Package org.keycloak.authentication
Class AuthenticationProcessor
java.lang.Object
org.keycloak.authentication.AuthenticationProcessor
- Direct Known Subclasses:
ResetCredentialsActionTokenHandler.ResetCredsAuthenticationProcessor
- Version:
- $Revision: 1 $
- Author:
- Bill Burke
-
Nested Class Summary
-
Field Summary
Modifier and TypeFieldDescriptionprotected Runnable
protected AuthenticationSessionModel
static final String
static final String
protected boolean
protected ClientModel
protected ClientConnection
static final String
static final String
protected EventBuilder
protected String
protected String
static final String
static final String
protected org.keycloak.authentication.AuthenticationProcessor.ForwardedFormMessageStore
This could be an error message forwarded from another authenticatorprotected org.keycloak.authentication.AuthenticationProcessor.ForwardedFormMessageStore
This could be an success message forwarded from another authenticatorprotected org.keycloak.authentication.AuthenticationProcessor.ForwardedFormMessageStore
This could be an success message forwarded from another authenticatorstatic final String
protected static final org.jboss.logging.Logger
protected BruteForceProtector
protected RealmModel
protected HttpRequest
protected KeycloakSession
protected jakarta.ws.rs.core.UriInfo
protected UserSessionModel
-
Constructor Summary
-
Method Summary
Modifier and TypeMethodDescriptionstatic ClientSessionContext
attachSession
(AuthenticationSessionModel authSession, UserSessionModel userSession, KeycloakSession session, RealmModel realm, ClientConnection connection, EventBuilder event) jakarta.ws.rs.core.Response
jakarta.ws.rs.core.Response
jakarta.ws.rs.core.Response
jakarta.ws.rs.core.Response
authenticationAction
(String execution) protected jakarta.ws.rs.core.Response
void
static AuthenticationSessionModel
clone
(KeycloakSession session, AuthenticationSessionModel authSession) createAuthenticatorContext
(AuthenticationExecutionModel model, Authenticator authenticator, List<AuthenticationExecutionModel> executions) createClientAuthenticatorContext
(AuthenticationExecutionModel model, ClientAuthenticator clientAuthenticator, List<AuthenticationExecutionModel> executions) createFlowExecution
(String flowId, AuthenticationExecutionModel execution) void
jakarta.ws.rs.core.Response
finishAuthentication
(LoginProtocol protocol) static String
getClientData
(KeycloakSession session, AuthenticationSessionModel authSession) getEvent()
getRealm()
getRefreshUrl
(boolean authSessionIdParam) jakarta.ws.rs.core.UriInfo
jakarta.ws.rs.core.Response
handleBrowserException
(Exception failure) jakarta.ws.rs.core.Response
jakarta.ws.rs.core.Response
handleClientAuthException
(Exception failure) boolean
boolean
void
newEvent()
static AuthenticationSessionModel
recreate
(KeycloakSession session, AuthenticationSessionModel authSession) jakarta.ws.rs.core.Response
void
static void
resetFlow
(AuthenticationSessionModel authSession, String flowPath) setAuthenticationSession
(AuthenticationSessionModel authenticationSession) void
setAutheticatedUser
(UserModel user) setBrowserFlow
(boolean browserFlow) void
setClient
(ClientModel client) setConnection
(ClientConnection connection) setEventBuilder
(EventBuilder eventBuilder) setFlowPath
(String flowPath) This is the path segment to append when generating an action URL.setForwardedErrorMessage
(FormMessage forwardedErrorMessage) setForwardedInfoMessage
(FormMessage forwardedInfoMessage) setForwardedSuccessMessage
(FormMessage forwardedSuccessMessage) setRealm
(RealmModel realm) setRequest
(HttpRequest request) setSession
(KeycloakSession session) setUriInfo
(jakarta.ws.rs.core.UriInfo uriInfo) void
validateUser
(UserModel authenticatedUser)
-
Field Details
-
CURRENT_AUTHENTICATION_EXECUTION
- See Also:
-
LAST_PROCESSED_EXECUTION
- See Also:
-
CURRENT_FLOW_PATH
- See Also:
-
FORKED_FROM
- See Also:
-
BROKER_SESSION_ID
- See Also:
-
BROKER_USER_ID
- See Also:
-
FORWARDED_PASSIVE_LOGIN
- See Also:
-
logger
protected static final org.jboss.logging.Logger logger -
realm
-
userSession
-
authenticationSession
-
connection
-
uriInfo
protected jakarta.ws.rs.core.UriInfo uriInfo -
session
-
event
-
request
-
flowId
-
flowPath
-
browserFlow
protected boolean browserFlow -
protector
-
afterResetListener
-
forwardedErrorMessageStore
protected org.keycloak.authentication.AuthenticationProcessor.ForwardedFormMessageStore forwardedErrorMessageStoreThis could be an error message forwarded from another authenticator -
forwardedSuccessMessageStore
protected org.keycloak.authentication.AuthenticationProcessor.ForwardedFormMessageStore forwardedSuccessMessageStoreThis could be an success message forwarded from another authenticator -
forwardedInfoMessageStore
protected org.keycloak.authentication.AuthenticationProcessor.ForwardedFormMessageStore forwardedInfoMessageStoreThis could be an success message forwarded from another authenticator -
client
-
clientAuthAttributes
-
-
Constructor Details
-
AuthenticationProcessor
public AuthenticationProcessor()
-
-
Method Details
-
isBrowserFlow
public boolean isBrowserFlow() -
setBrowserFlow
-
getBruteForceProtector
-
getRealm
-
getClient
-
setClient
-
getClientAuthAttributes
-
getAuthenticationSession
-
getConnection
-
getUriInfo
public jakarta.ws.rs.core.UriInfo getUriInfo() -
getSession
-
getUserSession
-
setRealm
-
setAuthenticationSession
public AuthenticationProcessor setAuthenticationSession(AuthenticationSessionModel authenticationSession) -
setConnection
-
setUriInfo
-
setSession
-
setEventBuilder
-
setRequest
-
setFlowId
-
setFlowPath
This is the path segment to append when generating an action URL.- Parameters:
flowPath
-
-
setForwardedErrorMessage
-
setForwardedSuccessMessage
-
setForwardedInfoMessage
-
generateCode
-
newEvent
-
getEvent
-
getRequest
-
getFlowPath
-
setAutheticatedUser
-
clearAuthenticatedUser
public void clearAuthenticatedUser() -
getClientData
-
getRefreshUrl
-
logFailure
public void logFailure() -
isSuccessful
-
handleBrowserExceptionList
-
handleBrowserException
-
handleClientAuthException
-
createFlowExecution
public AuthenticationFlow createFlowExecution(String flowId, AuthenticationExecutionModel execution) -
authenticate
- Throws:
AuthenticationFlowException
-
authenticateClient
- Throws:
AuthenticationFlowException
-
redirectToFlow
public jakarta.ws.rs.core.Response redirectToFlow() -
resetFlow
public void resetFlow() -
resetFlow
-
recreate
public static AuthenticationSessionModel recreate(KeycloakSession session, AuthenticationSessionModel authSession) -
clone
public static AuthenticationSessionModel clone(KeycloakSession session, AuthenticationSessionModel authSession) -
authenticationAction
-
authenticateOnly
- Throws:
AuthenticationFlowException
-
attachSession
-
attachSession
public static ClientSessionContext attachSession(AuthenticationSessionModel authSession, UserSessionModel userSession, KeycloakSession session, RealmModel realm, ClientConnection connection, EventBuilder event) -
evaluateRequiredActionTriggers
public void evaluateRequiredActionTriggers() -
finishAuthentication
-
validateUser
-
authenticationComplete
protected jakarta.ws.rs.core.Response authenticationComplete() -
nextRequiredAction
-
createAuthenticatorContext
public AuthenticationProcessor.Result createAuthenticatorContext(AuthenticationExecutionModel model, Authenticator authenticator, List<AuthenticationExecutionModel> executions) -
createClientAuthenticatorContext
public AuthenticationProcessor.Result createClientAuthenticatorContext(AuthenticationExecutionModel model, ClientAuthenticator clientAuthenticator, List<AuthenticationExecutionModel> executions)
-