Package org.keycloak.protocol.oidc
Class OIDCAdvancedConfigWrapper
java.lang.Object
org.keycloak.protocol.oidc.AbstractClientConfigWrapper
org.keycloak.protocol.oidc.OIDCAdvancedConfigWrapper
- Author:
- Marek Posolda
-
Field Summary
Fields inherited from class org.keycloak.protocol.oidc.AbstractClientConfigWrapper
clientModel, clientRep
-
Method Summary
Modifier and TypeMethodDescriptionstatic OIDCAdvancedConfigWrapper
fromClientModel
(ClientModel client) static OIDCAdvancedConfigWrapper
fromClientRepresentation
(ClientRepresentation clientRep) boolean
boolean
boolean
boolean
boolean
boolean
boolean
boolean
boolean
boolean
boolean
boolean
boolean
boolean
If true, then Client Credentials Grant generates refresh token and creates user session.boolean
boolean
void
setAllowRegexPatternComparison
(boolean allowRegexPatternComparison) void
void
void
setAuthorizationSignedResponseAlg
(String algName) void
setBackchannelLogoutRevokeOfflineTokens
(boolean backchannelLogoutRevokeOfflineTokens) void
setBackchannelLogoutSessionRequired
(boolean backchannelLogoutSessionRequired) void
setBackchannelLogoutUrl
(String backchannelLogoutUrl) void
setExcludeIssuerFromAuthResponse
(boolean excludeIssuerFromAuthResponse) void
setExcludeSessionStateFromAuthResponse
(boolean excludeSessionStateFromAuthResponse) void
setFrontChannelLogoutSessionRequired
(boolean frontChannelLogoutSessionRequired) void
setFrontChannelLogoutUrl
(String frontChannelLogoutUrl) void
setIdTokenEncryptedResponseAlg
(String algName) void
setIdTokenEncryptedResponseEnc
(String encName) void
setIdTokenSignedResponseAlg
(String algName) void
setJwksString
(String jwksString) void
setJwksUrl
(String jwksUrl) void
setLogoUri
(String logoUri) void
setMinimumAcrValue
(String minimumAcrValue) void
setPkceCodeChallengeMethod
(String codeChallengeMethodName) void
setPolicyUri
(String policyUri) void
setPostLogoutRedirectUris
(List<String> postLogoutRedirectUris) void
setRequestObjectEncryptionAlg
(String algorithm) void
setRequestObjectEncryptionEnc
(String algorithm) void
setRequestObjectRequired
(String requestObjectRequired) void
setRequestObjectSignatureAlg
(String algorithm) void
setRequestUris
(List<String> requestUris) void
setTlsClientAuthSubjectDn
(String tls_client_auth_subject_dn) void
setTokenEndpointAuthSigningAlg
(String algName) void
void
setUseDPoP
(boolean useDPoP) void
setUseJwksString
(boolean useJwksString) void
setUseJwksUrl
(boolean useJwksUrl) void
setUseLowerCaseInTokenResponse
(boolean useRefreshToken) void
setUseMtlsHoKToken
(boolean useUtlsHokToken) void
setUseRefreshToken
(boolean useRefreshToken) void
setUseRefreshTokenForClientCredentialsGrant
(boolean enable) void
setUserInfoEncryptedResponseAlg
(String algorithm) void
setUserInfoEncryptedResponseEnc
(String algorithm) void
setUserInfoSignedResponseAlg
(String algorithm) Methods inherited from class org.keycloak.protocol.oidc.AbstractClientConfigWrapper
getAttribute, getAttribute, getAttributeMultivalued, getAttributes, setAttribute, setAttributeMultivalued
-
Method Details
-
fromClientModel
-
fromClientRepresentation
-
getUserInfoSignedResponseAlg
-
setUserInfoSignedResponseAlg
-
isUserInfoSignatureRequired
public boolean isUserInfoSignatureRequired() -
setUserInfoEncryptedResponseAlg
-
getUserInfoEncryptedResponseAlg
-
getUserInfoEncryptedResponseEnc
-
setUserInfoEncryptedResponseEnc
-
isUserInfoEncryptionRequired
public boolean isUserInfoEncryptionRequired() -
getRequestObjectSignatureAlg
-
setRequestObjectSignatureAlg
-
setRequestObjectEncryptionAlg
-
getRequestObjectEncryptionAlg
-
getRequestObjectEncryptionEnc
-
setRequestObjectEncryptionEnc
-
getRequestObjectRequired
-
setRequestObjectRequired
-
getRequestUris
-
setRequestUris
-
isUseJwksUrl
public boolean isUseJwksUrl() -
setUseJwksUrl
public void setUseJwksUrl(boolean useJwksUrl) -
getJwksUrl
-
setJwksUrl
-
isUseJwksString
public boolean isUseJwksString() -
setUseJwksString
public void setUseJwksString(boolean useJwksString) -
getJwksString
-
setJwksString
-
isExcludeSessionStateFromAuthResponse
public boolean isExcludeSessionStateFromAuthResponse() -
setExcludeSessionStateFromAuthResponse
public void setExcludeSessionStateFromAuthResponse(boolean excludeSessionStateFromAuthResponse) -
isExcludeIssuerFromAuthResponse
public boolean isExcludeIssuerFromAuthResponse() -
setExcludeIssuerFromAuthResponse
public void setExcludeIssuerFromAuthResponse(boolean excludeIssuerFromAuthResponse) -
isUseDPoP
public boolean isUseDPoP() -
setUseDPoP
public void setUseDPoP(boolean useDPoP) -
isUseMtlsHokToken
public boolean isUseMtlsHokToken() -
setUseMtlsHoKToken
public void setUseMtlsHoKToken(boolean useUtlsHokToken) -
isUseRefreshToken
public boolean isUseRefreshToken() -
setUseRefreshToken
public void setUseRefreshToken(boolean useRefreshToken) -
isUseLowerCaseInTokenResponse
public boolean isUseLowerCaseInTokenResponse() -
setUseLowerCaseInTokenResponse
public void setUseLowerCaseInTokenResponse(boolean useRefreshToken) -
isUseRefreshTokenForClientCredentialsGrant
public boolean isUseRefreshTokenForClientCredentialsGrant()If true, then Client Credentials Grant generates refresh token and creates user session. This is not per specs, so it is false by default For the details @see https://tools.ietf.org/html/rfc6749#section-4.4.3 -
setUseRefreshTokenForClientCredentialsGrant
public void setUseRefreshTokenForClientCredentialsGrant(boolean enable) -
getTlsClientAuthSubjectDn
-
setTlsClientAuthSubjectDn
-
getAllowRegexPatternComparison
public boolean getAllowRegexPatternComparison() -
setAllowRegexPatternComparison
public void setAllowRegexPatternComparison(boolean allowRegexPatternComparison) -
getPkceCodeChallengeMethod
-
setPkceCodeChallengeMethod
-
getIdTokenSignedResponseAlg
-
setIdTokenSignedResponseAlg
-
getIdTokenEncryptedResponseAlg
-
setIdTokenEncryptedResponseAlg
-
getIdTokenEncryptedResponseEnc
-
setIdTokenEncryptedResponseEnc
-
getAuthorizationSignedResponseAlg
-
setAuthorizationSignedResponseAlg
-
getAuthorizationEncryptedResponseAlg
-
setAuthorizationEncryptedResponseAlg
-
getAuthorizationEncryptedResponseEnc
-
setAuthorizationEncryptedResponseEnc
-
getTokenEndpointAuthSigningAlg
-
setTokenEndpointAuthSigningAlg
-
getBackchannelLogoutUrl
-
setBackchannelLogoutUrl
-
isBackchannelLogoutSessionRequired
public boolean isBackchannelLogoutSessionRequired() -
setBackchannelLogoutSessionRequired
public void setBackchannelLogoutSessionRequired(boolean backchannelLogoutSessionRequired) -
getBackchannelLogoutRevokeOfflineTokens
public boolean getBackchannelLogoutRevokeOfflineTokens() -
setBackchannelLogoutRevokeOfflineTokens
public void setBackchannelLogoutRevokeOfflineTokens(boolean backchannelLogoutRevokeOfflineTokens) -
setFrontChannelLogoutUrl
-
isFrontChannelLogoutEnabled
public boolean isFrontChannelLogoutEnabled() -
getFrontChannelLogoutUrl
-
isFrontChannelLogoutSessionRequired
public boolean isFrontChannelLogoutSessionRequired() -
setFrontChannelLogoutSessionRequired
public void setFrontChannelLogoutSessionRequired(boolean frontChannelLogoutSessionRequired) -
setLogoUri
-
setPolicyUri
-
setTosUri
-
getPostLogoutRedirectUris
-
setPostLogoutRedirectUris
-
getMinimumAcrValue
-
setMinimumAcrValue
-