Package org.keycloak.services.managers
Class AppAuthManager
java.lang.Object
org.keycloak.services.managers.AuthenticationManager
org.keycloak.services.managers.AppAuthManager
- Author:
- Bill Burke, Stian Thorgersen
- 
Nested Class SummaryNested ClassesModifier and TypeClassDescriptionstatic classstatic classNested classes/interfaces inherited from class org.keycloak.services.managers.AuthenticationManagerAuthenticationManager.AuthenticationStatus, AuthenticationManager.AuthResult
- 
Field SummaryFieldsFields inherited from class org.keycloak.services.managers.AuthenticationManagerAUTH_TIME, AUTH_TIME_BROKER, CLIENT_LOGOUT_STATE, END_AFTER_REQUIRED_ACTIONS, FORCED_REAUTHENTICATION, FORM_USERNAME, INITIATING_IDP_PARAM, INVALIDATE_ACTION_TOKEN, KEYCLOAK_LOGOUT_PROTOCOL, KEYCLOAK_SESSION_COOKIE, logger, LOGOUT_INITIATING_IDP, LOGOUT_WITH_SYSTEM_CLIENT, PASSWORD_VALIDATED, SET_REDIRECT_URI_AFTER_REQUIRED_ACTIONS, SSO_AUTH, USER_SESSION_PERSISTENT_STATE
- 
Constructor SummaryConstructors
- 
Method SummaryModifier and TypeMethodDescriptionauthenticateIdentityCookie(KeycloakSession session, RealmModel realm) static StringextractAuthorizationHeaderToken(jakarta.ws.rs.core.HttpHeaders headers) Extracts the token string from the Authorization Bearer Header.static AppAuthManager.AuthHeaderextractAuthorizationHeaderTokenOrReturnNull(jakarta.ws.rs.core.HttpHeaders headers) Extracts the token string from the Authorization Bearer Header.Methods inherited from class org.keycloak.services.managers.AuthenticationManagerauthenticateIdentityCookie, backchannelLogout, backchannelLogout, backchannelLogout, backchannelLogoutUserFromClient, browserLogout, compareSessionIdWithSessionCookie, createIdentityToken, createLoginCookie, createOrJoinLogoutSession, createRememberMeCookie, createRequiredAction, evaluateRequiredActionTriggers, executionActions, expireAuthSessionCookie, expireIdentityCookie, expireRememberMeCookie, expireUserSessionCookie, finishBrowserLogout, finishedRequiredActions, finishUnconfirmedUserSession, getClientLogoutAction, getRealmCookiePath, getRememberMeUsername, getRequestedScopes, getRequestedScopes, isClientSessionValid, isSessionValid, isSSOAuthentication, logSuccess, lookupUserForBruteForceLog, nextActionAfterAuthentication, nextRequiredAction, redirectAfterSuccessfulFlow, redirectAfterSuccessfulFlow, redirectToRequiredActions, resolveLightweightAccessTokenRoles, setClientLogoutAction, setClientScopesInSession, setKcActionStatus, setKcActionToEnforced, sha256UrlEncodedHash, verifyIdentityToken
- 
Field Details- 
BEARER- See Also:
 
 
- 
- 
Constructor Details- 
AppAuthManagerpublic AppAuthManager()
 
- 
- 
Method Details- 
authenticateIdentityCookiepublic AuthenticationManager.AuthResult authenticateIdentityCookie(KeycloakSession session, RealmModel realm) - Overrides:
- authenticateIdentityCookiein class- AuthenticationManager
 
- 
extractAuthorizationHeaderTokenOrReturnNullpublic static AppAuthManager.AuthHeader extractAuthorizationHeaderTokenOrReturnNull(jakarta.ws.rs.core.HttpHeaders headers) Extracts the token string from the Authorization Bearer Header.- Parameters:
- headers-
- Returns:
- the authHeader with the token and scheme or null if the Authorization header is not of supported type (EG. Bearer or DPoP), or the token string is missing.
 
- 
extractAuthorizationHeaderTokenExtracts the token string from the Authorization Bearer Header.- Parameters:
- headers-
- Returns:
- the token string or null of the Authorization header is missing
- Throws:
- jakarta.ws.rs.NotAuthorizedException- if the Authorization header is not of type Bearer, or the token string is missing.
 
 
-