toModel(ResourceRepresentation resource,
ResourceServer resourceServer,
AuthorizationProvider authorization) |
static ResourceServer |
RepresentationToModel.toModel(ResourceServerRepresentation rep,
AuthorizationProvider authorization) |
static Scope |
RepresentationToModel.toModel(ScopeRepresentation scope,
ResourceServer resourceServer,
AuthorizationProvider authorization) |
static Scope |
RepresentationToModel.toModel(ScopeRepresentation scope,
ResourceServer resourceServer,
AuthorizationProvider authorization,
boolean updateIfExists) |
static PermissionTicketRepresentation |
ModelToRepresentation.toRepresentation(PermissionTicket ticket,
AuthorizationProvider authorization) |
static PermissionTicketRepresentation |
ModelToRepresentation.toRepresentation(PermissionTicket ticket,
AuthorizationProvider authorization,
boolean returnNames) |
static <R extends AbstractPolicyRepresentation> |
ModelToRepresentation.toRepresentation(Policy policy,
AuthorizationProvider authorization) |
static <R extends AbstractPolicyRepresentation> |
ModelToRepresentation.toRepresentation(Policy policy,
AuthorizationProvider authorization,
boolean genericRepresentation,
boolean export) |
static <R extends AbstractPolicyRepresentation> |
ModelToRepresentation.toRepresentation(Policy policy,
AuthorizationProvider authorization,
boolean genericRepresentation,
boolean export,
boolean allFields) |
static ResourceRepresentation |
ModelToRepresentation.toRepresentation(Resource model,
String resourceServer,
AuthorizationProvider authorization) |
static ResourceRepresentation |
ModelToRepresentation.toRepresentation(Resource model,
String resourceServer,
AuthorizationProvider authorization,
Boolean deep) |
Modifier and Type | Field and Description |
---|---|
protected AuthorizationProvider |
AbstractResourceService.provider |
Modifier and Type | Method and Description |
---|---|
AuthorizationProvider |
AdminPermissionManagement.authz() |
Copyright © 2021 JBoss by Red Hat. All rights reserved.