Class AdapterConfig
java.lang.Object
org.keycloak.representations.adapters.config.BaseRealmConfig
org.keycloak.representations.adapters.config.BaseAdapterConfig
org.keycloak.representations.adapters.config.AdapterConfig
- All Implemented Interfaces:
AdapterHttpClientConfig
- Direct Known Subclasses:
Configuration
Configuration for Java based adapters
- Version:
- $Revision: 1 $
- Author:
- Bill Burke, Brad Culley, John D. Ament
-
Field Summary
FieldsModifier and TypeFieldDescriptionprotected booleanprotected booleanprotected Stringprotected Stringprotected Stringprotected intprotected longprotected longprotected booleanprotected booleanprotected intprotected booleanprotected PolicyEnforcerConfigprotected Stringprotected StringThe Proxy url to use for requests to the auth-server, configurable via the adapter config propertyproxy-url.protected intprotected booleanprotected intprotected longprotected Stringprotected intprotected Stringprotected Stringprotected Stringprotected Booleanprotected booleanFields inherited from class org.keycloak.representations.adapters.config.BaseAdapterConfig
autodetectBearerOnly, bearerOnly, cors, corsAllowedHeaders, corsAllowedMethods, corsExposedHeaders, corsMaxAge, credentials, enableBasicAuth, exposeToken, publicClient, redirectRewriteRules, resource, useResourceRoleMappingsFields inherited from class org.keycloak.representations.adapters.config.BaseRealmConfig
authServerUrl, confidentialPort, realm, realmKey, sslRequired -
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionReturns keystore with client keys.Returns keystore password.intReturns size of connection pool.longReturns timeout for establishing the connection with the remote host in milliseconds.longReturns the connection time-to-liveintReturns URL of HTTP proxy.intintlongReturns timeout for socket waiting for data in milliseconds.intReturns truststore filename.Returns truststore password.booleanReturns boolean flag whether any hostname verification is done on the server's certificate,truemeans that verification is not done.booleanbooleanReturns boolean flag whether any trust management and hostname verification is done.booleanbooleanisPkce()booleanbooleanvoidsetAllowAnyHostname(boolean allowAnyHostname) voidsetAlwaysRefreshToken(boolean alwaysRefreshToken) voidsetClientKeyPassword(String clientKeyPassword) voidsetClientKeystore(String clientKeystore) voidsetClientKeystorePassword(String clientKeystorePassword) voidsetConnectionPoolSize(int connectionPoolSize) voidsetConnectionTimeout(long connectionTimeout) voidsetConnectionTTL(long connectionTTL) voidsetDisableTrustManager(boolean disableTrustManager) voidsetIgnoreOAuthQueryParameter(boolean ignoreOAuthQueryParameter) voidsetMinTimeBetweenJwksRequests(int minTimeBetweenJwksRequests) voidsetPkce(boolean pkce) voidsetPolicyEnforcerConfig(PolicyEnforcerConfig policyEnforcerConfig) voidsetPrincipalAttribute(String principalAttribute) voidsetProxyUrl(String proxyUrl) voidsetPublicKeyCacheTtl(int publicKeyCacheTtl) voidsetRegisterNodeAtStartup(boolean registerNodeAtStartup) voidsetRegisterNodePeriod(int registerNodePeriod) voidsetSocketTimeout(long socketTimeout) voidsetTokenCookiePath(String tokenCookiePath) voidsetTokenMinimumTimeToLive(int tokenMinimumTimeToLive) voidsetTokenStore(String tokenStore) voidsetTruststore(String truststore) voidsetTruststorePassword(String truststorePassword) voidsetTurnOffChangeSessionIdOnLogin(Boolean turnOffChangeSessionIdOnLogin) voidsetVerifyTokenAudience(boolean verifyTokenAudience) Methods inherited from class org.keycloak.representations.adapters.config.BaseAdapterConfig
getCorsAllowedHeaders, getCorsAllowedMethods, getCorsExposedHeaders, getCorsMaxAge, getCredentials, getRedirectRewriteRules, getResource, isAutodetectBearerOnly, isBearerOnly, isCors, isEnableBasicAuth, isExposeToken, isPublicClient, isUseResourceRoleMappings, setAutodetectBearerOnly, setBearerOnly, setCors, setCorsAllowedHeaders, setCorsAllowedMethods, setCorsExposedHeaders, setCorsMaxAge, setCredentials, setEnableBasicAuth, setExposeToken, setPublicClient, setRedirectRewriteRules, setResource, setUseResourceRoleMappingsMethods inherited from class org.keycloak.representations.adapters.config.BaseRealmConfig
getAuthServerUrl, getConfidentialPort, getRealm, getRealmKey, getSslRequired, setAuthServerUrl, setConfidentialPort, setRealm, setRealmKey, setSslRequired
-
Field Details
-
allowAnyHostname
protected boolean allowAnyHostname -
disableTrustManager
protected boolean disableTrustManager -
truststore
-
truststorePassword
-
clientKeystore
-
clientKeystorePassword
-
clientKeyPassword
-
connectionPoolSize
protected int connectionPoolSize -
alwaysRefreshToken
protected boolean alwaysRefreshToken -
registerNodeAtStartup
protected boolean registerNodeAtStartup -
registerNodePeriod
protected int registerNodePeriod -
tokenStore
-
tokenCookiePath
-
principalAttribute
-
turnOffChangeSessionIdOnLogin
-
tokenMinimumTimeToLive
protected int tokenMinimumTimeToLive -
minTimeBetweenJwksRequests
protected int minTimeBetweenJwksRequests -
publicKeyCacheTtl
protected int publicKeyCacheTtl -
policyEnforcerConfig
-
pkce
protected boolean pkce -
ignoreOAuthQueryParameter
protected boolean ignoreOAuthQueryParameter -
verifyTokenAudience
protected boolean verifyTokenAudience -
socketTimeout
protected long socketTimeout -
connectionTimeout
protected long connectionTimeout -
connectionTTL
protected long connectionTTL -
proxyUrl
The Proxy url to use for requests to the auth-server, configurable via the adapter config propertyproxy-url.
-
-
Constructor Details
-
AdapterConfig
public AdapterConfig()
-
-
Method Details
-
isAllowAnyHostname
public boolean isAllowAnyHostname()Description copied from interface:AdapterHttpClientConfigReturns boolean flag whether any hostname verification is done on the server's certificate,truemeans that verification is not done.- Specified by:
isAllowAnyHostnamein interfaceAdapterHttpClientConfig- Returns:
-
setAllowAnyHostname
public void setAllowAnyHostname(boolean allowAnyHostname) -
isDisableTrustManager
public boolean isDisableTrustManager()Description copied from interface:AdapterHttpClientConfigReturns boolean flag whether any trust management and hostname verification is done.NOTE Disabling trust manager is a security hole, so only set this option if you cannot or do not want to verify the identity of the host you are communicating with.
- Specified by:
isDisableTrustManagerin interfaceAdapterHttpClientConfig
-
setDisableTrustManager
public void setDisableTrustManager(boolean disableTrustManager) -
getTruststore
Description copied from interface:AdapterHttpClientConfigReturns truststore filename.- Specified by:
getTruststorein interfaceAdapterHttpClientConfig
-
setTruststore
-
getTruststorePassword
Description copied from interface:AdapterHttpClientConfigReturns truststore password.- Specified by:
getTruststorePasswordin interfaceAdapterHttpClientConfig
-
setTruststorePassword
-
getClientKeystore
Description copied from interface:AdapterHttpClientConfigReturns keystore with client keys.- Specified by:
getClientKeystorein interfaceAdapterHttpClientConfig
-
setClientKeystore
-
getClientKeystorePassword
Description copied from interface:AdapterHttpClientConfigReturns keystore password.- Specified by:
getClientKeystorePasswordin interfaceAdapterHttpClientConfig
-
setClientKeystorePassword
-
getClientKeyPassword
-
setClientKeyPassword
-
getConnectionPoolSize
public int getConnectionPoolSize()Description copied from interface:AdapterHttpClientConfigReturns size of connection pool.- Specified by:
getConnectionPoolSizein interfaceAdapterHttpClientConfig
-
setConnectionPoolSize
public void setConnectionPoolSize(int connectionPoolSize) -
isAlwaysRefreshToken
public boolean isAlwaysRefreshToken() -
setAlwaysRefreshToken
public void setAlwaysRefreshToken(boolean alwaysRefreshToken) -
isRegisterNodeAtStartup
public boolean isRegisterNodeAtStartup() -
setRegisterNodeAtStartup
public void setRegisterNodeAtStartup(boolean registerNodeAtStartup) -
getRegisterNodePeriod
public int getRegisterNodePeriod() -
setRegisterNodePeriod
public void setRegisterNodePeriod(int registerNodePeriod) -
getTokenStore
-
setTokenStore
-
getTokenCookiePath
-
setTokenCookiePath
-
getPrincipalAttribute
-
setPrincipalAttribute
-
getTurnOffChangeSessionIdOnLogin
-
setTurnOffChangeSessionIdOnLogin
-
getPolicyEnforcerConfig
-
setPolicyEnforcerConfig
-
getProxyUrl
Description copied from interface:AdapterHttpClientConfigReturns URL of HTTP proxy.- Specified by:
getProxyUrlin interfaceAdapterHttpClientConfig
-
setProxyUrl
-
getTokenMinimumTimeToLive
public int getTokenMinimumTimeToLive() -
setTokenMinimumTimeToLive
public void setTokenMinimumTimeToLive(int tokenMinimumTimeToLive) -
getMinTimeBetweenJwksRequests
public int getMinTimeBetweenJwksRequests() -
setMinTimeBetweenJwksRequests
public void setMinTimeBetweenJwksRequests(int minTimeBetweenJwksRequests) -
getPublicKeyCacheTtl
public int getPublicKeyCacheTtl() -
setPublicKeyCacheTtl
public void setPublicKeyCacheTtl(int publicKeyCacheTtl) -
isPkce
public boolean isPkce() -
setPkce
public void setPkce(boolean pkce) -
isIgnoreOAuthQueryParameter
public boolean isIgnoreOAuthQueryParameter() -
setIgnoreOAuthQueryParameter
public void setIgnoreOAuthQueryParameter(boolean ignoreOAuthQueryParameter) -
isVerifyTokenAudience
public boolean isVerifyTokenAudience() -
setVerifyTokenAudience
public void setVerifyTokenAudience(boolean verifyTokenAudience) -
getSocketTimeout
public long getSocketTimeout()Description copied from interface:AdapterHttpClientConfigReturns timeout for socket waiting for data in milliseconds.- Specified by:
getSocketTimeoutin interfaceAdapterHttpClientConfig
-
setSocketTimeout
public void setSocketTimeout(long socketTimeout) -
getConnectionTimeout
public long getConnectionTimeout()Description copied from interface:AdapterHttpClientConfigReturns timeout for establishing the connection with the remote host in milliseconds.- Specified by:
getConnectionTimeoutin interfaceAdapterHttpClientConfig
-
setConnectionTimeout
public void setConnectionTimeout(long connectionTimeout) -
getConnectionTTL
public long getConnectionTTL()Description copied from interface:AdapterHttpClientConfigReturns the connection time-to-live- Specified by:
getConnectionTTLin interfaceAdapterHttpClientConfig
-
setConnectionTTL
public void setConnectionTTL(long connectionTTL) -
getRealmInfoUrl
-