Package | Description |
---|---|
org.keycloak.authorization |
Fine-grained Authorization SPI.
|
org.keycloak.authorization.permission | |
org.keycloak.authorization.permission.evaluator | |
org.keycloak.authorization.policy.evaluation |
Provides classes related with the evaluation of policies.
|
org.keycloak.authorization.policy.provider |
Provides classes and a SPI to plug different policy providers.
|
org.keycloak.models.utils |
Modifier and Type | Method and Description |
---|---|
AuthorizationProvider |
AuthorizationProviderFactory.create(KeycloakSession session,
RealmModel realm) |
Modifier and Type | Method and Description |
---|---|
static void |
Permissions.all(ResourceServer resourceServer,
Identity identity,
AuthorizationProvider authorization,
AuthorizationRequest request,
Consumer<ResourcePermission> evaluator)
Returns a list of permissions for all resources and scopes that belong to the given
resourceServer and
identity . |
static ResourcePermission |
Permissions.createResourcePermissions(Resource resource,
ResourceServer resourceServer,
Collection<Scope> requestedScopes,
AuthorizationProvider authorization,
AuthorizationRequest request) |
static Set<Scope> |
Permissions.resolveScopes(Resource resource,
ResourceServer resourceServer,
Collection<Scope> requestedScopes,
AuthorizationProvider authorization) |
Constructor and Description |
---|
Evaluators(AuthorizationProvider authorizationProvider) |
Modifier and Type | Method and Description |
---|---|
AuthorizationProvider |
Evaluation.getAuthorizationProvider() |
AuthorizationProvider |
DefaultEvaluation.getAuthorizationProvider() |
Modifier and Type | Method and Description |
---|---|
void |
PolicyEvaluator.evaluate(ResourcePermission permission,
AuthorizationProvider authorizationProvider,
EvaluationContext executionContext,
Decision decision,
Map<Policy,Map<Object,Decision.Effect>> decisionCache)
Starts the evaluation of the configured authorization policies.
|
void |
DefaultPolicyEvaluator.evaluate(ResourcePermission permission,
AuthorizationProvider authorizationProvider,
EvaluationContext executionContext,
Decision decision,
Map<Policy,Map<Object,Decision.Effect>> decisionCache) |
protected void |
DecisionPermissionCollector.grantPermission(AuthorizationProvider authorizationProvider,
Set<Permission> permissions,
ResourcePermission permission,
Collection<Scope> grantedScopes,
ResourceServer resourceServer,
AuthorizationRequest request,
Result result) |
Modifier and Type | Method and Description |
---|---|
PolicyProvider |
PolicyProviderFactory.create(AuthorizationProvider authorization) |
default PolicyProviderAdminService |
PolicyProviderFactory.getAdminResource(ResourceServer resourceServer,
AuthorizationProvider authorization) |
default void |
PolicyProviderFactory.onCreate(Policy policy,
R representation,
AuthorizationProvider authorization) |
default void |
PolicyProviderFactory.onExport(Policy policy,
PolicyRepresentation representation,
AuthorizationProvider authorizationProvider) |
default void |
PolicyProviderFactory.onImport(Policy policy,
PolicyRepresentation representation,
AuthorizationProvider authorization) |
default void |
PolicyProviderFactory.onRemove(Policy policy,
AuthorizationProvider authorization) |
default void |
PolicyProviderFactory.onUpdate(Policy policy,
R representation,
AuthorizationProvider authorization) |
R |
PolicyProviderFactory.toRepresentation(Policy policy,
AuthorizationProvider authorization) |
Modifier and Type | Method and Description |
---|---|
static Policy |
RepresentationToModel.toModel(AbstractPolicyRepresentation representation,
AuthorizationProvider authorization,
Policy model) |
static PermissionTicket |
RepresentationToModel.toModel(PermissionTicketRepresentation representation,
String resourceServerId,
AuthorizationProvider authorization) |
static Resource |
RepresentationToModel.toModel(ResourceRepresentation resource,
ResourceServer resourceServer,
AuthorizationProvider authorization) |
static ResourceServer |
RepresentationToModel.toModel(ResourceServerRepresentation rep,
AuthorizationProvider authorization) |
static Scope |
RepresentationToModel.toModel(ScopeRepresentation scope,
ResourceServer resourceServer,
AuthorizationProvider authorization) |
static Scope |
RepresentationToModel.toModel(ScopeRepresentation scope,
ResourceServer resourceServer,
AuthorizationProvider authorization,
boolean updateIfExists) |
static PermissionTicketRepresentation |
ModelToRepresentation.toRepresentation(PermissionTicket ticket,
AuthorizationProvider authorization) |
static PermissionTicketRepresentation |
ModelToRepresentation.toRepresentation(PermissionTicket ticket,
AuthorizationProvider authorization,
boolean returnNames) |
static <R extends AbstractPolicyRepresentation> |
ModelToRepresentation.toRepresentation(Policy policy,
AuthorizationProvider authorization) |
static <R extends AbstractPolicyRepresentation> |
ModelToRepresentation.toRepresentation(Policy policy,
AuthorizationProvider authorization,
boolean genericRepresentation,
boolean export) |
static <R extends AbstractPolicyRepresentation> |
ModelToRepresentation.toRepresentation(Policy policy,
AuthorizationProvider authorization,
boolean genericRepresentation,
boolean export,
boolean allFields) |
static ResourceRepresentation |
ModelToRepresentation.toRepresentation(Resource model,
String resourceServer,
AuthorizationProvider authorization) |
static ResourceRepresentation |
ModelToRepresentation.toRepresentation(Resource model,
String resourceServer,
AuthorizationProvider authorization,
Boolean deep) |
Copyright © 2021 JBoss by Red Hat. All rights reserved.