Package org.keycloak.protocol
Interface LoginProtocol
-
- All Superinterfaces:
Provider
- All Known Implementing Classes:
DockerAuthV2Protocol,OIDCLoginProtocol,SamlProtocol,TokenEndpoint.TokenExchangeSamlProtocol
public interface LoginProtocol extends Provider
- Version:
- $Revision: 1 $
- Author:
- Bill Burke
-
-
Nested Class Summary
Nested Classes Modifier and Type Interface Description static classLoginProtocol.Error
-
Method Summary
All Methods Instance Methods Abstract Methods Default Methods Modifier and Type Method Description javax.ws.rs.core.Responseauthenticated(AuthenticationSessionModel authSession, UserSessionModel userSession, ClientSessionContext clientSessionCtx)javax.ws.rs.core.ResponsebackchannelLogout(UserSessionModel userSession, AuthenticatedClientSessionModel clientSession)javax.ws.rs.core.ResponsefinishBrowserLogout(UserSessionModel userSession, AuthenticationSessionModel logoutSession)This method is called when browser logout is going to be finished.javax.ws.rs.core.ResponsefrontchannelLogout(UserSessionModel userSession, AuthenticatedClientSessionModel clientSession)booleanrequireReauthentication(UserSessionModel userSession, AuthenticationSessionModel authSession)javax.ws.rs.core.ResponsesendError(AuthenticationSessionModel authSession, LoginProtocol.Error error)default booleansendPushRevocationPolicyRequest(RealmModel realm, ClientModel resource, int notBefore, String managementUrl)Send not-before revocation policy to the given client.LoginProtocolsetEventBuilder(EventBuilder event)LoginProtocolsetHttpHeaders(javax.ws.rs.core.HttpHeaders headers)LoginProtocolsetRealm(RealmModel realm)LoginProtocolsetSession(KeycloakSession session)LoginProtocolsetUriInfo(javax.ws.rs.core.UriInfo uriInfo)
-
-
-
Method Detail
-
setSession
LoginProtocol setSession(KeycloakSession session)
-
setRealm
LoginProtocol setRealm(RealmModel realm)
-
setUriInfo
LoginProtocol setUriInfo(javax.ws.rs.core.UriInfo uriInfo)
-
setHttpHeaders
LoginProtocol setHttpHeaders(javax.ws.rs.core.HttpHeaders headers)
-
setEventBuilder
LoginProtocol setEventBuilder(EventBuilder event)
-
authenticated
javax.ws.rs.core.Response authenticated(AuthenticationSessionModel authSession, UserSessionModel userSession, ClientSessionContext clientSessionCtx)
-
sendError
javax.ws.rs.core.Response sendError(AuthenticationSessionModel authSession, LoginProtocol.Error error)
-
backchannelLogout
javax.ws.rs.core.Response backchannelLogout(UserSessionModel userSession, AuthenticatedClientSessionModel clientSession)
-
frontchannelLogout
javax.ws.rs.core.Response frontchannelLogout(UserSessionModel userSession, AuthenticatedClientSessionModel clientSession)
-
finishBrowserLogout
javax.ws.rs.core.Response finishBrowserLogout(UserSessionModel userSession, AuthenticationSessionModel logoutSession)
This method is called when browser logout is going to be finished. It is not triggered during backchannel logout- Parameters:
userSession- user session, which was logged outlogoutSession- authentication session, which was used during logout to track the logout state- Returns:
- response to be sent to the client
-
requireReauthentication
boolean requireReauthentication(UserSessionModel userSession, AuthenticationSessionModel authSession)
- Parameters:
userSession-authSession-- Returns:
- true if SSO cookie authentication can't be used. User will need to "actively" reauthenticate
-
sendPushRevocationPolicyRequest
default boolean sendPushRevocationPolicyRequest(RealmModel realm, ClientModel resource, int notBefore, String managementUrl)
Send not-before revocation policy to the given client.- Parameters:
realm-resource-notBefore-managementUrl-- Returns:
trueif revocation policy was successfully updated at the client,falseotherwise.
-
-