Package | Description |
---|---|
org.keycloak.authorization.model |
Provides the domain model and any other type related with it
|
org.keycloak.authorization.permission | |
org.keycloak.authorization.permission.evaluator | |
org.keycloak.authorization.policy.evaluation |
Provides classes related with the evaluation of policies.
|
org.keycloak.authorization.policy.provider |
Provides classes and a SPI to plug different policy providers.
|
org.keycloak.authorization.store |
Provides classes and a SPI to plug different metadata storage implementations.
|
org.keycloak.models.utils |
Modifier and Type | Field and Description |
---|---|
static SearchableModelField<ResourceServer> |
ResourceServer.SearchableFields.ID |
Modifier and Type | Method and Description |
---|---|
ResourceServer |
Scope.getResourceServer()
Returns the
ResourceServer instance to where this scope belongs to. |
ResourceServer |
Policy.getResourceServer()
Returns the
ResourceServer where this policy belongs to. |
ResourceServer |
PermissionTicket.getResourceServer()
Returns the
ResourceServer where this policy belongs to. |
Modifier and Type | Method and Description |
---|---|
ResourceServer |
ResourcePermission.getResourceServer()
Returns the resource server associated with this permission.
|
Modifier and Type | Method and Description |
---|---|
static void |
Permissions.all(ResourceServer resourceServer,
Identity identity,
AuthorizationProvider authorization,
AuthorizationRequest request,
Consumer<ResourcePermission> evaluator)
Returns a list of permissions for all resources and scopes that belong to the given
resourceServer and
identity . |
static ResourcePermission |
Permissions.createResourcePermissions(Resource resource,
ResourceServer resourceServer,
Collection<Scope> requestedScopes,
AuthorizationProvider authorization,
AuthorizationRequest request) |
static ResourcePermission |
Permissions.permission(ResourceServer server,
Resource resource,
Scope scope) |
static Set<Scope> |
Permissions.resolveScopes(Resource resource,
ResourceServer resourceServer,
Collection<Scope> requestedScopes,
AuthorizationProvider authorization) |
Constructor and Description |
---|
ResourcePermission(Resource resource,
Collection<Scope> scopes,
ResourceServer resourceServer) |
ResourcePermission(Resource resource,
Collection<Scope> scopes,
ResourceServer resourceServer,
Map<String,? extends Collection<String>> claims) |
ResourcePermission(Resource resource,
ResourceServer resourceServer,
Map<String,? extends Collection<String>> claims) |
Modifier and Type | Method and Description |
---|---|
Collection<Permission> |
UnboundedPermissionEvaluator.evaluate(ResourceServer resourceServer,
AuthorizationRequest request) |
Collection<Permission> |
PermissionEvaluator.evaluate(ResourceServer resourceServer,
AuthorizationRequest request) |
PermissionEvaluator |
Evaluators.from(EvaluationContext evaluationContext,
ResourceServer resourceServer,
AuthorizationRequest request) |
Modifier and Type | Method and Description |
---|---|
protected void |
DecisionPermissionCollector.grantPermission(AuthorizationProvider authorizationProvider,
Set<Permission> permissions,
ResourcePermission permission,
Collection<Scope> grantedScopes,
ResourceServer resourceServer,
AuthorizationRequest request,
Result result) |
Constructor and Description |
---|
DecisionPermissionCollector(AuthorizationProvider authorizationProvider,
ResourceServer resourceServer,
AuthorizationRequest request) |
PermissionTicketAwareDecisionResultCollector(AuthorizationRequest request,
PermissionTicketToken ticket,
Identity identity,
ResourceServer resourceServer,
AuthorizationProvider authorization) |
Modifier and Type | Method and Description |
---|---|
default PolicyProviderAdminService |
PolicyProviderFactory.getAdminResource(ResourceServer resourceServer,
AuthorizationProvider authorization) |
Modifier and Type | Method and Description |
---|---|
ResourceServer |
ResourceServerStore.create(String clientId)
Creates a
ResourceServer instance backed by this persistent storage implementation. |
ResourceServer |
ResourceServerStore.findById(String id)
Returns a
ResourceServer instance based on its identifier. |
Modifier and Type | Method and Description |
---|---|
Policy |
PolicyStore.create(AbstractPolicyRepresentation representation,
ResourceServer resourceServer)
Creates a new
Policy instance. |
default Scope |
ScopeStore.create(String name,
ResourceServer resourceServer)
Creates a new
Scope instance. |
default Resource |
ResourceStore.create(String name,
ResourceServer resourceServer,
String owner)
Creates a
Resource instance backed by this persistent storage implementation. |
Scope |
ScopeStore.create(String id,
String name,
ResourceServer resourceServer)
Creates a new
Scope instance. |
Resource |
ResourceStore.create(String id,
String name,
ResourceServer resourceServer,
String owner)
Creates a
Resource instance backed by this persistent storage implementation. |
PermissionTicket |
PermissionTicketStore.create(String resourceId,
String scopeId,
String requester,
ResourceServer resourceServer)
Creates a new
PermissionTicket instance. |
Modifier and Type | Method and Description |
---|---|
static ResourceServer |
RepresentationToModel.createResourceServer(ClientModel client,
KeycloakSession session,
boolean addDefaultRoles) |
static ResourceServer |
RepresentationToModel.toModel(ResourceServerRepresentation rep,
AuthorizationProvider authorization) |
Modifier and Type | Method and Description |
---|---|
static Resource |
RepresentationToModel.toModel(ResourceRepresentation resource,
ResourceServer resourceServer,
AuthorizationProvider authorization) |
static Scope |
RepresentationToModel.toModel(ScopeRepresentation scope,
ResourceServer resourceServer,
AuthorizationProvider authorization) |
static Scope |
RepresentationToModel.toModel(ScopeRepresentation scope,
ResourceServer resourceServer,
AuthorizationProvider authorization,
boolean updateIfExists) |
static ResourceServerRepresentation |
ModelToRepresentation.toRepresentation(ResourceServer model,
ClientModel client) |
Copyright © 2021 JBoss by Red Hat. All rights reserved.