Uses of Interface
org.keycloak.models.KeycloakSession
Package
Description
Fine-grained Authorization SPI.
-
Uses of KeycloakSession in org.keycloak.authentication
Modifier and TypeFieldDescriptionprotected KeycloakSession
AuthenticationProcessor.session
protected KeycloakSession
RequiredActionContextResult.session
Modifier and TypeMethodDescriptionAbstractAuthenticationFlowContext.getSession()
Current sessionAuthenticationProcessor.getSession()
AuthenticationProcessor.Result.getSession()
FormContext.getSession()
Current sessionRequiredActionContext.getSession()
RequiredActionContextResult.getSession()
Modifier and TypeMethodDescriptiondefault boolean
Authenticator.areRequiredActionsEnabled
(KeycloakSession session, RealmModel realm) Checks if all required actions are configured in the realm and are enabledstatic ClientSessionContext
AuthenticationProcessor.attachSession
(AuthenticationSessionModel authSession, UserSessionModel userSession, KeycloakSession session, RealmModel realm, ClientConnection connection, EventBuilder event) static AuthenticationSessionModel
AuthenticationProcessor.clone
(KeycloakSession session, AuthenticationSessionModel authSession) boolean
Authenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) Is this authenticator configured for this user.boolean
FormAction.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) Is this FormAction configured for the current user?static String
AuthenticationProcessor.getClientData
(KeycloakSession session, AuthenticationSessionModel authSession) CredentialValidator.getCredentialProvider
(KeycloakSession session) static Stream<CredentialProvider>
AuthenticatorUtil.getCredentialProviders
(KeycloakSession session) default List<CredentialModel>
CredentialValidator.getCredentials
(KeycloakSession session, RealmModel realm, UserModel user) CredentialAction.getCredentialType
(KeycloakSession session, AuthenticationSessionModel authenticationSession) default List<RequiredActionFactory>
Authenticator.getRequiredActions
(KeycloakSession session) Overwrite this if the authenticator is associated withdefault String
CredentialValidator.getType
(KeycloakSession session) default void
RequiredActionProvider.initiatedActionCanceled
(KeycloakSession session, AuthenticationSessionModel authSession) Callback to let the action know that an application-initiated action was canceled.static AuthenticationSessionModel
AuthenticationProcessor.recreate
(KeycloakSession session, AuthenticationSessionModel authSession) void
Authenticator.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) Set actions to configure authenticatorvoid
FormAction.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) Set actions to configure authenticatorAuthenticationProcessor.setSession
(KeycloakSession session) default void
RequiredActionFactory.validateConfig
(KeycloakSession session, RealmModel realm, RequiredActionConfigModel model) Allows users to validate the provided configuration for this required action.ModifierConstructorDescriptionAuthenticationSelectionOption
(KeycloakSession session, AuthenticationExecutionModel authExec) RequiredActionContextResult
(AuthenticationSessionModel authSession, RealmModel realm, EventBuilder eventBuilder, KeycloakSession session, HttpRequest httpRequest, UserModel user, RequiredActionFactory factory) -
Uses of KeycloakSession in org.keycloak.authentication.actiontoken
Modifier and TypeMethodDescriptionAbstractActionTokenHandler.create
(KeycloakSession session) DefaultActionToken.serialize
(KeycloakSession session, RealmModel realm, jakarta.ws.rs.core.UriInfo uri) Updates the following fields and serializes this token into a signed JWT.ModifierConstructorDescriptionActionTokenContext
(KeycloakSession session, RealmModel realm, jakarta.ws.rs.core.UriInfo uriInfo, ClientConnection clientConnection, HttpRequest request, EventBuilder event, ActionTokenHandler<T> handler, String executionId, String clientData, ActionTokenContext.ProcessAuthenticateFlow processFlow, ActionTokenContext.ProcessBrokerFlow processBrokerFlow) -
Uses of KeycloakSession in org.keycloak.authentication.authenticators
Modifier and TypeMethodDescriptionboolean
AttemptedAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) void
AttemptedAuthenticator.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) -
Uses of KeycloakSession in org.keycloak.authentication.authenticators.access
Modifier and TypeMethodDescriptionboolean
AllowAccessAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) boolean
DenyAccessAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) AllowAccessAuthenticatorFactory.create
(KeycloakSession session) DenyAccessAuthenticatorFactory.create
(KeycloakSession session) void
AllowAccessAuthenticator.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) void
DenyAccessAuthenticator.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) -
Uses of KeycloakSession in org.keycloak.authentication.authenticators.broker
Modifier and TypeMethodDescriptionboolean
IdpAutoLinkAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) boolean
IdpConfirmLinkAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) boolean
IdpConfirmOverrideLinkAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) boolean
IdpCreateUserIfUniqueAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) boolean
IdpDetectExistingBrokerUserAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) boolean
IdpEmailVerificationAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) boolean
IdpReviewProfileAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) IdpAutoLinkAuthenticatorFactory.create
(KeycloakSession session) IdpConfirmLinkAuthenticatorFactory.create
(KeycloakSession session) IdpConfirmOverrideLinkAuthenticatorFactory.create
(KeycloakSession session) IdpCreateUserIfUniqueAuthenticatorFactory.create
(KeycloakSession session) IdpDetectExistingBrokerUserAuthenticatorFactory.create
(KeycloakSession session) IdpEmailVerificationAuthenticatorFactory.create
(KeycloakSession session) IdpReviewProfileAuthenticatorFactory.create
(KeycloakSession session) IdpUsernamePasswordFormFactory.create
(KeycloakSession session) static UserModel
AbstractIdpAuthenticator.getExistingUser
(KeycloakSession session, RealmModel realm, AuthenticationSessionModel authSession) void
AbstractIdpAuthenticator.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) -
Uses of KeycloakSession in org.keycloak.authentication.authenticators.broker.util
Modifier and TypeMethodDescriptionSerializedBrokeredIdentityContext.deserialize
(KeycloakSession session, AuthenticationSessionModel authSession) -
Uses of KeycloakSession in org.keycloak.authentication.authenticators.browser
Modifier and TypeMethodDescriptionboolean
CookieAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) boolean
IdentityProviderAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) boolean
OTPFormAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) boolean
PasswordForm.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) boolean
RecoveryAuthnCodesFormAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) boolean
ScriptBasedAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) boolean
SpnegoAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) boolean
UsernamePasswordForm.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) boolean
WebAuthnAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) ConditionalOtpFormAuthenticatorFactory.create
(KeycloakSession session) CookieAuthenticatorFactory.create
(KeycloakSession session) DeployedScriptAuthenticatorFactory.create
(KeycloakSession session) IdentityProviderAuthenticatorFactory.create
(KeycloakSession session) OTPFormAuthenticatorFactory.create
(KeycloakSession session) PasskeysConditionalUIAuthenticatorFactory.create
(KeycloakSession session) PasswordFormFactory.create
(KeycloakSession session) RecoveryAuthnCodesFormAuthenticatorFactory.create
(KeycloakSession keycloakSession) ScriptBasedAuthenticatorFactory.create
(KeycloakSession session) SpnegoAuthenticatorFactory.create
(KeycloakSession session) UsernameFormFactory.create
(KeycloakSession session) UsernamePasswordFormFactory.create
(KeycloakSession session) WebAuthnAuthenticatorFactory.create
(KeycloakSession session) WebAuthnPasswordlessAuthenticatorFactory.create
(KeycloakSession session) OTPFormAuthenticator.getCredentialProvider
(KeycloakSession session) PasswordForm.getCredentialProvider
(KeycloakSession session) WebAuthnAuthenticator.getCredentialProvider
(KeycloakSession session) WebAuthnPasswordlessAuthenticator.getCredentialProvider
(KeycloakSession session) OTPFormAuthenticator.getRequiredActions
(KeycloakSession session) WebAuthnAuthenticator.getRequiredActions
(KeycloakSession session) WebAuthnPasswordlessAuthenticator.getRequiredActions
(KeycloakSession session) void
ConditionalOtpFormAuthenticator.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) void
CookieAuthenticator.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) void
IdentityProviderAuthenticator.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) void
OTPFormAuthenticator.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) void
RecoveryAuthnCodesFormAuthenticator.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) void
ScriptBasedAuthenticator.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) void
SpnegoAuthenticator.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) void
UsernamePasswordForm.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) void
WebAuthnAuthenticator.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) void
WebAuthnPasswordlessAuthenticator.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) ModifierConstructorDescriptionRecoveryAuthnCodesFormAuthenticator
(KeycloakSession keycloakSession) WebAuthnAuthenticator
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.authentication.authenticators.client
-
Uses of KeycloakSession in org.keycloak.authentication.authenticators.conditional
Modifier and TypeMethodDescriptiondefault boolean
ConditionalAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) default Authenticator
ConditionalAuthenticatorFactory.create
(KeycloakSession session) ConditionalLoaAuthenticatorFactory.create
(KeycloakSession session) void
ConditionalLoaAuthenticator.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) void
ConditionalRoleAuthenticator.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) void
ConditionalUserAttributeValue.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) void
ConditionalUserConfiguredAuthenticator.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) -
Uses of KeycloakSession in org.keycloak.authentication.authenticators.directgrant
Modifier and TypeMethodDescriptionboolean
ValidateOTP.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) boolean
ValidatePassword.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) boolean
ValidateUsername.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) AbstractDirectGrantAuthenticator.create
(KeycloakSession session) ValidateOTP.getCredentialProvider
(KeycloakSession session) void
ValidateOTP.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) void
ValidatePassword.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) void
ValidateUsername.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) -
Uses of KeycloakSession in org.keycloak.authentication.authenticators.resetcred
Modifier and TypeMethodDescriptionboolean
AbstractSetRequiredActionAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) boolean
ResetCredentialChooseUser.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) boolean
ResetCredentialEmail.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) boolean
ResetOTP.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) AbstractSetRequiredActionAuthenticator.create
(KeycloakSession session) ResetCredentialChooseUser.create
(KeycloakSession session) ResetCredentialEmail.create
(KeycloakSession session) ResetOTP.getCredentialProvider
(KeycloakSession session) static Long
ResetCredentialEmail.getLastChangedTimestamp
(KeycloakSession session, RealmModel realm, UserModel user) void
AbstractSetRequiredActionAuthenticator.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) void
ResetCredentialChooseUser.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) void
ResetCredentialEmail.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) -
Uses of KeycloakSession in org.keycloak.authentication.authenticators.sessionlimits
Modifier and TypeFieldDescriptionprotected KeycloakSession
UserSessionLimitsAuthenticator.session
Modifier and TypeMethodDescriptionboolean
UserSessionLimitsAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) UserSessionLimitsAuthenticatorFactory.create
(KeycloakSession keycloakSession) void
UserSessionLimitsAuthenticator.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) -
Uses of KeycloakSession in org.keycloak.authentication.authenticators.util
Modifier and TypeMethodDescriptionLoAUtil.getCredentialTypesToLoAMap
(KeycloakSession session, RealmModel realm, AuthenticationFlowModel topFlow) Return map where: - keys are credential types corresponding to authenticators available in given authentication flow - values are LoA levels of those credentials in the given flow (If not step-up authentication is used, values will be always Constants.NO_LOA) For instance if we have password as level1 and OTP or WebAuthn as available level2 authenticators it can return map like: { "password" -> 1, "otp" -> 2 "webauthn" -> 2 }static String
AuthenticatorUtils.getDisabledByBruteForceEventError
(BruteForceProtector protector, KeycloakSession session, RealmModel realm, UserModel user) ModifierConstructorDescriptionAcrStore
(KeycloakSession session, AuthenticationSessionModel authSession) -
Uses of KeycloakSession in org.keycloak.authentication.authenticators.x509
Modifier and TypeMethodDescriptionAbstractX509ClientCertificateAuthenticator.certificateValidationParameters
(KeycloakSession session, X509AuthenticatorConfigModel config) boolean
AbstractX509ClientCertificateAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) ValidateX509CertificateUsernameFactory.create
(KeycloakSession session) X509ClientCertificateAuthenticatorFactory.create
(KeycloakSession session) CertificateValidator.CertificateValidatorBuilder.session
(KeycloakSession session) void
AbstractX509ClientCertificateAuthenticator.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) ModifierConstructorDescriptionprotected
CertificateValidator
(X509Certificate[] certChain, int keyUsageBits, List<String> extendedKeyUsage, List<String> certificatePolicy, String certificatePolicyMode, boolean cRLCheckingEnabled, boolean cRLDPCheckingEnabled, CertificateValidator.CRLLoaderImpl crlLoader, boolean oCSPCheckingEnabled, boolean ocspFailOpen, CertificateValidator.OCSPChecker ocspChecker, KeycloakSession session, boolean timestampValidationEnabled, boolean trustValidationEnabled) CRLFileLoader
(KeycloakSession session, String cRLPath) CRLFileLoader
(KeycloakSession session, String cRLPath, CertificateValidator.LdapContext ldapContext) CRLListLoader
(KeycloakSession session, String cRLConfigValue) -
Uses of KeycloakSession in org.keycloak.authentication.forms
Modifier and TypeMethodDescriptionboolean
AbstractRegistrationRecaptcha.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) boolean
RegistrationPassword.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) boolean
RegistrationTermsAndConditions.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) boolean
RegistrationUserCreation.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) AbstractRegistrationRecaptcha.create
(KeycloakSession session) RegistrationPage.create
(KeycloakSession session) RegistrationPassword.create
(KeycloakSession session) RegistrationTermsAndConditions.create
(KeycloakSession session) RegistrationUserCreation.create
(KeycloakSession session) void
AbstractRegistrationRecaptcha.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) void
RegistrationPassword.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) void
RegistrationTermsAndConditions.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) void
RegistrationUserCreation.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) -
Uses of KeycloakSession in org.keycloak.authentication.otp
Modifier and TypeMethodDescriptionFreeOTPProvider.create
(KeycloakSession session) GoogleAuthenticatorProvider.create
(KeycloakSession session) MicrosoftAuthenticatorOTPProvider.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.authentication.requiredactions
Modifier and TypeMethodDescriptionDeleteAccount.create
(KeycloakSession session) DeleteCredentialAction.create
(KeycloakSession session) RecoveryAuthnCodesAction.create
(KeycloakSession session) TermsAndConditions.create
(KeycloakSession session) UpdateEmail.create
(KeycloakSession session) UpdatePassword.create
(KeycloakSession session) UpdateProfile.create
(KeycloakSession session) UpdateTotp.create
(KeycloakSession session) UpdateUserLocaleAction.create
(KeycloakSession session) VerifyEmail.create
(KeycloakSession session) VerifyUserProfile.create
(KeycloakSession session) WebAuthnRegisterFactory.create
(KeycloakSession session) protected WebAuthnRegister
WebAuthnPasswordlessRegisterFactory.createProvider
(KeycloakSession session, com.webauthn4j.validator.attestation.trustworthiness.certpath.CertPathTrustworthinessValidator trustValidator) protected WebAuthnRegister
WebAuthnRegisterFactory.createProvider
(KeycloakSession session, com.webauthn4j.validator.attestation.trustworthiness.certpath.CertPathTrustworthinessValidator trustValidator) DeleteCredentialAction.getCredentialType
(KeycloakSession session, AuthenticationSessionModel authenticationSession) RecoveryAuthnCodesAction.getCredentialType
(KeycloakSession session, AuthenticationSessionModel authenticationSession) UpdateTotp.getCredentialType
(KeycloakSession session, AuthenticationSessionModel authenticationSession) WebAuthnRegister.getCredentialType
(KeycloakSession session, AuthenticationSessionModel authenticationSession) void
UpdatePassword.validateConfig
(KeycloakSession session, RealmModel realm, RequiredActionConfigModel model) static UserProfile
UpdateEmail.validateEmailUpdate
(KeycloakSession session, UserModel user, String newEmail) ModifierConstructorDescriptionUpdatePassword
(KeycloakSession session) WebAuthnPasswordlessRegister
(KeycloakSession session, com.webauthn4j.validator.attestation.trustworthiness.certpath.CertPathTrustworthinessValidator certPathtrustValidator) WebAuthnRegister
(KeycloakSession session, com.webauthn4j.validator.attestation.trustworthiness.certpath.CertPathTrustworthinessValidator certPathtrustValidator) -
Uses of KeycloakSession in org.keycloak.authentication.requiredactions.util
Modifier and TypeMethodDescriptionstatic CredentialModel
CredentialDeleteHelper.removeCredential
(KeycloakSession session, UserModel user, String credentialId, Supplier<Integer> currentLoAProvider) Removing credential of given ID of specified user.static boolean
RequiredActionsValidator.validRequiredActions
(KeycloakSession session, List<String> requiredActions) Validate provided required actions -
Uses of KeycloakSession in org.keycloak.authorization
Modifier and TypeMethodDescriptionAuthorizationProviderFactory.create
(KeycloakSession session, RealmModel realm) DefaultAuthorizationProviderFactory.create
(KeycloakSession session) DefaultAuthorizationProviderFactory.create
(KeycloakSession session, RealmModel realm) ModifierConstructorDescriptionAuthorizationProvider
(KeycloakSession session, RealmModel realm, PolicyEvaluator policyEvaluator) -
Uses of KeycloakSession in org.keycloak.authorization.admin
ModifierConstructorDescriptionAuthorizationService
(KeycloakSession session, ClientModel client, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) ResourceSetService
(KeycloakSession session, ResourceServer resourceServer, AuthorizationProvider authorization, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) ScopeService
(KeycloakSession session, ResourceServer resourceServer, AuthorizationProvider authorization, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) -
Uses of KeycloakSession in org.keycloak.authorization.common
Modifier and TypeFieldDescriptionprotected final KeycloakSession
DefaultEvaluationContext.keycloakSession
protected final KeycloakSession
KeycloakIdentity.keycloakSession
ModifierConstructorDescriptionClientModelIdentity
(KeycloakSession session, ClientModel client) ClientModelIdentity
(KeycloakSession session, ClientModel client, AccessToken token) DefaultEvaluationContext
(Identity identity, Map<String, List<String>> claims, KeycloakSession keycloakSession) DefaultEvaluationContext
(Identity identity, KeycloakSession keycloakSession) KeycloakIdentity
(KeycloakSession keycloakSession) KeycloakIdentity
(KeycloakSession keycloakSession, IDToken token) KeycloakIdentity
(AccessToken accessToken, KeycloakSession keycloakSession) KeycloakIdentity
(AccessToken accessToken, KeycloakSession keycloakSession, RealmModel realm) KeycloakIdentity
(IDToken token, KeycloakSession keycloakSession, RealmModel realm) -
Uses of KeycloakSession in org.keycloak.authorization.config
Modifier and TypeMethodDescriptionstatic final UmaConfiguration
UmaConfiguration.create
(KeycloakSession session) UmaWellKnownProviderFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.authorization.jpa.store
-
Uses of KeycloakSession in org.keycloak.authorization.policy.provider.aggregated
-
Uses of KeycloakSession in org.keycloak.authorization.policy.provider.client
-
Uses of KeycloakSession in org.keycloak.authorization.policy.provider.clientscope
Modifier and TypeMethodDescriptionClientScopePolicyProviderFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.authorization.policy.provider.group
-
Uses of KeycloakSession in org.keycloak.authorization.policy.provider.js
-
Uses of KeycloakSession in org.keycloak.authorization.policy.provider.permission
Modifier and TypeMethodDescriptionResourcePolicyProviderFactory.create
(KeycloakSession session) ScopePolicyProviderFactory.create
(KeycloakSession session) UMAPolicyProviderFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.authorization.policy.provider.regex
-
Uses of KeycloakSession in org.keycloak.authorization.policy.provider.role
-
Uses of KeycloakSession in org.keycloak.authorization.policy.provider.time
-
Uses of KeycloakSession in org.keycloak.authorization.policy.provider.user
-
Uses of KeycloakSession in org.keycloak.authorization.protection.introspect
Modifier and TypeMethodDescriptionRPTIntrospectionProviderFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.authorization.protection.resource
ModifierConstructorDescriptionResourceService
(KeycloakSession session, ResourceServer resourceServer, Identity identity, ResourceSetService resourceManager) -
Uses of KeycloakSession in org.keycloak.authorization.util
Modifier and TypeMethodDescriptionstatic AccessToken
Tokens.getAccessToken
(String accessToken, KeycloakSession keycloakSession) static AccessToken
Tokens.getAccessToken
(KeycloakSession keycloakSession) -
Uses of KeycloakSession in org.keycloak.broker.oidc
Modifier and TypeFieldDescriptionprotected final KeycloakSession
AbstractOAuth2IdentityProvider.Endpoint.session
Modifier and TypeMethodDescriptionvoid
OIDCIdentityProvider.backchannelLogout
(KeycloakSession session, UserSessionModel userSession, jakarta.ws.rs.core.UriInfo uriInfo, RealmModel realm) KeycloakOIDCIdentityProviderFactory.create
(KeycloakSession session, IdentityProviderModel model) OIDCIdentityProviderFactory.create
(KeycloakSession session, IdentityProviderModel model) protected SimpleHttp
OIDCIdentityProvider.getRefreshTokenRequest
(KeycloakSession session, String refreshToken, String clientId, String clientSecret) jakarta.ws.rs.core.Response
OIDCIdentityProvider.keycloakInitiatedBrowserLogout
(KeycloakSession session, UserSessionModel userSession, jakarta.ws.rs.core.UriInfo uriInfo, RealmModel realm) KeycloakOIDCIdentityProviderFactory.parseConfig
(KeycloakSession session, String config) OIDCIdentityProviderFactory.parseConfig
(KeycloakSession session, String config) OIDCIdentityProviderFactory.parseOIDCConfig
(KeycloakSession session, String configString) void
OIDCIdentityProvider.preprocessFederatedIdentity
(KeycloakSession session, RealmModel realm, BrokeredIdentityContext context) OIDCIdentityProvider.refreshTokenForLogout
(KeycloakSession session, UserSessionModel userSession) Returns access token response as a string from a refresh token invocation on the remote OIDC brokerjakarta.ws.rs.core.Response
AbstractOAuth2IdentityProvider.retrieveToken
(KeycloakSession session, FederatedIdentityModel identity) ModifierConstructorDescriptionAbstractOAuth2IdentityProvider
(KeycloakSession session, C config) KeycloakOIDCIdentityProvider
(KeycloakSession session, OIDCIdentityProviderConfig config) OIDCIdentityProvider
(KeycloakSession session, OIDCIdentityProviderConfig config) -
Uses of KeycloakSession in org.keycloak.broker.oidc.mappers
Modifier and TypeMethodDescriptionvoid
AbstractClaimToGroupMapper.importNewUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
AbstractClaimToRoleMapper.importNewUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
ClaimToUserSessionNoteMapper.importNewUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
AbstractJsonUserAttributeMapper.preprocessFederatedIdentity
(KeycloakSession session, RealmModel realm, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
UserAttributeMapper.preprocessFederatedIdentity
(KeycloakSession session, RealmModel realm, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
UsernameTemplateMapper.preprocessFederatedIdentity
(KeycloakSession session, RealmModel realm, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
AbstractClaimToGroupMapper.updateBrokeredUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
AbstractClaimToRoleMapper.updateBrokeredUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
AbstractJsonUserAttributeMapper.updateBrokeredUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
ClaimToUserSessionNoteMapper.updateBrokeredUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
UserAttributeMapper.updateBrokeredUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
UsernameTemplateMapper.updateBrokeredUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
AbstractClaimToRoleMapper.updateBrokeredUserLegacy
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
AbstractJsonUserAttributeMapper.updateBrokeredUserLegacy
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
ExternalKeycloakRoleToRoleMapper.updateBrokeredUserLegacy
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
UsernameTemplateMapper.updateBrokeredUserLegacy
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) -
Uses of KeycloakSession in org.keycloak.broker.provider
Modifier and TypeFieldDescriptionprotected final KeycloakSession
AbstractIdentityProvider.session
Modifier and TypeMethodDescriptionvoid
AbstractIdentityProvider.backchannelLogout
(KeycloakSession session, UserSessionModel userSession, jakarta.ws.rs.core.UriInfo uriInfo, RealmModel realm) void
IdentityProvider.backchannelLogout
(KeycloakSession session, UserSessionModel userSession, jakarta.ws.rs.core.UriInfo uriInfo, RealmModel realm) AbstractIdentityProviderFactory.create
(KeycloakSession session) AbstractIdentityProviderMapper.create
(KeycloakSession session) IdentityProviderFactory.create
(KeycloakSession session, IdentityProviderModel model) Creates anIdentityProvider
based on the configuration contained inmodel
.static void
IdentityProviderMapperSyncModeDelegate.delegateUpdateBrokeredUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context, IdentityProviderMapper mapper) void
AbstractIdentityProvider.importNewUser
(KeycloakSession session, RealmModel realm, UserModel user, BrokeredIdentityContext context) void
AbstractIdentityProviderMapper.importNewUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
HardcodedRoleMapper.importNewUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
HardcodedUserSessionAttributeMapper.importNewUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
IdentityProvider.importNewUser
(KeycloakSession session, RealmModel realm, UserModel user, BrokeredIdentityContext context) void
IdentityProviderMapper.importNewUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) Called after UserModel is created for first time for this user.jakarta.ws.rs.core.Response
AbstractIdentityProvider.keycloakInitiatedBrowserLogout
(KeycloakSession session, UserSessionModel userSession, jakarta.ws.rs.core.UriInfo uriInfo, RealmModel realm) jakarta.ws.rs.core.Response
IdentityProvider.keycloakInitiatedBrowserLogout
(KeycloakSession session, UserSessionModel userSession, jakarta.ws.rs.core.UriInfo uriInfo, RealmModel realm) Called when a Keycloak application initiates a logout through the browser.AbstractIdentityProviderFactory.parseConfig
(KeycloakSession session, String config) IdentityProviderFactory.parseConfig
(KeycloakSession session, String config) Creates anIdentityProvider
based on the configuration frominputStream
.void
AbstractIdentityProvider.preprocessFederatedIdentity
(KeycloakSession session, RealmModel realm, BrokeredIdentityContext context) void
AbstractIdentityProviderMapper.preprocessFederatedIdentity
(KeycloakSession session, RealmModel realm, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
HardcodedAttributeMapper.preprocessFederatedIdentity
(KeycloakSession session, RealmModel realm, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
HardcodedUserSessionAttributeMapper.preprocessFederatedIdentity
(KeycloakSession session, RealmModel realm, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
IdentityProvider.preprocessFederatedIdentity
(KeycloakSession session, RealmModel realm, BrokeredIdentityContext context) void
IdentityProviderMapper.preprocessFederatedIdentity
(KeycloakSession session, RealmModel realm, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) Called to determine what keycloak username and email to use to process the login request from the external IDP.jakarta.ws.rs.core.Response
IdentityProvider.retrieveToken
(KeycloakSession session, FederatedIdentityModel identity) Returns aResponse
containing the token previously stored during the authentication process for a specific user.void
AbstractIdentityProvider.updateBrokeredUser
(KeycloakSession session, RealmModel realm, UserModel user, BrokeredIdentityContext context) void
AbstractIdentityProviderMapper.updateBrokeredUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
HardcodedAttributeMapper.updateBrokeredUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
HardcodedRoleMapper.updateBrokeredUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
HardcodedUserSessionAttributeMapper.updateBrokeredUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
IdentityProvider.updateBrokeredUser
(KeycloakSession session, RealmModel realm, UserModel user, BrokeredIdentityContext context) void
IdentityProviderMapper.updateBrokeredUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) Called when this user has logged in before and has already been imported.void
AbstractIdentityProviderMapper.updateBrokeredUserLegacy
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
HardcodedRoleMapper.updateBrokeredUserLegacy
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
IdentityProviderMapper.updateBrokeredUserLegacy
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) Called when this user has logged in before and has already been imported.ModifierConstructorDescriptionAbstractIdentityProvider
(KeycloakSession session, C config) AuthenticationRequest
(KeycloakSession session, RealmModel realm, AuthenticationSessionModel authSession, HttpRequest httpRequest, jakarta.ws.rs.core.UriInfo uriInfo, IdentityBrokerState state, String redirectUri) -
Uses of KeycloakSession in org.keycloak.broker.provider.util
Modifier and TypeMethodDescriptionstatic SimpleHttp
SimpleHttp.doDelete
(String url, KeycloakSession session) static SimpleHttp
SimpleHttp.doGet
(String url, KeycloakSession session) static SimpleHttp
SimpleHttp.doHead
(String url, KeycloakSession session) static SimpleHttp
SimpleHttp.doPatch
(String url, KeycloakSession session) static SimpleHttp
SimpleHttp.doPost
(String url, KeycloakSession session) static SimpleHttp
SimpleHttp.doPut
(String url, KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.broker.saml
Modifier and TypeMethodDescriptionvoid
SAMLIdentityProvider.backchannelLogout
(KeycloakSession session, UserSessionModel userSession, jakarta.ws.rs.core.UriInfo uriInfo, RealmModel realm) SAMLIdentityProviderFactory.create
(KeycloakSession session, IdentityProviderModel model) jakarta.ws.rs.core.Response
SAMLIdentityProvider.keycloakInitiatedBrowserLogout
(KeycloakSession session, UserSessionModel userSession, jakarta.ws.rs.core.UriInfo uriInfo, RealmModel realm) SAMLIdentityProviderFactory.parseConfig
(KeycloakSession session, String config) SAMLIdentityProvider.resolveArtifact
(KeycloakSession session, jakarta.ws.rs.core.UriInfo uriInfo, RealmModel realm, String relayState, String samlArt) jakarta.ws.rs.core.Response
SAMLIdentityProvider.retrieveToken
(KeycloakSession session, FederatedIdentityModel identity) ModifierConstructorDescriptionSAMLEndpoint
(KeycloakSession session, SAMLIdentityProvider provider, SAMLIdentityProviderConfig config, IdentityProvider.AuthenticationCallback callback, DestinationValidator destinationValidator) SAMLIdentityProvider
(KeycloakSession session, SAMLIdentityProviderConfig config, DestinationValidator destinationValidator) -
Uses of KeycloakSession in org.keycloak.broker.saml.mappers
Modifier and TypeMethodDescriptionvoid
AbstractAttributeToGroupMapper.importNewUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
AbstractAttributeToRoleMapper.importNewUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
UserAttributeMapper.preprocessFederatedIdentity
(KeycloakSession session, RealmModel realm, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
UsernameTemplateMapper.preprocessFederatedIdentity
(KeycloakSession session, RealmModel realm, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
XPathAttributeMapper.preprocessFederatedIdentity
(KeycloakSession session, RealmModel realm, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
AbstractAttributeToGroupMapper.updateBrokeredUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
AbstractAttributeToRoleMapper.updateBrokeredUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
UserAttributeMapper.updateBrokeredUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
UsernameTemplateMapper.updateBrokeredUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
XPathAttributeMapper.updateBrokeredUser
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) void
UsernameTemplateMapper.updateBrokeredUserLegacy
(KeycloakSession session, RealmModel realm, UserModel user, IdentityProviderMapperModel mapperModel, BrokeredIdentityContext context) -
Uses of KeycloakSession in org.keycloak.cluster.infinispan
Modifier and TypeMethodDescriptionInfinispanClusterProviderFactory.create
(KeycloakSession session) InfinispanNotificationsManager.create
(KeycloakSession session, org.infinispan.Cache<String, Object> workCache, String myAddress, String mySite, Set<org.infinispan.persistence.remote.RemoteStore> remoteStores) protected int
InfinispanClusterProviderFactory.initClusterStartupTime
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.cluster.infinispan.remote
Modifier and TypeMethodDescriptionRemoteInfinispanClusterProviderFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.component
Modifier and TypeMethodDescriptionAmphibianProviderFactory.create
(KeycloakSession session) default ProviderType
AmphibianProviderFactory.create
(KeycloakSession session, ComponentModel model) Deprecated.default ProviderType
ComponentFactory.create
(KeycloakSession session) ComponentFactory.create
(KeycloakSession session, ComponentModel model) default ComponentFactoryProvider
ComponentFactoryProviderFactory.create
(KeycloakSession session) default void
ComponentFactory.onCreate
(KeycloakSession session, RealmModel realm, ComponentModel model) Called after a component is createddefault void
AmphibianProviderFactory.onUpdate
(KeycloakSession session, RealmModel realm, ComponentModel oldModel, ComponentModel newModel) default void
ComponentFactory.onUpdate
(KeycloakSession session, RealmModel realm, ComponentModel oldModel, ComponentModel newModel) Called after the component is updated.default void
AmphibianProviderFactory.preRemove
(KeycloakSession session, RealmModel realm, ComponentModel model) default void
ComponentFactory.preRemove
(KeycloakSession session, RealmModel realm, ComponentModel model) Called before the component is removed.default void
ComponentFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel model) Called before a component is created or updated. -
Uses of KeycloakSession in org.keycloak.connections.httpclient
-
Uses of KeycloakSession in org.keycloak.connections.infinispan
Modifier and TypeMethodDescriptionDefaultInfinispanConnectionProviderFactory.create
(KeycloakSession session) static TopologyInfo
InfinispanUtil.getTopologyInfo
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.connections.infinispan.remote
Modifier and TypeMethodDescriptionRemoteLoadBalancerCheckProviderFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.connections.jpa
Modifier and TypeMethodDescriptionDefaultJpaConnectionProviderFactory.create
(KeycloakSession session) static jakarta.persistence.EntityManager
PersistenceExceptionConverter.create
(KeycloakSession session, jakarta.persistence.EntityManager em) protected void
DefaultJpaConnectionProviderFactory.export
(Connection connection, String schema, File databaseUpdateFile, KeycloakSession session, JpaUpdaterProvider updater) static jakarta.persistence.EntityManager
JndiEntityManagerLookup.getSessionEntityManager
(KeycloakSession session, String entityManagerFactoryJndiName) void
HibernateStatsReporter.run
(KeycloakSession session) protected void
DefaultJpaConnectionProviderFactory.startGlobalStats
(KeycloakSession session, int globalStatsIntervalSecs) protected void
DefaultJpaConnectionProviderFactory.update
(Connection connection, String schema, KeycloakSession session, JpaUpdaterProvider updater) -
Uses of KeycloakSession in org.keycloak.connections.jpa.updater.liquibase
Modifier and TypeMethodDescriptionstatic KeycloakSession
ThreadLocalSessionContext.getCurrentSession()
Modifier and TypeMethodDescriptionLiquibaseJpaUpdaterProviderFactory.create
(KeycloakSession session) static void
ThreadLocalSessionContext.setCurrentSession
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.connections.jpa.updater.liquibase.conn
Modifier and TypeMethodDescriptionDefaultLiquibaseConnectionProvider.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.connections.jpa.updater.liquibase.custom
-
Uses of KeycloakSession in org.keycloak.connections.jpa.updater.liquibase.lock
ModifierConstructorDescriptionLiquibaseDBLockProvider
(LiquibaseDBLockProviderFactory factory, KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.connections.jpa.util
Modifier and TypeMethodDescriptionstatic jakarta.persistence.EntityManagerFactory
JpaUtils.createEntityManagerFactory
(KeycloakSession session, String unitName, Map<String, Object> properties, boolean jta) JpaUtils.getProvidedEntities
(KeycloakSession session) Get a list of all provided entities by looping over all configured entity providers. -
Uses of KeycloakSession in org.keycloak.cookie
-
Uses of KeycloakSession in org.keycloak.credential
Modifier and TypeFieldDescriptionprotected KeycloakSession
OTPCredentialProvider.session
protected final KeycloakSession
PasswordCredentialProvider.session
Modifier and TypeMethodDescriptionprotected KeycloakSession
WebAuthnCredentialProvider.getKeycloakSession()
Modifier and TypeMethodDescriptionCredentialTypeMetadata.CredentialTypeMetadataBuilder.build
(KeycloakSession session) This will validate metadata and return themCredentialTypeMetadataContext.CredentialTypeMetadataContextBuilder.build
(KeycloakSession session) OTPCredentialProviderFactory.create
(KeycloakSession session) PasswordCredentialProviderFactory.create
(KeycloakSession session) RecoveryAuthnCodesCredentialProviderFactory.create
(KeycloakSession session) WebAuthnCredentialProviderFactory.create
(KeycloakSession session) WebAuthnPasswordlessCredentialProviderFactory.create
(KeycloakSession session) default T
CredentialProvider.getDefaultCredential
(KeycloakSession session, RealmModel realm, UserModel user) ModifierConstructorDescriptionOTPCredentialProvider
(KeycloakSession session) UserCredentialManager
(KeycloakSession session, RealmModel realm, UserModel user) WebAuthnCredentialProvider
(KeycloakSession session, com.webauthn4j.converter.util.ObjectConverter objectConverter) WebAuthnPasswordlessCredentialProvider
(KeycloakSession session, com.webauthn4j.converter.util.ObjectConverter objectConverter) -
Uses of KeycloakSession in org.keycloak.credential.hash
Modifier and TypeMethodDescriptionPbkdf2PasswordHashProviderFactory.create
(KeycloakSession session) Deprecated.Pbkdf2Sha256PasswordHashProviderFactory.create
(KeycloakSession session) Pbkdf2Sha512PasswordHashProviderFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.crypto
Modifier and TypeMethodDescriptionAes128CbcHmacSha256ContentEncryptionProviderFactory.create
(KeycloakSession session) Aes128GcmContentEncryptionProviderFactory.create
(KeycloakSession session) Aes192CbcHmacSha384ContentEncryptionProviderFactory.create
(KeycloakSession session) Aes192GcmContentEncryptionProviderFactory.create
(KeycloakSession session) Aes256CbcHmacSha512ContentEncryptionProviderFactory.create
(KeycloakSession session) Aes256GcmContentEncryptionProviderFactory.create
(KeycloakSession session) EcdhEsA128KwCekManagementProviderFactory.create
(KeycloakSession session) EcdhEsA192KwCekManagementProviderFactory.create
(KeycloakSession session) EcdhEsA256KwCekManagementProviderFactory.create
(KeycloakSession session) EcdhEsCekManagementProviderFactory.create
(KeycloakSession session) EdDSAClientSignatureVerifierProviderFactory.create
(KeycloakSession session) EdDSASignatureProviderFactory.create
(KeycloakSession session) ES256ClientSignatureVerifierProviderFactory.create
(KeycloakSession session) ES256SignatureProviderFactory.create
(KeycloakSession session) ES384ClientSignatureVerifierProviderFactory.create
(KeycloakSession session) ES384SignatureProviderFactory.create
(KeycloakSession session) ES512ClientSignatureVerifierProviderFactory.create
(KeycloakSession session) ES512SignatureProviderFactory.create
(KeycloakSession session) HS256ClientSignatureVerifierProviderFactory.create
(KeycloakSession session) HS256SignatureProviderFactory.create
(KeycloakSession session) HS384ClientSignatureVerifierProviderFactory.create
(KeycloakSession session) HS384SignatureProviderFactory.create
(KeycloakSession session) HS512ClientSignatureVerifierProviderFactory.create
(KeycloakSession session) HS512SignatureProviderFactory.create
(KeycloakSession session) PS256ClientSignatureVerifierProviderFactory.create
(KeycloakSession session) PS256SignatureProviderFactory.create
(KeycloakSession session) PS384ClientSignatureVerifierProviderFactory.create
(KeycloakSession session) PS384SignatureProviderFactory.create
(KeycloakSession session) PS512ClientSignatureVerifierProviderFactory.create
(KeycloakSession session) PS512SignatureProviderFactory.create
(KeycloakSession session) RS256ClientSignatureVerifierProviderFactory.create
(KeycloakSession session) RS256SignatureProviderFactory.create
(KeycloakSession session) RS384ClientSignatureVerifierProviderFactory.create
(KeycloakSession session) RS384SignatureProviderFactory.create
(KeycloakSession session) RS512ClientSignatureVerifierProviderFactory.create
(KeycloakSession session) RS512SignatureProviderFactory.create
(KeycloakSession session) RsaesOaep256CekManagementProviderFactory.create
(KeycloakSession session) RsaesOaepCekManagementProviderFactory.create
(KeycloakSession session) RsaesPkcs1CekManagementProviderFactory.create
(KeycloakSession session) SHA256HashProviderFactory.create
(KeycloakSession session) SHA384HashProviderFactory.create
(KeycloakSession session) SHA512HashProviderFactory.create
(KeycloakSession session) SHAKE256HashProviderFactory.create
(KeycloakSession session) ModifierConstructorDescriptionAesCbcHmacShaContentEncryptionProvider
(KeycloakSession session, String jweAlgorithmName) AesGcmContentEncryptionProvider
(KeycloakSession session, String jweAlgorithmName) AsymmetricClientSignatureVerifierProvider
(KeycloakSession session, String algorithm) AsymmetricSignatureProvider
(KeycloakSession session, String algorithm) ClientAsymmetricSignatureVerifierContext
(KeycloakSession session, ClientModel client, JWSInput input) ClientECDSASignatureVerifierContext
(KeycloakSession session, ClientModel client, JWSInput input) ClientEdDSASignatureVerifierContext
(KeycloakSession session, ClientModel client, JWSInput input) ClientMacSignatureVerifierContext
(KeycloakSession session, ClientModel client, String algorithm) EcdhEsCekManagementProvider
(KeycloakSession session, String jweAlgorithmName) ECDSAClientSignatureVerifierProvider
(KeycloakSession session, String algorithm) ECDSASignatureProvider
(KeycloakSession session, String algorithm) EdDSAClientSignatureVerifierProvider
(KeycloakSession session, String algorithm) EdDSASignatureProvider
(KeycloakSession session) MacSecretClientSignatureVerifierProvider
(KeycloakSession session, String algorithm) MacSecretSignatureProvider
(KeycloakSession session, String algorithm) RsaCekManagementProvider
(KeycloakSession session, String jweAlgorithmName) ServerAsymmetricSignatureSignerContext
(KeycloakSession session, String algorithm) ServerAsymmetricSignatureVerifierContext
(KeycloakSession session, String kid, String algorithm) ServerECDSASignatureSignerContext
(KeycloakSession session, String algorithm) ServerECDSASignatureVerifierContext
(KeycloakSession session, String kid, String algorithm) ServerEdDSASignatureSignerContext
(KeycloakSession session, String algorithm) ServerEdDSASignatureVerifierContext
(KeycloakSession session, String kid, String algorithm) ServerMacSignatureSignerContext
(KeycloakSession session, String algorithm) ServerMacSignatureVerifierContext
(KeycloakSession session, String kid, String algorithm) -
Uses of KeycloakSession in org.keycloak.deployment
Modifier and TypeMethodDescriptionDefaultDeployedConfigurationsProviderFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.device
Modifier and TypeMethodDescriptionstatic void
DeviceActivityManager.attachDevice
(UserSessionModel userSession, KeycloakSession session) Attaches a device to the givenuserSession
where the device information is obtained from theHttpHeaders.USER_AGENT
in the current request, if available.DeviceRepresentationProviderFactoryImpl.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.email
Modifier and TypeMethodDescriptionDefaultEmailSenderProviderFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.email.freemarker
Modifier and TypeFieldDescriptionprotected KeycloakSession
FreeMarkerEmailTemplateProvider.session
Modifier and TypeMethodDescriptionFreeMarkerEmailTemplateProviderFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.email.freemarker.beans
-
Uses of KeycloakSession in org.keycloak.encoding
Modifier and TypeMethodDescriptionGzipResourceEncodingProviderFactory.create
(KeycloakSession session) static ResourceEncodingProvider
ResourceEncodingHelper.getResourceEncodingProvider
(KeycloakSession session, String contentType) -
Uses of KeycloakSession in org.keycloak.events
ModifierConstructorDescriptionEventBuilder
(RealmModel realm, KeycloakSession session) EventBuilder
(RealmModel realm, KeycloakSession session, ClientConnection clientConnection) -
Uses of KeycloakSession in org.keycloak.events.email
Modifier and TypeMethodDescriptionEmailEventListenerProviderFactory.create
(KeycloakSession session) ModifierConstructorDescriptionEmailEventListenerProvider
(KeycloakSession session, Set<EventType> includedEvents) -
Uses of KeycloakSession in org.keycloak.events.jpa
Modifier and TypeMethodDescriptionJpaEventStoreProviderFactory.create
(KeycloakSession session) void
JpaEventStoreProviderFactory.invalidate
(KeycloakSession session, InvalidationHandler.InvalidableObjectType type, Object... params) ModifierConstructorDescriptionJpaEventStoreProvider
(KeycloakSession session, jakarta.persistence.EntityManager em) -
Uses of KeycloakSession in org.keycloak.events.log
Modifier and TypeMethodDescriptionJBossLoggingEventListenerProviderFactory.create
(KeycloakSession session) ModifierConstructorDescriptionJBossLoggingEventListenerProvider
(KeycloakSession session, org.jboss.logging.Logger logger, org.jboss.logging.Logger.Level successLevel, org.jboss.logging.Logger.Level errorLevel, Character quotes, boolean sanitize) -
Uses of KeycloakSession in org.keycloak.executors
Modifier and TypeMethodDescriptionDefaultExecutorsProviderFactory.create
(KeycloakSession session) protected ExecutorService
DefaultExecutorsProviderFactory.createPoolEmbedded
(String taskType, KeycloakSession session) protected ThreadFactory
DefaultExecutorsProviderFactory.createThreadFactory
(String taskType, KeycloakSession session) protected ExecutorService
DefaultExecutorsProviderFactory.getExecutor
(String taskType, KeycloakSession session) protected ExecutorService
DefaultExecutorsProviderFactory.getPoolManaged
(String taskType, KeycloakSession session) protected ExecutorService
DefaultExecutorsProviderFactory.retrievePool
(String taskType, KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.exportimport
Modifier and TypeMethodDescriptionKeycloakClientDescriptionConverter.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.exportimport.dir
Modifier and TypeMethodDescriptionDirExportProviderFactory.create
(KeycloakSession session) DirImportProviderFactory.create
(KeycloakSession session) protected void
DirExportProvider.writeFederatedUsers
(String fileName, KeycloakSession session, RealmModel realm, List<String> users) protected void
DirExportProvider.writeUsers
(String fileName, KeycloakSession session, RealmModel realm, List<UserModel> users) -
Uses of KeycloakSession in org.keycloak.exportimport.singlefile
Modifier and TypeMethodDescriptionSingleFileExportProviderFactory.create
(KeycloakSession session) SingleFileImportProviderFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.exportimport.util
Modifier and TypeMethodDescriptionstatic ClientRepresentation
ExportUtils.exportClient
(KeycloakSession session, ClientModel client) Full export of application including claims and secretstatic UserRepresentation
ExportUtils.exportFederatedUser
(KeycloakSession session, RealmModel realm, String id, ExportOptions options) Full export of user data stored in federated storage (including role mappings and credentials)static void
ExportUtils.exportFederatedUsersToStream
(KeycloakSession session, RealmModel realm, List<String> usersToExport, com.fasterxml.jackson.databind.ObjectMapper mapper, OutputStream os) static void
ExportUtils.exportFederatedUsersToStream
(KeycloakSession session, RealmModel realm, List<String> usersToExport, com.fasterxml.jackson.databind.ObjectMapper mapper, OutputStream os, ExportOptions options) static RealmRepresentation
ExportUtils.exportRealm
(KeycloakSession session, RealmModel realm, boolean includeUsers, boolean internal) static RealmRepresentation
ExportUtils.exportRealm
(KeycloakSession session, RealmModel realm, ExportOptions options, boolean internal) static UserRepresentation
ExportUtils.exportUser
(KeycloakSession session, RealmModel realm, UserModel user, ExportOptions options, boolean internal) Full export of user (including role mappings and credentials)static void
ExportUtils.exportUsersToStream
(KeycloakSession session, RealmModel realm, List<UserModel> usersToExport, com.fasterxml.jackson.databind.ObjectMapper mapper, OutputStream os) static void
ExportUtils.exportUsersToStream
(KeycloakSession session, RealmModel realm, List<UserModel> usersToExport, com.fasterxml.jackson.databind.ObjectMapper mapper, OutputStream os, ExportOptions options) static void
ImportUtils.importFederatedUsersFromStream
(KeycloakSession session, String realmName, com.fasterxml.jackson.databind.ObjectMapper mapper, InputStream is) static void
ImportUtils.importFromStream
(KeycloakSession session, com.fasterxml.jackson.databind.ObjectMapper mapper, InputStream is, Strategy strategy) Fully import realm (or more realms from particular stream)static boolean
ImportUtils.importRealm
(KeycloakSession session, RealmRepresentation rep, Strategy strategy, boolean skipUserDependent) Fully import realm from representation, save it to model and return model of newly created realmstatic void
ImportUtils.importRealms
(KeycloakSession session, Collection<RealmRepresentation> realms, Strategy strategy) static void
ImportUtils.importUsersFromStream
(KeycloakSession session, String realmName, com.fasterxml.jackson.databind.ObjectMapper mapper, InputStream is) void
ExportImportSessionTask.run
(KeycloakSession session) protected abstract void
ExportImportSessionTask.runExportImportTask
(KeycloakSession session) protected abstract void
MultipleStepsExportProvider.writeFederatedUsers
(String fileName, KeycloakSession session, RealmModel realm, List<String> users) protected abstract void
MultipleStepsExportProvider.writeUsers
(String fileName, KeycloakSession session, RealmModel realm, List<UserModel> users) -
Uses of KeycloakSession in org.keycloak.federation.kerberos
Modifier and TypeMethodDescriptionKerberosFederationProviderFactory.create
(KeycloakSession session, ComponentModel model) void
KerberosFederationProviderFactory.onCreate
(KeycloakSession session, RealmModel realm, ComponentModel model) void
KerberosFederationProviderFactory.onUpdate
(KeycloakSession session, RealmModel realm, ComponentModel oldModel, ComponentModel newModel) void
KerberosFederationProviderFactory.preRemove
(KeycloakSession session, RealmModel realm, ComponentModel model) ModifierConstructorDescriptionKerberosFederationProvider
(KeycloakSession session, UserStorageProviderModel model, KerberosFederationProviderFactory factory) -
Uses of KeycloakSession in org.keycloak.federation.sssd
Modifier and TypeMethodDescriptionSSSDFederationProviderFactory.create
(KeycloakSession session, ComponentModel model) ModifierConstructorDescriptionSSSDFederationProvider
(KeycloakSession session, UserStorageProviderModel model, SSSDFederationProviderFactory sssdFederationProviderFactory) -
Uses of KeycloakSession in org.keycloak.forms.login.freemarker
Modifier and TypeMethodDescriptionFreeMarkerLoginFormsProviderFactory.create
(KeycloakSession session) ModifierConstructorDescriptionAuthenticatorConfiguredMethod
(RealmModel realm, UserModel user, KeycloakSession session) DetachedInfoStateChecker
(KeycloakSession session, RealmModel realm) -
Uses of KeycloakSession in org.keycloak.forms.login.freemarker.model
Modifier and TypeMethodDescriptionprotected String
IdentityProviderBean.getExistingIDP
(KeycloakSession session, AuthenticationFlowContext context) Checks if an IDP is being connected to the user's account.IdentityProviderBean.getLinkedBrokerAliases
(KeycloakSession session, RealmModel realm, AuthenticationFlowContext context) Returns the list of IDPs linked with the user's federated identities, if any.protected void
AbstractUserProfileBean.init
(KeycloakSession session, boolean writeableOnly) Subclass have to call this method at the end of constructor to init user profile data.ModifierConstructorDescriptionClientBean
(KeycloakSession session, ClientModel client) EmailBean
(UserModel user, jakarta.ws.rs.core.MultivaluedMap<String, String> formData, KeycloakSession session) FrontChannelLogoutBean
(KeycloakSession session) IdentityProviderBean
(KeycloakSession session, RealmModel realm, URI baseURI, AuthenticationFlowContext context) IdpReviewProfileBean
(UpdateProfileContext idpCtx, jakarta.ws.rs.core.MultivaluedMap<String, String> formData, KeycloakSession session) RecoveryAuthnCodeInputLoginBean
(KeycloakSession session, RealmModel realm, UserModel user) RegisterBean
(jakarta.ws.rs.core.MultivaluedMap<String, String> formData, KeycloakSession session) TotpBean
(KeycloakSession session, RealmModel realm, UserModel user, jakarta.ws.rs.core.UriBuilder uriBuilder) TotpBean
(KeycloakSession session, RealmModel realm, UserModel user, jakarta.ws.rs.core.UriBuilder uriBuilder, String secret) TotpLoginBean
(KeycloakSession session, RealmModel realm, UserModel user, String selectedCredentialId) VerifyProfileBean
(UserModel user, jakarta.ws.rs.core.MultivaluedMap<String, String> formData, KeycloakSession session) WebAuthnAuthenticatorsBean
(KeycloakSession session, RealmModel realm, UserModel user, String credentialType) -
Uses of KeycloakSession in org.keycloak.headers
Modifier and TypeMethodDescriptionDefaultSecurityHeadersProviderFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.jose.jws
-
Uses of KeycloakSession in org.keycloak.keys
Modifier and TypeMethodDescriptionGeneratedAesKeyProviderFactory.create
(KeycloakSession session, ComponentModel model) GeneratedEcdhKeyProviderFactory.create
(KeycloakSession session, ComponentModel model) GeneratedEcdsaKeyProviderFactory.create
(KeycloakSession session, ComponentModel model) GeneratedEddsaKeyProviderFactory.create
(KeycloakSession session, ComponentModel model) GeneratedHmacKeyProviderFactory.create
(KeycloakSession session, ComponentModel model) GeneratedRsaEncKeyProviderFactory.create
(KeycloakSession session, ComponentModel model) GeneratedRsaKeyProviderFactory.create
(KeycloakSession session, ComponentModel model) ImportedRsaEncKeyProviderFactory.create
(KeycloakSession session, ComponentModel model) ImportedRsaKeyProviderFactory.create
(KeycloakSession session, ComponentModel model) JavaKeystoreKeyProviderFactory.create
(KeycloakSession session, ComponentModel model) KeyProviderFactory.create
(KeycloakSession session, ComponentModel model) boolean
AbstractGeneratedEcKeyProviderFactory.createFallbackKeys
(KeycloakSession session, KeyUse keyUse, String algorithm) boolean
AbstractGeneratedRsaKeyProviderFactory.createFallbackKeys
(KeycloakSession session, KeyUse keyUse, String algorithm) boolean
GeneratedAesKeyProviderFactory.createFallbackKeys
(KeycloakSession session, KeyUse keyUse, String algorithm) boolean
GeneratedEddsaKeyProviderFactory.createFallbackKeys
(KeycloakSession session, KeyUse keyUse, String algorithm) boolean
GeneratedHmacKeyProviderFactory.createFallbackKeys
(KeycloakSession session, KeyUse keyUse, String algorithm) default boolean
KeyProviderFactory.createFallbackKeys
(KeycloakSession session, KeyUse keyUse, String algorithm) void
AbstractEcKeyProviderFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel model) void
AbstractEddsaKeyProviderFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel model) void
AbstractGeneratedEcKeyProviderFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel model) void
AbstractGeneratedRsaKeyProviderFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel model) void
AbstractGeneratedSecretKeyProviderFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel model) void
AbstractImportedRsaKeyProviderFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel model) void
AbstractRsaKeyProviderFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel model) void
GeneratedEddsaKeyProviderFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel model) void
JavaKeystoreKeyProviderFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel model) -
Uses of KeycloakSession in org.keycloak.keys.infinispan
Modifier and TypeMethodDescriptionInfinispanCachePublicKeyProviderFactory.create
(KeycloakSession session) InfinispanPublicKeyStorageProviderFactory.create
(KeycloakSession session) ModifierConstructorDescriptionInfinispanCachePublicKeyProvider
(KeycloakSession session, org.infinispan.Cache<String, PublicKeysEntry> keys) InfinispanPublicKeyStorageProvider
(KeycloakSession session, org.infinispan.Cache<String, PublicKeysEntry> keys, Map<String, FutureTask<PublicKeysEntry>> tasksInProgress, int minTimeBetweenRequests, int maxCacheTime) -
Uses of KeycloakSession in org.keycloak.keys.loader
Modifier and TypeMethodDescriptionstatic PublicKey
PublicKeyStorageManager.getClientPublicKey
(KeycloakSession session, ClientModel client, JWSInput input) static KeyWrapper
PublicKeyStorageManager.getClientPublicKeyWrapper
(KeycloakSession session, ClientModel client, JWK.Use keyUse, String algAlgorithm) static KeyWrapper
PublicKeyStorageManager.getClientPublicKeyWrapper
(KeycloakSession session, ClientModel client, JWSInput input) static KeyWrapper
PublicKeyStorageManager.getIdentityProviderKeyWrapper
(KeycloakSession session, RealmModel realm, OIDCIdentityProviderConfig idpConfig, JWSInput input) ModifierConstructorDescriptionClientPublicKeyLoader
(KeycloakSession session, ClientModel client) ClientPublicKeyLoader
(KeycloakSession session, ClientModel client, JWK.Use keyUse) OIDCIdentityProviderPublicKeyLoader
(KeycloakSession session, OIDCIdentityProviderConfig config) -
Uses of KeycloakSession in org.keycloak.locale
Modifier and TypeMethodDescriptionDefaultLocaleSelectorProviderFactory.create
(KeycloakSession session) DefaultLocaleUpdaterProviderFactory.create
(KeycloakSession session) ModifierConstructorDescription -
Uses of KeycloakSession in org.keycloak.migration
Modifier and TypeMethodDescriptionstatic void
MigrationModelManager.migrate
(KeycloakSession session) static void
MigrationModelManager.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) -
Uses of KeycloakSession in org.keycloak.migration.migrators
Modifier and TypeMethodDescriptionvoid
MigrateTo1_2_0.migrate
(KeycloakSession session) void
MigrateTo1_3_0.migrate
(KeycloakSession session) void
MigrateTo1_4_0.migrate
(KeycloakSession session) void
MigrateTo1_5_0.migrate
(KeycloakSession session) void
MigrateTo1_6_0.migrate
(KeycloakSession session) void
MigrateTo1_7_0.migrate
(KeycloakSession session) void
MigrateTo1_8_0.migrate
(KeycloakSession session) void
MigrateTo1_9_0.migrate
(KeycloakSession session) void
MigrateTo1_9_2.migrate
(KeycloakSession session) void
MigrateTo12_0_0.migrate
(KeycloakSession session) void
MigrateTo14_0_0.migrate
(KeycloakSession session) void
MigrateTo18_0_0.migrate
(KeycloakSession session) void
MigrateTo2_0_0.migrate
(KeycloakSession session) void
MigrateTo2_1_0.migrate
(KeycloakSession session) void
MigrateTo2_2_0.migrate
(KeycloakSession session) void
MigrateTo2_3_0.migrate
(KeycloakSession session) void
MigrateTo2_5_0.migrate
(KeycloakSession session) void
MigrateTo20_0_0.migrate
(KeycloakSession session) void
MigrateTo21_0_0.migrate
(KeycloakSession session) void
MigrateTo22_0_0.migrate
(KeycloakSession session) void
MigrateTo23_0_0.migrate
(KeycloakSession session) void
MigrateTo24_0_0.migrate
(KeycloakSession session) void
MigrateTo24_0_3.migrate
(KeycloakSession session) void
MigrateTo25_0_0.migrate
(KeycloakSession session) void
MigrateTo26_0_0.migrate
(KeycloakSession session) void
MigrateTo3_0_0.migrate
(KeycloakSession session) void
MigrateTo3_1_0.migrate
(KeycloakSession session) void
MigrateTo3_2_0.migrate
(KeycloakSession session) void
MigrateTo3_4_0.migrate
(KeycloakSession session) void
MigrateTo3_4_1.migrate
(KeycloakSession session) void
MigrateTo3_4_2.migrate
(KeycloakSession session) void
MigrateTo4_0_0.migrate
(KeycloakSession session) void
MigrateTo4_2_0.migrate
(KeycloakSession session) void
MigrateTo4_6_0.migrate
(KeycloakSession session) void
MigrateTo6_0_0.migrate
(KeycloakSession session) void
MigrateTo8_0_0.migrate
(KeycloakSession session) void
MigrateTo8_0_2.migrate
(KeycloakSession session) void
MigrateTo9_0_0.migrate
(KeycloakSession session) void
MigrateTo9_0_4.migrate
(KeycloakSession session) void
Migration.migrate
(KeycloakSession session) void
MigrateTo1_2_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo1_3_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo1_4_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo1_5_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo1_6_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo1_7_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo1_8_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo1_9_2.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo18_0_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo2_0_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo2_1_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo2_2_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo2_3_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo2_5_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo20_0_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo21_0_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo22_0_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo23_0_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo24_0_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo24_0_3.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo25_0_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo26_0_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo3_0_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo3_1_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo3_2_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo3_4_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo3_4_1.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo3_4_2.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo4_0_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo4_2_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo4_6_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo6_0_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo8_0_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo8_0_2.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo9_0_0.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) void
MigrateTo9_0_4.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) default void
Migration.migrateImport
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) Called after full import of representation.static void
MigrationUtils.migrateOldOfflineToken
(KeycloakSession session, RealmModel realm, ClientModel client, UserModel user) protected void
MigrateTo1_4_0.migrateRealm
(KeycloakSession session, RealmModel realm) protected void
MigrateTo1_5_0.migrateRealm
(KeycloakSession session, RealmModel realm) protected void
MigrateTo1_6_0.migrateRealm
(KeycloakSession session, ProtocolMapperModel localeMapper, RealmModel realm) protected void
MigrateTo1_7_0.migrateRealm
(KeycloakSession session, RealmModel realm) protected void
MigrateTo18_0_0.migrateRealm
(KeycloakSession session, RealmModel realm) protected void
MigrateTo25_0_0.migrateRealm
(KeycloakSession session, RealmModel realm) protected void
MigrateTo3_2_0.migrateRealm
(KeycloakSession session, RealmModel realm) protected void
MigrateTo4_0_0.migrateRealm
(KeycloakSession session, RealmModel realm, boolean json) protected void
MigrateTo4_6_0.migrateRealm
(KeycloakSession session, RealmModel realm, boolean json) protected void
MigrateTo6_0_0.migrateRealm
(KeycloakSession session, RealmModel realm, boolean jsn) -
Uses of KeycloakSession in org.keycloak.models
Modifier and TypeMethodDescriptionKeycloakSessionFactory.create()
ClientModel.ClientIdChangeEvent.getKeycloakSession()
ClientModel.ClientRemovedEvent.getKeycloakSession()
ClientModel.ClientUpdatedEvent.getKeycloakSession()
ClientScopeModel.ClientScopeCreatedEvent.getKeycloakSession()
ClientScopeModel.ClientScopeRemovedEvent.getKeycloakSession()
FederatedIdentityModel.FederatedIdentityCreatedEvent.getKeycloakSession()
FederatedIdentityModel.FederatedIdentityRemovedEvent.getKeycloakSession()
GroupModel.GroupEvent.getKeycloakSession()
RealmModel.IdentityProviderRemovedEvent.getKeycloakSession()
RealmModel.IdentityProviderUpdatedEvent.getKeycloakSession()
RealmModel.RealmCreationEvent.getKeycloakSession()
RealmModel.RealmPostCreateEvent.getKeycloakSession()
RealmModel.RealmRemovedEvent.getKeycloakSession()
RoleContainerModel.RoleRemovedEvent.getKeycloakSession()
RoleModel.RoleNameChangeEvent.getKeycloakSession()
UserModel.UserPreRemovedEvent.getKeycloakSession()
UserModel.UserRemovedEvent.getKeycloakSession()
UserSessionProvider.getKeycloakSession()
Returns currently used Keycloak session.Modifier and TypeMethodDescriptionPasswordPolicy.Builder.build
(KeycloakSession session) DefaultOAuth2DeviceUserCodeProviderFactory.create
(KeycloakSession session) static void
GroupModel.GroupCreatedEvent.fire
(GroupModel group, KeycloakSession session) static void
GroupModel.GroupMemberJoinEvent.fire
(GroupModel group, KeycloakSession session) static void
GroupModel.GroupMemberLeaveEvent.fire
(GroupModel group, KeycloakSession session) static void
GroupModel.GroupPathChangeEvent.fire
(GroupModel group, String newPath, String previousPath, KeycloakSession session) static void
GroupModel.GroupUpdatedEvent.fire
(GroupModel group, KeycloakSession session) static PasswordPolicy
PasswordPolicy.parse
(KeycloakSession session, String policyString) void
KeycloakSessionTask.run
(KeycloakSession session) KeycloakSessionTaskWithResult.run
(KeycloakSession session) Computes a result.static void
ImpersonationConstants.setupImpersonationService
(KeycloakSession session, RealmModel realm) ModifierConstructorDescriptionKeycloakUriInfo
(KeycloakSession session, UrlType type, jakarta.ws.rs.core.UriInfo delegate) UserManager
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.models.cache
-
Uses of KeycloakSession in org.keycloak.models.cache.infinispan
Modifier and TypeFieldDescriptionprotected final KeycloakSession
GroupAdapter.keycloakSession
protected final KeycloakSession
UserAdapter.keycloakSession
protected KeycloakSession
RealmAdapter.session
protected KeycloakSession
RealmCacheSession.session
protected KeycloakSession
UserCacheSession.session
Modifier and TypeMethodDescription<T> T
RealmCacheManager.computeSerialized
(KeycloakSession session, String id, BiFunction<String, KeycloakSession, T> compute) Compute a cached realm and ensure that this happens only once with the current Keycloak instance.InfinispanCacheRealmProviderFactory.create
(KeycloakSession session) InfinispanUserCacheProviderFactory.create
(KeycloakSession session) void
UserCacheSession.onCreate
(KeycloakSession session, RealmModel realm, ComponentModel model) void
UserCacheSession.onUpdate
(KeycloakSession session, RealmModel realm, ComponentModel oldModel, ComponentModel newModel) void
CacheManager.sendInvalidationEvents
(KeycloakSession session, Collection<InvalidationEvent> invalidationEvents, String eventKey) Modifier and TypeMethodDescription<T> T
RealmCacheManager.computeSerialized
(KeycloakSession session, String id, BiFunction<String, KeycloakSession, T> compute) Compute a cached realm and ensure that this happens only once with the current Keycloak instance.ModifierConstructorDescriptionGroupAdapter
(CachedGroup cached, RealmCacheSession cacheSession, KeycloakSession keycloakSession, RealmModel realm) RealmAdapter
(KeycloakSession session, CachedRealm cached, RealmCacheSession cacheSession) RealmCacheSession
(RealmCacheManager cache, KeycloakSession session) SubjectCredentialManagerCacheAdapter
(KeycloakSession session, RealmModel realm, UserModel user) UserAdapter
(CachedUser cached, UserCacheSession userProvider, KeycloakSession keycloakSession, RealmModel realm) UserCacheSession
(UserCacheManager cache, KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.models.cache.infinispan.authorization
Modifier and TypeMethodDescriptionInfinispanCacheStoreFactoryProviderFactory.create
(KeycloakSession session) ModifierConstructorDescriptionStoreFactoryCacheSession
(StoreFactoryCacheManager cache, KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.models.cache.infinispan.idp
Modifier and TypeMethodDescriptionInfinispanIdentityProviderStorageProviderFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.models.cache.infinispan.organization
Modifier and TypeMethodDescriptionInfinispanOrganizationProviderFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.models.dblock
-
Uses of KeycloakSession in org.keycloak.models.delegate
-
Uses of KeycloakSession in org.keycloak.models.jpa
Modifier and TypeFieldDescriptionprotected KeycloakSession
ClientAdapter.session
protected KeycloakSession
ClientScopeAdapter.session
protected final KeycloakSession
GroupAdapter.session
protected KeycloakSession
RealmAdapter.session
protected KeycloakSession
RoleAdapter.session
Modifier and TypeMethodDescriptionJpaClientProviderFactory.create
(KeycloakSession session) JpaClientScopeProviderFactory.create
(KeycloakSession session) JpaDeploymentStateProviderFactory.create
(KeycloakSession session) JpaGroupProviderFactory.create
(KeycloakSession session) JpaIdentityProviderStorageProviderFactory.create
(KeycloakSession session) JpaRealmProviderFactory.create
(KeycloakSession session) JpaRoleProviderFactory.create
(KeycloakSession session) JpaUserCredentialStoreFactory.create
(KeycloakSession session) JpaUserProviderFactory.create
(KeycloakSession session) ModifierConstructorDescriptionClientAdapter
(RealmModel realm, jakarta.persistence.EntityManager em, KeycloakSession session, ClientEntity entity) ClientScopeAdapter
(RealmModel realm, jakarta.persistence.EntityManager em, KeycloakSession session, ClientScopeEntity entity) GroupAdapter
(KeycloakSession session, RealmModel realm, jakarta.persistence.EntityManager em, GroupEntity group) JpaRealmProvider
(KeycloakSession session, jakarta.persistence.EntityManager em, Set<String> clientSearchableAttributes, Set<String> groupSearchableAttributes) JpaUserCredentialStore
(KeycloakSession session, jakarta.persistence.EntityManager em) JpaUserProvider
(KeycloakSession session, jakarta.persistence.EntityManager em) RealmAdapter
(KeycloakSession session, jakarta.persistence.EntityManager em, RealmEntity realm) RoleAdapter
(KeycloakSession session, RealmModel realm, jakarta.persistence.EntityManager em, RoleEntity role) UserAdapter
(KeycloakSession session, RealmModel realm, jakarta.persistence.EntityManager em, UserEntity user) -
Uses of KeycloakSession in org.keycloak.models.jpa.session
Modifier and TypeMethodDescriptionJpaRevokedTokensPersisterProviderFactory.create
(KeycloakSession session) JpaUserSessionPersisterProviderFactory.create
(KeycloakSession session) ModifierConstructorDescriptionJpaUserSessionPersisterProvider
(KeycloakSession session, jakarta.persistence.EntityManager em) -
Uses of KeycloakSession in org.keycloak.models.light
Modifier and TypeMethodDescriptionstatic LightweightUserAdapter
LightweightUserAdapter.fromString
(KeycloakSession session, RealmModel realm, String serializedForm) -
Uses of KeycloakSession in org.keycloak.models.session
Modifier and TypeMethodDescriptionDisabledUserSessionPersisterProvider.create
(KeycloakSession session) ModifierConstructorDescriptionPersistentAuthenticatedClientSessionAdapter
(KeycloakSession session, AuthenticatedClientSessionModel clientSession) PersistentAuthenticatedClientSessionAdapter
(KeycloakSession session, PersistentClientSessionModel model, RealmModel realm, ClientModel client, UserSessionModel userSession) PersistentUserSessionAdapter
(KeycloakSession session, PersistentUserSessionModel model, RealmModel realm, String userId, Map<String, AuthenticatedClientSessionModel> clientSessions) -
Uses of KeycloakSession in org.keycloak.models.sessions.infinispan
Modifier and TypeFieldDescriptionprotected final KeycloakSession
InfinispanUserLoginFailureProvider.session
protected final KeycloakSession
InfinispanUserSessionProvider.session
protected final KeycloakSession
PersistentUserSessionProvider.session
Modifier and TypeMethodDescriptionInfinispanUserSessionProvider.getKeycloakSession()
PersistentUserSessionProvider.getKeycloakSession()
Modifier and TypeMethodDescriptionprotected void
InfinispanUserLoginFailureProviderFactory.checkRemoteCaches
(KeycloakSession session) protected void
InfinispanUserSessionProviderFactory.checkRemoteCaches
(KeycloakSession session) InfinispanAuthenticationSessionProviderFactory.create
(KeycloakSession session) InfinispanSingleUseObjectProviderFactory.create
(KeycloakSession session) InfinispanStickySessionEncoderProviderFactory.create
(KeycloakSession session) InfinispanUserLoginFailureProviderFactory.create
(KeycloakSession session) InfinispanUserSessionProviderFactory.create
(KeycloakSession session) protected void
InfinispanAuthenticationSessionProviderFactory.registerClusterListeners
(KeycloakSession session) protected void
InfinispanUserLoginFailureProviderFactory.registerClusterListeners
(KeycloakSession session) protected void
InfinispanUserSessionProviderFactory.registerClusterListeners
(KeycloakSession session) ModifierConstructorDescriptionAuthenticatedClientSessionAdapter
(KeycloakSession kcSession, SessionRefreshStore provider, AuthenticatedClientSessionEntity entity, ClientModel client, UserSessionModel userSession, SessionsChangelogBasedTransaction<UUID, AuthenticatedClientSessionEntity> clientSessionUpdateTx, boolean offline) AuthenticationSessionAdapter
(KeycloakSession session, RootAuthenticationSessionAdapter parent, String tabId, AuthenticationSessionEntity entity) InfinispanAuthenticationSessionProvider
(KeycloakSession session, InfinispanKeyGenerator keyGenerator, org.infinispan.Cache<String, RootAuthenticationSessionEntity> cache, int authSessionsLimit) InfinispanSingleUseObjectProvider
(KeycloakSession session, Supplier<org.infinispan.commons.api.BasicCache<String, SingleUseObjectValueEntity>> singleUseObjectCache, boolean persistRevokedTokens) InfinispanStickySessionEncoderProvider
(KeycloakSession session, boolean shouldAttachRoute) InfinispanUserLoginFailureProvider
(KeycloakSession session, RemoteCacheInvoker remoteCacheInvoker, org.infinispan.Cache<LoginFailureKey, SessionEntityWrapper<LoginFailureEntity>> loginFailureCache, SerializeExecutionsByKey<LoginFailureKey> serializer) InfinispanUserSessionProvider
(KeycloakSession session, RemoteCacheInvoker remoteCacheInvoker, CrossDCLastSessionRefreshStore lastSessionRefreshStore, CrossDCLastSessionRefreshStore offlineLastSessionRefreshStore, PersisterLastSessionRefreshStore persisterLastSessionRefreshStore, InfinispanKeyGenerator keyGenerator, org.infinispan.Cache<String, SessionEntityWrapper<UserSessionEntity>> sessionCache, org.infinispan.Cache<String, SessionEntityWrapper<UserSessionEntity>> offlineSessionCache, org.infinispan.Cache<UUID, SessionEntityWrapper<AuthenticatedClientSessionEntity>> clientSessionCache, org.infinispan.Cache<UUID, SessionEntityWrapper<AuthenticatedClientSessionEntity>> offlineClientSessionCache, SessionFunction<UserSessionEntity> offlineSessionCacheEntryLifespanAdjuster, SessionFunction<AuthenticatedClientSessionEntity> offlineClientSessionCacheEntryLifespanAdjuster, SerializeExecutionsByKey<String> serializerSession, SerializeExecutionsByKey<String> serializerOfflineSession, SerializeExecutionsByKey<UUID> serializerClientSession, SerializeExecutionsByKey<UUID> serializerOfflineClientSession) PersistentUserSessionProvider
(KeycloakSession session, RemoteCacheInvoker remoteCacheInvoker, CrossDCLastSessionRefreshStore lastSessionRefreshStore, CrossDCLastSessionRefreshStore offlineLastSessionRefreshStore, InfinispanKeyGenerator keyGenerator, org.infinispan.Cache<String, SessionEntityWrapper<UserSessionEntity>> sessionCache, org.infinispan.Cache<String, SessionEntityWrapper<UserSessionEntity>> offlineSessionCache, org.infinispan.Cache<UUID, SessionEntityWrapper<AuthenticatedClientSessionEntity>> clientSessionCache, org.infinispan.Cache<UUID, SessionEntityWrapper<AuthenticatedClientSessionEntity>> offlineClientSessionCache, ArrayBlockingQueue<PersistentUpdate> asyncQueuePersistentUpdate, SerializeExecutionsByKey<String> serializerSession, SerializeExecutionsByKey<String> serializerOfflineSession, SerializeExecutionsByKey<UUID> serializerClientSession, SerializeExecutionsByKey<UUID> serializerOfflineClientSession) RootAuthenticationSessionAdapter
(KeycloakSession session, SessionEntityUpdater<RootAuthenticationSessionEntity> updater, RealmModel realm, int authSessionsLimit) UserSessionAdapter
(KeycloakSession session, UserModel user, T provider, SessionsChangelogBasedTransaction<String, UserSessionEntity> userSessionUpdateTx, SessionsChangelogBasedTransaction<UUID, AuthenticatedClientSessionEntity> clientSessionUpdateTx, RealmModel realm, UserSessionEntity entity, boolean offline) -
Uses of KeycloakSession in org.keycloak.models.sessions.infinispan.changes
Modifier and TypeFieldDescriptionprotected final KeycloakSession
InfinispanChangelogBasedTransaction.kcSession
protected final KeycloakSession
PersistentSessionsChangelogBasedTransaction.kcSession
Modifier and TypeMethodDescriptionvoid
JpaChangesPerformer.applyChangesSynchronously
(KeycloakSession session) void
PersistentUpdate.perform
(KeycloakSession session) ModifierConstructorDescriptionClientSessionPersistentChangelogBasedTransaction
(KeycloakSession session, org.infinispan.Cache<UUID, SessionEntityWrapper<AuthenticatedClientSessionEntity>> cache, org.infinispan.Cache<UUID, SessionEntityWrapper<AuthenticatedClientSessionEntity>> offlineCache, RemoteCacheInvoker remoteCacheInvoker, SessionFunction<AuthenticatedClientSessionEntity> lifespanMsLoader, SessionFunction<AuthenticatedClientSessionEntity> maxIdleTimeMsLoader, SessionFunction<AuthenticatedClientSessionEntity> offlineLifespanMsLoader, SessionFunction<AuthenticatedClientSessionEntity> offlineMaxIdleTimeMsLoader, UserSessionPersistentChangelogBasedTransaction userSessionTx, ArrayBlockingQueue<PersistentUpdate> batchingQueue, SerializeExecutionsByKey<UUID> serializerOnline, SerializeExecutionsByKey<UUID> serializerOffline) InfinispanChangelogBasedTransaction
(KeycloakSession kcSession, org.infinispan.Cache<K, SessionEntityWrapper<V>> cache, RemoteCacheInvoker remoteCacheInvoker, SessionFunction<V> lifespanMsLoader, SessionFunction<V> maxIdleTimeMsLoader, SerializeExecutionsByKey<K> serializer) PersistentSessionsChangelogBasedTransaction
(KeycloakSession session, String cacheName, org.infinispan.Cache<K, SessionEntityWrapper<V>> cache, org.infinispan.Cache<K, SessionEntityWrapper<V>> offlineCache, RemoteCacheInvoker remoteCacheInvoker, SessionFunction<V> lifespanMsLoader, SessionFunction<V> maxIdleTimeMsLoader, SessionFunction<V> offlineLifespanMsLoader, SessionFunction<V> offlineMaxIdleTimeMsLoader, ArrayBlockingQueue<PersistentUpdate> batchingQueue, SerializeExecutionsByKey<K> serializerOnline, SerializeExecutionsByKey<K> serializerOffline) RemoteCachesChangesPerformer
(KeycloakSession session, org.infinispan.Cache<K, SessionEntityWrapper<V>> cache, RemoteCacheInvoker remoteCacheInvoker) UserSessionPersistentChangelogBasedTransaction
(KeycloakSession session, org.infinispan.Cache<String, SessionEntityWrapper<UserSessionEntity>> cache, org.infinispan.Cache<String, SessionEntityWrapper<UserSessionEntity>> offlineCache, RemoteCacheInvoker remoteCacheInvoker, SessionFunction<UserSessionEntity> lifespanMsLoader, SessionFunction<UserSessionEntity> maxIdleTimeMsLoader, SessionFunction<UserSessionEntity> offlineLifespanMsLoader, SessionFunction<UserSessionEntity> offlineMaxIdleTimeMsLoader, ArrayBlockingQueue<PersistentUpdate> batchingQueue, SerializeExecutionsByKey<String> serializerOnline, SerializeExecutionsByKey<String> serializerOffline) -
Uses of KeycloakSession in org.keycloak.models.sessions.infinispan.changes.sessions
Modifier and TypeMethodDescriptionCrossDCLastSessionRefreshStoreFactory.createAndInit
(KeycloakSession kcSession, org.infinispan.Cache<String, SessionEntityWrapper<UserSessionEntity>> cache, boolean offline) CrossDCLastSessionRefreshStoreFactory.createAndInit
(KeycloakSession kcSession, org.infinispan.Cache<String, SessionEntityWrapper<UserSessionEntity>> cache, long timerIntervalMs, int maxIntervalBetweenMessagesSeconds, int maxCount, boolean offline) PersisterLastSessionRefreshStoreFactory.createAndInit
(KeycloakSession kcSession, boolean offline) void
AbstractLastSessionRefreshStore.putLastSessionRefresh
(KeycloakSession kcSession, String sessionId, String realmId, int lastSessionRefresh) void
AbstractLastSessionRefreshStoreFactory.PropagateLastSessionRefreshTask.run
(KeycloakSession session) protected abstract void
AbstractLastSessionRefreshStore.sendMessage
(KeycloakSession kcSession, Map<String, SessionData> refreshesToSend) Bulk update the underlying store with all the user sessions, which were refreshed by Keycloak since the last call of this methodprotected void
CrossDCLastSessionRefreshStore.sendMessage
(KeycloakSession kcSession, Map<String, SessionData> refreshesToSend) protected void
PersisterLastSessionRefreshStore.sendMessage
(KeycloakSession kcSession, Map<String, SessionData> refreshesToSend) protected void
AbstractLastSessionRefreshStoreFactory.setupPeriodicTimer
(KeycloakSession kcSession, AbstractLastSessionRefreshStore store, long timerIntervalMs, String eventKey) CrossDCLastSessionRefreshChecker.shouldSaveClientSessionToRemoteCache
(KeycloakSession kcSession, RealmModel realm, SessionEntityWrapper<AuthenticatedClientSessionEntity> sessionWrapper, UserSessionModel userSession, boolean offline, int newTimestamp) CrossDCLastSessionRefreshChecker.shouldSaveUserSessionToRemoteCache
(KeycloakSession kcSession, RealmModel realm, SessionEntityWrapper<UserSessionEntity> sessionWrapper, boolean offline, int newLastSessionRefresh) ModifierConstructorDescriptionCrossDCLastSessionRefreshListener
(KeycloakSession session, org.infinispan.Cache<String, SessionEntityWrapper<UserSessionEntity>> cache, boolean offline) -
Uses of KeycloakSession in org.keycloak.models.sessions.infinispan.events
Modifier and TypeMethodDescriptionstatic <T extends SessionClusterEvent>
TSessionClusterEvent.createEvent
(Class<T> eventClass, String eventKey, KeycloakSession session, String realmId, boolean resendingEvent) -
Uses of KeycloakSession in org.keycloak.models.sessions.infinispan.initializer
Modifier and TypeMethodDescriptionSessionLoader.loadSessions
(KeycloakSession session, LOADER_CONTEXT loaderContext, WORKER_CONTEXT workerContext) Will be called on all cluster nodes to load the specified page. -
Uses of KeycloakSession in org.keycloak.models.sessions.infinispan.remote
Modifier and TypeMethodDescriptionRemoteInfinispanAuthenticationSessionProviderFactory.create
(KeycloakSession session) RemoteInfinispanSingleUseObjectProviderFactory.create
(KeycloakSession session) RemoteStickySessionEncoderProviderFactory.create
(KeycloakSession session) RemoteUserLoginFailureProviderFactory.create
(KeycloakSession session) RemoteUserSessionProviderFactory.create
(KeycloakSession session) ModifierConstructorDescriptionRemoteInfinispanAuthenticationSessionProvider
(KeycloakSession session, int authSessionsLimit, AuthenticationSessionTransaction transaction) RemoteUserSessionProvider
(KeycloakSession session, UserSessionTransaction transaction, int batchSize) -
Uses of KeycloakSession in org.keycloak.models.sessions.infinispan.remotestore
Modifier and TypeMethodDescriptionstatic <K,
V extends SessionEntity>
RemoteCacheSessionListenerRemoteCacheSessionListener.createListener
(KeycloakSession session, org.infinispan.Cache<K, SessionEntityWrapper<V>> cache, org.infinispan.client.hotrod.RemoteCache<K, SessionEntityWrapper<V>> remoteCache, SessionFunction<V> lifespanMsLoader, SessionFunction<V> maxIdleTimeMsLoader, Runnable onFailover) protected org.infinispan.Cache
RemoteCacheSessionsLoader.getCache
(KeycloakSession session) protected org.infinispan.client.hotrod.RemoteCache
RemoteCacheSessionsLoader.getRemoteCache
(KeycloakSession session) protected void
RemoteCacheSessionListener.init
(KeycloakSession session, org.infinispan.Cache<K, SessionEntityWrapper<V>> cache, org.infinispan.client.hotrod.RemoteCache<K, SessionEntityWrapper<V>> remoteCache, SessionFunction<V> lifespanMsLoader, SessionFunction<V> maxIdleTimeMsLoader) RemoteCacheSessionsLoader.loadSessions
(KeycloakSession session, RemoteCacheSessionsLoaderContext loaderContext, SessionLoader.WorkerContext ctx) <K,
V extends SessionEntity>
voidRemoteCacheInvoker.runTask
(KeycloakSession kcSession, RealmModel realm, String cacheName, K key, MergedUpdate<V> task, SessionEntityWrapper<V> sessionWrapper) -
Uses of KeycloakSession in org.keycloak.models.sessions.infinispan.util
Modifier and TypeMethodDescriptionprotected <K> K
InfinispanKeyGenerator.generateKey
(KeycloakSession session, org.infinispan.Cache<K, ?> cache, org.infinispan.affinity.KeyGenerator<K> keyGenerator) InfinispanKeyGenerator.generateKeyString
(KeycloakSession session, org.infinispan.Cache<String, ?> cache) InfinispanKeyGenerator.generateKeyUUID
(KeycloakSession session, org.infinispan.Cache<UUID, ?> cache) -
Uses of KeycloakSession in org.keycloak.models.utils
Modifier and TypeMethodDescriptionstatic void
SystemClientUtil.checkSkipLink
(KeycloakSession session, AuthenticationSessionModel authSession) Cleanup system client URL to avoid links to account managementstatic void
KeycloakModelUtils.cloneContextRealmClientSessionToSession
(KeycloakContext origContext, KeycloakSession targetSession) Sets up the context for the specified session with the RealmModel, clientModel and AuthenticatedSessionModel.static void
KeycloakModelUtils.cloneContextRealmClientToSession
(KeycloakContext origContext, KeycloakSession targetSession) Sets up the context for the specified session with the RealmModel.static ClientModel
RepresentationToModel.createClient
(KeycloakSession session, RealmModel realm, ClientRepresentation resourceRep) Does not create scope or role mappings!static ClientModel
RepresentationToModel.createClient
(KeycloakSession session, RealmModel realm, ClientRepresentation resourceRep, Map<String, String> mappedFlows) static ClientScopeModel
RepresentationToModel.createClientScope
(KeycloakSession session, RealmModel realm, ClientScopeRepresentation resourceRep) static void
RepresentationToModel.createCredentials
(UserRepresentation userRep, KeycloakSession session, RealmModel realm, UserModel user, boolean adminRequest) static void
DefaultClientScopes.createDefaultClientScopes
(KeycloakSession session, RealmModel realm, boolean addScopesToExistingClients) static void
RepresentationToModel.createFederatedIdentities
(UserRepresentation userRep, KeycloakSession session, RealmModel realm, UserModel user) static void
RepresentationToModel.createGroups
(KeycloakSession session, UserRepresentation userRep, RealmModel newRealm, UserModel user) static ResourceServer
RepresentationToModel.createResourceServer
(ClientModel client, KeycloakSession session, boolean addDefaultRoles) static UserModel
RepresentationToModel.createUser
(KeycloakSession session, RealmModel newRealm, UserRepresentation userRep) static void
KeycloakModelUtils.deepDeleteAuthenticationExecutor
(KeycloakSession session, RealmModel realm, AuthenticationExecutionModel authExecutor, Runnable flowUnavailableHandler, Runnable builtinFlowHandler) Recursively remove authentication executor (including sub-flows and configs) from the model storagestatic void
KeycloakModelUtils.deepDeleteAuthenticationFlow
(KeycloakSession session, RealmModel realm, AuthenticationFlowModel authFlow, Runnable flowUnavailableHandler, Runnable builtinFlowHandler) Recursively remove authentication flow (including all subflows and executions) from the model storagestatic boolean
KeycloakModelUtils.escapeSlashesInGroupPath
(KeycloakSession session) Helper to get from the session if group path slashes should be escaped or not.static void
ModelToRepresentation.exportAuthenticationFlows
(KeycloakSession session, RealmModel realm, RealmRepresentation rep) static void
ModelToRepresentation.exportGroups
(KeycloakSession session, RealmModel realm, RealmRepresentation rep) static GroupModel
KeycloakModelUtils.findGroupByPath
(KeycloakSession session, RealmModel realm, String path) Finds group by path.static GroupModel
KeycloakModelUtils.findGroupByPath
(KeycloakSession session, RealmModel realm, String[] path) Finds group by path.static UserModel
KeycloakModelUtils.findUserByNameOrEmail
(KeycloakSession session, RealmModel realm, String username) Try to find user by username or email for authenticationstatic Map<String,
ProviderConfigProperty> ComponentUtil.getComponentConfigProperties
(KeycloakSession session, String providerType, String providerId) static Map<String,
ProviderConfigProperty> ComponentUtil.getComponentConfigProperties
(KeycloakSession session, ComponentModel component) static Map<String,
ProviderConfigProperty> ComponentUtil.getComponentConfigProperties
(KeycloakSession session, ComponentRepresentation component) static ComponentFactory
ComponentUtil.getComponentFactory
(KeycloakSession session, ComponentModel component) static ComponentFactory
ComponentUtil.getComponentFactory
(KeycloakSession session, ComponentRepresentation component) StripSecretsUtils.GetComponentPropertiesFn.getComponentProperties
(KeycloakSession session, String providerType, String providerId) static String
KeycloakModelUtils.getIdentityProviderDisplayName
(KeycloakSession session, IdentityProviderModel provider) static void
RepresentationToModel.importAuthorizationSettings
(ClientRepresentation clientRepresentation, ClientModel client, KeycloakSession session) static void
RepresentationToModel.importRealm
(KeycloakSession session, RealmRepresentation rep, RealmModel newRealm, boolean skipUserDependent) static boolean
KeycloakModelUtils.isFlowUsed
(KeycloakSession session, RealmModel realm, AuthenticationFlowModel model) Check to see if a flow is currently in usestatic void
ComponentUtil.notifyCreated
(KeycloakSession session, RealmModel realm, ComponentModel model) static void
ComponentUtil.notifyPreRemove
(KeycloakSession session, RealmModel realm, ComponentModel model) static void
ComponentUtil.notifyUpdated
(KeycloakSession session, RealmModel realm, ComponentModel oldModel, ComponentModel newModel) static Stream<GroupModel>
ModelToRepresentation.searchGroupModelsByAttributes
(KeycloakSession session, RealmModel realm, Map<String, String> attributes, Integer first, Integer max) static void
KeycloakModelUtils.setDefaultGroups
(KeycloakSession session, RealmModel realm, Stream<String> groups) Sets the default groups on the realmprotected static void
StripSecretsUtils.stripRealm
(KeycloakSession session, RealmRepresentation rep, StripSecretsUtils.GetComponentPropertiesFn fnGetConfigProperties) static <T> T
StripSecretsUtils.stripSecrets
(KeycloakSession session, T representation) static Stream<GroupRepresentation>
ModelToRepresentation.toGroupHierarchy
(KeycloakSession session, RealmModel realm, boolean full) Deprecated.static AuthenticationExecutionModel
RepresentationToModel.toModel
(KeycloakSession session, RealmModel realm, AuthenticationExecutionRepresentation rep) static ComponentModel
RepresentationToModel.toModel
(KeycloakSession session, ComponentRepresentation rep) static IdentityProviderModel
RepresentationToModel.toModel
(RealmModel realm, IdentityProviderRepresentation representation, KeycloakSession session) static ClientRepresentation
ModelToRepresentation.toRepresentation
(ClientModel clientModel, KeycloakSession session) static ComponentRepresentation
ModelToRepresentation.toRepresentation
(KeycloakSession session, ComponentModel component, boolean internal) static RealmRepresentation
ModelToRepresentation.toRepresentation
(KeycloakSession session, RealmModel realm, boolean internal) static RealmRepresentation
ModelToRepresentation.toRepresentation
(KeycloakSession session, RealmModel realm, boolean internal, boolean export) ModelToRepresentation.toRepresentation
(KeycloakSession session, RealmModel realm, AuthenticationExecutionModel model) ModelToRepresentation.toRepresentation
(KeycloakSession session, RealmModel realm, AuthenticationFlowModel model) static UserRepresentation
ModelToRepresentation.toRepresentation
(KeycloakSession session, RealmModel realm, UserModel user) static ResourceServerRepresentation
ModelToRepresentation.toResourceServerRepresentation
(KeycloakSession session, ClientModel client) static void
RepresentationToModel.updateClient
(ClientRepresentation rep, ClientModel resource, KeycloakSession session) static void
RepresentationToModel.updateComponent
(KeycloakSession session, ComponentRepresentation rep, ComponentModel component, boolean internal) static void
RepresentationToModel.updateRealm
(RealmRepresentation rep, RealmModel realm, KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.organization.admin.resource
Modifier and TypeMethodDescriptionOrganizationResourceFactory.create
(KeycloakSession session) OrganizationResourceProvider.getResource
(KeycloakSession session, RealmModel realm, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) ModifierConstructorDescriptionOrganizationIdentityProvidersResource
(KeycloakSession session, OrganizationModel organization, AdminEventBuilder adminEvent) OrganizationInvitationResource
(KeycloakSession session, OrganizationModel organization, AdminEventBuilder adminEvent) OrganizationMemberResource
(KeycloakSession session, OrganizationModel organization, AdminEventBuilder adminEvent) OrganizationResource
(KeycloakSession session, OrganizationModel organization, AdminEventBuilder adminEvent) OrganizationsResource
(KeycloakSession session, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) -
Uses of KeycloakSession in org.keycloak.organization.authentication.authenticators.broker
Modifier and TypeMethodDescriptionboolean
IdpAddOrganizationMemberAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) IdpOrganizationAuthenticatorFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.organization.authentication.authenticators.browser
Modifier and TypeMethodDescriptionboolean
OrganizationAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) OrganizationAuthenticatorFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.organization.jpa
ModifierConstructorDescriptionJpaOrganizationProvider
(KeycloakSession session) OrganizationAdapter
(KeycloakSession session, RealmModel realm, OrganizationEntity entity, OrganizationProvider provider) -
Uses of KeycloakSession in org.keycloak.organization.protocol.mappers.oidc
Modifier and TypeMethodDescriptionOrganizationMembershipMapper.getEffectiveModel
(KeycloakSession session, RealmModel realm, ProtocolMapperModel model) OrganizationScope.resolveOrganizations
(UserModel user, String scope, KeycloakSession session) Returns the organizations mapped from thescope
based on the givenuser
.protected void
OrganizationMembershipMapper.setClaim
(IDToken token, ProtocolMapperModel model, UserSessionModel userSession, KeycloakSession session, ClientSessionContext clientSessionCtx) OrganizationScope.toClientScope
(String name, UserModel user, KeycloakSession session) Returns aClientScopeModel
with the givenname
for this scope. -
Uses of KeycloakSession in org.keycloak.organization.protocol.mappers.saml
Modifier and TypeMethodDescriptionvoid
OrganizationMembershipMapper.transformAttributeStatement
(AttributeStatementType attributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) -
Uses of KeycloakSession in org.keycloak.organization.utils
Modifier and TypeMethodDescriptionstatic boolean
Organizations.canManageOrganizationGroup
(KeycloakSession session, GroupModel group) static OrganizationProvider
Organizations.getProvider
(KeycloakSession session) static boolean
Organizations.isEnabledAndOrganizationsPresent
(KeycloakSession session) static boolean
Organizations.isRegistrationAllowed
(KeycloakSession session, RealmModel realm) static Consumer<GroupModel>
Organizations.removeGroup
(KeycloakSession session, RealmModel realm) static List<IdentityProviderModel>
Organizations.resolveHomeBroker
(KeycloakSession session, UserModel user) static OrganizationModel
Organizations.resolveOrganization
(KeycloakSession session) static OrganizationModel
Organizations.resolveOrganization
(KeycloakSession session, UserModel user) static OrganizationModel
Organizations.resolveOrganization
(KeycloakSession session, UserModel user, String domain) -
Uses of KeycloakSession in org.keycloak.partialimport
Modifier and TypeMethodDescriptionabstract void
AbstractPartialImport.create
(RealmModel realm, KeycloakSession session, T resourceRep) void
ClientsPartialImport.create
(RealmModel realm, KeycloakSession session, ClientRepresentation clientRep) void
GroupsPartialImport.create
(RealmModel realm, KeycloakSession session, GroupRepresentation groupRep) void
IdentityProviderMappersPartialImport.create
(RealmModel realm, KeycloakSession session, IdentityProviderMapperRepresentation idpMapperRep) void
IdentityProvidersPartialImport.create
(RealmModel realm, KeycloakSession session, IdentityProviderRepresentation idpRep) void
RealmRolesPartialImport.create
(RealmModel realm, KeycloakSession session, RoleRepresentation roleRep) void
UsersPartialImport.create
(RealmModel realm, KeycloakSession session, UserRepresentation user) AbstractPartialImport.doImport
(PartialImportRepresentation partialImportRep, RealmModel realm, KeycloakSession session) PartialImport.doImport
(PartialImportRepresentation rep, RealmModel realm, KeycloakSession session) Create (or re-create) all the imported resources.RolesPartialImport.doImport
(PartialImportRepresentation rep, RealmModel realm, KeycloakSession session) abstract boolean
AbstractPartialImport.exists
(RealmModel realm, KeycloakSession session, T resourceRep) boolean
ClientRolesPartialImport.exists
(RealmModel realm, KeycloakSession session, String clientId, RoleRepresentation roleRep) boolean
ClientsPartialImport.exists
(RealmModel realm, KeycloakSession session, ClientRepresentation clientRep) boolean
GroupsPartialImport.exists
(RealmModel realm, KeycloakSession session, GroupRepresentation groupRep) boolean
IdentityProviderMappersPartialImport.exists
(RealmModel realm, KeycloakSession session, IdentityProviderMapperRepresentation idpMapperRep) boolean
IdentityProvidersPartialImport.exists
(RealmModel realm, KeycloakSession session, IdentityProviderRepresentation idpRep) boolean
RealmRolesPartialImport.exists
(RealmModel realm, KeycloakSession session, RoleRepresentation roleRep) boolean
UsersPartialImport.exists
(RealmModel realm, KeycloakSession session, UserRepresentation user) abstract String
AbstractPartialImport.getModelId
(RealmModel realm, KeycloakSession session, T resourceRep) ClientsPartialImport.getModelId
(RealmModel realm, KeycloakSession session, ClientRepresentation clientRep) GroupsPartialImport.getModelId
(RealmModel realm, KeycloakSession session, GroupRepresentation groupRep) IdentityProviderMappersPartialImport.getModelId
(RealmModel realm, KeycloakSession session, IdentityProviderMapperRepresentation idpMapperRep) IdentityProvidersPartialImport.getModelId
(RealmModel realm, KeycloakSession session, IdentityProviderRepresentation idpRep) RealmRolesPartialImport.getModelId
(RealmModel realm, KeycloakSession session, RoleRepresentation roleRep) UsersPartialImport.getModelId
(RealmModel realm, KeycloakSession session, UserRepresentation user) void
AbstractPartialImport.prepare
(PartialImportRepresentation partialImportRep, RealmModel realm, KeycloakSession session) void
ClientRolesPartialImport.prepare
(PartialImportRepresentation partialImportRep, RealmModel realm, KeycloakSession session) void
PartialImport.prepare
(PartialImportRepresentation rep, RealmModel realm, KeycloakSession session) Find which resources will need to be skipped or overwritten.void
RolesPartialImport.prepare
(PartialImportRepresentation rep, RealmModel realm, KeycloakSession session) abstract void
AbstractPartialImport.remove
(RealmModel realm, KeycloakSession session, T resourceRep) void
ClientsPartialImport.remove
(RealmModel realm, KeycloakSession session, ClientRepresentation clientRep) void
GroupsPartialImport.remove
(RealmModel realm, KeycloakSession session, GroupRepresentation groupRep) void
IdentityProviderMappersPartialImport.remove
(RealmModel realm, KeycloakSession session, IdentityProviderMapperRepresentation idpMapperRep) void
IdentityProvidersPartialImport.remove
(RealmModel realm, KeycloakSession session, IdentityProviderRepresentation idpRep) void
RealmRolesPartialImport.remove
(RealmModel realm, KeycloakSession session, RoleRepresentation roleRep) void
UsersPartialImport.remove
(RealmModel realm, KeycloakSession session, UserRepresentation user) void
AbstractPartialImport.removeOverwrites
(RealmModel realm, KeycloakSession session) void
PartialImport.removeOverwrites
(RealmModel realm, KeycloakSession session) Delete resources that will be overwritten.void
RolesPartialImport.removeOverwrites
(RealmModel realm, KeycloakSession session) ModifierConstructorDescriptionPartialImportManager
(PartialImportRepresentation rep, KeycloakSession session, RealmModel realm) -
Uses of KeycloakSession in org.keycloak.policy
Modifier and TypeMethodDescriptionAgePasswordPolicyProviderFactory.create
(KeycloakSession session) BlacklistPasswordPolicyProviderFactory.create
(KeycloakSession session) DefaultPasswordPolicyManagerProviderFactory.create
(KeycloakSession session) DigitsPasswordPolicyProviderFactory.create
(KeycloakSession session) ForceExpiredPasswordPolicyProviderFactory.create
(KeycloakSession session) HashAlgorithmPasswordPolicyProviderFactory.create
(KeycloakSession session) HashIterationsPasswordPolicyProviderFactory.create
(KeycloakSession session) HistoryPasswordPolicyProviderFactory.create
(KeycloakSession session) LengthPasswordPolicyProviderFactory.create
(KeycloakSession session) LowerCasePasswordPolicyProviderFactory.create
(KeycloakSession session) MaxAuthAgePasswordPolicyProviderFactory.create
(KeycloakSession session) MaximumLengthPasswordPolicyProviderFactory.create
(KeycloakSession session) NotContainsUsernamePasswordPolicyProviderFactory.create
(KeycloakSession session) NotEmailPasswordPolicyProviderFactory.create
(KeycloakSession session) NotUsernamePasswordPolicyProviderFactory.create
(KeycloakSession session) RecoveryCodesWarningThresholdPasswordPolicyProviderFactory.create
(KeycloakSession session) RegexPatternsPasswordPolicyProviderFactory.create
(KeycloakSession session) SpecialCharsPasswordPolicyProviderFactory.create
(KeycloakSession session) UpperCasePasswordPolicyProviderFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.protocol
Modifier and TypeFieldDescriptionprotected final KeycloakSession
AuthorizationEndpointBase.session
Modifier and TypeMethodDescriptionLoginProtocolFactory.createProtocolEndpoint
(KeycloakSession session, EventBuilder event) static void
RestartLoginCookie.expireRestartCookie
(KeycloakSession session) static ProtocolMapperModel
ProtocolMapperUtils.findLocaleMapper
(KeycloakSession session) Find the builtin locale mapper.jakarta.ws.rs.core.Response
ClientInstallationProvider.generateInstallation
(KeycloakSession session, RealmModel realm, ClientModel client, URI serverBaseUri) default ProtocolMapperModel
ProtocolMapper.getEffectiveModel
(KeycloakSession session, RealmModel realm, ProtocolMapperModel protocolMapperModel) Get effective configuration of protocol mapper.static String
RestartLoginCookie.getRestartCookie
(KeycloakSession session) static Stream<Map.Entry<ProtocolMapperModel,
ProtocolMapper>> ProtocolMapperUtils.getSortedProtocolMappers
(KeycloakSession session, ClientSessionContext ctx) static Stream<Map.Entry<ProtocolMapperModel,
ProtocolMapper>> ProtocolMapperUtils.getSortedProtocolMappers
(KeycloakSession session, ClientSessionContext ctx, Predicate<Map.Entry<ProtocolMapperModel, ProtocolMapper>> filter) static boolean
ProtocolMapperUtils.isEnabled
(KeycloakSession session, ProtocolMapperModel mapper) static AuthenticationSessionModel
RestartLoginCookie.restartSession
(KeycloakSession session, RealmModel realm, RootAuthenticationSessionModel rootSession, String expectedClientId, String encodedCookie) static void
RestartLoginCookie.setRestartCookie
(KeycloakSession session, AuthenticationSessionModel authSession) LoginProtocol.setSession
(KeycloakSession session) default void
ProtocolMapper.validateConfig
(KeycloakSession session, RealmModel realm, ProtocolMapperContainerModel client, ProtocolMapperModel mapperModel) Called when instance of mapperModel is created/updated for this protocolMapper through admin endpointModifierConstructorDescriptionAuthorizationEndpointBase
(KeycloakSession session, EventBuilder event) -
Uses of KeycloakSession in org.keycloak.protocol.docker
Modifier and TypeMethodDescriptionboolean
DockerAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) DockerAuthenticatorFactory.create
(KeycloakSession session) DockerAuthV2ProtocolFactory.create
(KeycloakSession session) DockerAuthV2ProtocolFactory.createProtocolEndpoint
(KeycloakSession session, EventBuilder event) DockerAuthV2Protocol.setSession
(KeycloakSession session) ModifierConstructorDescriptionDockerAuthV2Protocol
(KeycloakSession session, RealmModel realm, jakarta.ws.rs.core.UriInfo uriInfo, jakarta.ws.rs.core.HttpHeaders headers, EventBuilder event) DockerEndpoint
(KeycloakSession session, EventBuilder event, EventType login) DockerV2LoginProtocolService
(KeycloakSession session, EventBuilder event) -
Uses of KeycloakSession in org.keycloak.protocol.docker.installation
Modifier and TypeMethodDescriptionDockerComposeYamlInstallationProvider.create
(KeycloakSession session) DockerRegistryConfigFileInstallationProvider.create
(KeycloakSession session) DockerVariableOverrideInstallationProvider.create
(KeycloakSession session) jakarta.ws.rs.core.Response
DockerComposeYamlInstallationProvider.generateInstallation
(KeycloakSession session, RealmModel realm, ClientModel client, URI serverBaseUri) jakarta.ws.rs.core.Response
DockerRegistryConfigFileInstallationProvider.generateInstallation
(KeycloakSession session, RealmModel realm, ClientModel client, URI serverBaseUri) jakarta.ws.rs.core.Response
DockerVariableOverrideInstallationProvider.generateInstallation
(KeycloakSession session, RealmModel realm, ClientModel client, URI serverBaseUri) -
Uses of KeycloakSession in org.keycloak.protocol.docker.mapper
Modifier and TypeMethodDescriptionfinal ProtocolMapper
DockerAuthV2ProtocolMapper.create
(KeycloakSession session) AllowAllDockerProtocolMapper.transformDockerResponseToken
(DockerResponseToken responseToken, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) DockerAuthV2AttributeMapper.transformDockerResponseToken
(DockerResponseToken responseToken, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) -
Uses of KeycloakSession in org.keycloak.protocol.oid4vc
Modifier and TypeMethodDescriptionOID4VCClientRegistrationProviderFactory.create
(KeycloakSession session) OID4VCLoginProtocolFactory.create
(KeycloakSession session) OID4VCLoginProtocolFactory.createProtocolEndpoint
(KeycloakSession keycloakSession, EventBuilder event) -
Uses of KeycloakSession in org.keycloak.protocol.oid4vc.issuance
Modifier and TypeMethodDescriptionJWTVCIssuerWellKnownProviderFactory.create
(KeycloakSession session) OID4VCIssuerWellKnownProviderFactory.create
(KeycloakSession session) OID4VCIssuerWellKnownProvider.getSupportedCredentials
(KeycloakSession keycloakSession) Return the supported credentials from the current session.ModifierConstructorDescriptionOID4VCIssuerEndpoint
(KeycloakSession session, String issuerDid, Map<String, VerifiableCredentialsSigningService> signingServices, AppAuthManager.BearerTokenAuthenticator authenticator, com.fasterxml.jackson.databind.ObjectMapper objectMapper, TimeProvider timeProvider, int preAuthorizedCodeLifeSpan) OID4VCIssuerEndpoint
(KeycloakSession session, String issuerDid, Map<String, VerifiableCredentialsSigningService> signingServices, AppAuthManager.BearerTokenAuthenticator authenticator, com.fasterxml.jackson.databind.ObjectMapper objectMapper, TimeProvider timeProvider, int preAuthorizedCodeLifeSpan, boolean isIgnoreScopeCheck) OID4VCIssuerWellKnownProvider
(KeycloakSession keycloakSession) -
Uses of KeycloakSession in org.keycloak.protocol.oid4vc.issuance.mappers
Modifier and TypeMethodDescriptionOID4VCContextMapper.create
(KeycloakSession session) OID4VCIssuedAtTimeClaimMapper.create
(KeycloakSession session) OID4VCStaticClaimMapper.create
(KeycloakSession session) OID4VCSubjectIdMapper.create
(KeycloakSession session) OID4VCTargetRoleMapper.create
(KeycloakSession session) OID4VCTypeMapper.create
(KeycloakSession session) OID4VCUserAttributeMapper.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.protocol.oid4vc.issuance.signing
Modifier and TypeMethodDescriptionJwtSigningServiceProviderFactory.create
(KeycloakSession session, ComponentModel model) LDSigningServiceProviderFactory.create
(KeycloakSession session, ComponentModel model) SdJwtSigningServiceProviderFactory.create
(KeycloakSession session, ComponentModel model) default void
VCSigningServiceProviderFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel model) void
JwtSigningServiceProviderFactory.validateSpecificConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel model) void
LDSigningServiceProviderFactory.validateSpecificConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel model) void
SdJwtSigningServiceProviderFactory.validateSpecificConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel model) void
VCSigningServiceProviderFactory.validateSpecificConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel model) Should validate potential implementation specific configuration of the factory.ModifierConstructorDescriptionprotected
JwtProofBasedSigningService
(KeycloakSession keycloakSession, String keyId, String format, String type) JwtSigningService
(KeycloakSession keycloakSession, String keyId, String algorithmType, String tokenType, String issuerDid, TimeProvider timeProvider) LDSigningService
(KeycloakSession keycloakSession, String keyId, String algorithmType, String ldpType, TimeProvider timeProvider, Optional<String> kid) SdJwtSigningService
(KeycloakSession keycloakSession, com.fasterxml.jackson.databind.ObjectMapper objectMapper, String keyId, String algorithmType, String tokenType, String hashAlgorithm, String issuerDid, int decoys, List<String> visibleClaims, Optional<String> kid, VerifiableCredentialType credentialType, CredentialConfigId vcConfigId) protected
SigningService
(KeycloakSession keycloakSession, String keyId, String format, String type) -
Uses of KeycloakSession in org.keycloak.protocol.oidc
Modifier and TypeMethodDescriptionstatic ClientSessionContext
TokenManager.attachAuthenticationSession
(KeycloakSession session, UserSessionModel userSession, AuthenticationSessionModel authSession) TokenManager.checkTokenValidForIntrospection
(KeycloakSession session, RealmModel realm, AccessToken token, EventBuilder eventBuilder) Checks if the token is valid.AccessTokenIntrospectionProviderFactory.create
(KeycloakSession session) DefaultTokenExchangeProviderFactory.create
(KeycloakSession session) OIDCClientDescriptionConverterFactory.create
(KeycloakSession session) OIDCLoginProtocolFactory.create
(KeycloakSession session) OIDCWellKnownProviderFactory.create
(KeycloakSession session) RefreshTokenIntrospectionProviderFactory.create
(KeycloakSession session) TokenManager.createClientAccessToken
(KeycloakSession session, RealmModel realm, ClientModel client, UserModel user, UserSessionModel userSession, ClientSessionContext clientSessionCtx) OIDCLoginProtocolFactory.createProtocolEndpoint
(KeycloakSession session, EventBuilder event) static FrontChannelLogoutHandler
FrontChannelLogoutHandler.current
(KeycloakSession session) static FrontChannelLogoutHandler
FrontChannelLogoutHandler.currentOrCreate
(KeycloakSession session, AuthenticatedClientSessionModel clientSession) static TokenManager.NotBeforeCheck
TokenManager.NotBeforeCheck.forModel
(KeycloakSession session, RealmModel realmModel, UserModel userModel) static Stream<ClientScopeModel>
TokenManager.getRequestedClientScopes
(KeycloakSession session, String scopeParam, ClientModel client, UserModel user) Return client itself + all default client scopes of client + optional client scopes requested by scope parameterTokenManager.getValidUserSessionIfTokenIsValid
(KeycloakSession session, RealmModel realm, AccessToken token, EventBuilder eventBuilder) Checks if the token is valid and return a valid user session.static boolean
TokenManager.isUserValid
(KeycloakSession session, RealmModel realm, AccessToken token, UserModel user) static boolean
TokenManager.isValidScope
(KeycloakSession session, String scopes, ClientModel client, UserModel user) static boolean
TokenManager.isValidScope
(KeycloakSession session, String scopes, AuthorizationRequestContext authorizationRequestContext, ClientModel client, UserModel user) Check that all the ClientScopes that have been parsed into authorization_resources are actually in the requested scopes otherwise, the scope wasn't parsed correctlystatic UserModel
TokenManager.lookupUserFromStatelessToken
(KeycloakSession session, RealmModel realm, AccessToken token) Lookup user from the "stateless" token.TokenManager.refreshAccessToken
(KeycloakSession session, jakarta.ws.rs.core.UriInfo uriInfo, ClientConnection connection, RealmModel realm, ClientModel authorizedClient, String encodedRefreshToken, EventBuilder event, jakarta.ws.rs.core.HttpHeaders headers, HttpRequest request, String scopeParameter) TokenManager.responseBuilder
(RealmModel realm, ClientModel client, EventBuilder event, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) OIDCLoginProtocol.setSession
(KeycloakSession session) TokenManager.toRefreshToken
(KeycloakSession session, String encodedRefreshToken) TokenManager.transformAccessToken
(KeycloakSession session, AccessToken token, UserSessionModel userSession, ClientSessionContext clientSessionCtx) TokenManager.transformAccessTokenResponse
(KeycloakSession session, AccessTokenResponse accessTokenResponse, UserSessionModel userSession, ClientSessionContext clientSessionCtx) TokenManager.transformIDToken
(KeycloakSession session, IDToken token, UserSessionModel userSession, ClientSessionContext clientSessionCtx) TokenManager.transformIntrospectionAccessToken
(KeycloakSession session, AccessToken token, UserSessionModel userSession, ClientSessionContext clientSessionCtx) TokenManager.transformUserInfoAccessToken
(KeycloakSession session, AccessToken token, UserSessionModel userSession, ClientSessionContext clientSessionCtx) TokenManager.validateToken
(KeycloakSession session, jakarta.ws.rs.core.UriInfo uriInfo, ClientConnection connection, RealmModel realm, RefreshToken oldToken, jakarta.ws.rs.core.HttpHeaders headers, String oldTokenScope) static boolean
TokenManager.verifyConsentStillAvailable
(KeycloakSession session, UserModel user, ClientModel client, Stream<ClientScopeModel> requestedClientScopes) TokenManager.verifyIDToken
(KeycloakSession session, RealmModel realm, String encodedIDToken) TokenManager.verifyIDTokenSignature
(KeycloakSession session, String encodedIDToken) TokenManager.verifyLogoutToken
(KeycloakSession session, String encodedLogoutToken) TokenManager.verifyRefreshToken
(KeycloakSession session, RealmModel realm, ClientModel client, HttpRequest request, String encodedRefreshToken, boolean checkExpiration) ModifierConstructorDescriptionAccessTokenResponseBuilder
(RealmModel realm, ClientModel client, EventBuilder event, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) OIDCLoginProtocol
(KeycloakSession session, RealmModel realm, jakarta.ws.rs.core.UriInfo uriInfo, jakarta.ws.rs.core.HttpHeaders headers, EventBuilder event) OIDCLoginProtocolService
(KeycloakSession session, EventBuilder event) OIDCWellKnownProvider
(KeycloakSession session) OIDCWellKnownProvider
(KeycloakSession session, Map<String, Object> openidConfigOverride, boolean includeClientScopes) TokenExchangeContext
(KeycloakSession session, jakarta.ws.rs.core.MultivaluedMap<String, String> formParams, Cors cors, RealmModel realm, EventBuilder event, ClientModel client, ClientConnection clientConnection, jakarta.ws.rs.core.HttpHeaders headers, Object tokenManager, Map<String, String> clientAuthAttributes) TokenRevocationCheck
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.protocol.oidc.endpoints
Modifier and TypeMethodDescriptionstatic jakarta.ws.rs.core.Response
IframeUtil.returnIframeFromResources
(String fileName, String version, KeycloakSession session) AuthorizationEndpointChecker.session
(KeycloakSession session) ModifierConstructorDescriptionAuthorizationEndpoint
(KeycloakSession session, EventBuilder event) LoginStatusIframeEndpoint
(KeycloakSession session) LogoutEndpoint
(KeycloakSession session, TokenManager tokenManager, EventBuilder event) TokenEndpoint
(KeycloakSession session, TokenManager tokenManager, EventBuilder event) TokenIntrospectionEndpoint
(KeycloakSession session, EventBuilder event) TokenRevocationEndpoint
(KeycloakSession session, EventBuilder event) UserInfoEndpoint
(KeycloakSession session, TokenManager tokenManager) -
Uses of KeycloakSession in org.keycloak.protocol.oidc.endpoints.request
Modifier and TypeMethodDescriptionstatic String
AuthorizationEndpointRequestParserProcessor.getClientId
(EventBuilder event, KeycloakSession session, jakarta.ws.rs.core.MultivaluedMap<String, String> requestParams) static AuthorizationEndpointRequest
AuthorizationEndpointRequestParserProcessor.parseRequest
(EventBuilder event, KeycloakSession session, ClientModel client, jakarta.ws.rs.core.MultivaluedMap<String, String> requestParams, AuthorizationEndpointRequestParserProcessor.EndpointType endpointType) ModifierConstructorDescriptionAuthzEndpointRequestObjectParser
(KeycloakSession session, String requestObject, ClientModel client) -
Uses of KeycloakSession in org.keycloak.protocol.oidc.grants
Modifier and TypeFieldDescriptionprotected KeycloakSession
OAuth2GrantType.Context.session
protected KeycloakSession
OAuth2GrantTypeBase.session
Modifier and TypeMethodDescriptionAuthorizationCodeGrantTypeFactory.create
(KeycloakSession session) ClientCredentialsGrantTypeFactory.create
(KeycloakSession session) PermissionGrantTypeFactory.create
(KeycloakSession session) PreAuthorizedCodeGrantTypeFactory.create
(KeycloakSession session) RefreshTokenGrantTypeFactory.create
(KeycloakSession session) ResourceOwnerPasswordCredentialsGrantTypeFactory.create
(KeycloakSession session) TokenExchangeGrantTypeFactory.create
(KeycloakSession session) static String
PreAuthorizedCodeGrantType.getPreAuthorizedCode
(KeycloakSession session, AuthenticatedClientSessionModel authenticatedClientSession, int expirationTime) Create a pre-authorized Code for the given client session. -
Uses of KeycloakSession in org.keycloak.protocol.oidc.grants.ciba
-
Uses of KeycloakSession in org.keycloak.protocol.oidc.grants.ciba.channel
Modifier and TypeFieldDescriptionprotected KeycloakSession
HttpAuthenticationChannelProvider.session
Modifier and TypeMethodDescriptionHttpAuthenticationChannelProviderFactory.create
(KeycloakSession session) static CIBAAuthenticationRequest
CIBAAuthenticationRequest.deserialize
(KeycloakSession session, String jwe) Deserialize the givenjwe
to aCIBAAuthenticationRequest
instance.CIBAAuthenticationRequest.serialize
(KeycloakSession session) Serializes this instance to a JWE.ModifierConstructorDescriptionCIBAAuthenticationRequest
(KeycloakSession session, UserModel user, ClientModel client) HttpAuthenticationChannelProvider
(KeycloakSession session, String httpAuthenticationRequestUri) -
Uses of KeycloakSession in org.keycloak.protocol.oidc.grants.ciba.clientpolicy.executor
Modifier and TypeMethodDescriptionSecureCibaAuthenticationRequestSigningAlgorithmExecutorFactory.create
(KeycloakSession session) SecureCibaSessionEnforceExecutorFactory.create
(KeycloakSession session) SecureCibaSignedAuthenticationRequestExecutorFactory.create
(KeycloakSession session) ModifierConstructorDescription -
Uses of KeycloakSession in org.keycloak.protocol.oidc.grants.ciba.endpoints
ModifierConstructorDescriptionAbstractCibaEndpoint
(KeycloakSession session, EventBuilder event) BackchannelAuthenticationCallbackEndpoint
(KeycloakSession session, EventBuilder event) BackchannelAuthenticationEndpoint
(KeycloakSession session, EventBuilder event) CibaRootEndpoint
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.protocol.oidc.grants.ciba.endpoints.request
Modifier and TypeMethodDescriptionBackchannelAuthenticationEndpointRequestParserProcessor.parseRequest
(EventBuilder event, KeycloakSession session, ClientModel client, jakarta.ws.rs.core.MultivaluedMap<String, String> requestParams, CibaConfig config) -
Uses of KeycloakSession in org.keycloak.protocol.oidc.grants.ciba.resolvers
Modifier and TypeMethodDescriptionDefaultCIBALoginUserResolverFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.protocol.oidc.grants.device
Modifier and TypeMethodDescriptionstatic jakarta.ws.rs.core.Response
DeviceGrantType.approveOAuth2DeviceAuthorization
(AuthenticationSessionModel authSession, AuthenticatedClientSessionModel clientSession, KeycloakSession session) static boolean
DeviceGrantType.approveUserCode
(KeycloakSession session, RealmModel realm, String userCode, String userSessionId, Map<String, String> additionalParams) DeviceGrantTypeFactory.create
(KeycloakSession session) static jakarta.ws.rs.core.Response
DeviceGrantType.denyOAuth2DeviceAuthorization
(AuthenticationSessionModel authSession, LoginProtocol.Error error, KeycloakSession session) static boolean
DeviceGrantType.denyUserCode
(KeycloakSession session, RealmModel realm, String userCode) static OAuth2DeviceCodeModel
DeviceGrantType.getDeviceByDeviceCode
(KeycloakSession session, RealmModel realm, ClientModel client, EventBuilder event, String deviceCode) static boolean
DeviceGrantType.isPollingAllowed
(KeycloakSession session, OAuth2DeviceCodeModel deviceCodeModel) static void
DeviceGrantType.removeDeviceByDeviceCode
(KeycloakSession session, String deviceCode) static void
DeviceGrantType.removeDeviceByUserCode
(KeycloakSession session, RealmModel realm, String userCode) -
Uses of KeycloakSession in org.keycloak.protocol.oidc.grants.device.endpoints
Modifier and TypeMethodDescriptionDeviceEndpointFactory.create
(KeycloakSession session) static OAuth2DeviceCodeModel
DeviceEndpoint.getDeviceByUserCode
(KeycloakSession session, RealmModel realm, String userCode) -
Uses of KeycloakSession in org.keycloak.protocol.oidc.installation
Modifier and TypeMethodDescriptionKeycloakOIDCClientInstallation.create
(KeycloakSession session) KeycloakOIDCJbossSubsystemClientCliInstallation.create
(KeycloakSession session) KeycloakOIDCJbossSubsystemClientInstallation.create
(KeycloakSession session) jakarta.ws.rs.core.Response
KeycloakOIDCClientInstallation.generateInstallation
(KeycloakSession session, RealmModel realm, ClientModel client, URI baseUri) jakarta.ws.rs.core.Response
KeycloakOIDCJbossSubsystemClientCliInstallation.generateInstallation
(KeycloakSession session, RealmModel realm, ClientModel client, URI baseUri) jakarta.ws.rs.core.Response
KeycloakOIDCJbossSubsystemClientInstallation.generateInstallation
(KeycloakSession session, RealmModel realm, ClientModel client, URI baseUri) KeycloakOIDCClientInstallation.getClientCredentialsAdapterConfig
(KeycloakSession session, ClientModel client) -
Uses of KeycloakSession in org.keycloak.protocol.oidc.mappers
Modifier and TypeMethodDescriptionfinal ProtocolMapper
AbstractOIDCProtocolMapper.create
(KeycloakSession session) final ProtocolMapper
NonceBackwardsCompatibleMapper.create
(KeycloakSession session) AbstractOIDCProtocolMapper.getEffectiveModel
(KeycloakSession session, RealmModel realm, ProtocolMapperModel protocolMapperModel) AllowedWebOriginsProtocolMapper.getEffectiveModel
(KeycloakSession session, RealmModel realm, ProtocolMapperModel protocolMapperModel) AudienceResolveProtocolMapper.getEffectiveModel
(KeycloakSession session, RealmModel realm, ProtocolMapperModel protocolMapperModel) protected void
AbstractOIDCProtocolMapper.setClaim
(AccessTokenResponse accessTokenResponse, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) Intended to be overridden inProtocolMapper
implementations to add claims to an token.protected void
AbstractOIDCProtocolMapper.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) Intended to be overridden inProtocolMapper
implementations to add claims to an token.protected void
AcrProtocolMapper.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) protected void
AmrProtocolMapper.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) protected void
AudienceProtocolMapper.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) protected void
ClaimsParameterTokenMapper.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) protected void
ClaimsParameterWithValueIdTokenMapper.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) protected void
HardcodedClaim.setClaim
(AccessTokenResponse accessTokenResponse, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) protected void
HardcodedRole.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession session, ClientSessionContext clientSessionCtx) protected void
RoleNameMapper.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession session, ClientSessionContext clientSessionCtx) protected void
ScriptBasedOIDCProtocolMapper.setClaim
(AccessTokenResponse accessTokenResponse, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) protected void
ScriptBasedOIDCProtocolMapper.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) protected void
SessionStateMapper.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) protected void
SubMapper.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) protected void
UserClientRoleMappingMapper.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession session, ClientSessionContext clientSessionCtx) protected void
UserRealmRoleMappingMapper.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession session, ClientSessionContext clientSessionCtx) protected void
UserSessionNoteMapper.setClaim
(AccessTokenResponse accessTokenResponse, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) AbstractOIDCProtocolMapper.transformAccessToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) AbstractPairwiseSubMapper.transformAccessToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) AllowedWebOriginsProtocolMapper.transformAccessToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) AudienceResolveProtocolMapper.transformAccessToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) HardcodedRole.transformAccessToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) NonceBackwardsCompatibleMapper.transformAccessToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) OIDCAccessTokenMapper.transformAccessToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) RoleNameMapper.transformAccessToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) AbstractOIDCProtocolMapper.transformAccessTokenResponse
(AccessTokenResponse accessTokenResponse, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) OIDCAccessTokenResponseMapper.transformAccessTokenResponse
(AccessTokenResponse accessTokenResponse, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) AbstractOIDCProtocolMapper.transformIDToken
(IDToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) AbstractPairwiseSubMapper.transformIDToken
(IDToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) OIDCIDTokenMapper.transformIDToken
(IDToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSession) AbstractOIDCProtocolMapper.transformIntrospectionToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) AbstractPairwiseSubMapper.transformIntrospectionToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) AllowedWebOriginsProtocolMapper.transformIntrospectionToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) AudienceResolveProtocolMapper.transformIntrospectionToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) HardcodedRole.transformIntrospectionToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) RoleNameMapper.transformIntrospectionToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) TokenIntrospectionTokenMapper.transformIntrospectionToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) AbstractOIDCProtocolMapper.transformUserInfoToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) AbstractPairwiseSubMapper.transformUserInfoToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) HardcodedRole.transformUserInfoToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) RoleNameMapper.transformUserInfoToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) UserInfoTokenMapper.transformUserInfoToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) void
AbstractPairwiseSubMapper.validateAdditionalConfig
(KeycloakSession session, RealmModel realm, ProtocolMapperContainerModel mapperContainer, ProtocolMapperModel mapperModel) Override to add additional configuration validation.void
SHA256PairwiseSubMapper.validateAdditionalConfig
(KeycloakSession session, RealmModel realm, ProtocolMapperContainerModel mapperContainer, ProtocolMapperModel mapperModel) final void
AbstractPairwiseSubMapper.validateConfig
(KeycloakSession session, RealmModel realm, ProtocolMapperContainerModel mapperContainer, ProtocolMapperModel mapperModel) void
ScriptBasedOIDCProtocolMapper.validateConfig
(KeycloakSession session, RealmModel realm, ProtocolMapperContainerModel client, ProtocolMapperModel mapperModel) -
Uses of KeycloakSession in org.keycloak.protocol.oidc.par.endpoints
ModifierConstructorDescriptionAbstractParEndpoint
(KeycloakSession session, EventBuilder event) ParEndpoint
(KeycloakSession session, EventBuilder event) ParRootEndpoint
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.protocol.oidc.par.endpoints.request
Modifier and TypeMethodDescriptionstatic AuthorizationEndpointRequest
ParEndpointRequestParserProcessor.parseRequest
(EventBuilder event, KeycloakSession session, ClientModel client, jakarta.ws.rs.core.MultivaluedMap<String, String> requestParams) ModifierConstructorDescriptionAuthzEndpointParParser
(KeycloakSession session, ClientModel client, String requestUri) ParEndpointRequestObjectParser
(KeycloakSession session, String requestObject, ClientModel client) -
Uses of KeycloakSession in org.keycloak.protocol.oidc.rar.parsers
Modifier and TypeMethodDescriptionClientScopeAuthorizationRequestParserProviderFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.protocol.oidc.utils
Modifier and TypeMethodDescriptionAuthorizeClientUtil.authorizeClient
(KeycloakSession session, EventBuilder event, Cors cors) static ClientAuthenticatorFactory
AuthorizeClientUtil.findClientAuthenticatorForOIDCAuthMethod
(KeycloakSession session, String oidcAuthMethod) static OIDCRedirectUriBuilder
OIDCRedirectUriBuilder.fromUri
(String baseUri, OIDCResponseMode responseMode, KeycloakSession session, AuthenticatedClientSessionModel clientSession) static AuthenticationProcessor
AuthorizeClientUtil.getAuthenticationProcessor
(KeycloakSession session, EventBuilder event) static JSONWebKeySet
JWKSServerUtils.getRealmJwks
(KeycloakSession session, RealmModel realm) static OAuth2CodeParser.ParseResult
OAuth2CodeParser.parseCode
(KeycloakSession session, String code, RealmModel realm, EventBuilder event) Will parse the code and retrieve the corresponding OAuth2Code and AuthenticatedClientSessionModel.static String
OAuth2CodeParser.persistCode
(KeycloakSession session, AuthenticatedClientSessionModel clientSession, OAuth2Code codeData) Will persist the code to the cache and return the object with the codeData and code correctly setRedirectUtils.resolveValidRedirects
(KeycloakSession session, String rootUrl, Set<String> validRedirects) WebOriginsUtils.resolveValidWebOrigins
(KeycloakSession session, ClientModel client) static JSONWebKeySet
JWKSHttpUtils.sendJwksRequest
(KeycloakSession session, String jwksURI) static jakarta.ws.rs.core.Response
LogoutUtil.sendResponseAfterLogoutFinished
(KeycloakSession session, AuthenticationSessionModel logoutSession) static void
PairwiseSubMapperValidator.validate
(KeycloakSession session, String rootUrl, Set<String> redirectUris, String sectorIdentifierUri) static void
PairwiseSubMapperValidator.validate
(KeycloakSession session, ClientModel client, ProtocolMapperModel mapperModel) static String
RedirectUtils.verifyRedirectUri
(KeycloakSession session, String rootUrl, String redirectUri, Set<String> validRedirects, boolean requireRedirectUri) static String
RedirectUtils.verifyRedirectUri
(KeycloakSession session, String redirectUri, ClientModel client) static String
RedirectUtils.verifyRedirectUri
(KeycloakSession session, String redirectUri, ClientModel client, boolean requireRedirectUri) -
Uses of KeycloakSession in org.keycloak.protocol.saml
Modifier and TypeMethodDescriptionDefaultSamlArtifactResolverFactory.create
(KeycloakSession session) EntityDescriptorDescriptionConverter.create
(KeycloakSession session) SamlProtocolFactory.create
(KeycloakSession session) SamlProtocolFactory.createProtocolEndpoint
(KeycloakSession session, EventBuilder event) protected abstract jakarta.ws.rs.core.Response
SamlService.BindingProtocol.error
(KeycloakSession session, AuthenticationSessionModel authenticationSession, jakarta.ws.rs.core.Response.Status status, String message, Object... parameters) protected jakarta.ws.rs.core.Response
SamlService.PostBindingProtocol.error
(KeycloakSession session, AuthenticationSessionModel authenticationSession, jakarta.ws.rs.core.Response.Status status, String message, Object... parameters) protected jakarta.ws.rs.core.Response
SamlService.RedirectBindingProtocol.error
(KeycloakSession session, AuthenticationSessionModel authenticationSession, jakarta.ws.rs.core.Response.Status status, String message, Object... parameters) SamlSessionUtils.getClientSession
(KeycloakSession session, RealmModel realm, String sessionIndex) protected URI
SamlService.BindingProtocol.getExpectedDestinationUri
(KeycloakSession session) KEYCLOAK-12616, KEYCLOAK-12944: construct the expected destination URI using the configured base URI.static String
SamlService.getIDPMetadataDescriptor
(jakarta.ws.rs.core.UriInfo uriInfo, KeycloakSession session, RealmModel realm) static String
SamlProtocol.getLogoutServiceUrl
(KeycloakSession session, ClientModel client, String bindingType, boolean backChannelLogout) SamlService.getOrCreateLoginSessionForIdpInitiatedSso
(KeycloakSession session, RealmModel realm, ClientModel client, String relayState) Creates a client session object for SAML IdP-initiated SSO session.SamlSessionUtils.getSamlAuthenticationPreprocessorIterator
(KeycloakSession session) protected String
SamlProtocol.getSAMLNameId
(List<SamlProtocol.ProtocolMapperProcessor<SAMLNameIdMapper>> samlNameIdMappers, String nameIdFormat, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) SamlProtocol.populateAttributeStatements
(List<SamlProtocol.ProtocolMapperProcessor<SAMLAttributeStatementMapper>> attributeStatementMappers, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) void
SamlProtocol.populateRoles
(SamlProtocol.ProtocolMapperProcessor<SAMLRoleListMapper> roleListMapper, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx, AttributeStatementType existingAttributeStatement) ArtifactResolver.selectSourceClient
(KeycloakSession session, String artifact) Returns client model that issued artifactDefaultSamlArtifactResolver.selectSourceClient
(KeycloakSession session, String artifact) SamlProtocol.setSession
(KeycloakSession session) SamlProtocol.transformLoginResponse
(List<SamlProtocol.ProtocolMapperProcessor<SAMLLoginResponseMapper>> mappers, ResponseType response, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) ModifierConstructorDescriptionJaxrsSAML2BindingBuilder
(KeycloakSession session) SAMLDecryptionKeysLocator
(KeycloakSession session, RealmModel realm, String requestedAlgorithm) SamlMetadataPublicKeyLoader
(KeycloakSession session, String metadataUrl) SamlMetadataPublicKeyLoader
(KeycloakSession session, String metadataUrl, boolean forIdP) SamlService
(KeycloakSession session, EventBuilder event, DestinationValidator destinationValidator) -
Uses of KeycloakSession in org.keycloak.protocol.saml.clientregistration
Modifier and TypeMethodDescriptionEntityDescriptorClientRegistrationProviderFactory.create
(KeycloakSession session) ModifierConstructorDescriptionEntityDescriptorClientRegistrationContext
(KeycloakSession session, ClientRepresentation client, ClientRegistrationProvider provider) -
Uses of KeycloakSession in org.keycloak.protocol.saml.installation
Modifier and TypeMethodDescriptionstatic void
KeycloakSamlClientInstallation.baseXml
(KeycloakSession session, RealmModel realm, ClientModel client, URI baseUri, SamlClient samlClient, StringBuilder buffer) KeycloakSamlClientInstallation.create
(KeycloakSession session) KeycloakSamlSubsystemCliInstallation.create
(KeycloakSession session) KeycloakSamlSubsystemInstallation.create
(KeycloakSession session) ModAuthMellonClientInstallation.create
(KeycloakSession session) SamlSPDescriptorClientInstallation.create
(KeycloakSession session) jakarta.ws.rs.core.Response
KeycloakSamlClientInstallation.generateInstallation
(KeycloakSession session, RealmModel realm, ClientModel client, URI baseUri) jakarta.ws.rs.core.Response
KeycloakSamlSubsystemCliInstallation.generateInstallation
(KeycloakSession session, RealmModel realm, ClientModel client, URI baseUri) jakarta.ws.rs.core.Response
KeycloakSamlSubsystemInstallation.generateInstallation
(KeycloakSession session, RealmModel realm, ClientModel client, URI baseUri) jakarta.ws.rs.core.Response
ModAuthMellonClientInstallation.generateInstallation
(KeycloakSession session, RealmModel realm, ClientModel client, URI serverBaseUri) jakarta.ws.rs.core.Response
SamlSPDescriptorClientInstallation.generateInstallation
(KeycloakSession session, RealmModel realm, ClientModel client, URI serverBaseUri) -
Uses of KeycloakSession in org.keycloak.protocol.saml.mappers
Modifier and TypeMethodDescriptionfinal ProtocolMapper
AbstractSAMLProtocolMapper.create
(KeycloakSession session) final ProtocolMapper
RoleNameMapper.create
(KeycloakSession session) SAMLNameIdMapper.mapperNameId
(String nameIdFormat, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) UserAttributeNameIdMapper.mapperNameId
(String nameIdFormat, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) void
RoleListMapper.mapRoles
(AttributeStatementType roleAttributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) void
SAMLRoleListMapper.mapRoles
(AttributeStatementType roleAttributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) void
GroupMembershipMapper.transformAttributeStatement
(AttributeStatementType attributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) void
HardcodedAttributeMapper.transformAttributeStatement
(AttributeStatementType attributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) void
SAMLAttributeStatementMapper.transformAttributeStatement
(AttributeStatementType attributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) void
ScriptBasedMapper.transformAttributeStatement
(AttributeStatementType attributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) This method attaches one or many attributes to the passed attribute statement.void
UserAttributeStatementMapper.transformAttributeStatement
(AttributeStatementType attributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) void
UserPropertyAttributeStatementMapper.transformAttributeStatement
(AttributeStatementType attributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) void
UserSessionNoteStatementMapper.transformAttributeStatement
(AttributeStatementType attributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession) SAMLAudienceProtocolMapper.transformLoginResponse
(ResponseType response, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) SAMLAudienceResolveProtocolMapper.transformLoginResponse
(ResponseType response, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) SAMLLoginResponseMapper.transformLoginResponse
(ResponseType response, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) void
ScriptBasedMapper.validateConfig
(KeycloakSession session, RealmModel realm, ProtocolMapperContainerModel client, ProtocolMapperModel mapperModel) -
Uses of KeycloakSession in org.keycloak.protocol.saml.profile.ecp
ModifierConstructorDescriptionSamlEcpProfileService
(KeycloakSession session, EventBuilder event, DestinationValidator destinationValidator) -
Uses of KeycloakSession in org.keycloak.protocol.saml.profile.ecp.authenticator
Modifier and TypeMethodDescriptionboolean
HttpBasicAuthenticator.configuredFor
(KeycloakSession session, RealmModel realm, UserModel user) HttpBasicAuthenticatorFactory.create
(KeycloakSession session) void
HttpBasicAuthenticator.setRequiredActions
(KeycloakSession session, RealmModel realm, UserModel user) -
Uses of KeycloakSession in org.keycloak.protocol.saml.profile.util
Modifier and TypeMethodDescriptionjakarta.xml.soap.SOAPMessage
Soap.SoapMessageBuilder.call
(String url, KeycloakSession session) Performs a synchronous call, sending the current message to the given url. -
Uses of KeycloakSession in org.keycloak.provider
Modifier and TypeMethodDescriptiondefault ExceptionConverter
ExceptionConverter.create
(KeycloakSession session) ProviderFactory.create
(KeycloakSession session) void
InvalidationHandler.invalidate
(KeycloakSession session, InvalidationHandler.InvalidableObjectType type, Object... params) Invalidates intermediate states of the given objects -
Uses of KeycloakSession in org.keycloak.scripting
Modifier and TypeMethodDescriptionDefaultScriptingProviderFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.services
Modifier and TypeMethodDescriptionprotected abstract DefaultKeycloakContext
DefaultKeycloakSession.createKeycloakContext
(KeycloakSession session) static jakarta.ws.rs.core.Response
ErrorPage.error
(KeycloakSession session, AuthenticationSessionModel authenticationSession, jakarta.ws.rs.core.Response.Status status, String message, Object... parameters) void
DefaultComponentFactoryProviderFactory.invalidate
(KeycloakSession session, InvalidationHandler.InvalidableObjectType type, Object... ids) void
DefaultKeycloakSessionFactory.invalidate
(KeycloakSession session, InvalidationHandler.InvalidableObjectType type, Object... ids) ModifierConstructorDescriptionDefaultKeycloakContext
(KeycloakSession session) ErrorPageException
(KeycloakSession session, jakarta.ws.rs.core.Response.Status status, String errorMessage, Object... parameters) ErrorPageException
(KeycloakSession session, AuthenticationSessionModel authSession, jakarta.ws.rs.core.Response.Status status, String errorMessage, Object... parameters) -
Uses of KeycloakSession in org.keycloak.services.clientpolicy
Modifier and TypeMethodDescriptionDefaultClientPolicyManagerFactory.create
(KeycloakSession session) static List<ClientPolicyRepresentation>
ClientPoliciesUtil.readGlobalClientPoliciesRepresentation
(KeycloakSession session, String name, List<ClientProfileRepresentation> profiles) static List<ClientProfileRepresentation>
ClientPoliciesUtil.readGlobalClientProfilesRepresentation
(KeycloakSession session, String name) -
Uses of KeycloakSession in org.keycloak.services.clientpolicy.condition
Modifier and TypeFieldDescriptionprotected final KeycloakSession
AbstractClientPolicyConditionProvider.session
Modifier and TypeMethodDescriptionAnyClientConditionFactory.create
(KeycloakSession session) ClientAccessTypeConditionFactory.create
(KeycloakSession session) ClientAttributesConditionFactory.create
(KeycloakSession session) ClientProtocolConditionFactory.create
(KeycloakSession session) ClientRolesConditionFactory.create
(KeycloakSession session) ClientScopesConditionFactory.create
(KeycloakSession session) ClientUpdaterContextConditionFactory.create
(KeycloakSession session) ClientUpdaterSourceGroupsConditionFactory.create
(KeycloakSession session) ClientUpdaterSourceHostsConditionFactory.create
(KeycloakSession session) ClientUpdaterSourceRolesConditionFactory.create
(KeycloakSession session) ModifierConstructorDescriptionAnyClientCondition
(KeycloakSession session) ClientAccessTypeCondition
(KeycloakSession session) ClientAttributesCondition
(KeycloakSession session) ClientProtocolCondition
(KeycloakSession session) ClientRolesCondition
(KeycloakSession session) ClientScopesCondition
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.services.clientpolicy.context
ModifierConstructorDescriptionDynamicClientUnregisterContext
(KeycloakSession session, ClientModel targetClient, JsonWebToken token, RealmModel realm) DynamicClientUpdatedContext
(KeycloakSession session, ClientModel updatedClient, JsonWebToken token, RealmModel realm) DynamicClientViewContext
(KeycloakSession session, ClientModel targetClient, JsonWebToken token, RealmModel realm) -
Uses of KeycloakSession in org.keycloak.services.clientpolicy.executor
Modifier and TypeFieldDescriptionprotected final KeycloakSession
ConfidentialClientAcceptExecutor.session
protected final KeycloakSession
SecureParContentsExecutor.session
protected final KeycloakSession
SecureResponseTypeExecutor.session
protected final KeycloakSession
SuppressRefreshTokenRotationExecutor.session
Modifier and TypeMethodDescriptionClientSecretRotationExecutorFactory.create
(KeycloakSession session) ConfidentialClientAcceptExecutorFactory.create
(KeycloakSession session) ConsentRequiredExecutorFactory.create
(KeycloakSession session) DPoPBindEnforcerExecutorFactory.create
(KeycloakSession session) FullScopeDisabledExecutorFactory.create
(KeycloakSession session) HolderOfKeyEnforcerExecutorFactory.create
(KeycloakSession session) IntentClientBindCheckExecutorFactory.create
(KeycloakSession session) PKCEEnforcerExecutorFactory.create
(KeycloakSession session) RegistrationAccessTokenRotationDisabledExecutorFactory.create
(KeycloakSession session) RejectImplicitGrantExecutorFactory.create
(KeycloakSession session) RejectRequestExecutorFactory.create
(KeycloakSession session) RejectResourceOwnerPasswordCredentialsGrantExecutorFactory.create
(KeycloakSession session) SamlAvoidRedirectBindingExecutorFactory.create
(KeycloakSession session) SamlSecureClientUrisExecutorFactory.create
(KeycloakSession session) SamlSignatureEnforcerExecutorFactory.create
(KeycloakSession session) SecureClientAuthenticatorExecutorFactory.create
(KeycloakSession session) SecureClientUrisExecutorFactory.create
(KeycloakSession session) SecureLogoutExecutorFactory.create
(KeycloakSession session) SecureParContentsExecutorFactory.create
(KeycloakSession session) SecureRedirectUrisEnforcerExecutorFactory.create
(KeycloakSession session) SecureRequestObjectExecutorFactory.create
(KeycloakSession session) SecureResponseTypeExecutorFactory.create
(KeycloakSession session) SecureSessionEnforceExecutorFactory.create
(KeycloakSession session) SecureSigningAlgorithmExecutorFactory.create
(KeycloakSession session) SecureSigningAlgorithmForSignedJwtExecutorFactory.create
(KeycloakSession session) SuppressRefreshTokenRotationExecutorFactory.create
(KeycloakSession session) UseLightweightAccessTokenExecutorFactory.create
(KeycloakSession session) ModifierConstructorDescriptionDPoPBindEnforcerExecutor
(KeycloakSession session) PKCEEnforcerExecutor
(KeycloakSession session) RegistrationAccessTokenRotationDisabledExecutor
(String providerId, KeycloakSession session) RejectRequestExecutor
(KeycloakSession session) SecureClientUrisExecutor
(KeycloakSession session) SecureLogoutExecutor
(KeycloakSession session) SecureParContentsExecutor
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.services.clientregistration
Modifier and TypeFieldDescriptionprotected final KeycloakSession
AbstractClientRegistrationContext.session
protected KeycloakSession
AbstractClientRegistrationProvider.session
Modifier and TypeMethodDescriptionAbstractClientRegistrationContext.getSession()
ClientRegistrationContext.getSession()
Modifier and TypeMethodDescriptionAdapterInstallationClientRegistrationProviderFactory.create
(KeycloakSession session) DefaultClientRegistrationProviderFactory.create
(KeycloakSession session) static String
ClientRegistrationTokenUtils.createInitialAccessToken
(KeycloakSession session, RealmModel realm, ClientInitialAccessModel model) static String
ClientRegistrationTokenUtils.updateRegistrationAccessToken
(KeycloakSession session, ClientModel client, RegistrationAuth registrationAuth) static String
ClientRegistrationTokenUtils.updateRegistrationAccessToken
(KeycloakSession session, RealmModel realm, ClientModel client, RegistrationAuth registrationAuth) static String
ClientRegistrationTokenUtils.updateTokenSignature
(KeycloakSession session, ClientRegistrationAuth auth) ClientRegistrationTokenUtils.verifyToken
(KeycloakSession session, RealmModel realm, String token) ModifierConstructorDescriptionAbstractClientRegistrationContext
(KeycloakSession session, ClientRepresentation client, ClientRegistrationProvider provider) ClientRegistrationAuth
(KeycloakSession session, ClientRegistrationProvider provider, EventBuilder event, String endpoint) ClientRegistrationService
(KeycloakSession session, EventBuilder event) DefaultClientRegistrationContext
(KeycloakSession session, ClientRepresentation client, ClientRegistrationProvider provider) -
Uses of KeycloakSession in org.keycloak.services.clientregistration.oidc
Modifier and TypeMethodDescriptionOIDCClientRegistrationProviderFactory.create
(KeycloakSession session) static OIDCClientRepresentation
DescriptionConverter.toExternalResponse
(KeycloakSession session, ClientRepresentation client, URI uri) static ClientRepresentation
DescriptionConverter.toInternal
(KeycloakSession session, OIDCClientRepresentation clientOIDC) ModifierConstructorDescriptionOIDCClientRegistrationContext
(KeycloakSession session, ClientRepresentation client, ClientRegistrationProvider provider, OIDCClientRepresentation oidcRep) -
Uses of KeycloakSession in org.keycloak.services.clientregistration.policy
Modifier and TypeMethodDescriptionAbstractClientRegistrationPolicyFactory.getConfigProperties
(KeycloakSession session) ClientRegistrationPolicyFactory.getConfigProperties
(KeycloakSession session) Get config properties filled for particular session.static void
ClientRegistrationPolicyManager.triggerBeforeRemove
(KeycloakSession session, ClientRegistrationProvider provider, RegistrationAuth authType, ClientModel client) static void
ClientRegistrationPolicyManager.triggerBeforeView
(KeycloakSession session, ClientRegistrationProvider provider, RegistrationAuth authType, ClientModel client) void
AbstractClientRegistrationPolicyFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel config) -
Uses of KeycloakSession in org.keycloak.services.clientregistration.policy.impl
Modifier and TypeMethodDescriptionClientDisabledClientRegistrationPolicyFactory.create
(KeycloakSession session, ComponentModel model) ClientScopesClientRegistrationPolicyFactory.create
(KeycloakSession session, ComponentModel model) ConsentRequiredClientRegistrationPolicyFactory.create
(KeycloakSession session, ComponentModel model) MaxClientsClientRegistrationPolicyFactory.create
(KeycloakSession session, ComponentModel model) ProtocolMappersClientRegistrationPolicyFactory.create
(KeycloakSession session, ComponentModel model) ScopeClientRegistrationPolicyFactory.create
(KeycloakSession session, ComponentModel model) TrustedHostClientRegistrationPolicyFactory.create
(KeycloakSession session, ComponentModel model) ClientScopesClientRegistrationPolicyFactory.getConfigProperties
(KeycloakSession session) void
MaxClientsClientRegistrationPolicyFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel config) void
TrustedHostClientRegistrationPolicyFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel config) ModifierConstructorDescriptionClientScopesClientRegistrationPolicy
(KeycloakSession session, ComponentModel componentModel) MaxClientsClientRegistrationPolicy
(KeycloakSession session, ComponentModel componentModel) ProtocolMappersClientRegistrationPolicy
(KeycloakSession session, ComponentModel componentModel) ScopeClientRegistrationPolicy
(KeycloakSession session, ComponentModel componentModel) TrustedHostClientRegistrationPolicy
(KeycloakSession session, ComponentModel componentModel) -
Uses of KeycloakSession in org.keycloak.services.clienttype
Modifier and TypeMethodDescriptionDefaultClientTypeManagerFactory.create
(KeycloakSession session) protected List<ClientTypeRepresentation>
DefaultClientTypeManagerFactory.getGlobalClientTypes
(KeycloakSession session) ModifierConstructorDescriptionDefaultClientTypeManager
(KeycloakSession session, List<ClientTypeRepresentation> globalClientTypes) -
Uses of KeycloakSession in org.keycloak.services.clienttype.impl
Modifier and TypeMethodDescriptionDefaultClientTypeProviderFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.services.cors
Modifier and TypeMethodDescriptionCors.allowedOrigins
(KeycloakSession session, ClientModel client) DefaultCors.allowedOrigins
(KeycloakSession session, ClientModel client) DefaultCorsFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.services.error
Modifier and TypeMethodDescriptionstatic jakarta.ws.rs.core.Response
KeycloakErrorHandler.getResponse
(KeycloakSession session, Throwable throwable) -
Uses of KeycloakSession in org.keycloak.services.managers
Modifier and TypeMethodDescriptionstatic jakarta.ws.rs.core.Response
AuthenticationManager.actionRequired
(KeycloakSession session, AuthenticationSessionModel authSession, HttpRequest request, EventBuilder event) static void
UserConsentManager.addConsent
(KeycloakSession session, RealmModel realm, UserModel user, UserConsentModel consent) Add user consent for the user.AppAuthManager.authenticateIdentityCookie
(KeycloakSession session, RealmModel realm) AuthenticationManager.authenticateIdentityCookie
(KeycloakSession session, RealmModel realm) AuthenticationManager.authenticateIdentityCookie
(KeycloakSession session, RealmModel realm, boolean checkActive) static BackchannelLogoutResponse
AuthenticationManager.backchannelLogout
(KeycloakSession session, RealmModel realm, UserSessionModel userSession, jakarta.ws.rs.core.UriInfo uriInfo, ClientConnection connection, jakarta.ws.rs.core.HttpHeaders headers, boolean logoutBroker) static BackchannelLogoutResponse
AuthenticationManager.backchannelLogout
(KeycloakSession session, RealmModel realm, UserSessionModel userSession, jakarta.ws.rs.core.UriInfo uriInfo, ClientConnection connection, jakarta.ws.rs.core.HttpHeaders headers, boolean logoutBroker, boolean offlineSession) static void
AuthenticationManager.backchannelLogout
(KeycloakSession session, UserSessionModel userSession, boolean logoutBroker) static void
AuthenticationManager.backchannelLogoutUserFromClient
(KeycloakSession session, RealmModel realm, UserModel user, ClientModel client, jakarta.ws.rs.core.UriInfo uriInfo, jakarta.ws.rs.core.HttpHeaders headers) Logout all clientSessions of this user and clientstatic jakarta.ws.rs.core.Response
AuthenticationManager.browserLogout
(KeycloakSession session, RealmModel realm, UserSessionModel userSession, jakarta.ws.rs.core.UriInfo uriInfo, ClientConnection connection, jakarta.ws.rs.core.HttpHeaders headers) void
BruteForceProtector.cleanUpPermanentLockout
(KeycloakSession session, RealmModel realm, UserModel user) Clears any remaining traces of the permanent lockout.void
DefaultBruteForceProtector.cleanUpPermanentLockout
(KeycloakSession session, RealmModel realm, UserModel user) DefaultBruteForceProtectorFactory.create
(KeycloakSession session) RealmManagerProviderFactory.create
(KeycloakSession session) Deprecated.static ClientModel
ClientManager.createClient
(KeycloakSession session, RealmModel realm, ClientRepresentation rep) Should not be called from an import.static IdentityCookieToken
AuthenticationManager.createIdentityToken
(KeycloakSession keycloakSession, RealmModel realm, UserModel user, UserSessionModel session, String issuer) static void
AuthenticationManager.createLoginCookie
(KeycloakSession keycloakSession, RealmModel realm, UserModel user, UserSessionModel session, jakarta.ws.rs.core.UriInfo uriInfo, ClientConnection connection) static AuthenticationSessionModel
AuthenticationManager.createOrJoinLogoutSession
(KeycloakSession session, RealmModel realm, AuthenticationSessionManager asm, UserSessionModel userSession, boolean browserCookie) static void
AuthenticationManager.createRememberMeCookie
(String username, jakarta.ws.rs.core.UriInfo uriInfo, KeycloakSession session) static void
AuthenticationManager.evaluateRequiredActionTriggers
(KeycloakSession session, AuthenticationSessionModel authSession, HttpRequest request, EventBuilder event, RealmModel realm, UserModel user) protected static jakarta.ws.rs.core.Response
AuthenticationManager.executionActions
(KeycloakSession session, AuthenticationSessionModel authSession, HttpRequest request, EventBuilder event, RealmModel realm, UserModel user, Set<String> ignoredActions) static void
AuthenticationManager.expireAuthSessionCookie
(KeycloakSession session) static void
AuthenticationManager.expireIdentityCookie
(KeycloakSession session) static void
AuthenticationManager.expireRememberMeCookie
(KeycloakSession session) static boolean
AuthenticationManager.expireUserSessionCookie
(KeycloakSession session, UserSessionModel userSession, RealmModel realm, jakarta.ws.rs.core.UriInfo uriInfo, jakarta.ws.rs.core.HttpHeaders headers, ClientConnection connection) protected void
DefaultBlockingBruteForceProtector.failure
(KeycloakSession session, RealmModel realm, String userId, String remoteAddr, long failureTime) protected void
DefaultBruteForceProtector.failure
(KeycloakSession session, RealmModel realm, String userId, String remoteAddr, long failureTime) static jakarta.ws.rs.core.Response
AuthenticationManager.finishBrowserLogout
(KeycloakSession session, RealmModel realm, UserSessionModel userSession, jakarta.ws.rs.core.UriInfo uriInfo, ClientConnection connection, jakarta.ws.rs.core.HttpHeaders headers) static jakarta.ws.rs.core.Response
AuthenticationManager.finishedRequiredActions
(KeycloakSession session, AuthenticationSessionModel authSession, UserSessionModel userSession, ClientConnection clientConnection, HttpRequest request, jakarta.ws.rs.core.UriInfo uriInfo, EventBuilder event) static void
AuthenticationManager.finishUnconfirmedUserSession
(KeycloakSession session, RealmModel realm, UserSessionModel userSessionModel) static String
ResourceAdminManager.getBackchannelLogoutUrl
(KeycloakSession session, ClientModel client) static <CLIENT_SESSION extends CommonClientSessionModel>
CLIENT_SESSIONClientSessionCode.getClientSession
(String code, String tabId, KeycloakSession session, RealmModel realm, ClientModel client, EventBuilder event, Class<CLIENT_SESSION> sessionClass) static UserConsentModel
UserConsentManager.getConsentByClient
(KeycloakSession session, RealmModel realm, UserModel user, String clientInternalId) Returns UserConsentModel given by a user for the client with clientInternalIdstatic Stream<UserConsentModel>
UserConsentManager.getConsentsStream
(KeycloakSession session, RealmModel realm, UserModel user) Obtains the consents associated with the userstatic String
ResourceAdminManager.getManagementUrl
(KeycloakSession session, ClientModel client) static String
AuthenticationManager.getRememberMeUsername
(KeycloakSession session) static String
AuthenticationManager.getSessionIdFromSessionCookie
(KeycloakSession session) protected UserLoginFailureModel
DefaultBruteForceProtector.getUserFailureModel
(KeycloakSession session, RealmModel realm, String userId) boolean
BruteForceProtector.isPermanentlyLockedOut
(KeycloakSession session, RealmModel realm, UserModel user) boolean
DefaultBlockingBruteForceProtector.isPermanentlyLockedOut
(KeycloakSession session, RealmModel realm, UserModel user) boolean
DefaultBruteForceProtector.isPermanentlyLockedOut
(KeycloakSession session, RealmModel realm, UserModel user) boolean
BruteForceProtector.isTemporarilyDisabled
(KeycloakSession session, RealmModel realm, UserModel user) boolean
DefaultBlockingBruteForceProtector.isTemporarilyDisabled
(KeycloakSession session, RealmModel realm, UserModel user) boolean
DefaultBruteForceProtector.isTemporarilyDisabled
(KeycloakSession session, RealmModel realm, UserModel user) static void
AuthenticationManager.logSuccess
(KeycloakSession session, AuthenticationSessionModel authSession) static UserModel
AuthenticationManager.lookupUserForBruteForceLog
(KeycloakSession session, RealmModel realm, AuthenticationSessionModel authenticationSession) static jakarta.ws.rs.core.Response
AuthenticationManager.nextActionAfterAuthentication
(KeycloakSession session, AuthenticationSessionModel authSession, ClientConnection clientConnection, HttpRequest request, jakarta.ws.rs.core.UriInfo uriInfo, EventBuilder event) static String
AuthenticationManager.nextRequiredAction
(KeycloakSession session, AuthenticationSessionModel authSession, HttpRequest request, EventBuilder event) static <CLIENT_SESSION extends CommonClientSessionModel>
ClientSessionCode.ParseResult<CLIENT_SESSION>ClientSessionCode.parseResult
(String code, String tabId, KeycloakSession session, RealmModel realm, ClientModel client, EventBuilder event, CLIENT_SESSION clientSession) static <CLIENT_SESSION extends CommonClientSessionModel>
ClientSessionCode.ParseResult<CLIENT_SESSION>ClientSessionCode.parseResult
(String code, String tabId, KeycloakSession session, RealmModel realm, ClientModel client, EventBuilder event, Class<CLIENT_SESSION> sessionClass) static Set<LDAPCapabilityRepresentation>
LDAPServerCapabilitiesManager.queryServerCapabilities
(TestLdapConnectionRepresentation config, KeycloakSession session, RealmModel realm) static jakarta.ws.rs.core.Response
AuthenticationManager.redirectAfterSuccessfulFlow
(KeycloakSession session, RealmModel realm, UserSessionModel userSession, ClientSessionContext clientSessionCtx, HttpRequest request, jakarta.ws.rs.core.UriInfo uriInfo, ClientConnection clientConnection, EventBuilder event, AuthenticationSessionModel authSession) static jakarta.ws.rs.core.Response
AuthenticationManager.redirectAfterSuccessfulFlow
(KeycloakSession session, RealmModel realm, UserSessionModel userSession, ClientSessionContext clientSessionCtx, HttpRequest request, jakarta.ws.rs.core.UriInfo uriInfo, ClientConnection clientConnection, EventBuilder event, AuthenticationSessionModel authSession, LoginProtocol protocol) static jakarta.ws.rs.core.Response
AuthenticationManager.redirectToRequiredActions
(KeycloakSession session, RealmModel realm, AuthenticationSessionModel authSession, jakarta.ws.rs.core.UriInfo uriInfo, String requiredAction) static String
ResourceAdminManager.resolveUri
(KeycloakSession session, String rootUrl, String uri) static boolean
UserConsentManager.revokeConsentForClient
(KeycloakSession session, RealmModel realm, UserModel user, String clientInternalId) Remove a user consent given by the user and client idstatic boolean
UserConsentManager.revokeConsentToClient
(KeycloakSession session, ClientModel client, UserModel user) Revoke consent of given user to given clientprotected void
DefaultBruteForceProtector.sendEvent
(KeycloakSession session, RealmModel realm, UserLoginFailureModel userLoginFailure, EventType type) static void
AuthenticationManager.setClientScopesInSession
(KeycloakSession session, AuthenticationSessionModel authSession) AppAuthManager.BearerTokenAuthenticator.setSession
(KeycloakSession session) protected void
DefaultBlockingBruteForceProtector.success
(KeycloakSession session, RealmModel realm, String userId) protected void
DefaultBruteForceProtector.success
(KeycloakSession session, RealmModel realm, String userId) static void
LDAPServerCapabilitiesManager.testLDAP
(TestLdapConnectionRepresentation config, KeycloakSession session, RealmModel realm) static void
UserConsentManager.updateConsent
(KeycloakSession session, RealmModel realm, UserModel user, UserConsentModel consent) Update client scopes in the stored user consentAuthenticationManager.verifyIdentityToken
(KeycloakSession session, RealmModel realm, jakarta.ws.rs.core.UriInfo uriInfo, ClientConnection connection, boolean checkActive, boolean checkTokenType, String checkAudience, boolean isCookie, String tokenString, jakarta.ws.rs.core.HttpHeaders headers, TokenVerifier.Predicate<? super AccessToken>... additionalChecks) ModifierConstructorDescriptionApplianceBootstrap
(KeycloakSession session) BearerTokenAuthenticator
(KeycloakSession session) ClientSessionCode
(KeycloakSession session, RealmModel realm, CLIENT_SESSION commonLoginSession) RealmManager
(KeycloakSession session) ResourceAdminManager
(KeycloakSession session) UserSessionCrossDCManager
(KeycloakSession session) Deprecated, for removal: This API element is subject to removal in a future version.UserSessionManager
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.services.migration
Modifier and TypeMethodDescriptionDefaultMigrationProviderFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.services.resources
Modifier and TypeFieldDescriptionprotected final KeycloakSession
AbstractSecuredLocalService.session
protected final KeycloakSession
ClientsManagementService.session
protected final KeycloakSession
LoginActionsService.session
protected final KeycloakSession
PublicRealmResource.session
protected KeycloakSession
RealmsResource.session
Modifier and TypeMethodDescriptionstatic void
LoginActionsServiceChecks.checkIsClientValid
(KeycloakSession session, ClientModel client) Verifies whether the client denoted by client ID in token'siss
(issuedFor
) field both exists and is enabled.static void
LoginActionsServiceChecks.checkIsUserValid
(KeycloakSession session, RealmModel realm, String userId, Consumer<UserModel> userSetter, EventBuilder event) Verifies whether the user given by ID both exists in the current realm.protected abstract void
KeycloakApplication.createTemporaryAdmin
(KeycloakSession session) static IdentityProvider<?>
IdentityBrokerService.getIdentityProvider
(KeycloakSession session, String alias) static IdentityProviderFactory<?>
IdentityBrokerService.getIdentityProviderFactory
(KeycloakSession session, IdentityProviderModel model) static PublishedRealmRepresentation
PublicRealmResource.realmRep
(KeycloakSession session, RealmModel realm, jakarta.ws.rs.core.UriInfo uriInfo) static jakarta.ws.rs.core.Response
LoginActionsService.redirectToAfterBrokerLoginEndpoint
(KeycloakSession session, RealmModel realm, jakarta.ws.rs.core.UriInfo uriInfo, AuthenticationSessionModel authSession, boolean firstBrokerLogin) ModifierConstructorDescriptionAbstractSecuredLocalService
(KeycloakSession session, ClientModel client) ClientsManagementService
(KeycloakSession session, EventBuilder event) IdentityBrokerService
(KeycloakSession session) LoginActionsService
(KeycloakSession session, EventBuilder event) LogoutSessionCodeChecks
(RealmModel realm, jakarta.ws.rs.core.UriInfo uriInfo, HttpRequest request, ClientConnection clientConnection, KeycloakSession session, EventBuilder event, String code, String clientId, String tabId) PublicRealmResource
(KeycloakSession session) SessionCodeChecks
(RealmModel realm, jakarta.ws.rs.core.UriInfo uriInfo, HttpRequest request, ClientConnection clientConnection, KeycloakSession session, EventBuilder event, String authSessionId, String code, String execution, String clientId, String tabId, String clientData, String flowPath) -
Uses of KeycloakSession in org.keycloak.services.resources.account
Modifier and TypeMethodDescriptionAccountConsoleFactory.create
(KeycloakSession session) LinkedAccountsResource.getLinkedAccounts
(KeycloakSession session, RealmModel realm, UserModel user) Deprecated.boolean
PasswordUtil.isConfigured
(KeycloakSession session, RealmModel realm, UserModel user) Deprecated.ModifierConstructorDescriptionAccountConsole
(KeycloakSession session, ClientModel client, Theme theme) AccountCredentialResource
(KeycloakSession session, UserModel user, Auth auth, EventBuilder event) AccountLoader
(KeycloakSession session, EventBuilder event) AccountRestService
(KeycloakSession session, Auth auth, EventBuilder event, AccountRestApiVersion version) LinkedAccountsResource
(KeycloakSession session, HttpRequest request, Auth auth, EventBuilder event, UserModel user) OrganizationsResource
(KeycloakSession session, Auth auth, UserModel user) PasswordUtil
(KeycloakSession session, UserModel user) Deprecated.SessionResource
(KeycloakSession session, Auth auth) -
Uses of KeycloakSession in org.keycloak.services.resources.account.resources
ModifierConstructorDescriptionprotected
AbstractResourceService
(KeycloakSession session, UserModel user, Auth auth, HttpRequest request) ResourcesService
(KeycloakSession session, UserModel user, Auth auth, HttpRequest request) -
Uses of KeycloakSession in org.keycloak.services.resources.admin
Modifier and TypeFieldDescriptionprotected final KeycloakSession
AdminConsole.session
protected KeycloakSession
AdminRoot.session
protected final KeycloakSession
AttackDetectionResource.session
protected final KeycloakSession
ClearKeysCacheResource.session
protected final KeycloakSession
ClearRealmCacheResource.session
protected final KeycloakSession
ClearUserCacheResource.session
protected final KeycloakSession
ClientAttributeCertificateResource.session
protected KeycloakSession
ClientInitialAccessResource.session
protected final KeycloakSession
ClientPoliciesResource.session
protected final KeycloakSession
ClientProfilesResource.session
protected final KeycloakSession
ClientRegistrationPolicyResource.session
protected final KeycloakSession
ClientResource.session
protected KeycloakSession
ClientRoleMappingsResource.session
protected KeycloakSession
ClientScopeResource.session
protected final KeycloakSession
ClientScopesResource.session
protected final KeycloakSession
ClientsResource.session
protected final KeycloakSession
ComponentResource.session
protected final KeycloakSession
LdapServerCapabilitiesResource.session
protected final KeycloakSession
ProtocolMappersResource.session
protected final KeycloakSession
RealmAdminResource.session
protected final KeycloakSession
RealmLocalizationResource.session
protected final KeycloakSession
RealmsAdminResource.session
protected final KeycloakSession
RoleMapperResource.session
protected KeycloakSession
ScopeMappedClientResource.session
protected KeycloakSession
ScopeMappedResource.session
protected final KeycloakSession
TestLdapConnectionResource.session
protected final KeycloakSession
UserProfileResource.session
protected final KeycloakSession
UserResource.session
protected final KeycloakSession
UsersResource.session
protected final KeycloakSession
UserStorageProviderResource.session
Modifier and TypeMethodDescriptionAdminEventBuilder.clone
(KeycloakSession session) Create a new instance of theAdminEventBuilder
that is bound to a new session.static void
AuthenticationManagementResource.copy
(KeycloakSession session, RealmModel realm, String newName, AuthenticationFlowModel from, AuthenticationFlowModel to) static AuthenticationFlowModel
AuthenticationManagementResource.copyFlow
(KeycloakSession session, RealmModel realm, AuthenticationFlowModel flow, String newName) ClearKeysCacheRealmAdminProvider.create
(KeycloakSession session) ClearRealmCacheRealmAdminProvider.create
(KeycloakSession session) ClearUserCacheRealmAdminProvider.create
(KeycloakSession session) LdapServerCapabilitiesRealmAdminProvider.create
(KeycloakSession session) TestLdapConnectionRealmAdminProvider.create
(KeycloakSession session) UserStorageProviderRealmAdminProvider.create
(KeycloakSession session) static Properties
AdminRoot.getMessages
(KeycloakSession session, RealmModel realm, String lang) static Properties
AdminRoot.getMessages
(KeycloakSession session, RealmModel realm, String lang, String... bundles) ClearKeysCacheRealmAdminProvider.getResource
(KeycloakSession session, RealmModel realm, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) ClearRealmCacheRealmAdminProvider.getResource
(KeycloakSession session, RealmModel realm, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) ClearUserCacheRealmAdminProvider.getResource
(KeycloakSession session, RealmModel realm, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) LdapServerCapabilitiesRealmAdminProvider.getResource
(KeycloakSession session, RealmModel realm, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) TestLdapConnectionRealmAdminProvider.getResource
(KeycloakSession session, RealmModel realm, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) UserStorageProviderRealmAdminProvider.getResource
(KeycloakSession session, RealmModel realm, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) static Theme
AdminRoot.getTheme
(KeycloakSession session, RealmModel realm) AdminEventBuilder.refreshRealmEventsConfig
(KeycloakSession session) Refreshes the builder assuming that the realm event information has changed.protected void
AdminRoot.resolveRealmAndUpdateSession
(String name, KeycloakSession session) static void
GroupResource.updateGroup
(GroupRepresentation rep, GroupModel model, RealmModel realm, KeycloakSession session) protected void
RoleResource.updateRole
(RoleRepresentation rep, RoleModel role, RealmModel realm, KeycloakSession session) static void
UserResource.updateUserFromRep
(UserProfile profile, UserModel user, UserRepresentation rep, KeycloakSession session, boolean isUpdateExistingUser) static jakarta.ws.rs.core.Response
UserResource.validateUserProfile
(UserProfile profile, KeycloakSession session, AdminAuth adminAuth) ModifierConstructorDescriptionAdminConsole
(KeycloakSession session) AdminEventBuilder
(RealmModel realm, AdminAuth auth, KeycloakSession session, ClientConnection clientConnection) AttackDetectionResource
(KeycloakSession session, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) AuthenticationManagementResource
(KeycloakSession session, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) ClearKeysCacheResource
(KeycloakSession session, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) ClearRealmCacheResource
(KeycloakSession session, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) ClearUserCacheResource
(KeycloakSession session, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) ClientAttributeCertificateResource
(AdminPermissionEvaluator auth, ClientModel client, KeycloakSession session, String attributePrefix, AdminEventBuilder adminEvent) ClientInitialAccessResource
(KeycloakSession session, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) ClientPoliciesResource
(KeycloakSession session, AdminPermissionEvaluator auth) ClientProfilesResource
(KeycloakSession session, AdminPermissionEvaluator auth) ClientRegistrationPolicyResource
(KeycloakSession session, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) ClientResource
(RealmModel realm, AdminPermissionEvaluator auth, ClientModel clientModel, KeycloakSession session, AdminEventBuilder adminEvent) ClientRoleMappingsResource
(jakarta.ws.rs.core.UriInfo uriInfo, KeycloakSession session, RealmModel realm, AdminPermissionEvaluator auth, RoleMapperModel user, ClientModel client, AdminEventBuilder adminEvent, AdminPermissionEvaluator.RequirePermissionCheck manageCheck, AdminPermissionEvaluator.RequirePermissionCheck viewCheck) ClientScopeEvaluateResource
(KeycloakSession session, jakarta.ws.rs.core.UriInfo uriInfo, RealmModel realm, AdminPermissionEvaluator auth, ClientModel client, ClientConnection clientConnection) ClientScopeEvaluateScopeMappingsResource
(KeycloakSession session, RoleContainerModel roleContainer, AdminPermissionEvaluator auth, ClientModel client, String scopeParam) ClientScopeResource
(RealmModel realm, AdminPermissionEvaluator auth, ClientScopeModel clientScope, KeycloakSession session, AdminEventBuilder adminEvent) ClientScopesResource
(KeycloakSession session, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) ClientsResource
(KeycloakSession session, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) ComponentResource
(KeycloakSession session, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) GroupResource
(RealmModel realm, GroupModel group, KeycloakSession session, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) GroupsResource
(RealmModel realm, KeycloakSession session, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) IdentityProviderResource
(AdminPermissionEvaluator auth, RealmModel realm, KeycloakSession session, IdentityProviderModel identityProviderModel, AdminEventBuilder adminEvent) IdentityProvidersResource
(RealmModel realm, KeycloakSession session, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) KeyResource
(RealmModel realm, KeycloakSession session, AdminPermissionEvaluator auth) LdapServerCapabilitiesResource
(KeycloakSession session, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) ProtocolMappersResource
(KeycloakSession session, ProtocolMapperContainerModel client, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent, AdminPermissionEvaluator.RequirePermissionCheck managePermission, AdminPermissionEvaluator.RequirePermissionCheck viewPermission) RealmAdminResource
(KeycloakSession session, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) RealmLocalizationResource
(KeycloakSession session, AdminPermissionEvaluator auth) RealmsAdminResource
(KeycloakSession session, AdminAuth auth, TokenManager tokenManager) RealmsAdminResourcePreflight
(KeycloakSession session, AdminAuth auth, TokenManager tokenManager) RealmsAdminResourcePreflight
(KeycloakSession session, AdminAuth auth, TokenManager tokenManager, HttpRequest request) RoleByIdResource
(KeycloakSession session, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) RoleContainerResource
(KeycloakSession session, jakarta.ws.rs.core.UriInfo uriInfo, RealmModel realm, AdminPermissionEvaluator auth, RoleContainerModel roleContainer, AdminEventBuilder adminEvent) RoleMapperResource
(KeycloakSession session, AdminPermissionEvaluator auth, RoleMapperModel roleMapper, AdminEventBuilder adminEvent, AdminPermissionEvaluator.RequirePermissionCheck manageCheck, AdminPermissionEvaluator.RequirePermissionCheck viewCheck) ScopeMappedClientResource
(RealmModel realm, AdminPermissionEvaluator auth, ScopeContainerModel scopeContainer, KeycloakSession session, ClientModel scopedClient, AdminEventBuilder adminEvent, AdminPermissionEvaluator.RequirePermissionCheck managePermission, AdminPermissionEvaluator.RequirePermissionCheck viewPermission) ScopeMappedResource
(RealmModel realm, AdminPermissionEvaluator auth, ScopeContainerModel scopeContainer, KeycloakSession session, AdminEventBuilder adminEvent, AdminPermissionEvaluator.RequirePermissionCheck managePermission, AdminPermissionEvaluator.RequirePermissionCheck viewPermission) TestLdapConnectionResource
(KeycloakSession session, AdminPermissionEvaluator auth) UserProfileResource
(KeycloakSession session, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) UserResource
(KeycloakSession session, UserModel user, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) UsersResource
(KeycloakSession session, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) UserStorageProviderResource
(KeycloakSession session, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) -
Uses of KeycloakSession in org.keycloak.services.resources.admin.ext
Modifier and TypeMethodDescriptionAdminRealmResourceProvider.getResource
(KeycloakSession session, RealmModel realm, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent) Returns a JAX-RS resource instance. -
Uses of KeycloakSession in org.keycloak.services.resources.admin.info
-
Uses of KeycloakSession in org.keycloak.services.resources.admin.permissions
Modifier and TypeMethodDescriptionstatic AdminPermissionEvaluator
AdminPermissions.evaluator
(KeycloakSession session, RealmModel realm, RealmModel adminsRealm, UserModel admin) static AdminPermissionEvaluator
AdminPermissions.evaluator
(KeycloakSession session, RealmModel realm, AdminAuth auth) static AdminPermissionManagement
AdminPermissions.management
(KeycloakSession session, RealmModel realm) static RealmsPermissionEvaluator
AdminPermissions.realms
(KeycloakSession session, RealmModel adminsRealm, UserModel admin) static RealmsPermissionEvaluator
AdminPermissions.realms
(KeycloakSession session, AdminAuth auth) -
Uses of KeycloakSession in org.keycloak.services.scheduled
Modifier and TypeMethodDescriptionvoid
ClearExpiredAdminEvents.run
(KeycloakSession session) void
ClearExpiredClientInitialAccessTokens.run
(KeycloakSession session) void
ClearExpiredEvents.run
(KeycloakSession session) void
ClearExpiredRevokedTokens.run
(KeycloakSession session) void
ClearExpiredUserSessions.run
(KeycloakSession session) protected void
ClusterAwareScheduledTaskRunner.runTask
(KeycloakSession session) protected void
ScheduledTaskRunner.runTask
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.services.securityprofile
Modifier and TypeMethodDescriptionDefaultSecurityProfileProviderFactory.create
(KeycloakSession session) protected SecurityProfileConfiguration
DefaultSecurityProfileProviderFactory.readConfiguration
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.services.ui.extend
Modifier and TypeMethodDescriptiondefault T
UiPageProviderFactory.create
(KeycloakSession session, ComponentModel model) default T
UiTabProviderFactory.create
(KeycloakSession session, ComponentModel model) -
Uses of KeycloakSession in org.keycloak.services.util
Modifier and TypeMethodDescriptionstatic AccessToken.Confirmation
MtlsHoKTokenUtil.bindTokenWithClientCertificate
(HttpRequest request, KeycloakSession session) static UserSessionModel
UserSessionUtil.findValidSession
(KeycloakSession session, RealmModel realm, AccessToken token, EventBuilder event, ClientModel client) static UserSessionModel
UserSessionUtil.findValidSession
(KeycloakSession session, RealmModel realm, AccessToken token, EventBuilder event, ClientModel client, OAuth2Error error) static DefaultClientSessionContext
DefaultClientSessionContext.fromClientSessionAndClientScopes
(AuthenticatedClientSessionModel clientSession, Set<ClientScopeModel> requestedScopes, KeycloakSession session) static DefaultClientSessionContext
DefaultClientSessionContext.fromClientSessionAndScopeParameter
(AuthenticatedClientSessionModel clientSession, String scopeParam, KeycloakSession session) static DefaultClientSessionContext
DefaultClientSessionContext.fromClientSessionScopeParameter
(AuthenticatedClientSessionModel clientSession, KeycloakSession session) Useful if we want to "re-compute" client scopes based on the scope parameterstatic AuthorizationRequestContext
AuthorizationContextUtil.getAuthorizationRequestContextFromScopes
(KeycloakSession session, String scope) Base function to obtain a bare AuthorizationRequestContext with just OAuth2 Scopesstatic AuthorizationRequestContext
AuthorizationContextUtil.getAuthorizationRequestContextFromScopesWithClient
(KeycloakSession session, String scope) An extension ofAuthorizationContextUtil.getAuthorizationRequestContextFromScopes(org.keycloak.models.KeycloakSession, java.lang.String)
that appends the current context's clientstatic Stream<AuthorizationDetails>
AuthorizationContextUtil.getAuthorizationRequestsStreamFromScopesWithClient
(KeycloakSession session, String scope) An extension of {@link AuthorizationContextUtil#getAuthorizationRequestContextFromScopesWithClient)} that returns the list as a Streamstatic Stream<ClientScopeModel>
AuthorizationContextUtil.getClientScopesStreamFromAuthorizationRequestContextWithClient
(KeycloakSession session, String scope) Helper method to return a Stream of all theClientScopeModel
in the currentAuthorizationRequestContext
static UserSessionModel
UserSessionUtil.getUserSessionWithImpersonatorClient
(KeycloakSession session, RealmModel realm, String userSessionId, boolean offline, String clientUUID) abstract jakarta.ws.rs.core.Response
BrowserHistoryHelper.loadSavedResponse
(KeycloakSession session, AuthenticationSessionModel authSession) static void
CacheControlUtil.noBackButtonCacheControlHeader
(KeycloakSession session) static void
LocaleUtil.processLocaleParam
(KeycloakSession session, RealmModel realm, AuthenticationSessionModel authSession) static String
ResolveRelative.resolveRelativeUri
(KeycloakSession session, String rootUrl, String url) static String
ResolveRelative.resolveRootUrl
(KeycloakSession session, String rootUrl) DPoPUtil.retrieveDPoPHeaderIfPresent
(KeycloakSession keycloakSession, OIDCAdvancedConfigWrapper clientConfig, EventBuilder event, Cors cors) checks the current request if a DPoP HTTP Header is present and returns it if it is present.abstract jakarta.ws.rs.core.Response
BrowserHistoryHelper.saveResponseAndRedirect
(KeycloakSession session, AuthenticationSessionModel authSession, jakarta.ws.rs.core.Response response, boolean actionRequest, HttpRequest httpRequest) protected boolean
BrowserHistoryHelper.shouldReplaceBrowserHistory
(boolean actionRequest, KeycloakSession session) static boolean
MtlsHoKTokenUtil.verifyTokenBindingWithClientCertificate
(AccessToken token, HttpRequest request, KeycloakSession session) ModifierConstructorDescriptionAuthenticationFlowURLHelper
(KeycloakSession session, RealmModel realm, jakarta.ws.rs.core.UriInfo uriInfo) Validator
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.services.x509
Modifier and TypeMethodDescriptionApacheProxySslClientCertificateLookupFactory.create
(KeycloakSession session) DefaultClientCertificateLookupFactory.create
(KeycloakSession session) HaProxySslClientCertificateLookupFactory.create
(KeycloakSession session) NginxProxySslClientCertificateLookupFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.social.bitbucket
Modifier and TypeMethodDescriptionBitbucketIdentityProviderFactory.create
(KeycloakSession session, IdentityProviderModel model) ModifierConstructorDescriptionBitbucketIdentityProvider
(KeycloakSession session, OAuth2IdentityProviderConfig config) -
Uses of KeycloakSession in org.keycloak.social.facebook
Modifier and TypeMethodDescriptionFacebookIdentityProviderFactory.create
(KeycloakSession session, IdentityProviderModel model) ModifierConstructorDescriptionFacebookIdentityProvider
(KeycloakSession session, FacebookIdentityProviderConfig config) -
Uses of KeycloakSession in org.keycloak.social.github
Modifier and TypeMethodDescriptionGitHubIdentityProviderFactory.create
(KeycloakSession session, IdentityProviderModel model) ModifierConstructorDescriptionGitHubIdentityProvider
(KeycloakSession session, OAuth2IdentityProviderConfig config) -
Uses of KeycloakSession in org.keycloak.social.gitlab
Modifier and TypeMethodDescriptionGitLabIdentityProviderFactory.create
(KeycloakSession session, IdentityProviderModel model) ModifierConstructorDescriptionGitLabIdentityProvider
(KeycloakSession session, OIDCIdentityProviderConfig config) -
Uses of KeycloakSession in org.keycloak.social.google
Modifier and TypeMethodDescriptionGoogleIdentityProviderFactory.create
(KeycloakSession session, IdentityProviderModel model) ModifierConstructorDescriptionGoogleIdentityProvider
(KeycloakSession session, GoogleIdentityProviderConfig config) -
Uses of KeycloakSession in org.keycloak.social.instagram
Modifier and TypeMethodDescriptionInstagramIdentityProviderFactory.create
(KeycloakSession session, IdentityProviderModel model) ModifierConstructorDescriptionInstagramIdentityProvider
(KeycloakSession session, OAuth2IdentityProviderConfig config) -
Uses of KeycloakSession in org.keycloak.social.linkedin
Modifier and TypeMethodDescriptionLinkedInOIDCIdentityProviderFactory.create
(KeycloakSession session, IdentityProviderModel model) ModifierConstructorDescriptionLinkedInOIDCIdentityProvider
(KeycloakSession session, OIDCIdentityProviderConfig config) LinkedInPublicKeyLoader
(KeycloakSession session, OIDCIdentityProviderConfig config) -
Uses of KeycloakSession in org.keycloak.social.microsoft
Modifier and TypeMethodDescriptionMicrosoftIdentityProviderFactory.create
(KeycloakSession session, IdentityProviderModel model) ModifierConstructorDescriptionMicrosoftIdentityProvider
(KeycloakSession session, MicrosoftIdentityProviderConfig config) -
Uses of KeycloakSession in org.keycloak.social.openshift
Modifier and TypeMethodDescriptionOpenshiftV3IdentityProviderFactory.create
(KeycloakSession keycloakSession, IdentityProviderModel identityProviderModel) OpenshiftV4IdentityProviderFactory.create
(KeycloakSession keycloakSession, IdentityProviderModel identityProviderModel) ModifierConstructorDescriptionOpenshiftV3IdentityProvider
(KeycloakSession session, OpenshiftV3IdentityProviderConfig config) OpenshiftV4IdentityProvider
(KeycloakSession session, OpenshiftV4IdentityProviderConfig config) -
Uses of KeycloakSession in org.keycloak.social.paypal
Modifier and TypeMethodDescriptionPayPalIdentityProviderFactory.create
(KeycloakSession session, IdentityProviderModel model) ModifierConstructorDescriptionPayPalIdentityProvider
(KeycloakSession session, PayPalIdentityProviderConfig config) -
Uses of KeycloakSession in org.keycloak.social.stackoverflow
Modifier and TypeMethodDescriptionStackoverflowIdentityProviderFactory.create
(KeycloakSession session, IdentityProviderModel model) ModifierConstructorDescription -
Uses of KeycloakSession in org.keycloak.social.twitter
Modifier and TypeFieldDescriptionprotected final KeycloakSession
TwitterIdentityProvider.Endpoint.session
Modifier and TypeMethodDescriptionTwitterIdentityProviderFactory.create
(KeycloakSession session, IdentityProviderModel model) jakarta.ws.rs.core.Response
TwitterIdentityProvider.retrieveToken
(KeycloakSession session, FederatedIdentityModel identity) ModifierConstructorDescriptionEndpoint
(KeycloakSession session, IdentityProvider.AuthenticationCallback callback, EventBuilder event, TwitterIdentityProvider provider) TwitterIdentityProvider
(KeycloakSession session, OAuth2IdentityProviderConfig config) -
Uses of KeycloakSession in org.keycloak.storage
Modifier and TypeFieldDescriptionprotected final KeycloakSession
AbstractStorageManager.session
protected KeycloakSession
ClientStorageManager.session
protected KeycloakSession
RoleStorageManager.session
Modifier and TypeMethodDescriptionImportRealmFromRepresentationEvent.getSession()
Deprecated.PartialImportRealmFromRepresentationEvent.getSession()
Deprecated.SetDefaultsForNewRealm.getSession()
StoreMigrateRepresentationEvent.getSession()
StoreSyncEvent.getSession()
Modifier and TypeMethodDescriptionUserStorageProviderFactory.create
(KeycloakSession session, ComponentModel model) called per Keycloak transaction.static RealmModel
ImportRealmFromRepresentationEvent.fire
(KeycloakSession session, RealmRepresentation rep) Deprecated.static PartialImportResults
PartialImportRealmFromRepresentationEvent.fire
(KeycloakSession session, PartialImportRepresentation rep, RealmModel realm) Deprecated.static void
SetDefaultsForNewRealm.fire
(KeycloakSession session, RealmModel realm) static void
StoreMigrateRepresentationEvent.fire
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) static void
StoreSyncEvent.fire
(KeycloakSession session, RealmModel realm, boolean removed) static <T> Stream<T>
ClientStorageManager.getEnabledStorageProviders
(KeycloakSession session, RealmModel realm, Class<T> type) static <T> Stream<T>
RoleStorageManager.getEnabledStorageProviders
(KeycloakSession session, RealmModel realm, Class<T> type) static ClientStorageProvider
ClientStorageManager.getStorageProvider
(KeycloakSession session, RealmModel realm, String componentId) static RoleStorageProvider
RoleStorageManager.getStorageProvider
(KeycloakSession session, RealmModel realm, String componentId) static ClientStorageProvider
ClientStorageManager.getStorageProviderInstance
(KeycloakSession session, ClientStorageProviderModel model, ClientStorageProviderFactory factory) static RoleStorageProvider
RoleStorageManager.getStorageProviderInstance
(KeycloakSession session, RoleStorageProviderModel model, RoleStorageProviderFactory factory) static <T> Stream<T>
ClientStorageManager.getStorageProviders
(KeycloakSession session, RealmModel realm, Class<T> type) static <T> Stream<T>
RoleStorageManager.getStorageProviders
(KeycloakSession session, RealmModel realm, Class<T> type) static <T> Stream<RoleStorageProviderModel>
RoleStorageManager.getStorageProviders
(RealmModel realm, KeycloakSession session, Class<T> type) static boolean
ClientStorageManager.hasEnabledStorageProviders
(KeycloakSession session, RealmModel realm, Class<?> type) void
OnCreateComponent.onCreate
(KeycloakSession session, RealmModel realm, ComponentModel model) void
UserStorageManager.onCreate
(KeycloakSession session, RealmModel realm, ComponentModel model) default void
UserStorageProviderFactory.onCreate
(KeycloakSession session, RealmModel realm, ComponentModel model) Called when UserStorageProviderModel is created.void
OnUpdateComponent.onUpdate
(KeycloakSession session, RealmModel realm, ComponentModel oldModel, ComponentModel newModel) void
UserStorageManager.onUpdate
(KeycloakSession session, RealmModel realm, ComponentModel oldModel, ComponentModel newModel) static UserCache
UserStorageUtil.userCache
(KeycloakSession session) static UserFederatedStorageProvider
UserStorageUtil.userFederatedStorage
(KeycloakSession session) static UserProvider
UserStoragePrivateUtil.userLocalStorage
(KeycloakSession session) default void
UserStorageProviderFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel config) ModifierConstructorDescriptionAbstractStorageManager
(KeycloakSession session, Class<? extends ProviderFactory> factoryTypeClass, Class<ProviderType> providerTypeClass, Function<ComponentModel, StorageProviderModelType> toStorageProviderModelTypeFunction, String configScope) ClientScopeStorageManager
(KeycloakSession session) ClientStorageManager
(KeycloakSession session, long clientStorageProviderTimeout) GroupStorageManager
(KeycloakSession session) ImportRealmFromRepresentationEvent
(KeycloakSession session, RealmRepresentation realmRepresentation) Deprecated.PartialImportRealmFromRepresentationEvent
(KeycloakSession session, PartialImportRepresentation rep, RealmModel realm) Deprecated.RoleStorageManager
(KeycloakSession session, long roleStorageProviderTimeout) SetDefaultsForNewRealm
(KeycloakSession session, RealmModel realmModel) StoreMigrateRepresentationEvent
(KeycloakSession session, RealmModel realm, RealmRepresentation rep, boolean skipUserDependent) StoreSyncEvent
(KeycloakSession session, RealmModel realm, boolean removed) UserStorageManager
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.storage.adapter
Modifier and TypeFieldDescriptionprotected KeycloakSession
AbstractInMemoryUserAdapter.session
protected KeycloakSession
AbstractUserAdapter.session
protected KeycloakSession
AbstractUserAdapterFederatedStorage.session
ModifierConstructorDescriptionprotected
AbstractInMemoryUserAdapter
(KeycloakSession session, RealmModel realm, String id) AbstractUserAdapter
(KeycloakSession session, RealmModel realm, ComponentModel storageProviderModel) AbstractUserAdapterFederatedStorage
(KeycloakSession session, RealmModel realm, ComponentModel storageProviderModel) InMemoryUserAdapter
(KeycloakSession session, RealmModel realm, String id) Streams
(KeycloakSession session, RealmModel realm, ComponentModel storageProviderModel) Streams
(KeycloakSession session, RealmModel realm, ComponentModel storageProviderModel) Deprecated. -
Uses of KeycloakSession in org.keycloak.storage.client
Modifier and TypeMethodDescriptionClientStorageProviderFactory.create
(KeycloakSession session, ComponentModel model) called per Keycloak transaction.default void
ClientStorageProviderFactory.onCreate
(KeycloakSession session, RealmModel realm, ComponentModel model) Called when ClientStorageProviderModel is created.default void
ClientStorageProviderFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel config) ModifierConstructorDescriptionAbstractClientStorageAdapter
(KeycloakSession session, RealmModel realm, ClientStorageProviderModel component) AbstractReadOnlyClientStorageAdapter
(KeycloakSession session, RealmModel realm, ClientStorageProviderModel component) -
Uses of KeycloakSession in org.keycloak.storage.clientscope
Modifier and TypeMethodDescriptionClientScopeStorageProviderFactory.create
(KeycloakSession session, ComponentModel model) called per Keycloak transaction.default void
ClientScopeStorageProviderFactory.onCreate
(KeycloakSession session, RealmModel realm, ComponentModel model) Called when ClientScopeStorageProviderFactory is created.default void
ClientScopeStorageProviderFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel config) -
Uses of KeycloakSession in org.keycloak.storage.datastore
Modifier and TypeMethodDescriptionDefaultDatastoreProviderFactory.create
(KeycloakSession session) DefaultExportImportManager.importAuthenticationFlows
(KeycloakSession session, RealmModel newRealm, RealmRepresentation rep) static void
DefaultExportImportManager.importFederatedUser
(KeycloakSession session, RealmModel newRealm, UserRepresentation userRep) static void
DefaultExportImportManager.importRealmAuthorizationSettings
(RealmRepresentation rep, RealmModel newRealm, KeycloakSession session) static void
DefaultExportImportManager.importUserFederationProvidersAndMappers
(KeycloakSession session, RealmRepresentation rep, RealmModel newRealm) ModifierConstructorDescriptionDefaultDatastoreProvider
(DefaultDatastoreProviderFactory factory, KeycloakSession session) DefaultMigrationManager
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.storage.group
Modifier and TypeMethodDescriptionGroupStorageProviderFactory.create
(KeycloakSession session, ComponentModel model) called per Keycloak transaction.default void
GroupStorageProviderFactory.onCreate
(KeycloakSession session, RealmModel realm, ComponentModel model) Called when GroupStorageProviderModel is created.default void
GroupStorageProviderFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel config) -
Uses of KeycloakSession in org.keycloak.storage.jpa
Modifier and TypeMethodDescriptionJpaUserFederatedStorageProviderFactory.create
(KeycloakSession session) ModifierConstructorDescriptionJpaUserFederatedStorageProvider
(KeycloakSession session, jakarta.persistence.EntityManager em) -
Uses of KeycloakSession in org.keycloak.storage.ldap
Modifier and TypeMethodDescriptionLDAPStorageProviderFactory.create
(KeycloakSession session, ComponentModel model) protected Map<ComponentModel,
LDAPConfigDecorator> LDAPStorageProviderFactory.getLDAPConfigDecorators
(KeycloakSession session, ComponentModel ldapModel) LDAPIdentityStoreRegistry.getLdapStore
(KeycloakSession session, ComponentModel ldapModel, Map<ComponentModel, LDAPConfigDecorator> configDecorators) protected UserModel
LDAPStorageProvider.importUserFromLDAP
(KeycloakSession session, RealmModel realm, LDAPObject ldapUser) protected UserModel
LDAPStorageProvider.importUserFromLDAP
(KeycloakSession session, RealmModel realm, LDAPObject ldapUser, LDAPStorageProvider.ImportType importType) void
LDAPStorageProviderFactory.onCreate
(KeycloakSession session, RealmModel realm, ComponentModel model) void
LDAPStorageProviderFactory.onUpdate
(KeycloakSession session, RealmModel realm, ComponentModel oldModel, ComponentModel newModel) void
LDAPStorageProviderFactory.preRemove
(KeycloakSession session, RealmModel realm, ComponentModel model) void
LDAPStorageProviderFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel config) ModifierConstructorDescriptionLDAPStorageProvider
(LDAPStorageProviderFactory factory, KeycloakSession session, ComponentModel model, LDAPIdentityStore ldapIdentityStore) -
Uses of KeycloakSession in org.keycloak.storage.ldap.idm.store.ldap
Modifier and TypeMethodDescriptionstatic LDAPContextManager
LDAPContextManager.create
(KeycloakSession session, LDAPConfig connectionProperties) ModifierConstructorDescriptionLDAPContextManager
(KeycloakSession session, LDAPConfig connectionProperties) LDAPIdentityStore
(KeycloakSession session, LDAPConfig config) LDAPOperationManager
(KeycloakSession session, LDAPConfig config) -
Uses of KeycloakSession in org.keycloak.storage.ldap.mappers
Modifier and TypeFieldDescriptionprotected final KeycloakSession
AbstractLDAPStorageMapper.session
Modifier and TypeMethodDescriptionprotected void
UserAttributeLDAPStorageMapper.checkDuplicateEmail
(String userModelAttrName, String email, RealmModel realm, KeycloakSession session, UserModel user) protected void
UserAttributeLDAPStorageMapper.checkDuplicateUsername
(String userModelAttrName, String username, RealmModel realm, KeycloakSession session, UserModel user) AbstractLDAPStorageMapperFactory.create
(KeycloakSession session, ComponentModel model) LDAPStorageMapperFactory.create
(KeycloakSession session, ComponentModel model) called per Keycloak transaction.default void
LDAPStorageMapperFactory.onCreate
(KeycloakSession session, RealmModel realm, ComponentModel model) Called when UserStorageProviderModel is created.void
CertificateLDAPStorageMapperFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel config) void
FullNameLDAPStorageMapperFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel config) void
HardcodedAttributeMapperFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel config) void
HardcodedLDAPAttributeMapperFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel config) void
HardcodedLDAPGroupStorageMapperFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel config) void
HardcodedLDAPRoleStorageMapperFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel config) default void
LDAPStorageMapperFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel config) void
UserAttributeLDAPStorageMapperFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel config) -
Uses of KeycloakSession in org.keycloak.storage.ldap.mappers.membership.group
Modifier and TypeMethodDescriptionvoid
GroupLDAPStorageMapperFactory.onCreate
(KeycloakSession session, RealmModel realm, ComponentModel model) void
GroupLDAPStorageMapperFactory.onUpdate
(KeycloakSession session, RealmModel realm, ComponentModel oldModel, ComponentModel newModel) void
GroupLDAPStorageMapperFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel config) -
Uses of KeycloakSession in org.keycloak.storage.ldap.mappers.membership.role
Modifier and TypeMethodDescriptionvoid
RoleLDAPStorageMapperFactory.onCreate
(KeycloakSession session, RealmModel realm, ComponentModel model) void
RoleLDAPStorageMapperFactory.onUpdate
(KeycloakSession session, RealmModel realm, ComponentModel oldModel, ComponentModel newModel) void
RoleLDAPStorageMapperFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel config) -
Uses of KeycloakSession in org.keycloak.storage.managers
Modifier and TypeMethodDescriptionstatic void
UserStorageSyncManager.notifyToRefreshPeriodicSync
(KeycloakSession session, RealmModel realm, UserStorageProviderModel provider, boolean removed) static void
UserStorageSyncManager.notifyToRefreshPeriodicSyncAll
(KeycloakSession session, RealmModel realm, boolean removed) static void
UserStorageSyncManager.notifyToRefreshPeriodicSyncSingle
(KeycloakSession session, RealmModel realm, ComponentModel component, boolean removed) -
Uses of KeycloakSession in org.keycloak.storage.role
Modifier and TypeMethodDescriptionRoleStorageProviderFactory.create
(KeycloakSession session, ComponentModel model) called per Keycloak transaction.default void
RoleStorageProviderFactory.onCreate
(KeycloakSession session, RealmModel realm, ComponentModel model) Called when RoleStorageProviderModel is created.default void
RoleStorageProviderFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel config) -
Uses of KeycloakSession in org.keycloak.theme
Modifier and TypeMethodDescriptionClasspathThemeProviderFactory.create
(KeycloakSession session) ClasspathThemeResourceProviderFactory.create
(KeycloakSession session) DefaultThemeManagerFactory.create
(KeycloakSession session) DefaultThemeSelectorProviderFactory.create
(KeycloakSession session) FolderThemeProviderFactory.create
(KeycloakSession sessions) JarThemeProviderFactory.create
(KeycloakSession session) ModifierConstructorDescriptionDefaultThemeManager
(DefaultThemeManagerFactory factory, KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.theme.freemarker
Modifier and TypeMethodDescriptionDefaultFreeMarkerProviderFactory.create
(KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.timer.basic
ModifierConstructorDescriptionBasicTimerProvider
(KeycloakSession session, Timer timer, int transactionTimeout, BasicTimerProviderFactory factory) -
Uses of KeycloakSession in org.keycloak.transaction
Modifier and TypeMethodDescriptiondefault JtaTransactionManagerLookup
JtaTransactionManagerLookup.create
(KeycloakSession session) static void
AsyncResponseTransaction.finishAsyncResponseInTransaction
(KeycloakSession session, jakarta.ws.rs.container.AsyncResponse responseToFinishInTransaction, jakarta.ws.rs.core.Response responseToSend) This method creates a new AsyncResponseTransaction instance that resumes provided AsyncResponseresponseToFinishInTransaction
with given ResponseresponseToSend
.static RequestContextHelper
RequestContextHelper.getContext
(KeycloakSession session) ModifierConstructorDescriptionJtaTransactionWrapper
(KeycloakSession session, jakarta.transaction.TransactionManager tm) -
Uses of KeycloakSession in org.keycloak.truststore
-
Uses of KeycloakSession in org.keycloak.url
ModifierConstructorDescriptionHostnameV2Provider
(KeycloakSession session, String hostname, URI hostnameUrl, URI adminUrl, Boolean backchannelDynamic) -
Uses of KeycloakSession in org.keycloak.userprofile
Modifier and TypeMethodDescriptionprotected UserProfileMetadata
DeclarativeUserProfileProvider.configureUserProfile
(UserProfileMetadata metadata, KeycloakSession session) Specifies how contextual profile metadata is configured at runtime.DeclarativeUserProfileProviderFactory.create
(KeycloakSession session) static UserProfileMetadata
UserProfileUtil.createUserProfileMetadata
(KeycloakSession session, UserProfile profile) static AttributeGroupMetadata
UserProfileUtil.lookupUserMetadataGroup
(KeycloakSession session) Find the metadata group "user-metadata"void
DeclarativeUserProfileProviderFactory.validateConfiguration
(KeycloakSession session, RealmModel realm, ComponentModel model) ModifierConstructorDescriptionAttributeContext
(UserProfileContext context, KeycloakSession session, Map.Entry<String, List<String>> attribute, UserModel user, AttributeMetadata metadata, Attributes attributes) DeclarativeUserProfileProvider
(KeycloakSession session, DeclarativeUserProfileProviderFactory factory) DefaultAttributes
(UserProfileContext context, Map<String, ?> attributes, UserModel user, UserProfileMetadata profileMetadata, KeycloakSession session) DefaultUserProfile
(UserProfileMetadata metadata, Attributes attributes, Function<Attributes, UserModel> userCreator, UserModel user, KeycloakSession session) ServiceAccountAttributes
(UserProfileContext context, Map<String, ?> attributes, UserModel user, UserProfileMetadata profileMetadata, KeycloakSession session) -
Uses of KeycloakSession in org.keycloak.userprofile.config
Modifier and TypeMethodDescriptionUPConfigUtils.validate
(KeycloakSession session, UPConfig config) Validate object representation of the configuration. -
Uses of KeycloakSession in org.keycloak.userprofile.validator
Modifier and TypeMethodDescriptionMultiValueValidator.validateConfig
(KeycloakSession session, ValidatorConfig config) -
Uses of KeycloakSession in org.keycloak.utils
Modifier and TypeMethodDescriptionstatic KeycloakSession
KeycloakSessionUtil.getKeycloakSession()
Get theKeycloakSession
currently associated with the thread.static KeycloakSession
KeycloakSessionUtil.setKeycloakSession
(KeycloakSession session) Associate theKeycloakSession
with the current thread.Modifier and TypeMethodDescriptionstatic void
CRLUtils.check
(X509Certificate[] certs, X509CRL crl, KeycloakSession session) Check the signature on CRL and check if 1st certificate from the chain ((The actual certificate from the client)) is valid and not available on CRL.OCSPProvider.check
(KeycloakSession session, X509Certificate cert, X509Certificate issuerCertificate) Requests certificate revocation status using OCSP.OCSPProvider.check
(KeycloakSession session, X509Certificate cert, X509Certificate issuerCertificate, URI responderURI, X509Certificate responderCert, Date date) Requests certificate revocation status using OCSP.OCSPProvider.check
(KeycloakSession session, X509Certificate cert, X509Certificate issuerCertificate, Date date, X509Certificate responderCert) Requests certificate revocation status using OCSP.protected abstract OCSPProvider.OCSPRevocationStatus
OCSPProvider.check
(KeycloakSession session, X509Certificate cert, X509Certificate issuerCertificate, List<URI> responderURIs, X509Certificate responderCert, Date date) Requests certificate revocation status using OCSP.static <T> Consumer<? super T>
ServicesUtils.consumeWithTimeBound
(KeycloakSession session, long timeout, Consumer<T> func) Deprecated.static boolean
CredentialHelper.createOTPCredential
(KeycloakSession session, RealmModel realm, UserModel user, String totpCode, OTPCredentialModel credentialModel) Create OTP credential either in userStorage or local storage (Keycloak DB)static void
CredentialHelper.deleteOTPCredential
(KeycloakSession session, RealmModel realm, UserModel user, String credentialId) static Map<String,
AccessToken.Access> RoleResolveUtil.getAllResolvedClientRoles
(KeycloakSession session, ClientSessionContext clientSessionCtx) Object (but can be empty map) containing all the user's client roles of all clients.CredentialHelper.getConfigurableAuthenticatorFactory
(KeycloakSession session, String providerId) static RequiredActionFactory
RequiredActionHelper.getConfigurableRequiredActionFactory
(KeycloakSession session, String providerId) protected byte[]
OCSPProvider.getEncodedOCSPResponse
(KeycloakSession session, byte[] encodedOCSPReq, URI responderUri) static AccessToken.Access
RoleResolveUtil.getResolvedClientRoles
(KeycloakSession session, ClientSessionContext clientSessionCtx, String clientId, boolean createIfMissing) Object (possibly null) containing all the user's client roles of client specified by clientId.static AccessToken.Access
RoleResolveUtil.getResolvedRealmRoles
(KeycloakSession session, ClientSessionContext clientSessionCtx, boolean createIfMissing) Object (possibly null) containing all the user's realm roles.static boolean
SecureContextResolver.isSecureContext
(KeycloakSession session) Determines if a session is within a 'secure context', meaning its origin is considered potentially trustworthy by user-agents.static RequiredActionFactory
RequiredActionHelper.lookupConfigurableRequiredActionFactory
(KeycloakSession session, String providerId) static Stream<GroupRepresentation>
GroupUtils.populateGroupHierarchyFromSubGroups
(KeycloakSession session, RealmModel realm, Stream<GroupModel> groups, boolean full, GroupPermissionEvaluator groupEvaluator) This method takes the provided groups and attempts to load their parents all the way to the root group while maintaining the hierarchy data for each GroupRepresentation object.static void
CredentialHelper.setAlternativeCredential
(KeycloakSession session, String type, RealmModel realm) static KeycloakSession
KeycloakSessionUtil.setKeycloakSession
(KeycloakSession session) Associate theKeycloakSession
with the current thread.static void
CredentialHelper.setOrReplaceAuthenticationRequirement
(KeycloakSession session, RealmModel realm, String type, AuthenticationExecutionModel.Requirement requirement, AuthenticationExecutionModel.Requirement currentRequirement) static void
CredentialHelper.setRequiredCredential
(KeycloakSession session, String type, RealmModel realm) ServicesUtils.timeBound
(KeycloakSession session, long timeout, Function<T, ? extends Stream<R>> func) Deprecated.static <T,
R> Function<? super T, R> ServicesUtils.timeBoundOne
(KeycloakSession session, long timeout, Function<T, R> func) Deprecated. -
Uses of KeycloakSession in org.keycloak.validate
Modifier and TypeMethodDescriptiondefault Validator
SimpleValidator.create
(KeycloakSession session) default ValidationResult
ValidatorFactory.validateConfig
(KeycloakSession session, ValidatorConfig config) Validates the given validation config.static ValidationResult
Validators.validateConfig
(KeycloakSession session, String id, ValidatorConfig config) static Validator
Validators.validator
(KeycloakSession session, String id) Look-up up for a built-in or registeredValidator
with the given validatorId.static ValidatorFactory
Validators.validatorFactory
(KeycloakSession session, String id) Look-up for a built-in or registeredValidatorFactory
with the given validatorId.ModifierConstructorDescriptionValidationContext
(KeycloakSession session) Creates a newValidationContext
with aKeycloakSession
.protected
ValidationContext
(KeycloakSession session, Set<ValidationError> errors) Creates a newValidationContext
.Validators
(KeycloakSession session) Creates a newValidators
instance with the givenKeycloakSession
. -
Uses of KeycloakSession in org.keycloak.validate.validators
Modifier and TypeMethodDescriptionAbstractNumberValidator.validateConfig
(KeycloakSession session, ValidatorConfig config) EmailValidator.validateConfig
(KeycloakSession session, ValidatorConfig config) LengthValidator.validateConfig
(KeycloakSession session, ValidatorConfig config) LocalDateValidator.validateConfig
(KeycloakSession session, ValidatorConfig config) OptionsValidator.validateConfig
(KeycloakSession session, ValidatorConfig config) PatternValidator.validateConfig
(KeycloakSession session, ValidatorConfig config) -
Uses of KeycloakSession in org.keycloak.validation
Modifier and TypeMethodDescriptionDefaultValidationContext.getSession()
ValidationContext.getSession()
Modifier and TypeMethodDescriptionDefaultClientValidationProviderFactory.create
(KeycloakSession session) static void
ValidationUtil.validateClient
(KeycloakSession session, ClientModel client, boolean create, ValidationUtil.ErrorHandler errorHandler) static void
ValidationUtil.validateClient
(KeycloakSession session, ClientModel client, OIDCClientRepresentation oidcClient, boolean create, ValidationUtil.ErrorHandler errorHandler) ModifierConstructorDescriptionClientValidationContext
(ValidationContext.Event event, KeycloakSession session, ClientModel objectToValidate) DefaultValidationContext
(ValidationContext.Event event, KeycloakSession session, T objectToValidate) OIDCContext
(ValidationContext.Event event, KeycloakSession session, ClientModel objectToValidate, OIDCClientRepresentation oidcClient) -
Uses of KeycloakSession in org.keycloak.vault
Modifier and TypeMethodDescriptionFilesKeystoreVaultProviderFactory.create
(KeycloakSession session) FilesPlainTextVaultProviderFactory.create
(KeycloakSession session) protected String
AbstractVaultProviderFactory.getRealmName
(KeycloakSession session) Obtains the name of realm from theKeycloakSession
.
PasswordUtil.isConfigured()