Uses of Interface
org.keycloak.models.AuthenticatedClientSessionModel
Package
Description
-
Uses of AuthenticatedClientSessionModel in org.keycloak.authentication.authenticators.util
Modifier and TypeMethodDescriptionstatic int
AcrStore.getCurrentLevelOfAuthentication
(AuthenticatedClientSessionModel clientSession) static int
LoAUtil.getCurrentLevelOfAuthentication
(AuthenticatedClientSessionModel clientSession) -
Uses of AuthenticatedClientSessionModel in org.keycloak.jose.jws
Modifier and TypeMethodDescriptionDefaultTokenManager.initLogoutToken
(ClientModel client, UserModel user, AuthenticatedClientSessionModel clientSession) -
Uses of AuthenticatedClientSessionModel in org.keycloak.models
Modifier and TypeMethodDescriptionUserSessionProvider.createClientSession
(RealmModel realm, ClientModel client, UserSessionModel userSession) UserSessionProvider.createOfflineClientSession
(AuthenticatedClientSessionModel clientSession, UserSessionModel offlineUserSession) Will automatically attach newly created offline client session to the offlineUserSessiondefault AuthenticatedClientSessionModel
UserSessionModel.getAuthenticatedClientSessionByClient
(String clientUUID) Returns a client session for the given client UUID.ClientSessionContext.getClientSession()
UserSessionProvider.getClientSession
(UserSessionModel userSession, ClientModel client, String clientSessionId, boolean offline) default AuthenticatedClientSessionModel
UserSessionProvider.getClientSession
(UserSessionModel userSession, ClientModel client, UUID clientSessionId, boolean offline) Deprecated.Modifier and TypeMethodDescriptionUserSessionModel.getAuthenticatedClientSessions()
Returns map where key is ID of the client (its UUID) and value is ID respectiveAuthenticatedClientSessionModel
object.Modifier and TypeMethodDescriptionUserSessionProvider.createOfflineClientSession
(AuthenticatedClientSessionModel clientSession, UserSessionModel offlineUserSession) Will automatically attach newly created offline client session to the offlineUserSessionTokenManager.initLogoutToken
(ClientModel client, UserModel user, AuthenticatedClientSessionModel clientSessionModel) -
Uses of AuthenticatedClientSessionModel in org.keycloak.models.jpa.session
Modifier and TypeMethodDescriptionJpaUserSessionPersisterProvider.loadClientSession
(RealmModel realm, ClientModel client, UserSessionModel userSession, boolean offline) Modifier and TypeMethodDescriptionvoid
JpaUserSessionPersisterProvider.createClientSession
(AuthenticatedClientSessionModel clientSession, boolean offline) -
Uses of AuthenticatedClientSessionModel in org.keycloak.models.session
Modifier and TypeMethodDescriptionDisabledUserSessionPersisterProvider.loadClientSession
(RealmModel realm, ClientModel client, UserSessionModel userSession, boolean offline) UserSessionPersisterProvider.loadClientSession
(RealmModel realm, ClientModel client, UserSessionModel userSession, boolean offline) Loads client session from the db by provided user session and client.Modifier and TypeMethodDescriptionvoid
DisabledUserSessionPersisterProvider.createClientSession
(AuthenticatedClientSessionModel clientSession, boolean offline) void
UserSessionPersisterProvider.createClientSession
(AuthenticatedClientSessionModel clientSession, boolean offline) ModifierConstructorDescriptionPersistentAuthenticatedClientSessionAdapter
(KeycloakSession session, AuthenticatedClientSessionModel clientSession) ModifierConstructorDescriptionPersistentUserSessionAdapter
(KeycloakSession session, PersistentUserSessionModel model, RealmModel realm, String userId, Map<String, AuthenticatedClientSessionModel> clientSessions) -
Uses of AuthenticatedClientSessionModel in org.keycloak.models.sessions.infinispan
Modifier and TypeMethodDescriptionInfinispanUserSessionProvider.createClientSession
(RealmModel realm, ClientModel client, UserSessionModel userSession) PersistentUserSessionProvider.createClientSession
(RealmModel realm, ClientModel client, UserSessionModel userSession) InfinispanUserSessionProvider.createOfflineClientSession
(AuthenticatedClientSessionModel clientSession, UserSessionModel offlineUserSession) PersistentUserSessionProvider.createOfflineClientSession
(AuthenticatedClientSessionModel clientSession, UserSessionModel offlineUserSession) UserSessionAdapter.getAuthenticatedClientSessionByClient
(String clientUUID) Modifier and TypeMethodDescriptionInfinispanUserSessionProvider.createOfflineClientSession
(AuthenticatedClientSessionModel clientSession, UserSessionModel offlineUserSession) PersistentUserSessionProvider.createOfflineClientSession
(AuthenticatedClientSessionModel clientSession, UserSessionModel offlineUserSession) -
Uses of AuthenticatedClientSessionModel in org.keycloak.models.utils
Modifier and TypeMethodDescriptionUserSessionModelDelegate.getAuthenticatedClientSessionByClient
(String clientUUID) -
Uses of AuthenticatedClientSessionModel in org.keycloak.organization.protocol.mappers.saml
Modifier and TypeMethodDescriptionvoid
OrganizationMembershipMapper.transformAttributeStatement
(AttributeStatementType attributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) -
Uses of AuthenticatedClientSessionModel in org.keycloak.protocol
Modifier and TypeMethodDescriptionjakarta.ws.rs.core.Response
LoginProtocol.backchannelLogout
(UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) jakarta.ws.rs.core.Response
LoginProtocol.frontchannelLogout
(UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) -
Uses of AuthenticatedClientSessionModel in org.keycloak.protocol.docker
Modifier and TypeMethodDescriptionjakarta.ws.rs.core.Response
DockerAuthV2Protocol.backchannelLogout
(UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) jakarta.ws.rs.core.Response
DockerAuthV2Protocol.frontchannelLogout
(UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) -
Uses of AuthenticatedClientSessionModel in org.keycloak.protocol.docker.mapper
Modifier and TypeMethodDescriptionAllowAllDockerProtocolMapper.transformDockerResponseToken
(DockerResponseToken responseToken, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) DockerAuthV2AttributeMapper.transformDockerResponseToken
(DockerResponseToken responseToken, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) -
Uses of AuthenticatedClientSessionModel in org.keycloak.protocol.oidc
Modifier and TypeMethodDescriptionjakarta.ws.rs.core.Response
OIDCLoginProtocol.backchannelLogout
(UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) static FrontChannelLogoutHandler
FrontChannelLogoutHandler.currentOrCreate
(KeycloakSession session, AuthenticatedClientSessionModel clientSession) static void
TokenManager.dettachClientSession
(AuthenticatedClientSessionModel clientSession) jakarta.ws.rs.core.Response
OIDCLoginProtocol.frontchannelLogout
(UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) TokenManager.AccessTokenResponseBuilder.generateRefreshToken
(RefreshToken oldRefreshToken, AuthenticatedClientSessionModel clientSession) -
Uses of AuthenticatedClientSessionModel in org.keycloak.protocol.oidc.endpoints
Modifier and TypeMethodDescriptionprotected jakarta.ws.rs.core.Response
TokenEndpoint.TokenExchangeSamlProtocol.buildAuthenticatedResponse
(AuthenticatedClientSessionModel clientSession, String redirectUri, Document samlDocument, JaxrsSAML2BindingBuilder bindingBuilder) -
Uses of AuthenticatedClientSessionModel in org.keycloak.protocol.oidc.grants
Modifier and TypeMethodDescriptionstatic String
PreAuthorizedCodeGrantType.getPreAuthorizedCode
(KeycloakSession session, AuthenticatedClientSessionModel authenticatedClientSession, int expirationTime) Create a pre-authorized Code for the given client session.protected void
OAuth2GrantTypeBase.updateClientSession
(AuthenticatedClientSessionModel clientSession) -
Uses of AuthenticatedClientSessionModel in org.keycloak.protocol.oidc.grants.device
Modifier and TypeMethodDescriptionstatic jakarta.ws.rs.core.Response
DeviceGrantType.approveOAuth2DeviceAuthorization
(AuthenticationSessionModel authSession, AuthenticatedClientSessionModel clientSession, KeycloakSession session) -
Uses of AuthenticatedClientSessionModel in org.keycloak.protocol.oidc.grants.device.clientpolicy.context
ModifierConstructorDescriptionDeviceTokenResponseContext
(OAuth2DeviceCodeModel deviceCodeModel, jakarta.ws.rs.core.MultivaluedMap<String, String> requestParameters, AuthenticatedClientSessionModel clientSession, TokenManager.AccessTokenResponseBuilder accessTokenResponseBuilder) -
Uses of AuthenticatedClientSessionModel in org.keycloak.protocol.oidc.mappers
Modifier and TypeMethodDescriptionprotected String
AcrProtocolMapper.getAcr
(AuthenticatedClientSessionModel clientSession) AmrProtocolMapper.getAmr
(AuthenticatedClientSessionModel clientSession, RealmModel realmModel) Extract the AMR values from the existing session. -
Uses of AuthenticatedClientSessionModel in org.keycloak.protocol.oidc.utils
Modifier and TypeMethodDescriptionstatic OIDCRedirectUriBuilder
OIDCRedirectUriBuilder.fromUri
(String baseUri, OIDCResponseMode responseMode, KeycloakSession session, AuthenticatedClientSessionModel clientSession) static String
OAuth2CodeParser.persistCode
(KeycloakSession session, AuthenticatedClientSessionModel clientSession, OAuth2Code codeData) Will persist the code to the cache and return the object with the codeData and code correctly set -
Uses of AuthenticatedClientSessionModel in org.keycloak.protocol.saml
Modifier and TypeMethodDescriptionSamlSessionUtils.getClientSession
(KeycloakSession session, RealmModel realm, String sessionIndex) Modifier and TypeMethodDescriptionjakarta.ws.rs.core.Response
SamlProtocol.backchannelLogout
(UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) ArtifactResolver.buildArtifact
(AuthenticatedClientSessionModel clientSessionModel, String entityId, String artifactResponse) Creates and stores an artifactDefaultSamlArtifactResolver.buildArtifact
(AuthenticatedClientSessionModel clientSessionModel, String entityId, String artifactResponse) protected String
SamlProtocol.buildArtifactAndStoreResponse
(SAML2Object saml2Object, AuthenticatedClientSessionModel clientSessionModel) protected jakarta.ws.rs.core.Response
SamlProtocol.buildArtifactAuthenticatedResponse
(AuthenticatedClientSessionModel clientSession, String redirectUri, SAML2Object samlDocument, JaxrsSAML2BindingBuilder bindingBuilder) This method, instead of sending the actual response with the token sends the artifact message via post or redirect.protected jakarta.ws.rs.core.Response
SamlProtocol.buildAuthenticatedResponse
(AuthenticatedClientSessionModel clientSession, String redirectUri, Document samlDocument, JaxrsSAML2BindingBuilder bindingBuilder) protected LogoutRequestType
SamlProtocol.createLogoutRequest
(String logoutUrl, AuthenticatedClientSessionModel clientSession, ClientModel client, SamlProtocolExtensionsAwareBuilder.NodeGenerator... extensions) jakarta.ws.rs.core.Response
SamlProtocol.frontchannelLogout
(UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) protected String
SamlProtocol.getSAMLNameId
(List<SamlProtocol.ProtocolMapperProcessor<SAMLNameIdMapper>> samlNameIdMappers, String nameIdFormat, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) static String
SamlSessionUtils.getSessionIndex
(AuthenticatedClientSessionModel clientSession) protected boolean
SamlProtocol.isLogoutPostBindingForClient
(AuthenticatedClientSessionModel clientSession) protected boolean
SamlProtocol.isPostBinding
(AuthenticatedClientSessionModel clientSession) SamlProtocol.populateAttributeStatements
(List<SamlProtocol.ProtocolMapperProcessor<SAMLAttributeStatementMapper>> attributeStatementMappers, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) ArtifactResolver.resolveArtifact
(AuthenticatedClientSessionModel clientSessionModel, String artifact) Returns a serialized Saml ArtifactResponse corresponding to the artifact that was created bybuildArtifact
DefaultSamlArtifactResolver.resolveArtifact
(AuthenticatedClientSessionModel clientSessionModel, String artifact) -
Uses of AuthenticatedClientSessionModel in org.keycloak.protocol.saml.mappers
Modifier and TypeMethodDescriptionSAMLNameIdMapper.mapperNameId
(String nameIdFormat, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) UserAttributeNameIdMapper.mapperNameId
(String nameIdFormat, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) void
GroupMembershipMapper.transformAttributeStatement
(AttributeStatementType attributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) void
HardcodedAttributeMapper.transformAttributeStatement
(AttributeStatementType attributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) void
SAMLAttributeStatementMapper.transformAttributeStatement
(AttributeStatementType attributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) void
ScriptBasedMapper.transformAttributeStatement
(AttributeStatementType attributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) This method attaches one or many attributes to the passed attribute statement.void
UserAttributeStatementMapper.transformAttributeStatement
(AttributeStatementType attributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) void
UserPropertyAttributeStatementMapper.transformAttributeStatement
(AttributeStatementType attributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) void
UserSessionNoteStatementMapper.transformAttributeStatement
(AttributeStatementType attributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) -
Uses of AuthenticatedClientSessionModel in org.keycloak.protocol.saml.preprocessor
Modifier and TypeMethodDescriptiondefault LogoutRequestType
SamlAuthenticationPreprocessor.beforeProcessingLogoutRequest
(LogoutRequestType logoutRequest, UserSessionModel authSession, AuthenticatedClientSessionModel clientSession) Called before a logout request is processed.default LogoutRequestType
SamlAuthenticationPreprocessor.beforeSendingLogoutRequest
(LogoutRequestType logoutRequest, UserSessionModel authSession, AuthenticatedClientSessionModel clientSession) Called before a logout request is sent.default StatusResponseType
SamlAuthenticationPreprocessor.beforeSendingResponse
(StatusResponseType statusResponse, AuthenticatedClientSessionModel clientSession) Called before a response is sent back to the client. -
Uses of AuthenticatedClientSessionModel in org.keycloak.services.clientpolicy.context
Modifier and TypeMethodDescriptionServiceAccountTokenRequestContext.getClientSession()
ServiceAccountTokenResponseContext.getClientSession()
ModifierConstructorDescriptionServiceAccountTokenRequestContext
(jakarta.ws.rs.core.MultivaluedMap<String, String> params, AuthenticatedClientSessionModel clientSession) ServiceAccountTokenResponseContext
(jakarta.ws.rs.core.MultivaluedMap<String, String> params, AuthenticatedClientSessionModel clientSession, TokenManager.AccessTokenResponseBuilder accessTokenResponseBuilder) -
Uses of AuthenticatedClientSessionModel in org.keycloak.services.managers
Modifier and TypeMethodDescriptionvoid
UserSessionManager.createOrUpdateOfflineSession
(AuthenticatedClientSessionModel clientSession, UserSessionModel userSession) static boolean
AuthenticationManager.isClientSessionValid
(RealmModel realm, ClientModel client, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) static boolean
AuthenticationManager.isSSOAuthentication
(AuthenticatedClientSessionModel clientSession) jakarta.ws.rs.core.Response
ResourceAdminManager.logoutClientSession
(RealmModel realm, ClientModel resource, AuthenticatedClientSessionModel clientSession) jakarta.ws.rs.core.Response
ResourceAdminManager.logoutClientSessionWithBackchannelLogoutUrl
(ClientModel resource, AuthenticatedClientSessionModel clientSession) protected jakarta.ws.rs.core.Response
ResourceAdminManager.sendBackChannelLogoutRequestToClientUri
(ClientModel resource, AuthenticatedClientSessionModel clientSessionModel, String managementUrl) void
Auth.setClientSession
(AuthenticatedClientSessionModel clientSession) Modifier and TypeMethodDescriptionprotected jakarta.ws.rs.core.Response
ResourceAdminManager.logoutClientSessions
(RealmModel realm, ClientModel resource, List<AuthenticatedClientSessionModel> clientSessions) -
Uses of AuthenticatedClientSessionModel in org.keycloak.services.util
Modifier and TypeMethodDescriptionstatic DefaultClientSessionContext
DefaultClientSessionContext.fromClientSessionAndClientScopeIds
(AuthenticatedClientSessionModel clientSession, Set<String> clientScopeIds, KeycloakSession session) static DefaultClientSessionContext
DefaultClientSessionContext.fromClientSessionAndScopeParameter
(AuthenticatedClientSessionModel clientSession, String scopeParam, KeycloakSession session) static DefaultClientSessionContext
DefaultClientSessionContext.fromClientSessionScopeParameter
(AuthenticatedClientSessionModel clientSession, KeycloakSession session) Useful if we want to "re-compute" client scopes based on the scope parameter
UserSessionProvider.getClientSession(UserSessionModel, ClientModel, String, boolean)
instead.