All Methods Static Methods Instance Methods Concrete Methods
Modifier and Type |
Method and Description |
javax.ws.rs.core.Response |
authenticated(AuthenticationSessionModel authSession,
UserSessionModel userSession,
ClientSessionContext clientSessionCtx) |
void |
backchannelLogout(UserSessionModel userSession,
AuthenticatedClientSessionModel clientSession) |
protected javax.ws.rs.core.Response |
buildAuthenticatedResponse(AuthenticatedClientSessionModel clientSession,
String redirectUri,
Document samlDocument,
JaxrsSAML2BindingBuilder bindingBuilder) |
protected javax.ws.rs.core.Response |
buildErrorResponse(boolean isPostBinding,
String destination,
JaxrsSAML2BindingBuilder binding,
Document document) |
protected javax.ws.rs.core.Response |
buildLogoutResponse(UserSessionModel userSession,
String logoutBindingUri,
SAML2LogoutResponseBuilder builder,
JaxrsSAML2BindingBuilder binding) |
void |
close() |
protected LogoutRequestType |
createLogoutRequest(String logoutUrl,
AuthenticatedClientSessionModel clientSession,
ClientModel client,
SamlProtocolExtensionsAwareBuilder.NodeGenerator... extensions) |
javax.ws.rs.core.Response |
finishLogout(UserSessionModel userSession) |
javax.ws.rs.core.Response |
frontchannelLogout(UserSessionModel userSession,
AuthenticatedClientSessionModel clientSession) |
static String |
getLogoutServiceUrl(KeycloakSession session,
ClientModel client,
String bindingType) |
protected String |
getNameId(String nameIdFormat,
CommonClientSessionModel clientSession,
UserSessionModel userSession) |
protected String |
getNameIdFormat(SamlClient samlClient,
AuthenticationSessionModel authSession) |
protected String |
getPersistentNameId(CommonClientSessionModel clientSession,
UserSessionModel userSession)
Attempts to retrieve the persistent type NameId as follows:
saml.persistent.name.id.for.$clientId user attribute
saml.persistent.name.id.for.* user attribute
G-$randomUuid
If a randomUuid is generated, an attribute for the given saml.persistent.name.id.for.$clientId will be generated,
otherwise no state change will occur with respect to the user's attributes.
|
protected String |
getResponseIssuer(RealmModel realm) |
protected boolean |
isLogoutPostBindingForClient(AuthenticatedClientSessionModel clientSession) |
static boolean |
isLogoutPostBindingForInitiator(UserSessionModel session) |
protected boolean |
isPostBinding(AuthenticatedClientSessionModel clientSession) |
protected boolean |
isPostBinding(AuthenticationSessionModel authSession) |
AttributeStatementType |
populateAttributeStatements(List<SamlProtocol.ProtocolMapperProcessor<SAMLAttributeStatementMapper>> attributeStatementMappers,
KeycloakSession session,
UserSessionModel userSession,
AuthenticatedClientSessionModel clientSession) |
void |
populateRoles(SamlProtocol.ProtocolMapperProcessor<SAMLRoleListMapper> roleListMapper,
KeycloakSession session,
UserSessionModel userSession,
ClientSessionContext clientSessionCtx,
AttributeStatementType existingAttributeStatement) |
boolean |
requireReauthentication(UserSessionModel userSession,
AuthenticationSessionModel authSession) |
javax.ws.rs.core.Response |
sendError(AuthenticationSessionModel authSession,
LoginProtocol.Error error) |
SamlProtocol |
setEventBuilder(EventBuilder event) |
SamlProtocol |
setHttpHeaders(javax.ws.rs.core.HttpHeaders headers) |
SamlProtocol |
setRealm(RealmModel realm) |
SamlProtocol |
setSession(KeycloakSession session) |
SamlProtocol |
setUriInfo(javax.ws.rs.core.UriInfo uriInfo) |
ResponseType |
transformLoginResponse(List<SamlProtocol.ProtocolMapperProcessor<SAMLLoginResponseMapper>> mappers,
ResponseType response,
KeycloakSession session,
UserSessionModel userSession,
ClientSessionContext clientSessionCtx) |