Uses of Interface
org.keycloak.models.ClientModel
Package
Description
Provides classes and a SPI to plug different metadata storage implementations.
-
Uses of ClientModel in org.keycloak.authentication
Modifier and TypeMethodDescriptionAuthenticationProcessor.getClient()
AuthenticationProcessor.Result.getClient()
ClientAuthenticationFlowContext.getClient()
Current client attached to this flow.Modifier and TypeMethodDescriptionClientAuthenticatorFactory.getAdapterConfiguration
(ClientModel client) Get configuration, which needs to be used for adapter ( keycloak.json ) of particular client.void
AuthenticationProcessor.Result.setClient
(ClientModel client) void
AuthenticationProcessor.setClient
(ClientModel client) void
ClientAuthenticationFlowContext.setClient
(ClientModel client) Attach a specific client to this flow. -
Uses of ClientModel in org.keycloak.authentication.authenticators.client
Modifier and TypeMethodDescriptionClientIdAndSecretAuthenticator.getAdapterConfiguration
(ClientModel client) JWTClientAuthenticator.getAdapterConfiguration
(ClientModel client) JWTClientSecretAuthenticator.getAdapterConfiguration
(ClientModel client) X509ClientAuthenticator.getAdapterConfiguration
(ClientModel client) protected PublicKey
JWTClientAuthenticator.getSignatureValidationKey
(ClientModel client, ClientAuthenticationFlowContext context, JWSInput jws) -
Uses of ClientModel in org.keycloak.authorization.admin
ModifierConstructorDescriptionAuthorizationService
(KeycloakSession session, ClientModel client, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) ResourceServerService
(AuthorizationProvider authorization, ResourceServer resourceServer, ClientModel client, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) -
Uses of ClientModel in org.keycloak.authorization.common
-
Uses of ClientModel in org.keycloak.authorization.jpa.store
Modifier and TypeMethodDescriptionJPAResourceServerStore.create
(ClientModel client) void
JPAResourceServerStore.delete
(ClientModel client) JPAResourceServerStore.findByClient
(ClientModel client) -
Uses of ClientModel in org.keycloak.authorization.store
Modifier and TypeMethodDescriptionResourceServerStore.create
(ClientModel client) Creates aResourceServer
instance backed by this persistent storage implementation.void
ResourceServerStore.delete
(ClientModel client) Removes aResourceServer
instance, with the given client from the persistent storage.ResourceServerStore.findByClient
(ClientModel client) Returns aResourceServer
instance based on a client. -
Uses of ClientModel in org.keycloak.broker.oidc
Modifier and TypeMethodDescriptionjakarta.ws.rs.core.Response
AbstractOAuth2IdentityProvider.exchangeFromToken
(jakarta.ws.rs.core.UriInfo uriInfo, EventBuilder event, ClientModel authorizedClient, UserSessionModel tokenUserSession, UserModel tokenSubject, jakarta.ws.rs.core.MultivaluedMap<String, String> params) protected jakarta.ws.rs.core.Response
AbstractOAuth2IdentityProvider.exchangeSessionToken
(jakarta.ws.rs.core.UriInfo uriInfo, EventBuilder event, ClientModel authorizedClient, UserSessionModel tokenUserSession, UserModel tokenSubject) protected jakarta.ws.rs.core.Response
OIDCIdentityProvider.exchangeSessionToken
(jakarta.ws.rs.core.UriInfo uriInfo, EventBuilder event, ClientModel authorizedClient, UserSessionModel tokenUserSession, UserModel tokenSubject) protected jakarta.ws.rs.core.Response
AbstractOAuth2IdentityProvider.exchangeStoredToken
(jakarta.ws.rs.core.UriInfo uriInfo, EventBuilder event, ClientModel authorizedClient, UserSessionModel tokenUserSession, UserModel tokenSubject) protected jakarta.ws.rs.core.Response
OIDCIdentityProvider.exchangeStoredToken
(jakarta.ws.rs.core.UriInfo uriInfo, EventBuilder event, ClientModel authorizedClient, UserSessionModel tokenUserSession, UserModel tokenSubject) -
Uses of ClientModel in org.keycloak.broker.provider
Modifier and TypeMethodDescriptionprotected jakarta.ws.rs.core.Response
AbstractIdentityProvider.exchangeErrorResponse
(jakarta.ws.rs.core.UriInfo uriInfo, ClientModel authorizedClient, UserSessionModel tokenUserSession, String errorCode, String reason) jakarta.ws.rs.core.Response
ExchangeTokenToIdentityProviderToken.exchangeFromToken
(jakarta.ws.rs.core.UriInfo uriInfo, EventBuilder event, ClientModel authorizedClient, UserSessionModel tokenUserSession, UserModel tokenSubject, jakarta.ws.rs.core.MultivaluedMap<String, String> params) jakarta.ws.rs.core.Response
AbstractIdentityProvider.exchangeNotLinked
(jakarta.ws.rs.core.UriInfo uriInfo, ClientModel authorizedClient, UserSessionModel tokenUserSession, UserModel tokenSubject) jakarta.ws.rs.core.Response
AbstractIdentityProvider.exchangeNotLinkedNoStore
(jakarta.ws.rs.core.UriInfo uriInfo, ClientModel authorizedClient, UserSessionModel tokenUserSession, UserModel tokenSubject) jakarta.ws.rs.core.Response
AbstractIdentityProvider.exchangeTokenExpired
(jakarta.ws.rs.core.UriInfo uriInfo, ClientModel authorizedClient, UserSessionModel tokenUserSession, UserModel tokenSubject) protected String
AbstractIdentityProvider.getLinkingUrl
(jakarta.ws.rs.core.UriInfo uriInfo, ClientModel authorizedClient, UserSessionModel tokenUserSession) -
Uses of ClientModel in org.keycloak.crypto
Modifier and TypeMethodDescriptionAsymmetricClientSignatureVerifierProvider.verifier
(ClientModel client, JWSInput input) ClientSignatureVerifierProvider.verifier
(ClientModel client, JWSInput input) ECDSAClientSignatureVerifierProvider.verifier
(ClientModel client, JWSInput input) MacSecretClientSignatureVerifierProvider.verifier
(ClientModel client, JWSInput input) ModifierConstructorDescriptionClientAsymmetricSignatureVerifierContext
(KeycloakSession session, ClientModel client, JWSInput input) ClientECDSASignatureVerifierContext
(KeycloakSession session, ClientModel client, JWSInput input) ClientMacSignatureVerifierContext
(KeycloakSession session, ClientModel client, String algorithm) -
Uses of ClientModel in org.keycloak.events
-
Uses of ClientModel in org.keycloak.exportimport.util
Modifier and TypeMethodDescriptionstatic ClientRepresentation
ExportUtils.exportClient
(KeycloakSession session, ClientModel client) Full export of application including claims and secret -
Uses of ClientModel in org.keycloak.forms.login.freemarker
-
Uses of ClientModel in org.keycloak.forms.login.freemarker.model
ModifierConstructorDescriptionClientBean
(KeycloakSession session, ClientModel client) OAuthGrantBean
(String code, ClientModel client, List<AuthorizationDetails> clientScopesRequested) -
Uses of ClientModel in org.keycloak.jose.jws
Modifier and TypeMethodDescription<T> T
DefaultTokenManager.decodeClientJWT
(String jwt, ClientModel client, BiConsumer<JOSE, ClientModel> jwtValidator, Class<T> clazz) DefaultTokenManager.initLogoutToken
(ClientModel client, UserModel user, AuthenticatedClientSessionModel clientSession) Modifier and TypeMethodDescription<T> T
DefaultTokenManager.decodeClientJWT
(String jwt, ClientModel client, BiConsumer<JOSE, ClientModel> jwtValidator, Class<T> clazz) -
Uses of ClientModel in org.keycloak.keys.loader
Modifier and TypeMethodDescriptionstatic PublicKey
PublicKeyStorageManager.getClientPublicKey
(KeycloakSession session, ClientModel client, JWSInput input) static KeyWrapper
PublicKeyStorageManager.getClientPublicKeyWrapper
(KeycloakSession session, ClientModel client, JWK.Use keyUse, String algAlgorithm) static KeyWrapper
PublicKeyStorageManager.getClientPublicKeyWrapper
(KeycloakSession session, ClientModel client, JWSInput input) ModifierConstructorDescriptionClientPublicKeyLoader
(KeycloakSession session, ClientModel client) ClientPublicKeyLoader
(KeycloakSession session, ClientModel client, JWK.Use keyUse) -
Uses of ClientModel in org.keycloak.migration.migrators
Modifier and TypeMethodDescriptionvoid
MigrateTo3_2_0.addRoles
(ClientModel realmAccess) static boolean
MigrationUtils.isOIDCNonBearerOnlyClient
(ClientModel c) static void
MigrationUtils.migrateOldOfflineToken
(KeycloakSession session, RealmModel realm, ClientModel client, UserModel user) static void
MigrationUtils.setDefaultClientAuthenticatorType
(ClientModel s) -
Uses of ClientModel in org.keycloak.models
Modifier and TypeFieldDescriptionstatic final SearchableModelField<ClientModel>
ClientModel.SearchableFields.ALWAYS_DISPLAY_IN_CONSOLE
static final SearchableModelField<ClientModel>
ClientModel.SearchableFields.ATTRIBUTE
Search for attribute value.static final SearchableModelField<ClientModel>
ClientModel.SearchableFields.CLIENT_ID
static final BiConsumer<JOSE,
ClientModel> TokenManager.DEFAULT_VALIDATOR
static final SearchableModelField<ClientModel>
ClientModel.SearchableFields.ENABLED
static final SearchableModelField<ClientModel>
ClientModel.SearchableFields.ID
static final SearchableModelField<ClientModel>
ClientModel.SearchableFields.REALM_ID
static final SearchableModelField<ClientModel>
ClientModel.SearchableFields.SCOPE_MAPPING_ROLE
Modifier and TypeMethodDescriptiondefault ClientModel
ClientProvider.addClient
(RealmModel realm, String clientId) Adds a client with givenclientId
to the given realm.ClientProvider.addClient
(RealmModel realm, String id, String clientId) Adds a client with given internal ID andclientId
to the given realm.ClientModel.ClientProtocolUpdatedEvent.getClient()
ClientModel.ClientRemovedEvent.getClient()
KeycloakContext.getClient()
UserConsentModel.getClient()
RealmModel.getClientByClientId
(String clientId) RealmModel.getClientById
(String id) ClientModel.ClientCreationEvent.getCreatedClient()
RealmModel.getMasterAdminClient()
ClientModel.ClientIdChangeEvent.getUpdatedClient()
ClientModel.ClientUpdatedEvent.getUpdatedClient()
Modifier and TypeMethodDescriptionClientProvider.getAllRedirectUrisOfEnabledClients
(RealmModel realm) Deprecated.Do not use, this is only to support a deprecated logout endpoint and will vanish with it's removalClientProvider.getAlwaysDisplayInConsoleClientsStream
(RealmModel realm) Returns a stream of clients that are expected to always show up in account console.RealmModel.getAlwaysDisplayInConsoleClientsStream()
Returns clients which are always displayed in the admin console as a stream.default Stream<ClientModel>
ClientProvider.getClientsStream
(RealmModel realm) Returns all the clients of the given realm as a stream.ClientProvider.getClientsStream
(RealmModel realm, Integer firstResult, Integer maxResults) Returns the clients of the given realm as a stream.RealmModel.getClientsStream()
Returns clients as a stream.RealmModel.getClientsStream
(Integer firstResult, Integer maxResults) Returns clients as a stream.RealmModel.searchClientByAttributes
(Map<String, String> attributes, Integer firstResult, Integer maxResults) RealmModel.searchClientByClientIdStream
(String clientId, Integer firstResult, Integer maxResults) Search for clients by provided client's id.Modifier and TypeMethodDescriptiondefault RoleModel
RoleProvider.addClientRole
(ClientModel client, String name) Adds a client role with givenname
to the given client.RoleProvider.addClientRole
(ClientModel client, String id, String name) Adds a client role with given internal ID andname
to the given client.void
ClientProvider.addClientScopes
(RealmModel realm, ClientModel client, Set<ClientScopeModel> clientScopes, boolean defaultScope) Assign clientScopes to the client.static OAuth2DeviceCodeModel
OAuth2DeviceCodeModel.create
(RealmModel realm, ClientModel client, String deviceCode, String scope, String nonce, int expiresIn, int pollingInterval, String clientNotificationToken, String authReqId, Map<String, String> additionalParams, String codeChallenge, String codeChallengeMethod) UserSessionProvider.createClientSession
(RealmModel realm, ClientModel client, UserSessionModel userSession) default <T> T
TokenManager.decodeClientJWT
(String token, ClientModel client, Class<T> clazz) <T> T
TokenManager.decodeClientJWT
(String token, ClientModel client, BiConsumer<JOSE, ClientModel> jwtValidator, Class<T> clazz) long
UserSessionProvider.getActiveUserSessions
(RealmModel realm, ClientModel client) CibaConfig.getBackchannelAuthRequestSigningAlg
(ClientModel client) CibaConfig.getBackchannelClientNotificationEndpoint
(ClientModel client) CibaConfig.getBackchannelTokenDeliveryMode
(ClientModel client) RoleMapperModel.getClientRoleMappingsStream
(ClientModel app) Returns stream of client roles that are directly set to this object for the given client.RoleProvider.getClientRolesStream
(ClientModel client) Returns all the client roles of the given client.RoleProvider.getClientRolesStream
(ClientModel client, Integer first, Integer max) Returns the client roles of the given client.UserSessionProvider.getClientSession
(UserSessionModel userSession, ClientModel client, String clientSessionId, boolean offline) default AuthenticatedClientSessionModel
UserSessionProvider.getClientSession
(UserSessionModel userSession, ClientModel client, UUID clientSessionId, boolean offline) Deprecated.int
OAuth2DeviceConfig.getLifespan
(ClientModel client) long
UserSessionProvider.getOfflineSessionsCount
(RealmModel realm, ClientModel client) UserSessionProvider.getOfflineUserSessionsStream
(RealmModel realm, ClientModel client, Integer firstResult, Integer maxResults) Obtains the offline user sessions associated with the specified client, starting from thefirstResult
and containing at mostmaxResults
.int
OAuth2DeviceConfig.getPoolingInterval
(ClientModel client) UserProvider.getServiceAccount
(ClientModel client) Return a UserModel representing service account of the clientUserSessionProvider.getUserSessionsStream
(RealmModel realm, ClientModel client) Obtains the online user sessions associated with the specified client.UserSessionProvider.getUserSessionsStream
(RealmModel realm, ClientModel client, Integer firstResult, Integer maxResults) Obtains the online user sessions associated with the specified client, starting from thefirstResult
and containing at mostmaxResults
.TokenManager.initLogoutToken
(ClientModel client, UserModel user, AuthenticatedClientSessionModel clientSessionModel) boolean
OAuth2DeviceConfig.isOAuth2DeviceAuthorizationGrantEnabled
(ClientModel client) boolean
CibaConfig.isOIDCCIBAGrantEnabled
(ClientModel client) boolean
ParConfig.isRequirePushedAuthorizationRequests
(ClientModel client) void
UserSessionProvider.onClientRemoved
(RealmModel realm, ClientModel client) void
UserProvider.preRemove
(RealmModel realm, ClientModel client) Called when a client is removed.void
ClientProvider.removeClientScope
(RealmModel realm, ClientModel client, ClientScopeModel clientScope) Unassign clientScope from the client.void
RoleProvider.removeRoles
(ClientModel client) Removes all roles from the given client.void
KeycloakContext.setClient
(ClientModel client) void
RealmModel.setMasterAdminClient
(ClientModel client) Modifier and TypeMethodDescription<T> T
TokenManager.decodeClientJWT
(String token, ClientModel client, BiConsumer<JOSE, ClientModel> jwtValidator, Class<T> clazz) ModifierConstructorDescriptionClientConfigResolver
(ClientModel client) UserConsentModel
(ClientModel client) -
Uses of ClientModel in org.keycloak.models.cache.infinispan
Modifier and TypeFieldDescriptionprotected Map<String,
ClientModel> RealmCacheSession.managedApplications
Modifier and TypeMethodDescriptionRealmCacheSession.addClient
(RealmModel realm, String clientId) RealmCacheSession.addClient
(RealmModel realm, String id, String clientId) protected ClientModel
RealmCacheSession.cacheClient
(RealmModel realm, ClientModel delegate, Long revision) RealmAdapter.getClientByClientId
(String clientId) RealmCacheSession.getClientByClientId
(RealmModel realm, String clientId) RealmAdapter.getClientById
(String id) RealmCacheSession.getClientById
(RealmModel realm, String id) RealmAdapter.getMasterAdminClient()
protected ClientModel
RealmCacheSession.validateCache
(RealmModel realm, CachedClient cached) Modifier and TypeMethodDescriptionRealmCacheSession.getAllRedirectUrisOfEnabledClients
(RealmModel realm) RealmAdapter.getAlwaysDisplayInConsoleClientsStream()
RealmCacheSession.getAlwaysDisplayInConsoleClientsStream
(RealmModel realm) RealmAdapter.getClientsStream()
RealmAdapter.getClientsStream
(Integer firstResult, Integer maxResults) RealmCacheSession.getClientsStream
(RealmModel realm) RealmCacheSession.getClientsStream
(RealmModel realm, Integer firstResult, Integer maxResults) RealmAdapter.searchClientByAttributes
(Map<String, String> attributes, Integer firstResult, Integer maxResults) RealmAdapter.searchClientByClientIdStream
(String clientId, Integer firstResult, Integer maxResults) RealmCacheSession.searchClientsByAttributes
(RealmModel realm, Map<String, String> attributes, Integer firstResult, Integer maxResults) RealmCacheSession.searchClientsByClientIdStream
(RealmModel realm, String clientId, Integer firstResult, Integer maxResults) Modifier and TypeMethodDescriptionRealmCacheSession.addClientRole
(ClientModel client, String name) RealmCacheSession.addClientRole
(ClientModel client, String id, String name) void
RealmCacheSession.addClientScopes
(RealmModel realm, ClientModel client, Set<ClientScopeModel> clientScopes, boolean defaultScope) protected ClientModel
RealmCacheSession.cacheClient
(RealmModel realm, ClientModel delegate, Long revision) UserCacheSession.findServiceAccount
(ClientModel client) RealmCacheSession.getClientRole
(ClientModel client, String name) GroupAdapter.getClientRoleMappingsStream
(ClientModel app) UserAdapter.getClientRoleMappingsStream
(ClientModel app) RealmCacheSession.getClientRolesStream
(ClientModel client) RealmCacheSession.getClientRolesStream
(ClientModel client, Integer first, Integer max) RealmCacheSession.getClientScopes
(RealmModel realm, ClientModel client, boolean defaultScopes) UserCacheSession.getServiceAccount
(ClientModel client) void
UserCacheSession.preRemove
(RealmModel realm, ClientModel client) void
RealmCacheSession.removeClientScope
(RealmModel realm, ClientModel client, ClientScopeModel clientScope) void
RealmCacheSession.removeRoles
(ClientModel client) RealmCacheSession.searchForClientRolesStream
(ClientModel client, String search, Integer first, Integer max) void
RealmAdapter.setMasterAdminClient
(ClientModel client) -
Uses of ClientModel in org.keycloak.models.cache.infinispan.authorization
Modifier and TypeMethodDescriptionStoreFactoryCacheSession.ResourceServerCache.create
(ClientModel client) void
StoreFactoryCacheSession.ResourceServerCache.delete
(ClientModel client) StoreFactoryCacheSession.ResourceServerCache.findByClient
(ClientModel client) -
Uses of ClientModel in org.keycloak.models.cache.infinispan.entities
-
Uses of ClientModel in org.keycloak.models.cache.infinispan.events
Modifier and TypeMethodDescriptionstatic ClientRemovedEvent
ClientRemovedEvent.create
(ClientModel client) -
Uses of ClientModel in org.keycloak.models.delegate
Modifier and TypeClassDescriptionclass
static class
ModifierConstructorDescriptionClientModelLazyDelegate
(Supplier<ClientModel> delegateSupplier) WithId
(String id, Supplier<ClientModel> delegateSupplier) -
Uses of ClientModel in org.keycloak.models.jpa
Modifier and TypeMethodDescriptionJpaRealmProvider.addClient
(RealmModel realm, String clientId) JpaRealmProvider.addClient
(RealmModel realm, String id, String clientId) JpaRealmProvider.getClientByClientId
(RealmModel realm, String clientId) RealmAdapter.getClientByClientId
(String clientId) JpaRealmProvider.getClientById
(RealmModel realm, String id) RealmAdapter.getClientById
(String id) RealmAdapter.getMasterAdminClient()
Modifier and TypeMethodDescriptionJpaRealmProvider.getAllRedirectUrisOfEnabledClients
(RealmModel realm) JpaRealmProvider.getAlwaysDisplayInConsoleClientsStream
(RealmModel realm) RealmAdapter.getAlwaysDisplayInConsoleClientsStream()
JpaRealmProvider.getClientsStream
(RealmModel realm) JpaRealmProvider.getClientsStream
(RealmModel realm, Integer firstResult, Integer maxResults) RealmAdapter.getClientsStream()
RealmAdapter.getClientsStream
(Integer firstResult, Integer maxResults) RealmAdapter.searchClientByAttributes
(Map<String, String> attributes, Integer firstResult, Integer maxResults) RealmAdapter.searchClientByClientIdStream
(String clientId, Integer firstResult, Integer maxResults) JpaRealmProvider.searchClientsByAttributes
(RealmModel realm, Map<String, String> attributes, Integer firstResult, Integer maxResults) JpaRealmProvider.searchClientsByClientIdStream
(RealmModel realm, String clientId, Integer firstResult, Integer maxResults) Modifier and TypeMethodDescriptionJpaRealmProvider.addClientRole
(ClientModel client, String name) JpaRealmProvider.addClientRole
(ClientModel client, String id, String name) void
JpaRealmProvider.addClientScopes
(RealmModel realm, ClientModel client, Set<ClientScopeModel> clientScopes, boolean defaultScope) JpaRealmProvider.getClientRole
(ClientModel client, String name) GroupAdapter.getClientRoleMappingsStream
(ClientModel app) UserAdapter.getClientRoleMappingsStream
(ClientModel app) JpaRealmProvider.getClientRolesStream
(ClientModel client, Integer first, Integer max) JpaRealmProvider.getClientScopes
(RealmModel realm, ClientModel client, boolean defaultScope) JpaUserProvider.getServiceAccount
(ClientModel client) void
JpaUserProvider.preRemove
(RealmModel realm, ClientModel client) void
JpaRealmProvider.removeClientScope
(RealmModel realm, ClientModel client, ClientScopeModel clientScope) void
JpaRealmProvider.removeRoles
(ClientModel client) JpaRealmProvider.searchForClientRolesStream
(ClientModel client, String search, Integer first, Integer max) void
RealmAdapter.setMasterAdminClient
(ClientModel client) -
Uses of ClientModel in org.keycloak.models.jpa.session
Modifier and TypeMethodDescriptionint
JpaUserSessionPersisterProvider.getUserSessionsCount
(RealmModel realm, ClientModel clientModel, boolean offline) JpaUserSessionPersisterProvider.loadClientSession
(RealmModel realm, ClientModel client, UserSessionModel userSession, boolean offline) JpaUserSessionPersisterProvider.loadUserSessionsStream
(RealmModel realm, ClientModel client, boolean offline, Integer firstResult, Integer maxResults) void
JpaUserSessionPersisterProvider.onClientRemoved
(RealmModel realm, ClientModel client) -
Uses of ClientModel in org.keycloak.models.map.authorization
Modifier and TypeMethodDescriptionMapResourceServerStore.create
(ClientModel client) void
MapResourceServerStore.delete
(ClientModel client) MapResourceServerStore.findByClient
(ClientModel client) -
Uses of ClientModel in org.keycloak.models.map.authSession
Modifier and TypeMethodDescriptionMapRootAuthenticationSessionAdapter.createAuthenticationSession
(ClientModel client) MapRootAuthenticationSessionAdapter.getAuthenticationSession
(ClientModel client, String tabId) void
MapRootAuthenticationSessionProvider.onClientRemoved
(RealmModel realm, ClientModel client) -
Uses of ClientModel in org.keycloak.models.map.client
Modifier and TypeMethodDescriptionMapClientProvider.addClient
(RealmModel realm, String id, String clientId) MapClientProvider.getClientByClientId
(RealmModel realm, String clientId) MapClientProvider.getClientById
(RealmModel realm, String id) Modifier and TypeMethodDescriptionMapClientProvider.getAllRedirectUrisOfEnabledClients
(RealmModel realm) MapClientProvider.getAlwaysDisplayInConsoleClientsStream
(RealmModel realm) MapClientProvider.getClientsStream
(RealmModel realm) MapClientProvider.getClientsStream
(RealmModel realm, Integer firstResult, Integer maxResults) MapClientProvider.searchClientsByAttributes
(RealmModel realm, Map<String, String> attributes, Integer firstResult, Integer maxResults) MapClientProvider.searchClientsByClientIdStream
(RealmModel realm, String clientId, Integer firstResult, Integer maxResults) Modifier and TypeMethodDescriptionvoid
MapClientProvider.addClientScopes
(RealmModel realm, ClientModel client, Set<ClientScopeModel> clientScopes, boolean defaultScope) MapClientProvider.getClientScopes
(RealmModel realm, ClientModel client, boolean defaultScopes) void
MapClientProvider.removeClientScope
(RealmModel realm, ClientModel client, ClientScopeModel clientScope) ModifierConstructorDescriptionMapClientProvider
(KeycloakSession session, MapStorage<MapClientEntity, ClientModel> clientStore, ConcurrentMap<String, ConcurrentMap<String, Long>> clientRegisteredNodesStore) -
Uses of ClientModel in org.keycloak.models.map.datastore
Modifier and TypeMethodDescriptionvoid
MapExportImportManager.addQueryCompositeRoles
(ClientModel realmAccess) static void
MapExportImportManager.createClientScopeMappings
(RealmModel realm, ClientModel clientModel, List<ScopeMappingRepresentation> mappings) -
Uses of ClientModel in org.keycloak.models.map.group
-
Uses of ClientModel in org.keycloak.models.map.realm
Modifier and TypeMethodDescriptionMapRealmAdapter.getClientByClientId
(String clientId) MapRealmAdapter.getClientById
(String id) MapRealmAdapter.getMasterAdminClient()
Modifier and TypeMethodDescriptionMapRealmAdapter.getAlwaysDisplayInConsoleClientsStream()
MapRealmAdapter.getClientsStream()
MapRealmAdapter.getClientsStream
(Integer firstResult, Integer maxResults) MapRealmAdapter.searchClientByAttributes
(Map<String, String> attributes, Integer firstResult, Integer maxResults) MapRealmAdapter.searchClientByClientIdStream
(String clientId, Integer firstResult, Integer maxResults) -
Uses of ClientModel in org.keycloak.models.map.role
Modifier and TypeMethodDescriptionMapRoleProvider.addClientRole
(ClientModel client, String id, String name) MapRoleProvider.getClientRole
(ClientModel client, String name) MapRoleProvider.getClientRolesStream
(ClientModel client) MapRoleProvider.getClientRolesStream
(ClientModel client, Integer first, Integer max) void
MapRoleProvider.removeRoles
(ClientModel client) MapRoleProvider.searchForClientRolesStream
(ClientModel client, String search, Integer first, Integer max) -
Uses of ClientModel in org.keycloak.models.map.storage.chm
Modifier and TypeFieldDescriptionstatic final Map<SearchableModelField<ClientModel>,
MapModelCriteriaBuilder.UpdatePredicatesFunc<Object, MapClientEntity, ClientModel>> MapFieldPredicates.CLIENT_PREDICATES
static final Map<SearchableModelField<ClientModel>,
MapModelCriteriaBuilder.UpdatePredicatesFunc<Object, MapClientEntity, ClientModel>> MapFieldPredicates.CLIENT_PREDICATES
-
Uses of ClientModel in org.keycloak.models.map.storage.jpa.client
Modifier and TypeMethodDescriptionJpaClientModelCriteriaBuilder.compare
(SearchableModelField<? super ClientModel> modelField, ModelCriteriaBuilder.Operator op, Object... value) -
Uses of ClientModel in org.keycloak.models.map.user
Modifier and TypeMethodDescriptionMapUserAdapter.getClientRoleMappingsStream
(ClientModel app) MapUserProvider.getServiceAccount
(ClientModel client) void
MapUserProvider.preRemove
(RealmModel realm, ClientModel client) -
Uses of ClientModel in org.keycloak.models.map.userSession
Modifier and TypeFieldDescriptionprotected ClientModel
AbstractAuthenticatedClientSessionModel.client
Modifier and TypeMethodDescriptionMapUserSessionProvider.createClientSession
(RealmModel realm, ClientModel client, UserSessionModel userSession) long
MapUserSessionProvider.getActiveUserSessions
(RealmModel realm, ClientModel client) MapUserSessionProvider.getClientSession
(UserSessionModel userSession, ClientModel client, String clientSessionId, boolean offline) long
MapUserSessionProvider.getOfflineSessionsCount
(RealmModel realm, ClientModel client) MapUserSessionProvider.getOfflineUserSessionsStream
(RealmModel realm, ClientModel client, Integer firstResult, Integer maxResults) MapUserSessionProvider.getUserSessionsStream
(RealmModel realm, ClientModel client) MapUserSessionProvider.getUserSessionsStream
(RealmModel realm, ClientModel client, Integer firstResult, Integer maxResults) void
MapUserSessionProvider.onClientRemoved
(RealmModel realm, ClientModel client) static void
SessionExpiration.setClientSessionExpiration
(MapAuthenticatedClientSessionEntity entity, RealmModel realm, ClientModel client) -
Uses of ClientModel in org.keycloak.models.session
Modifier and TypeMethodDescriptionint
DisabledUserSessionPersisterProvider.getUserSessionsCount
(RealmModel realm, ClientModel clientModel, boolean offline) int
UserSessionPersisterProvider.getUserSessionsCount
(RealmModel realm, ClientModel clientModel, boolean offline) Retrieves the count of user client-sessions for the given clientDisabledUserSessionPersisterProvider.loadClientSession
(RealmModel realm, ClientModel client, UserSessionModel userSession, boolean offline) UserSessionPersisterProvider.loadClientSession
(RealmModel realm, ClientModel client, UserSessionModel userSession, boolean offline) Loads client session from the db by provided user session and client.DisabledUserSessionPersisterProvider.loadUserSessionsStream
(RealmModel realm, ClientModel client, boolean offline, Integer firstResult, Integer maxResults) UserSessionPersisterProvider.loadUserSessionsStream
(RealmModel realm, ClientModel client, boolean offline, Integer firstResult, Integer maxResults) Loads the user sessions for the givenClientModel
in the givenRealmModel
if present.void
DisabledUserSessionPersisterProvider.onClientRemoved
(RealmModel realm, ClientModel client) void
UserSessionPersisterProvider.onClientRemoved
(RealmModel realm, ClientModel client) ModifierConstructorDescriptionPersistentAuthenticatedClientSessionAdapter
(KeycloakSession session, PersistentClientSessionModel model, RealmModel realm, ClientModel client, UserSessionModel userSession) -
Uses of ClientModel in org.keycloak.models.sessions.infinispan
Modifier and TypeMethodDescriptionAuthenticatedClientSessionAdapter.getClient()
AuthenticationSessionAdapter.getClient()
Modifier and TypeMethodDescriptionSessionFunction.apply
(RealmModel realm, ClientModel client, V entity) RootAuthenticationSessionAdapter.createAuthenticationSession
(ClientModel client) InfinispanUserSessionProvider.createClientSession
(RealmModel realm, ClientModel client, UserSessionModel userSession) long
InfinispanUserSessionProvider.getActiveUserSessions
(RealmModel realm, ClientModel client) RootAuthenticationSessionAdapter.getAuthenticationSession
(ClientModel client, String tabId) InfinispanUserSessionProvider.getClientSession
(UserSessionModel userSession, ClientModel client, String clientSessionId, boolean offline) long
InfinispanUserSessionProvider.getOfflineSessionsCount
(RealmModel realm, ClientModel client) InfinispanUserSessionProvider.getOfflineUserSessionsStream
(RealmModel realm, ClientModel client, Integer first, Integer max) protected long
InfinispanUserSessionProvider.getUserSessionsCount
(RealmModel realm, ClientModel client, boolean offline) InfinispanUserSessionProvider.getUserSessionsStream
(RealmModel realm, ClientModel client) InfinispanUserSessionProvider.getUserSessionsStream
(RealmModel realm, ClientModel client, Integer firstResult, Integer maxResults) protected Stream<UserSessionModel>
InfinispanUserSessionProvider.getUserSessionsStream
(RealmModel realm, ClientModel client, Integer firstResult, Integer maxResults, boolean offline) void
InfinispanAuthenticationSessionProvider.onClientRemoved
(RealmModel realm, ClientModel client) void
InfinispanUserSessionProvider.onClientRemoved
(RealmModel realm, ClientModel client) ModifierConstructorDescriptionAuthenticatedClientSessionAdapter
(KeycloakSession kcSession, InfinispanUserSessionProvider provider, AuthenticatedClientSessionEntity entity, ClientModel client, UserSessionModel userSession, InfinispanChangelogBasedTransaction<UUID, AuthenticatedClientSessionEntity> clientSessionUpdateTx, boolean offline) -
Uses of ClientModel in org.keycloak.models.sessions.infinispan.changes
-
Uses of ClientModel in org.keycloak.models.sessions.infinispan.util
Modifier and TypeMethodDescriptionstatic long
SessionTimeouts.getClientSessionLifespanMs
(RealmModel realm, ClientModel client, AuthenticatedClientSessionEntity clientSessionEntity) Get the maximum lifespan, which this clientSession can remain in the infinispan cache.static long
SessionTimeouts.getClientSessionMaxIdleMs
(RealmModel realm, ClientModel client, AuthenticatedClientSessionEntity clientSessionEntity) Get the maxIdle, which this clientSession will use.static long
SessionTimeouts.getLoginFailuresLifespanMs
(RealmModel realm, ClientModel client, LoginFailureEntity loginFailureEntity) Not using lifespan for detached login failure (backwards compatibility with the background cleaner threads, which were used for cleanup of detached login failures)static long
SessionTimeouts.getLoginFailuresMaxIdleMs
(RealmModel realm, ClientModel client, LoginFailureEntity loginFailureEntity) Not using maxIdle for detached login failure (backwards compatibility with the background cleaner threads, which were used for cleanup of detached login failures)static long
SessionTimeouts.getOfflineClientSessionLifespanMs
(RealmModel realm, ClientModel client, AuthenticatedClientSessionEntity authenticatedClientSessionEntity) Get the maximum lifespan, which this offline clientSession can remain in the infinispan cache.static long
SessionTimeouts.getOfflineClientSessionMaxIdleMs
(RealmModel realm, ClientModel client, AuthenticatedClientSessionEntity authenticatedClientSessionEntity) Get the maxIdle, which this offline clientSession will use.static long
SessionTimeouts.getOfflineSessionLifespanMs
(RealmModel realm, ClientModel client, UserSessionEntity userSessionEntity) Get the maximum lifespan, which this offline userSession can remain in the infinispan cache.static long
SessionTimeouts.getOfflineSessionMaxIdleMs
(RealmModel realm, ClientModel client, UserSessionEntity userSessionEntity) Get the maximum idle time for this offline userSession.static long
SessionTimeouts.getUserSessionLifespanMs
(RealmModel realm, ClientModel client, UserSessionEntity userSessionEntity) Get the maximum lifespan, which this userSession can remain in the infinispan cache.static long
SessionTimeouts.getUserSessionMaxIdleMs
(RealmModel realm, ClientModel client, UserSessionEntity userSessionEntity) Get the maximum idle time for this userSession. -
Uses of ClientModel in org.keycloak.models.utils
Modifier and TypeMethodDescriptionstatic ClientModel
RepresentationToModel.createClient
(KeycloakSession session, RealmModel realm, ClientRepresentation resourceRep) Does not create scope or role mappings!static ClientModel
RepresentationToModel.createClient
(KeycloakSession session, RealmModel realm, ClientRepresentation resourceRep, Map<String, String> mappedFlows) static ClientModel
KeycloakModelUtils.createManagementClient
(RealmModel realm, String name) static ClientModel
KeycloakModelUtils.createPublicClient
(RealmModel realm, String name) static ClientModel
SystemClientUtil.getSystemClient
(RealmModel realm) Modifier and TypeMethodDescriptionstatic long
SessionExpirationUtils.calculateClientSessionIdleTimestamp
(boolean offline, boolean isRememberMe, long lastRefreshed, RealmModel realm, ClientModel client) Calculates the time in which the user session is expired via the idle configuration in the realm and client.static long
SessionExpirationUtils.calculateClientSessionMaxLifespanTimestamp
(boolean offline, boolean isRememberMe, long clientSessionCreated, long userSessionCreated, RealmModel realm, ClientModel client) Calculates the time in which the client session is expired via lifespan configuration in the realm and client.static ResourceServer
RepresentationToModel.createResourceServer
(ClientModel client, KeycloakSession session, boolean addDefaultRoles) static ClientScopeModel
KeycloakModelUtils.findClientScopeById
(RealmModel realm, ClientModel client, String clientScopeId) Lookup clientScope OR client by id.static String
KeycloakModelUtils.generateSecret
(ClientModel client) UserModelDelegate.getClientRoleMappingsStream
(ClientModel app) KeycloakModelUtils.getClientScopeMappingsStream
(ClientModel client, ScopeContainerModel container) static void
RepresentationToModel.importAuthorizationSettings
(ClientRepresentation clientRepresentation, ClientModel client, KeycloakSession session) static boolean
RoleUtils.isClientRole
(RoleModel r, ClientModel c) static void
KeycloakModelUtils.setupDeleteAccount
(ClientModel accountClient) static ResourceServer
RepresentationToModel.toModel
(ResourceServerRepresentation rep, AuthorizationProvider authorization, ClientModel client) static ResourceServerRepresentation
ModelToRepresentation.toRepresentation
(ResourceServer model, ClientModel client) static ClientRepresentation
ModelToRepresentation.toRepresentation
(ClientModel clientModel, KeycloakSession session) static ResourceServerRepresentation
ModelToRepresentation.toResourceServerRepresentation
(KeycloakSession session, ClientModel client) static void
RepresentationToModel.updateClient
(ClientRepresentation rep, ClientModel resource, KeycloakSession session) static void
RepresentationToModel.updateClientProtocolMappers
(ClientRepresentation rep, ClientModel resource) -
Uses of ClientModel in org.keycloak.protocol
Modifier and TypeMethodDescriptionprotected void
AbstractLoginProtocolFactory.addDefaultClientScopes
(RealmModel realm, ClientModel newClient) protected abstract void
AbstractLoginProtocolFactory.addDefaults
(ClientModel realm) protected AuthenticationSessionModel
AuthorizationEndpointBase.createAuthenticationSession
(ClientModel client, String requestState) jakarta.ws.rs.core.Response
ClientInstallationProvider.generateInstallation
(KeycloakSession session, RealmModel realm, ClientModel client, URI serverBaseUri) default boolean
LoginProtocol.sendPushRevocationPolicyRequest
(RealmModel realm, ClientModel resource, int notBefore, String managementUrl) Send not-before revocation policy to the given client.void
LoginProtocolFactory.setupClientDefaults
(ClientRepresentation rep, ClientModel newClient) Setup default values for new clients.Modifier and TypeMethodDescriptionprotected void
AbstractLoginProtocolFactory.addDefaultClientScopes
(RealmModel realm, Stream<ClientModel> newClients) -
Uses of ClientModel in org.keycloak.protocol.docker
Modifier and TypeMethodDescriptionprotected void
DockerAuthV2ProtocolFactory.addDefaults
(ClientModel client) void
DockerAuthV2ProtocolFactory.setupClientDefaults
(ClientRepresentation rep, ClientModel newClient) -
Uses of ClientModel in org.keycloak.protocol.docker.installation
Modifier and TypeMethodDescriptionjakarta.ws.rs.core.Response
DockerComposeYamlInstallationProvider.generateInstallation
(KeycloakSession session, RealmModel realm, ClientModel client, URI serverBaseUri) jakarta.ws.rs.core.Response
DockerRegistryConfigFileInstallationProvider.generateInstallation
(KeycloakSession session, RealmModel realm, ClientModel client, URI serverBaseUri) jakarta.ws.rs.core.Response
DockerVariableOverrideInstallationProvider.generateInstallation
(KeycloakSession session, RealmModel realm, ClientModel client, URI serverBaseUri) -
Uses of ClientModel in org.keycloak.protocol.oidc
Modifier and TypeClassDescriptionclass
Representation of a client model that passes information from a rotated secret.Modifier and TypeFieldDescriptionprotected final ClientModel
AbstractClientConfigWrapper.clientModel
Modifier and TypeMethodDescriptionvoid
FrontChannelLogoutHandler.addClient
(ClientModel client) protected void
OIDCLoginProtocolFactory.addDefaults
(ClientModel client) TokenManager.createClientAccessToken
(KeycloakSession session, RealmModel realm, ClientModel client, UserModel user, UserSessionModel userSession, ClientSessionContext clientSessionCtx) protected jakarta.ws.rs.core.Response
DefaultTokenExchangeProvider.exchangeClientToOIDCClient
(UserModel targetUser, UserSessionModel targetUserSession, String requestedTokenType, ClientModel targetClient, String audience, String scope) protected jakarta.ws.rs.core.Response
DefaultTokenExchangeProvider.exchangeClientToSAML2Client
(UserModel targetUser, UserSessionModel targetUserSession, String requestedTokenType, ClientModel targetClient) static TokenManager.NotBeforeCheck
TokenManager.NotBeforeCheck.forModel
(ClientModel clientModel) static OIDCAdvancedConfigWrapper
OIDCAdvancedConfigWrapper.fromClientModel
(ClientModel client) OIDCClientSecretConfigWrapper.fromClientModel
(ClientModel client) TokenManager.getAccess
(UserModel user, ClientModel client, Stream<ClientScopeModel> clientScopes) static Stream<ClientScopeModel>
TokenManager.getRequestedClientScopes
(String scopeParam, ClientModel client) Return client itself + all default client scopes of client + optional client scopes requested by scope parameterprotected AccessToken
TokenManager.initToken
(RealmModel realm, ClientModel client, UserModel user, UserSessionModel session, ClientSessionContext clientSessionCtx, jakarta.ws.rs.core.UriInfo uriInfo) static boolean
TokenManager.isValidScope
(String scopes, ClientModel client) static boolean
TokenManager.isValidScope
(String scopes, AuthorizationRequestContext authorizationRequestContext, ClientModel client) Check that all the ClientScopes that have been parsed into authorization_resources are actually in the requested scopes otherwise, the scope wasn't parsed correctlyTokenManager.refreshAccessToken
(KeycloakSession session, jakarta.ws.rs.core.UriInfo uriInfo, ClientConnection connection, RealmModel realm, ClientModel authorizedClient, String encodedRefreshToken, EventBuilder event, jakarta.ws.rs.core.HttpHeaders headers, HttpRequest request) TokenManager.responseBuilder
(RealmModel realm, ClientModel client, EventBuilder event, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) boolean
OIDCLoginProtocol.sendPushRevocationPolicyRequest
(RealmModel realm, ClientModel resource, int notBefore, String managementUrl) void
OIDCLoginProtocolFactory.setupClientDefaults
(ClientRepresentation rep, ClientModel newClient) static boolean
TokenManager.verifyConsentStillAvailable
(KeycloakSession session, UserModel user, ClientModel client, Stream<ClientScopeModel> requestedClientScopes) TokenManager.verifyRefreshToken
(KeycloakSession session, RealmModel realm, ClientModel client, HttpRequest request, String encodedRefreshToken, boolean checkExpiration) ModifierConstructorDescriptionprotected
AbstractClientConfigWrapper
(ClientModel clientModel, ClientRepresentation clientRep) AccessTokenResponseBuilder
(RealmModel realm, ClientModel client, EventBuilder event, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) ClientInfo
(ClientModel client) TokenExchangeContext
(KeycloakSession session, jakarta.ws.rs.core.MultivaluedMap<String, String> formParams, Object cors, RealmModel realm, EventBuilder event, ClientModel client, ClientConnection clientConnection, jakarta.ws.rs.core.HttpHeaders headers, Object tokenManager, Map<String, String> clientAuthAttributes) -
Uses of ClientModel in org.keycloak.protocol.oidc.endpoints
-
Uses of ClientModel in org.keycloak.protocol.oidc.endpoints.request
Modifier and TypeMethodDescriptionstatic AuthorizationEndpointRequest
AuthorizationEndpointRequestParserProcessor.parseRequest
(EventBuilder event, KeycloakSession session, ClientModel client, jakarta.ws.rs.core.MultivaluedMap<String, String> requestParams, AuthorizationEndpointRequestParserProcessor.EndpointType endpointType) ModifierConstructorDescriptionAuthzEndpointRequestObjectParser
(KeycloakSession session, String requestObject, ClientModel client) -
Uses of ClientModel in org.keycloak.protocol.oidc.grants.ciba
ModifierConstructorDescriptionCibaGrantType
(jakarta.ws.rs.core.MultivaluedMap<String, String> formParams, ClientModel client, KeycloakSession session, TokenEndpoint tokenEndpoint, RealmModel realm, EventBuilder event, Cors cors) -
Uses of ClientModel in org.keycloak.protocol.oidc.grants.ciba.channel
ModifierConstructorDescriptionCIBAAuthenticationRequest
(KeycloakSession session, UserModel user, ClientModel client) -
Uses of ClientModel in org.keycloak.protocol.oidc.grants.ciba.endpoints
Modifier and TypeMethodDescriptionprotected ClientModel
AbstractCibaEndpoint.authenticateClient()
Modifier and TypeMethodDescriptionprotected void
BackchannelAuthenticationCallbackEndpoint.sendClientNotificationRequest
(ClientModel client, CibaConfig cibaConfig, OAuth2DeviceCodeModel deviceModel) -
Uses of ClientModel in org.keycloak.protocol.oidc.grants.ciba.endpoints.request
Modifier and TypeMethodDescriptionBackchannelAuthenticationEndpointRequestParserProcessor.parseRequest
(EventBuilder event, KeycloakSession session, ClientModel client, jakarta.ws.rs.core.MultivaluedMap<String, String> requestParams, CibaConfig config) -
Uses of ClientModel in org.keycloak.protocol.oidc.grants.device
Modifier and TypeMethodDescriptionstatic OAuth2DeviceCodeModel
DeviceGrantType.getDeviceByDeviceCode
(KeycloakSession session, RealmModel realm, ClientModel client, EventBuilder event, String deviceCode) ModifierConstructorDescriptionDeviceGrantType
(jakarta.ws.rs.core.MultivaluedMap<String, String> formParams, ClientModel client, KeycloakSession session, TokenEndpoint tokenEndpoint, RealmModel realm, EventBuilder event, Cors cors) -
Uses of ClientModel in org.keycloak.protocol.oidc.grants.device.endpoints
Modifier and TypeMethodDescriptionprotected AuthenticationSessionModel
DeviceEndpoint.createAuthenticationSession
(ClientModel client, String scope) -
Uses of ClientModel in org.keycloak.protocol.oidc.installation
Modifier and TypeMethodDescriptionjakarta.ws.rs.core.Response
KeycloakOIDCClientInstallation.generateInstallation
(KeycloakSession session, RealmModel realm, ClientModel client, URI baseUri) jakarta.ws.rs.core.Response
KeycloakOIDCJbossSubsystemClientCliInstallation.generateInstallation
(KeycloakSession session, RealmModel realm, ClientModel client, URI baseUri) jakarta.ws.rs.core.Response
KeycloakOIDCJbossSubsystemClientInstallation.generateInstallation
(KeycloakSession session, RealmModel realm, ClientModel client, URI baseUri) KeycloakOIDCClientInstallation.getClientCredentialsAdapterConfig
(KeycloakSession session, ClientModel client) static boolean
KeycloakOIDCClientInstallation.showClientCredentialsAdapterConfig
(ClientModel client) -
Uses of ClientModel in org.keycloak.protocol.oidc.par.endpoints
-
Uses of ClientModel in org.keycloak.protocol.oidc.par.endpoints.request
Modifier and TypeMethodDescriptionstatic AuthorizationEndpointRequest
ParEndpointRequestParserProcessor.parseRequest
(EventBuilder event, KeycloakSession session, ClientModel client, jakarta.ws.rs.core.MultivaluedMap<String, String> requestParams) ModifierConstructorDescriptionAuthzEndpointParParser
(KeycloakSession session, ClientModel client, String requestUri) ParEndpointRequestObjectParser
(KeycloakSession session, String requestObject, ClientModel client) -
Uses of ClientModel in org.keycloak.protocol.oidc.rar.parsers
-
Uses of ClientModel in org.keycloak.protocol.oidc.utils
Modifier and TypeMethodDescriptionAcrUtils.getAcrLoaMap
(ClientModel client) AcrUtils.getAcrValues
(String claimsParam, String acrValuesParam, ClientModel client) AcrUtils.getDefaultAcrValues
(ClientModel client) WebOriginsUtils.resolveValidWebOrigins
(KeycloakSession session, ClientModel client) static void
PairwiseSubMapperValidator.validate
(KeycloakSession session, ClientModel client, ProtocolMapperModel mapperModel) static String
RedirectUtils.verifyRedirectUri
(KeycloakSession session, String redirectUri, ClientModel client) static String
RedirectUtils.verifyRedirectUri
(KeycloakSession session, String redirectUri, ClientModel client, boolean requireRedirectUri) -
Uses of ClientModel in org.keycloak.protocol.saml
Modifier and TypeMethodDescriptionArtifactResolver.selectSourceClient
(KeycloakSession session, String artifact) Returns client model that issued artifactDefaultSamlArtifactResolver.selectSourceClient
(KeycloakSession session, String artifact) Modifier and TypeMethodDescriptionprotected void
SamlProtocolFactory.addDefaults
(ClientModel client) protected LogoutRequestType
SamlProtocol.createLogoutRequest
(String logoutUrl, AuthenticatedClientSessionModel clientSession, ClientModel client, SamlProtocolExtensionsAwareBuilder.NodeGenerator... extensions) static PublicKey
SamlProtocolUtils.getEncryptionKey
(ClientModel client) Returns public part of SAML encryption key from the client settings.static String
SamlProtocol.getLogoutServiceUrl
(KeycloakSession session, ClientModel client, String bindingType, boolean backChannelLogout) SamlService.getOrCreateLoginSessionForIdpInitiatedSso
(KeycloakSession session, RealmModel realm, ClientModel client, String relayState) Creates a client session object for SAML IdP-initiated SSO session.static PublicKey
SamlProtocolUtils.getPublicKey
(ClientModel client, String attribute) static PublicKey
SamlProtocolUtils.getSignatureValidationKey
(ClientModel client) Returns public part of SAML signing key from the client settings.protected jakarta.ws.rs.core.Response
SamlService.BindingProtocol.loginRequest
(String relayState, AuthnRequestType requestAbstractType, ClientModel client) protected jakarta.ws.rs.core.Response
SamlService.BindingProtocol.logoutRequest
(LogoutRequestType logoutRequest, ClientModel client, String relayState) void
SamlProtocolFactory.setupClientDefaults
(ClientRepresentation clientRep, ClientModel newClient) static boolean
SamlProtocol.useArtifactForLogout
(ClientModel client) static void
SamlProtocolUtils.verifyDocumentSignature
(ClientModel client, Document document) Verifies a signature of the given SAML document using settings for the given client.protected abstract void
SamlService.BindingProtocol.verifySignature
(SAMLDocumentHolder documentHolder, ClientModel client) protected void
SamlService.PostBindingProtocol.verifySignature
(SAMLDocumentHolder documentHolder, ClientModel client) protected void
SamlService.RedirectBindingProtocol.verifySignature
(SAMLDocumentHolder documentHolder, ClientModel client) -
Uses of ClientModel in org.keycloak.protocol.saml.installation
Modifier and TypeMethodDescriptionstatic void
KeycloakSamlClientInstallation.baseXml
(KeycloakSession session, RealmModel realm, ClientModel client, URI baseUri, SamlClient samlClient, StringBuilder buffer) jakarta.ws.rs.core.Response
KeycloakSamlClientInstallation.generateInstallation
(KeycloakSession session, RealmModel realm, ClientModel client, URI baseUri) jakarta.ws.rs.core.Response
KeycloakSamlSubsystemCliInstallation.generateInstallation
(KeycloakSession session, RealmModel realm, ClientModel client, URI baseUri) jakarta.ws.rs.core.Response
KeycloakSamlSubsystemInstallation.generateInstallation
(KeycloakSession session, RealmModel realm, ClientModel client, URI baseUri) jakarta.ws.rs.core.Response
ModAuthMellonClientInstallation.generateInstallation
(KeycloakSession session, RealmModel realm, ClientModel client, URI serverBaseUri) jakarta.ws.rs.core.Response
SamlSPDescriptorClientInstallation.generateInstallation
(KeycloakSession session, RealmModel realm, ClientModel client, URI serverBaseUri) static String
SamlSPDescriptorClientInstallation.getSPDescriptorForClient
(ClientModel client) -
Uses of ClientModel in org.keycloak.services
-
Uses of ClientModel in org.keycloak.services.clientpolicy.context
Modifier and TypeMethodDescriptiondefault ClientModel
ClientCRUDContext.getAuthenticatedClient()
returnsUserModel
of the authenticated client.AdminClientRegisteredContext.getTargetClient()
AdminClientUnregisterContext.getTargetClient()
AdminClientUpdateContext.getTargetClient()
AdminClientUpdatedContext.getTargetClient()
AdminClientViewContext.getTargetClient()
default ClientModel
ClientCRUDContext.getTargetClient()
returnsClientModel
of the existing client to be updated/read/updated/deleted.DynamicClientRegisteredContext.getTargetClient()
DynamicClientUnregisterContext.getTargetClient()
DynamicClientUpdateContext.getTargetClient()
DynamicClientUpdatedContext.getTargetClient()
DynamicClientViewContext.getTargetClient()
ModifierConstructorDescriptionAdminClientRegisteredContext
(ClientModel registeredClient, AdminAuth adminAuth) AdminClientUnregisterContext
(ClientModel targetClient, AdminAuth adminAuth) AdminClientUpdateContext
(ClientRepresentation proposedClientRepresentation, ClientModel targetClient, AdminAuth adminAuth) AdminClientUpdatedContext
(ClientRepresentation roposedClientRepresentation, ClientModel updatedClient, AdminAuth adminAuth) AdminClientViewContext
(ClientModel targetClient, AdminAuth adminAuth) ClientSecretRotationContext
(ClientRepresentation proposedClientRepresentation, ClientModel targetClient, String currentSecret) DynamicClientRegisteredContext
(ClientRegistrationContext context, ClientModel registeredClient, JsonWebToken token, RealmModel realm) DynamicClientUnregisterContext
(KeycloakSession session, ClientModel targetClient, JsonWebToken token, RealmModel realm) DynamicClientUpdateContext
(ClientRegistrationContext context, ClientModel proposedClientRepresentation, JsonWebToken token, RealmModel realm) DynamicClientUpdatedContext
(KeycloakSession session, ClientModel updatedClient, JsonWebToken token, RealmModel realm) DynamicClientViewContext
(KeycloakSession session, ClientModel targetClient, JsonWebToken token, RealmModel realm) -
Uses of ClientModel in org.keycloak.services.clientpolicy.executor
Modifier and TypeMethodDescriptionvoid
ConsentRequiredExecutor.beforeUpdate
(ClientModel clientToBeUpdated, ClientRepresentation proposedClient) -
Uses of ClientModel in org.keycloak.services.clientregistration
Modifier and TypeMethodDescriptionAbstractClientRegistrationProvider.get
(ClientModel client) void
ClientRegistrationAuth.requireDelete
(ClientModel client) ClientRegistrationAuth.requireUpdate
(ClientRegistrationContext context, ClientModel client) void
ClientRegistrationAuth.requireView
(ClientModel client) void
ClientRegistrationAuth.requireView
(ClientModel client, boolean allowPublicClient) static String
ClientRegistrationTokenUtils.updateRegistrationAccessToken
(KeycloakSession session, ClientModel client, RegistrationAuth registrationAuth) static String
ClientRegistrationTokenUtils.updateRegistrationAccessToken
(KeycloakSession session, RealmModel realm, ClientModel client, RegistrationAuth registrationAuth) void
AbstractClientRegistrationProvider.validateClient
(ClientModel clientModel, OIDCClientRepresentation oidcClient, boolean create) -
Uses of ClientModel in org.keycloak.services.clientregistration.policy
Modifier and TypeMethodDescriptionvoid
ClientRegistrationPolicy.afterRegister
(ClientRegistrationContext context, ClientModel clientModel) void
ClientRegistrationPolicy.afterUpdate
(ClientRegistrationContext context, ClientModel clientModel) void
ClientRegistrationPolicy.beforeDelete
(ClientRegistrationProvider provider, ClientModel clientModel) void
ClientRegistrationPolicy.beforeUpdate
(ClientRegistrationContext context, ClientModel clientModel) void
ClientRegistrationPolicy.beforeView
(ClientRegistrationProvider provider, ClientModel clientModel) static void
ClientRegistrationPolicyManager.triggerAfterRegister
(ClientRegistrationContext context, RegistrationAuth authType, ClientModel client) static void
ClientRegistrationPolicyManager.triggerAfterUpdate
(ClientRegistrationContext context, RegistrationAuth authType, ClientModel client) static void
ClientRegistrationPolicyManager.triggerBeforeRemove
(KeycloakSession session, ClientRegistrationProvider provider, RegistrationAuth authType, ClientModel client) static void
ClientRegistrationPolicyManager.triggerBeforeUpdate
(ClientRegistrationContext context, RegistrationAuth authType, ClientModel client) static void
ClientRegistrationPolicyManager.triggerBeforeView
(KeycloakSession session, ClientRegistrationProvider provider, RegistrationAuth authType, ClientModel client) -
Uses of ClientModel in org.keycloak.services.clientregistration.policy.impl
Modifier and TypeMethodDescriptionvoid
ClientDisabledClientRegistrationPolicy.afterRegister
(ClientRegistrationContext context, ClientModel clientModel) void
ClientScopesClientRegistrationPolicy.afterRegister
(ClientRegistrationContext context, ClientModel clientModel) void
ConsentRequiredClientRegistrationPolicy.afterRegister
(ClientRegistrationContext context, ClientModel clientModel) void
MaxClientsClientRegistrationPolicy.afterRegister
(ClientRegistrationContext context, ClientModel clientModel) void
ProtocolMappersClientRegistrationPolicy.afterRegister
(ClientRegistrationContext context, ClientModel clientModel) void
ScopeClientRegistrationPolicy.afterRegister
(ClientRegistrationContext context, ClientModel clientModel) void
TrustedHostClientRegistrationPolicy.afterRegister
(ClientRegistrationContext context, ClientModel clientModel) void
ClientDisabledClientRegistrationPolicy.afterUpdate
(ClientRegistrationContext context, ClientModel clientModel) void
ClientScopesClientRegistrationPolicy.afterUpdate
(ClientRegistrationContext context, ClientModel clientModel) void
ConsentRequiredClientRegistrationPolicy.afterUpdate
(ClientRegistrationContext context, ClientModel clientModel) void
MaxClientsClientRegistrationPolicy.afterUpdate
(ClientRegistrationContext context, ClientModel clientModel) void
ProtocolMappersClientRegistrationPolicy.afterUpdate
(ClientRegistrationContext context, ClientModel clientModel) void
ScopeClientRegistrationPolicy.afterUpdate
(ClientRegistrationContext context, ClientModel clientModel) void
TrustedHostClientRegistrationPolicy.afterUpdate
(ClientRegistrationContext context, ClientModel clientModel) void
ClientDisabledClientRegistrationPolicy.beforeDelete
(ClientRegistrationProvider provider, ClientModel clientModel) void
ClientScopesClientRegistrationPolicy.beforeDelete
(ClientRegistrationProvider provider, ClientModel clientModel) void
ConsentRequiredClientRegistrationPolicy.beforeDelete
(ClientRegistrationProvider provider, ClientModel clientModel) void
MaxClientsClientRegistrationPolicy.beforeDelete
(ClientRegistrationProvider provider, ClientModel clientModel) void
ProtocolMappersClientRegistrationPolicy.beforeDelete
(ClientRegistrationProvider provider, ClientModel clientModel) void
ScopeClientRegistrationPolicy.beforeDelete
(ClientRegistrationProvider provider, ClientModel clientModel) void
TrustedHostClientRegistrationPolicy.beforeDelete
(ClientRegistrationProvider provider, ClientModel clientModel) void
ClientDisabledClientRegistrationPolicy.beforeUpdate
(ClientRegistrationContext context, ClientModel clientModel) void
ClientScopesClientRegistrationPolicy.beforeUpdate
(ClientRegistrationContext context, ClientModel clientModel) void
ConsentRequiredClientRegistrationPolicy.beforeUpdate
(ClientRegistrationContext context, ClientModel clientModel) void
MaxClientsClientRegistrationPolicy.beforeUpdate
(ClientRegistrationContext context, ClientModel clientModel) void
ProtocolMappersClientRegistrationPolicy.beforeUpdate
(ClientRegistrationContext context, ClientModel clientModel) void
ScopeClientRegistrationPolicy.beforeUpdate
(ClientRegistrationContext context, ClientModel clientModel) void
TrustedHostClientRegistrationPolicy.beforeUpdate
(ClientRegistrationContext context, ClientModel clientModel) void
ClientDisabledClientRegistrationPolicy.beforeView
(ClientRegistrationProvider provider, ClientModel clientModel) void
ClientScopesClientRegistrationPolicy.beforeView
(ClientRegistrationProvider provider, ClientModel clientModel) void
ConsentRequiredClientRegistrationPolicy.beforeView
(ClientRegistrationProvider provider, ClientModel clientModel) void
MaxClientsClientRegistrationPolicy.beforeView
(ClientRegistrationProvider provider, ClientModel clientModel) void
ProtocolMappersClientRegistrationPolicy.beforeView
(ClientRegistrationProvider provider, ClientModel clientModel) void
ScopeClientRegistrationPolicy.beforeView
(ClientRegistrationProvider provider, ClientModel clientModel) void
TrustedHostClientRegistrationPolicy.beforeView
(ClientRegistrationProvider provider, ClientModel clientModel) -
Uses of ClientModel in org.keycloak.services.managers
Modifier and TypeMethodDescriptionstatic ClientModel
ClientManager.createClient
(KeycloakSession session, RealmModel realm, ClientRepresentation rep) Should not be called from an import.Auth.getClient()
AuthenticationManager.AuthResult.getClient()
Modifier and TypeMethodDescriptionUserSessionManager.findClientsWithOfflineToken
(RealmModel realm, UserModel user) Modifier and TypeMethodDescriptionvoid
RealmManager.addQueryCompositeRoles
(ClientModel realmAccess) static void
AuthenticationManager.backchannelLogoutUserFromClient
(KeycloakSession session, RealmModel realm, UserModel user, ClientModel client, jakarta.ws.rs.core.UriInfo uriInfo, jakarta.ws.rs.core.HttpHeaders headers) Logout all clientSessions of this user and clientvoid
ClientManager.clientIdChanged
(ClientModel client, ClientRepresentation newClientRepresentation) void
ClientManager.enableServiceAccount
(ClientModel client) AuthenticationSessionManager.getAuthenticationSessionByIdAndClient
(RealmModel realm, String authSessionId, ClientModel client, String tabId) static String
ResourceAdminManager.getBackchannelLogoutUrl
(KeycloakSession session, ClientModel client) static <CLIENT_SESSION extends CommonClientSessionModel>
CLIENT_SESSIONClientSessionCode.getClientSession
(String code, String tabId, KeycloakSession session, RealmModel realm, ClientModel client, EventBuilder event, Class<CLIENT_SESSION> sessionClass) AuthenticationSessionManager.getCurrentAuthenticationSession
(RealmModel realm, ClientModel client, String tabId) Returns current authentication session if it exists, otherwise returnsnull
.static String
ResourceAdminManager.getManagementUrl
(KeycloakSession session, ClientModel client) boolean
Auth.hasClientRole
(ClientModel app, String role) boolean
Auth.hasOneOfAppRole
(ClientModel app, String... roles) ResourceAdminManager.logoutClient
(RealmModel realm, ClientModel resource) protected GlobalRequestResult
ResourceAdminManager.logoutClient
(RealmModel realm, ClientModel resource, int notBefore) jakarta.ws.rs.core.Response
ResourceAdminManager.logoutClientSession
(RealmModel realm, ClientModel resource, AuthenticatedClientSessionModel clientSession) protected jakarta.ws.rs.core.Response
ResourceAdminManager.logoutClientSessions
(RealmModel realm, ClientModel resource, List<AuthenticatedClientSessionModel> clientSessions) jakarta.ws.rs.core.Response
ResourceAdminManager.logoutClientSessionWithBackchannelLogoutUrl
(ClientModel resource, AuthenticatedClientSessionModel clientSession) static <CLIENT_SESSION extends CommonClientSessionModel>
ClientSessionCode.ParseResult<CLIENT_SESSION>ClientSessionCode.parseResult
(String code, String tabId, KeycloakSession session, RealmModel realm, ClientModel client, EventBuilder event, CLIENT_SESSION clientSession) static <CLIENT_SESSION extends CommonClientSessionModel>
ClientSessionCode.ParseResult<CLIENT_SESSION>ClientSessionCode.parseResult
(String code, String tabId, KeycloakSession session, RealmModel realm, ClientModel client, EventBuilder event, Class<CLIENT_SESSION> sessionClass) ResourceAdminManager.pushClientRevocationPolicy
(RealmModel realm, ClientModel client) protected GlobalRequestResult
ResourceAdminManager.pushRevocationPolicy
(RealmModel realm, ClientModel resource, int notBefore) boolean
ClientManager.removeClient
(RealmModel realm, ClientModel client) static boolean
UserConsentManager.revokeConsentToClient
(KeycloakSession session, ClientModel client, UserModel user) Revoke consent of given user to given clientboolean
UserSessionManager.revokeOfflineToken
(UserModel user, ClientModel client) protected jakarta.ws.rs.core.Response
ResourceAdminManager.sendBackChannelLogoutRequestToClientUri
(ClientModel resource, AuthenticatedClientSessionModel clientSessionModel, String managementUrl) protected jakarta.ws.rs.core.Response
ResourceAdminManager.sendLogoutRequest
(RealmModel realm, ClientModel resource, List<String> adapterSessionIds, List<String> userSessions, int notBefore, String managementUrl) protected boolean
ResourceAdminManager.sendPushRevocationPolicyRequest
(RealmModel realm, ClientModel resource, int notBefore, String managementUrl) protected boolean
ResourceAdminManager.sendTestNodeAvailabilityRequest
(RealmModel realm, ClientModel client, String managementUrl) ResourceAdminManager.testNodesAvailability
(RealmModel realm, ClientModel client) ClientManager.toInstallationRepresentation
(RealmModel realmModel, ClientModel clientModel, URI baseUri) ClientManager.toJBossSubsystemConfig
(RealmModel realmModel, ClientModel clientModel, URI baseUri) ClientManager.validateRegisteredNodes
(ClientModel client) ModifierConstructorDescriptionAuth
(RealmModel realm, AccessToken token, UserModel user, ClientModel client, UserSessionModel session, boolean cookie) AuthResult
(UserModel user, UserSessionModel session, AccessToken token, ClientModel client) -
Uses of ClientModel in org.keycloak.services.resources
Modifier and TypeMethodDescriptionprotected ClientModel
ClientsManagementService.authorizeClient()
Modifier and TypeMethodDescriptionCors.allowedOrigins
(KeycloakSession session, ClientModel client) protected boolean
LogoutSessionCodeChecks.checkClientDisabled
(ClientModel client) protected boolean
SessionCodeChecks.checkClientDisabled
(ClientModel client) static void
LoginActionsServiceChecks.checkIsClientValid
(KeycloakSession session, ClientModel client) Verifies whether the client denoted by client ID in token'siss
(issuedFor
) field both exists and is enabled.protected void
LogoutSessionCodeChecks.setClientToEvent
(ClientModel client) protected void
SessionCodeChecks.setClientToEvent
(ClientModel client) ModifierConstructorDescriptionAbstractSecuredLocalService
(KeycloakSession session, ClientModel client) -
Uses of ClientModel in org.keycloak.services.resources.account
ModifierConstructorDescriptionAccountConsole
(KeycloakSession session, ClientModel client, Theme theme) -
Uses of ClientModel in org.keycloak.services.resources.admin
Modifier and TypeFieldDescriptionprotected final ClientModel
ClientAttributeCertificateResource.client
protected ClientModel
ClientResource.client
protected ClientModel
ClientRoleMappingsResource.client
protected ClientModel
ScopeMappedClientResource.scopedClient
Modifier and TypeMethodDescriptionAdminEventBuilder.authClient
(ClientModel client) protected Stream<RoleRepresentation>
RoleResource.getClientRoleComposites
(ClientModel app, RoleModel role) boolean
AdminAuth.hasAppRole
(ClientModel app, String role) boolean
AdminAuth.hasOneOfAppRole
(ClientModel app, String... roles) ClientResource.toMgmtRef
(ClientModel client, AdminPermissionManagement permissions) ModifierConstructorDescriptionAdminAuth
(RealmModel realm, AccessToken token, UserModel user, ClientModel client) ClientAttributeCertificateResource
(AdminPermissionEvaluator auth, ClientModel client, KeycloakSession session, String attributePrefix, AdminEventBuilder adminEvent) ClientResource
(RealmModel realm, AdminPermissionEvaluator auth, ClientModel clientModel, KeycloakSession session, AdminEventBuilder adminEvent) ClientRoleMappingsResource
(jakarta.ws.rs.core.UriInfo uriInfo, KeycloakSession session, RealmModel realm, AdminPermissionEvaluator auth, RoleMapperModel user, ClientModel client, AdminEventBuilder adminEvent, AdminPermissionEvaluator.RequirePermissionCheck manageCheck, AdminPermissionEvaluator.RequirePermissionCheck viewCheck) ClientScopeEvaluateResource
(KeycloakSession session, jakarta.ws.rs.core.UriInfo uriInfo, RealmModel realm, AdminPermissionEvaluator auth, ClientModel client, ClientConnection clientConnection) ClientScopeEvaluateScopeMappingsResource
(RoleContainerModel roleContainer, AdminPermissionEvaluator auth, ClientModel client, String scopeParam) ScopeMappedClientResource
(RealmModel realm, AdminPermissionEvaluator auth, ScopeContainerModel scopeContainer, KeycloakSession session, ClientModel scopedClient, AdminEventBuilder adminEvent, AdminPermissionEvaluator.RequirePermissionCheck managePermission, AdminPermissionEvaluator.RequirePermissionCheck viewPermission) -
Uses of ClientModel in org.keycloak.services.resources.admin.permissions
Modifier and TypeMethodDescriptionboolean
UserPermissionManagement.canClientImpersonate
(ClientModel client, UserModel user) boolean
ClientPermissionEvaluator.canConfigure
(ClientModel client) boolean
ClientPermissionManagement.canExchangeTo
(ClientModel authorizedClient, ClientModel to) boolean
IdentityProviderPermissionManagement.canExchangeTo
(ClientModel authorizedClient, IdentityProviderModel to) boolean
UserPermissionEvaluator.canImpersonate
(UserModel user, ClientModel requester) boolean
ClientPermissionEvaluator.canManage
(ClientModel client) boolean
ClientPermissionEvaluator.canMapClientScopeRoles
(ClientModel client) boolean
ClientPermissionEvaluator.canMapCompositeRoles
(ClientModel client) boolean
ClientPermissionEvaluator.canMapRoles
(ClientModel client) boolean
ClientPermissionEvaluator.canView
(ClientModel client) ClientPermissionManagement.configurePermission
(ClientModel client) ClientPermissionManagement.exchangeToPermission
(ClientModel client) ClientPermissionEvaluator.getAccess
(ClientModel client) ClientPermissionManagement.getPermissions
(ClientModel client) boolean
UserPermissionEvaluator.isImpersonatable
(UserModel user, ClientModel requester) boolean
ClientPermissionEvaluator.isPermissionsEnabled
(ClientModel client) boolean
ClientPermissionManagement.isPermissionsEnabled
(ClientModel client) ClientPermissionManagement.managePermission
(ClientModel client) ClientPermissionManagement.mapRolesClientScopePermission
(ClientModel client) ClientPermissionManagement.mapRolesCompositePermission
(ClientModel client) ClientPermissionManagement.mapRolesPermission
(ClientModel client) void
ClientPermissionEvaluator.requireConfigure
(ClientModel client) void
ClientPermissionEvaluator.requireManage
(ClientModel client) void
ClientPermissionEvaluator.requireView
(ClientModel client) ClientPermissionManagement.resource
(ClientModel client) ClientPermissionManagement.resourceServer
(ClientModel client) void
ClientPermissionEvaluator.setPermissionsEnabled
(ClientModel client, boolean enable) void
ClientPermissionManagement.setPermissionsEnabled
(ClientModel client, boolean enable) ClientPermissionManagement.viewPermission
(ClientModel client) -
Uses of ClientModel in org.keycloak.services.util
Modifier and TypeMethodDescriptionstatic CertificateRepresentation
CertificateInfoHelper.getCertificateFromClient
(ClientModel client, String attributePrefix) static ClientMappingsRepresentation
ScopeMappedUtil.toClientMappingsRepresentation
(ClientModel client, ScopeContainerModel scopeContainer) static void
CertificateInfoHelper.updateClientModelCertificateInfo
(ClientModel client, CertificateRepresentation rep, String attributePrefix) -
Uses of ClientModel in org.keycloak.sessions
Modifier and TypeMethodDescriptionRootAuthenticationSessionModel.createAuthenticationSession
(ClientModel client) Create a new authentication session and returns it.RootAuthenticationSessionModel.getAuthenticationSession
(ClientModel client, String tabId) Returns an authentication session for the particular client and tab or null if it doesn't yet exists.void
AuthenticationSessionProvider.onClientRemoved
(RealmModel realm, ClientModel client) Removes all associated root authentication sessions to the given realm and client which was removed. -
Uses of ClientModel in org.keycloak.social.twitter
Modifier and TypeMethodDescriptionjakarta.ws.rs.core.Response
TwitterIdentityProvider.exchangeFromToken
(jakarta.ws.rs.core.UriInfo uriInfo, EventBuilder builder, ClientModel authorizedClient, UserSessionModel tokenUserSession, UserModel tokenSubject, jakarta.ws.rs.core.MultivaluedMap<String, String> params) protected jakarta.ws.rs.core.Response
TwitterIdentityProvider.exchangeSessionToken
(jakarta.ws.rs.core.UriInfo uriInfo, ClientModel authorizedClient, UserSessionModel tokenUserSession, UserModel tokenSubject) protected jakarta.ws.rs.core.Response
TwitterIdentityProvider.exchangeStoredToken
(jakarta.ws.rs.core.UriInfo uriInfo, ClientModel authorizedClient, UserSessionModel tokenUserSession, UserModel tokenSubject) -
Uses of ClientModel in org.keycloak.storage
Modifier and TypeMethodDescriptionClientStorageManager.addClient
(RealmModel realm, String clientId) ClientStorageManager.addClient
(RealmModel realm, String id, String clientId) ClientStorageManager.getClientByClientId
(RealmModel realm, String clientId) ClientStorageManager.getClientById
(RealmModel realm, String id) Modifier and TypeMethodDescriptionClientStorageManager.getAllRedirectUrisOfEnabledClients
(RealmModel realm) ClientStorageManager.getAlwaysDisplayInConsoleClientsStream
(RealmModel realm) ClientStorageManager.getClientsStream
(RealmModel realm) ClientStorageManager.getClientsStream
(RealmModel realm, Integer firstResult, Integer maxResults) protected Stream<ClientModel>
ClientStorageManager.query
(org.keycloak.storage.ClientStorageManager.PaginatedQuery paginatedQuery, RealmModel realm, Integer firstResult, Integer maxResults) ClientStorageManager.searchClientsByAttributes
(RealmModel realm, Map<String, String> attributes, Integer firstResult, Integer maxResults) ClientStorageManager.searchClientsByClientIdStream
(RealmModel realm, String clientId, Integer firstResult, Integer maxResults) Modifier and TypeMethodDescriptionRoleStorageManager.addClientRole
(ClientModel client, String name) RoleStorageManager.addClientRole
(ClientModel client, String id, String name) void
ClientStorageManager.addClientScopes
(RealmModel realm, ClientModel client, Set<ClientScopeModel> clientScopes, boolean defaultScope) RoleStorageManager.getClientRole
(ClientModel client, String name) RoleStorageManager.getClientRolesStream
(ClientModel client) RoleStorageManager.getClientRolesStream
(ClientModel client, Integer first, Integer max) ClientStorageManager.getClientScopes
(RealmModel realm, ClientModel client, boolean defaultScopes) UserStorageManager.getServiceAccount
(ClientModel client) static boolean
StorageId.isLocalStorage
(ClientModel client) Deprecated.UseStorageId.isLocalStorage(String)
instead.void
UserStorageManager.preRemove
(RealmModel realm, ClientModel client) void
ClientStorageManager.removeClientScope
(RealmModel realm, ClientModel client, ClientScopeModel clientScope) void
RoleStorageManager.removeRoles
(ClientModel client) static String
StorageId.resolveProviderId
(ClientModel client) Deprecated.UseStorageId.providerId(String)
instead.RoleStorageManager.searchForClientRolesStream
(ClientModel client, String search, Integer first, Integer max) Obtaining roles from an external role storage is time-bounded. -
Uses of ClientModel in org.keycloak.storage.adapter
Modifier and TypeMethodDescriptionAbstractUserAdapter.getClientRoleMappings
(ClientModel app) Deprecated.AbstractUserAdapter.Streams.getClientRoleMappings
(ClientModel app) AbstractUserAdapter.getClientRoleMappingsStream
(ClientModel app) AbstractUserAdapter.Streams.getClientRoleMappingsStream
(ClientModel app) AbstractUserAdapterFederatedStorage.getClientRoleMappingsStream
(ClientModel app) Gets role mappings from federated storage and automatically appends default roles.InMemoryUserAdapter.getClientRoleMappingsStream
(ClientModel app) -
Uses of ClientModel in org.keycloak.storage.client
Modifier and TypeClassDescriptionclass
Helper base class for ClientModel implementations for ClientStorageProvider implementations.class
class
Base helper class.Modifier and TypeMethodDescriptionClientLookupProvider.getClientByClientId
(RealmModel realm, String clientId) Exact search for a client by its public client identifier.ClientLookupProvider.getClientById
(RealmModel realm, String id) Exact search for a client by its internal ID.Modifier and TypeMethodDescriptionClientLookupProvider.searchClientsByAttributes
(RealmModel realm, Map<String, String> attributes, Integer firstResult, Integer maxResults) ClientLookupProvider.searchClientsByClientIdStream
(RealmModel realm, String clientId, Integer firstResult, Integer maxResults) Case-insensitive search for clients that contain the given string in their public client identifier.Modifier and TypeMethodDescriptionClientLookupProvider.getClientScopes
(RealmModel realm, ClientModel client, boolean defaultScopes) Return all default scopes (ifdefaultScope
istrue
) or all optional scopes (ifdefaultScope
isfalse
) linked with the client -
Uses of ClientModel in org.keycloak.storage.datastore
Modifier and TypeMethodDescriptionstatic void
LegacyExportImportManager.createClientScopeMappings
(RealmModel realm, ClientModel clientModel, List<ScopeMappingRepresentation> mappings) -
Uses of ClientModel in org.keycloak.storage.federated
Modifier and TypeMethodDescriptionvoid
UserFederatedStorageProvider.preRemove
(RealmModel realm, ClientModel client) -
Uses of ClientModel in org.keycloak.storage.jpa
Modifier and TypeMethodDescriptionvoid
JpaUserFederatedStorageProvider.preRemove
(RealmModel realm, ClientModel client) -
Uses of ClientModel in org.keycloak.storage.ldap.mappers.membership.role
Modifier and TypeMethodDescriptionRoleLDAPStorageMapper.LDAPRoleMappingsUserDelegate.getClientRoleMappingsStream
(ClientModel client) -
Uses of ClientModel in org.keycloak.storage.role
Modifier and TypeMethodDescriptionRoleLookupProvider.getClientRole
(ClientModel client, String name) Exact search for a client role by given name.RoleLookupProvider.searchForClientRolesStream
(ClientModel client, String search, Integer first, Integer max) Case-insensitive search for client roles that contain the given string in their name or description. -
Uses of ClientModel in org.keycloak.validation
Modifier and TypeMethodDescriptionstatic void
ValidationUtil.validateClient
(KeycloakSession session, ClientModel client, boolean create, ValidationUtil.ErrorHandler errorHandler) static void
ValidationUtil.validateClient
(KeycloakSession session, ClientModel client, OIDCClientRepresentation oidcClient, boolean create, ValidationUtil.ErrorHandler errorHandler) Modifier and TypeMethodDescriptionDefaultClientValidationProvider.validate
(ValidationContext<ClientModel> context) ModifierConstructorDescriptionClientValidationContext
(ValidationContext.Event event, KeycloakSession session, ClientModel objectToValidate) OIDCContext
(ValidationContext.Event event, KeycloakSession session, ClientModel objectToValidate, OIDCClientRepresentation oidcClient)