Uses of Interface
org.keycloak.models.ClientSessionContext
Package
Description
-
Uses of ClientSessionContext in org.keycloak.authentication
Modifier and TypeMethodDescriptionAuthenticationProcessor.attachSession()
static ClientSessionContext
AuthenticationProcessor.attachSession
(AuthenticationSessionModel authSession, UserSessionModel userSession, KeycloakSession session, RealmModel realm, ClientConnection connection, EventBuilder event) -
Uses of ClientSessionContext in org.keycloak.organization.protocol.mappers.oidc
Modifier and TypeMethodDescriptionprotected void
OrganizationMembershipMapper.setClaim
(IDToken token, ProtocolMapperModel model, UserSessionModel userSession, KeycloakSession session, ClientSessionContext clientSessionCtx) -
Uses of ClientSessionContext in org.keycloak.protocol
Modifier and TypeMethodDescriptionjakarta.ws.rs.core.Response
LoginProtocol.authenticated
(AuthenticationSessionModel authSession, UserSessionModel userSession, ClientSessionContext clientSessionCtx) static Stream<Map.Entry<ProtocolMapperModel,
ProtocolMapper>> ProtocolMapperUtils.getSortedProtocolMappers
(KeycloakSession session, ClientSessionContext ctx) static Stream<Map.Entry<ProtocolMapperModel,
ProtocolMapper>> ProtocolMapperUtils.getSortedProtocolMappers
(KeycloakSession session, ClientSessionContext ctx, Predicate<Map.Entry<ProtocolMapperModel, ProtocolMapper>> filter) -
Uses of ClientSessionContext in org.keycloak.protocol.docker
Modifier and TypeMethodDescriptionjakarta.ws.rs.core.Response
DockerAuthV2Protocol.authenticated
(AuthenticationSessionModel authSession, UserSessionModel userSession, ClientSessionContext clientSessionCtx) -
Uses of ClientSessionContext in org.keycloak.protocol.oidc
Modifier and TypeFieldDescriptionfinal ClientSessionContext
TokenManager.TokenValidation.clientSessionCtx
Modifier and TypeMethodDescriptionstatic ClientSessionContext
TokenManager.attachAuthenticationSession
(KeycloakSession session, UserSessionModel userSession, AuthenticationSessionModel authSession) Modifier and TypeMethodDescriptionjakarta.ws.rs.core.Response
OIDCLoginProtocol.authenticated
(AuthenticationSessionModel authSession, UserSessionModel userSession, ClientSessionContext clientSessionCtx) jakarta.ws.rs.core.Response
OIDCLoginProtocol.buildRedirectUri
(OIDCRedirectUriBuilder redirectUriBuilder, AuthenticationSessionModel authSession, UserSessionModel userSession, ClientSessionContext clientSessionCtx) this method can be used in extension-implementations to theOIDCLoginProtocol
to add additional parameters to the redirectUri after successful authentication and to store these e.g.jakarta.ws.rs.core.Response
OIDCLoginProtocol.buildRedirectUri
(OIDCRedirectUriBuilder redirectUriBuilder, AuthenticationSessionModel authSession, UserSessionModel userSession, ClientSessionContext clientSessionCtx, Exception ex, LoginProtocol.Error oidcError) this method can be used in extension-implementations to theOIDCLoginProtocol
to add additional parameters to the redirectUri after failed authenticationTokenManager.createClientAccessToken
(KeycloakSession session, RealmModel realm, ClientModel client, UserModel user, UserSessionModel userSession, ClientSessionContext clientSessionCtx) protected AccessToken
TokenManager.initToken
(RealmModel realm, ClientModel client, UserModel user, UserSessionModel session, ClientSessionContext clientSessionCtx, jakarta.ws.rs.core.UriInfo uriInfo) TokenManager.responseBuilder
(RealmModel realm, ClientModel client, EventBuilder event, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) TokenManager.transformAccessToken
(KeycloakSession session, AccessToken token, UserSessionModel userSession, ClientSessionContext clientSessionCtx) TokenManager.transformAccessTokenResponse
(KeycloakSession session, AccessTokenResponse accessTokenResponse, UserSessionModel userSession, ClientSessionContext clientSessionCtx) TokenManager.transformIDToken
(KeycloakSession session, IDToken token, UserSessionModel userSession, ClientSessionContext clientSessionCtx) TokenManager.transformIntrospectionAccessToken
(KeycloakSession session, AccessToken token, UserSessionModel userSession, ClientSessionContext clientSessionCtx) TokenManager.transformUserInfoAccessToken
(KeycloakSession session, AccessToken token, UserSessionModel userSession, ClientSessionContext clientSessionCtx) ModifierConstructorDescriptionAccessTokenResponseBuilder
(RealmModel realm, ClientModel client, EventBuilder event, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) TokenValidation
(UserModel user, UserSessionModel userSession, ClientSessionContext clientSessionCtx, AccessToken newToken) -
Uses of ClientSessionContext in org.keycloak.protocol.oidc.grants
Modifier and TypeMethodDescriptionprotected jakarta.ws.rs.core.Response
OAuth2GrantTypeBase.createTokenResponse
(UserModel user, UserSessionModel userSession, ClientSessionContext clientSessionCtx, String scopeParam, boolean code, Function<TokenManager.AccessTokenResponseBuilder, ClientPolicyContext> clientPolicyContextGenerator) -
Uses of ClientSessionContext in org.keycloak.protocol.oidc.grants.ciba.clientpolicy.context
ModifierConstructorDescriptionBackchannelTokenResponseContext
(CIBAAuthenticationRequest parsedRequest, jakarta.ws.rs.core.MultivaluedMap<String, String> requestParameters, ClientSessionContext clientSessionCtx, TokenManager.AccessTokenResponseBuilder accessTokenResponseBuilder) -
Uses of ClientSessionContext in org.keycloak.protocol.oidc.mappers
Modifier and TypeMethodDescriptionprotected void
AbstractOIDCProtocolMapper.setClaim
(AccessTokenResponse accessTokenResponse, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) Intended to be overridden inProtocolMapper
implementations to add claims to an token.protected void
AbstractOIDCProtocolMapper.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) Intended to be overridden inProtocolMapper
implementations to add claims to an token.protected void
AcrProtocolMapper.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) protected void
AmrProtocolMapper.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) protected void
AudienceProtocolMapper.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) protected void
ClaimsParameterTokenMapper.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) protected void
ClaimsParameterWithValueIdTokenMapper.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) protected void
HardcodedClaim.setClaim
(AccessTokenResponse accessTokenResponse, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) protected void
HardcodedRole.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession session, ClientSessionContext clientSessionCtx) protected void
RoleNameMapper.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession session, ClientSessionContext clientSessionCtx) protected void
ScriptBasedOIDCProtocolMapper.setClaim
(AccessTokenResponse accessTokenResponse, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) protected void
ScriptBasedOIDCProtocolMapper.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) protected void
SessionStateMapper.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) protected void
SubMapper.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) protected void
UserClientRoleMappingMapper.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession session, ClientSessionContext clientSessionCtx) protected void
UserRealmRoleMappingMapper.setClaim
(IDToken token, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession session, ClientSessionContext clientSessionCtx) protected void
UserSessionNoteMapper.setClaim
(AccessTokenResponse accessTokenResponse, ProtocolMapperModel mappingModel, UserSessionModel userSession, KeycloakSession keycloakSession, ClientSessionContext clientSessionCtx) AbstractOIDCProtocolMapper.transformAccessToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) AbstractPairwiseSubMapper.transformAccessToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) AllowedWebOriginsProtocolMapper.transformAccessToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) AudienceResolveProtocolMapper.transformAccessToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) HardcodedRole.transformAccessToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) NonceBackwardsCompatibleMapper.transformAccessToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) OIDCAccessTokenMapper.transformAccessToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) RoleNameMapper.transformAccessToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) AbstractOIDCProtocolMapper.transformAccessTokenResponse
(AccessTokenResponse accessTokenResponse, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) OIDCAccessTokenResponseMapper.transformAccessTokenResponse
(AccessTokenResponse accessTokenResponse, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) AbstractOIDCProtocolMapper.transformIDToken
(IDToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) AbstractPairwiseSubMapper.transformIDToken
(IDToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) OIDCIDTokenMapper.transformIDToken
(IDToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSession) AbstractOIDCProtocolMapper.transformIntrospectionToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) AbstractPairwiseSubMapper.transformIntrospectionToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) AllowedWebOriginsProtocolMapper.transformIntrospectionToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) AudienceResolveProtocolMapper.transformIntrospectionToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) HardcodedRole.transformIntrospectionToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) RoleNameMapper.transformIntrospectionToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) TokenIntrospectionTokenMapper.transformIntrospectionToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) AbstractOIDCProtocolMapper.transformUserInfoToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) AbstractPairwiseSubMapper.transformUserInfoToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) HardcodedRole.transformUserInfoToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) RoleNameMapper.transformUserInfoToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) UserInfoTokenMapper.transformUserInfoToken
(AccessToken token, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) -
Uses of ClientSessionContext in org.keycloak.protocol.saml
Modifier and TypeMethodDescriptionjakarta.ws.rs.core.Response
SamlProtocol.authenticated
(AuthenticationSessionModel authSession, UserSessionModel userSession, ClientSessionContext clientSessionCtx) void
SamlProtocol.populateRoles
(SamlProtocol.ProtocolMapperProcessor<SAMLRoleListMapper> roleListMapper, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx, AttributeStatementType existingAttributeStatement) SamlProtocol.transformLoginResponse
(List<SamlProtocol.ProtocolMapperProcessor<SAMLLoginResponseMapper>> mappers, ResponseType response, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) -
Uses of ClientSessionContext in org.keycloak.protocol.saml.mappers
Modifier and TypeMethodDescriptionvoid
RoleListMapper.mapRoles
(AttributeStatementType roleAttributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) void
SAMLRoleListMapper.mapRoles
(AttributeStatementType roleAttributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) SAMLAudienceProtocolMapper.transformLoginResponse
(ResponseType response, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) SAMLAudienceResolveProtocolMapper.transformLoginResponse
(ResponseType response, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) SAMLLoginResponseMapper.transformLoginResponse
(ResponseType response, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx) -
Uses of ClientSessionContext in org.keycloak.services.clientpolicy.context
Modifier and TypeMethodDescriptionImplicitHybridTokenResponse.getClientSessionContext()
ResourceOwnerPasswordCredentialsResponseContext.getClientSessionContext()
TokenResponseContext.getClientSessionContext()
ModifierConstructorDescriptionImplicitHybridTokenResponse
(AuthenticationSessionModel authSession, ClientSessionContext clientSessionCtx, TokenManager.AccessTokenResponseBuilder accessTokenResponseBuilder) ResourceOwnerPasswordCredentialsResponseContext
(jakarta.ws.rs.core.MultivaluedMap<String, String> params, ClientSessionContext clientSessionCtx, TokenManager.AccessTokenResponseBuilder accessTokenResponseBuilder) TokenResponseContext
(jakarta.ws.rs.core.MultivaluedMap<String, String> params, OAuth2CodeParser.ParseResult parseResult, ClientSessionContext clientSessionCtx, TokenManager.AccessTokenResponseBuilder accessTokenResponseBuilder) -
Uses of ClientSessionContext in org.keycloak.services.managers
Modifier and TypeMethodDescriptionboolean
UserSessionManager.isOfflineTokenAllowed
(ClientSessionContext clientSessionCtx) static jakarta.ws.rs.core.Response
AuthenticationManager.redirectAfterSuccessfulFlow
(KeycloakSession session, RealmModel realm, UserSessionModel userSession, ClientSessionContext clientSessionCtx, HttpRequest request, jakarta.ws.rs.core.UriInfo uriInfo, ClientConnection clientConnection, EventBuilder event, AuthenticationSessionModel authSession) static jakarta.ws.rs.core.Response
AuthenticationManager.redirectAfterSuccessfulFlow
(KeycloakSession session, RealmModel realm, UserSessionModel userSession, ClientSessionContext clientSessionCtx, HttpRequest request, jakarta.ws.rs.core.UriInfo uriInfo, ClientConnection clientConnection, EventBuilder event, AuthenticationSessionModel authSession, LoginProtocol protocol) -
Uses of ClientSessionContext in org.keycloak.services.util
-
Uses of ClientSessionContext in org.keycloak.utils
Modifier and TypeMethodDescriptionstatic Map<String,
AccessToken.Access> RoleResolveUtil.getAllResolvedClientRoles
(KeycloakSession session, ClientSessionContext clientSessionCtx) Object (but can be empty map) containing all the user's client roles of all clients.static AccessToken.Access
RoleResolveUtil.getResolvedClientRoles
(KeycloakSession session, ClientSessionContext clientSessionCtx, String clientId, boolean createIfMissing) Object (possibly null) containing all the user's client roles of client specified by clientId.static AccessToken.Access
RoleResolveUtil.getResolvedRealmRoles
(KeycloakSession session, ClientSessionContext clientSessionCtx, boolean createIfMissing) Object (possibly null) containing all the user's realm roles.