Package org.keycloak.broker.oidc
Class OIDCIdentityProviderConfig
java.lang.Object
org.keycloak.models.IdentityProviderModel
org.keycloak.broker.oidc.OAuth2IdentityProviderConfig
org.keycloak.broker.oidc.OIDCIdentityProviderConfig
- All Implemented Interfaces:
Serializable
- Direct Known Subclasses:
FacebookIdentityProviderConfig
,GoogleIdentityProviderConfig
,MicrosoftIdentityProviderConfig
- Author:
- Pedro Igor
- See Also:
-
Field Summary
Modifier and TypeFieldDescriptionstatic final String
static final String
static final String
static final String
Fields inherited from class org.keycloak.broker.oidc.OAuth2IdentityProviderConfig
JWT_X509_HEADERS_ENABLED, PKCE_ENABLED, PKCE_METHOD
Fields inherited from class org.keycloak.models.IdentityProviderModel
addReadTokenRoleOnCreate, ALLOWED_CLOCK_SKEW, CLAIM_FILTER_NAME, CLAIM_FILTER_VALUE, DO_NOT_STORE_USERS, FILTERED_BY_CLAIMS, HIDE_ON_LOGIN, linkOnly, LOGIN_HINT, METADATA_DESCRIPTOR_URL, PASS_MAX_AGE, SYNC_MODE
-
Constructor Summary
-
Method Summary
Modifier and TypeMethodDescriptionint
boolean
boolean
boolean
boolean
boolean
boolean
boolean
boolean
void
setAccessTokenJwt
(boolean accessTokenJwt) void
setBackchannelSupported
(boolean backchannel) void
setDisableNonce
(boolean disableNonce) void
setDisableUserInfoService
(boolean disable) void
void
setJwksUrl
(String jwksUrl) void
setLogoutUrl
(String url) void
void
setPublicKeySignatureVerifier
(String signingCertificate) void
setPublicKeySignatureVerifierKeyId
(String publicKeySignatureVerifierKeyId) void
setSendClientOnLogout
(boolean value) void
setSendIdTokenOnLogout
(boolean value) void
setUseJwksUrl
(boolean useJwksUrl) void
setValidateSignature
(boolean validateSignature) void
validate
(RealmModel realm) Validates this configuration.Methods inherited from class org.keycloak.broker.oidc.OAuth2IdentityProviderConfig
getAuthorizationUrl, getClientAssertionAudience, getClientAssertionSigningAlg, getClientAuthMethod, getClientId, getClientSecret, getDefaultScope, getForwardParameters, getPkceMethod, getTokenUrl, getUserInfoUrl, isBasicAuthentication, isJWTAuthentication, isJwtX509HeadersEnabled, isPkceEnabled, isUiLocales, setAuthorizationUrl, setClientAssertionAudience, setClientAssertionSigningAlg, setClientAuthMethod, setClientId, setClientSecret, setDefaultScope, setForwardParameters, setJwtX509HeadersEnabled, setPkceEnabled, setPkceMethod, setTokenUrl, setUiLocales, setUserInfoUrl
Methods inherited from class org.keycloak.models.IdentityProviderModel
getAlias, getClaimFilterName, getClaimFilterValue, getConfig, getDisplayIconClasses, getDisplayName, getFirstBrokerLoginFlowId, getInternalId, getMetadataDescriptorUrl, getPostBrokerLoginFlowId, getProviderId, getSyncMode, isAddReadTokenRoleOnCreate, isAuthenticateByDefault, isEnabled, isFilteredByClaims, isHideOnLogin, isLinkOnly, isLoginHint, isPassMaxAge, isStoreToken, isTransientUsers, isTrustEmail, setAddReadTokenRoleOnCreate, setAlias, setAuthenticateByDefault, setClaimFilterName, setClaimFilterValue, setConfig, setDisplayName, setEnabled, setFilteredByClaims, setFirstBrokerLoginFlowId, setHideOnLogin, setInternalId, setLinkOnly, setLoginHint, setMetadataDescriptorUrl, setPassMaxAge, setPostBrokerLoginFlowId, setProviderId, setStoreToken, setSyncMode, setTransientUsers, setTrustEmail
-
Field Details
-
JWKS_URL
- See Also:
-
USE_JWKS_URL
- See Also:
-
VALIDATE_SIGNATURE
- See Also:
-
IS_ACCESS_TOKEN_JWT
- See Also:
-
-
Constructor Details
-
OIDCIdentityProviderConfig
-
OIDCIdentityProviderConfig
public OIDCIdentityProviderConfig()
-
-
Method Details
-
getPrompt
- Overrides:
getPrompt
in classOAuth2IdentityProviderConfig
-
setPrompt
-
getIssuer
-
setIssuer
-
getLogoutUrl
-
setLogoutUrl
-
isSendClientIdOnLogout
public boolean isSendClientIdOnLogout() -
setSendClientOnLogout
public void setSendClientOnLogout(boolean value) -
isSendIdTokenOnLogout
public boolean isSendIdTokenOnLogout() -
setSendIdTokenOnLogout
public void setSendIdTokenOnLogout(boolean value) -
getPublicKeySignatureVerifier
-
setPublicKeySignatureVerifier
-
getPublicKeySignatureVerifierKeyId
-
setPublicKeySignatureVerifierKeyId
-
isValidateSignature
public boolean isValidateSignature() -
setValidateSignature
public void setValidateSignature(boolean validateSignature) -
setAccessTokenJwt
public void setAccessTokenJwt(boolean accessTokenJwt) -
isAccessTokenJwt
public boolean isAccessTokenJwt() -
isUseJwksUrl
public boolean isUseJwksUrl() -
setUseJwksUrl
public void setUseJwksUrl(boolean useJwksUrl) -
getJwksUrl
-
setJwksUrl
-
isBackchannelSupported
public boolean isBackchannelSupported() -
setBackchannelSupported
public void setBackchannelSupported(boolean backchannel) -
isDisableUserInfoService
public boolean isDisableUserInfoService() -
setDisableUserInfoService
public void setDisableUserInfoService(boolean disable) -
isDisableNonce
public boolean isDisableNonce() -
setDisableNonce
public void setDisableNonce(boolean disableNonce) -
getAllowedClockSkew
public int getAllowedClockSkew() -
validate
Description copied from class:IdentityProviderModel
Validates this configuration.
Sub-classes can override this method in order to enforce provider specific validations.
- Overrides:
validate
in classOAuth2IdentityProviderConfig
- Parameters:
realm
- the realm
-