Package org.keycloak.organization.authentication.authenticators.browser

Class OrganizationAuthenticator

java.lang.Object

org.keycloak.authentication.authenticators.browser.IdentityProviderAuthenticator

org.keycloak.organization.authentication.authenticators.browser.OrganizationAuthenticator

All Implemented Interfaces:

Authenticator, Provider

public class OrganizationAuthenticator
extends IdentityProviderAuthenticator

Field Summary

Fields inherited from class org.keycloak.authentication.authenticators.browser.IdentityProviderAuthenticator

ACCEPTS_PROMPT_NONE

Constructor Summary

Constructors

Constructor	Description
OrganizationAuthenticator(KeycloakSession session)

Method Summary

Modifier and Type	Method	Description
void	action(AuthenticationFlowContext context)	Called from a form action invocation.
void	authenticate(AuthenticationFlowContext context)	Initial call for the authenticator.
boolean	configuredFor(KeycloakSession session, RealmModel realm, UserModel user)	Is this authenticator configured for this user.
protected boolean	redirect(AuthenticationFlowContext context, List<IdentityProviderModel> brokers, String username, String emailDomain)

Methods inherited from class org.keycloak.authentication.authenticators.browser.IdentityProviderAuthenticator

close, redirect, redirect, requiresUser, setRequiredActions

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface org.keycloak.authentication.Authenticator

areRequiredActionsEnabled, getRequiredActions

Constructor Details

OrganizationAuthenticator

public OrganizationAuthenticator(KeycloakSession session)

Method Details

authenticate

public void authenticate(AuthenticationFlowContext context)

Description copied from interface: Authenticator

Initial call for the authenticator. This method should check the current HTTP request to determine if the request satisfies the Authenticator's requirements. If it doesn't, it should send back a challenge response by calling the AuthenticationFlowContext.challenge(Response). If this challenge is a authentication, the action URL of the form must point to /realms/{realm}/login-actions/authenticate?code={session-code}&execution={executionId} or /realms/{realm}/login-actions/registration?code={session-code}&execution={executionId} {session-code} pertains to the code generated from AuthenticationFlowContext.generateAccessCode(). The {executionId} pertains to the AuthenticationExecutionModel.getId() value obtained from AuthenticationFlowContext.getExecution(). The action URL will invoke the action() method described below.

Specified by:

authenticate in interface Authenticator

Overrides:

authenticate in class IdentityProviderAuthenticator

action

public void action(AuthenticationFlowContext context)

Description copied from interface: Authenticator

Called from a form action invocation.

Specified by:

action in interface Authenticator

Overrides:

action in class IdentityProviderAuthenticator

configuredFor

public boolean configuredFor(KeycloakSession session,
 RealmModel realm,
 UserModel user)

Description copied from interface: Authenticator

Is this authenticator configured for this user.

Specified by:

configuredFor in interface Authenticator

Overrides:

configuredFor in class IdentityProviderAuthenticator

Returns:

redirect

protected boolean redirect(AuthenticationFlowContext context,
 List<IdentityProviderModel> brokers,
 String username,
 String emailDomain)