Class X509ClientCertificateAuthenticator

java.lang.Object
org.keycloak.authentication.authenticators.x509.AbstractX509ClientCertificateAuthenticator
org.keycloak.authentication.authenticators.x509.X509ClientCertificateAuthenticator
All Implemented Interfaces:
Authenticator, Provider

public class X509ClientCertificateAuthenticator extends AbstractX509ClientCertificateAuthenticator
Version:
$Revision: 1 $
Author:
Peter Nalyvayko
  • Constructor Details

    • X509ClientCertificateAuthenticator

      public X509ClientCertificateAuthenticator()
  • Method Details

    • close

      public void close()
      Specified by:
      close in interface Provider
      Overrides:
      close in class AbstractX509ClientCertificateAuthenticator
    • authenticate

      public void authenticate(AuthenticationFlowContext context)
      Description copied from interface: Authenticator
      Initial call for the authenticator. This method should check the current HTTP request to determine if the request satifies the Authenticator's requirements. If it doesn't, it should send back a challenge response by calling the AuthenticationFlowContext.challenge(Response). If this challenge is a authentication, the action URL of the form must point to /realms/{realm}/login-actions/authenticate?code={session-code}&execution={executionId} or /realms/{realm}/login-actions/registration?code={session-code}&execution={executionId} {session-code} pertains to the code generated from AuthenticationFlowContext.generateAccessCode(). The {executionId} pertains to the AuthenticationExecutionModel.getId() value obtained from AuthenticationFlowContext.getExecution(). The action URL will invoke the action() method described below.
    • action

      public void action(AuthenticationFlowContext context)
      Description copied from interface: Authenticator
      Called from a form action invocation.