All Methods Static Methods Instance Methods Concrete Methods
| Modifier and Type |
Method and Description |
protected void |
addComposites(AccessToken token,
RoleModel role) |
static void |
applyScope(RoleModel role,
RoleModel scope,
Set<RoleModel> visited,
Set<RoleModel> requested) |
static ClientSessionContext |
attachAuthenticationSession(KeycloakSession session,
UserSessionModel userSession,
AuthenticationSessionModel authSession) |
AccessToken |
createClientAccessToken(KeycloakSession session,
RealmModel realm,
ClientModel client,
UserModel user,
UserSessionModel userSession,
ClientSessionContext clientSessionCtx) |
static void |
dettachClientSession(UserSessionProvider sessions,
RealmModel realm,
AuthenticatedClientSessionModel clientSession) |
String |
encodeToken(KeycloakSession session,
RealmModel realm,
Object token) |
static Set<RoleModel> |
getAccess(UserModel user,
ClientModel client,
Set<ClientScopeModel> clientScopes) |
static Set<ClientScopeModel> |
getRequestedClientScopes(String scopeParam,
ClientModel client)
Return client itself + all default client scopes of client + optional client scopes requested by scope parameter
|
protected AccessToken |
initToken(RealmModel realm,
ClientModel client,
UserModel user,
UserSessionModel session,
ClientSessionContext clientSessionCtx,
javax.ws.rs.core.UriInfo uriInfo) |
boolean |
isTokenValid(KeycloakSession session,
RealmModel realm,
AccessToken token) |
TokenManager.RefreshResult |
refreshAccessToken(KeycloakSession session,
javax.ws.rs.core.UriInfo uriInfo,
org.keycloak.common.ClientConnection connection,
RealmModel realm,
ClientModel authorizedClient,
String encodedRefreshToken,
EventBuilder event,
javax.ws.rs.core.HttpHeaders headers,
org.jboss.resteasy.spi.HttpRequest request) |
TokenManager.AccessTokenResponseBuilder |
responseBuilder(RealmModel realm,
ClientModel client,
EventBuilder event,
KeycloakSession session,
UserSessionModel userSession,
ClientSessionContext clientSessionCtx) |
RefreshToken |
toRefreshToken(KeycloakSession session,
RealmModel realm,
String encodedRefreshToken) |
AccessToken |
transformAccessToken(KeycloakSession session,
AccessToken token,
UserSessionModel userSession,
ClientSessionContext clientSessionCtx) |
void |
transformIDToken(KeycloakSession session,
IDToken token,
UserSessionModel userSession,
ClientSessionContext clientSessionCtx) |
AccessToken |
transformUserInfoAccessToken(KeycloakSession session,
AccessToken token,
UserSessionModel userSession,
ClientSessionContext clientSessionCtx) |
TokenManager.TokenValidation |
validateToken(KeycloakSession session,
javax.ws.rs.core.UriInfo uriInfo,
org.keycloak.common.ClientConnection connection,
RealmModel realm,
RefreshToken oldToken,
javax.ws.rs.core.HttpHeaders headers) |
static boolean |
verifyConsentStillAvailable(KeycloakSession session,
UserModel user,
ClientModel client,
Set<ClientScopeModel> requestedClientScopes) |
IDToken |
verifyIDToken(KeycloakSession session,
RealmModel realm,
String encodedIDToken) |
IDToken |
verifyIDTokenSignature(KeycloakSession session,
RealmModel realm,
String encodedIDToken) |
RefreshToken |
verifyRefreshToken(KeycloakSession session,
RealmModel realm,
ClientModel client,
org.jboss.resteasy.spi.HttpRequest request,
String encodedRefreshToken,
boolean checkExpiration) |
RefreshToken |
verifyRefreshToken(KeycloakSession session,
RealmModel realm,
String encodedRefreshToken) |
RefreshToken |
verifyRefreshToken(KeycloakSession session,
RealmModel realm,
String encodedRefreshToken,
boolean checkExpiration) |