Package org.keycloak.organization

Interface OrganizationProvider

All Superinterfaces:
Provider
All Known Implementing Classes:
JpaOrganizationProvider
public interface OrganizationProvider extends Provider
A Provider that manages organization and its data within the scope of a realm.

  • Method Details

    • create

      OrganizationModel create(String name)
      Creates a new organization with given name to the realm. The internal ID of the organization will be created automatically.
      Parameters:
      name - String name of the organization.
      Returns:
      Model of the created organization.
      Throws:
      ModelDuplicateException - If there is already an organization with the given name

    • getById

      OrganizationModel getById(String id)
      Returns a OrganizationModel by its id;
      Parameters:
      id - the id of an organization
      Returns:
      the organization with the given id or null if there is no such an organization.

    • getByDomainName

      OrganizationModel getByDomainName(String domainName)
      Returns a OrganizationModel by its internet domain.
      Parameters:
      domainName - the organization's internet domain (e.g. redhat.com)
      Returns:
      the organization that is linked to the given internet domain

    • getAllStream

      default Stream<OrganizationModel> getAllStream()
      Returns all organizations in the realm.
      Returns:
      a Stream of the realm's organizations.

    • getAllStream

      Stream<OrganizationModel> getAllStream(String search, Boolean exact, Integer first, Integer max)
      Returns all organizations in the realm filtered according to the specified parameters.
      Parameters:
      search - a String representing either an organization name or domain.
      exact - if true, the organizations will be searched using exact match for the search param - i.e. either the organization name or one of its domains must match exactly the search param. If false, the method returns all organizations whose name or (domains) partially match the search param.
      first - the position of the first result to be processed (pagination offset). Ignored if negative or null.
      max - the maximum number of results to be returned. Ignored if negative or null.
      Returns:
      a Stream of the matched organizations. Never returns null.

    • getAllStream

      Stream<OrganizationModel> getAllStream(Map<String,String> attributes, Integer first, Integer max)
      Returns all organizations in the realm filtered according to the specified parameters.
      Parameters:
      attributes - a Map containig the attributes (name/value) that must match organization attributes.
      first - the position of the first result to be processed (pagination offset). Ignored if negative or null.
      max - the maximum number of results to be returned. Ignored if negative or null.
      Returns:
      a Stream of the matched organizations. Never returns null.

    • remove

      boolean remove(OrganizationModel organization)
      Removes the given organization from the realm together with the data associated with it, e.g. its members etc.
      Parameters:
      organization - Organization to be removed.
      Returns:
      true if the organization was removed, false otherwise
      Throws:
      ModelException - if the organization doesn't exist or doesn't belong to the realm.

    • removeAll

      void removeAll()
      Removes all organizations from the realm.

    • addMember

      boolean addMember(OrganizationModel organization, UserModel user)
      Adds the given UserModel as a member of the given OrganizationModel.
      Parameters:
      organization - the organization
      user - the user
      Returns:
      true if the user was added as a member. Otherwise, returns false
      Throws:
      ModelException - if the UserModel is member of different organization

    • getMembersStream

      Stream<UserModel> getMembersStream(OrganizationModel organization, String search, Boolean exact, Integer first, Integer max)
      Returns the members of a given OrganizationModel filtered according to the specified parameters.
      Parameters:
      organization - the organization
      Returns:
      Stream of the members. Never returns null.

    • getMemberById

      UserModel getMemberById(OrganizationModel organization, String id)
      Returns the member of the OrganizationModel by its id.
      Parameters:
      organization - the organization
      id - the member id
      Returns:
      the member of the OrganizationModel with the given id

    • getByMember

      OrganizationModel getByMember(UserModel member)
      Returns the OrganizationModel that the member belongs to.
      Parameters:
      member - the member of a organization
      Returns:
      the organization the member belongs to or null if the user doesn't belong to any.

    • addIdentityProvider

      boolean addIdentityProvider(OrganizationModel organization, IdentityProviderModel identityProvider)
      Associate the given IdentityProviderModel with the given OrganizationModel.
      Parameters:
      organization - the organization
      identityProvider - the identityProvider
      Returns:
      true if the identityProvider was associated with the organization. Otherwise, returns false

    • getIdentityProviders

      Stream<IdentityProviderModel> getIdentityProviders(OrganizationModel organization)
      Parameters:
      organization - the organization
      Returns:
      The identityProvider associated with a given organization or null if there is none.

    • removeIdentityProvider

      boolean removeIdentityProvider(OrganizationModel organization, IdentityProviderModel identityProvider)
      Removes the link between the given OrganizationModel and identity provider associated with it if such a link exists.
      Parameters:
      organization - the organization
      identityProvider - the identity provider
      Returns:
      true if the link was removed, false otherwise

    • isEnabled

      boolean isEnabled()
      Indicates if the current realm supports organization.
      Returns:
      true if organization is supported. Otherwise, returns false

    • isManagedMember

      boolean isManagedMember(OrganizationModel organization, UserModel member)

      Indicates if the given member is managed by the organization.

      A member is managed by the organization whenever the member cannot exist without the organization they belong to so that their lifecycle is bound to the organization lifecycle. For instance, when a member is federated from the identity provider associated with an organization, there is a strong relationship between the member identity and the organization.

      On the other hand, existing realm users whose identities are not intrinsically linked to an organization but are eventually joining an organization are not managed by the organization. They have a lifecycle that does not depend on the organization they are linked to.

      Parameters:
      organization - the organization
      member - the member
      Returns:
      true if the member is managed by the given organization. Otherwise, returns false

    • removeMember

      boolean removeMember(OrganizationModel organization, UserModel member)

      Removes a member from the organization.

      This method can either remove the given member entirely from the realm (and the organization) or only remove the link to the organization so that the user still exists but is no longer a member of the organization. The decision to remove the user entirely or only the link depends on whether the user is managed by the organization or not, respectively.

      Parameters:
      organization - the organization
      member - the member
      Returns:
      true if the given member is a member and was successfully removed from the organization. Otherwise, returns false

    • count

      long count()
      Returns number of organizations in the realm.
      Returns:
      long Number of organizations