Package org.keycloak.adapters
Class RequestAuthenticator
- java.lang.Object
-
- org.keycloak.adapters.RequestAuthenticator
-
public abstract class RequestAuthenticator extends Object
- Version:
- $Revision: 1 $
- Author:
- Bill Burke
-
-
Field Summary
Fields Modifier and Type Field Description protected org.keycloak.adapters.spi.AuthChallengechallengeprotected KeycloakDeploymentdeploymentprotected org.keycloak.adapters.spi.HttpFacadefacadeprotected static org.jboss.logging.Loggerlogprotected intsslRedirectPortprotected AdapterTokenStoretokenStore
-
Constructor Summary
Constructors Constructor Description RequestAuthenticator(org.keycloak.adapters.spi.HttpFacade facade, KeycloakDeployment deployment)RequestAuthenticator(org.keycloak.adapters.spi.HttpFacade facade, KeycloakDeployment deployment, AdapterTokenStore tokenStore, int sslRedirectPort)
-
Method Summary
All Methods Instance Methods Abstract Methods Concrete Methods Modifier and Type Method Description org.keycloak.adapters.spi.AuthOutcomeauthenticate()protected abstract StringchangeHttpSessionId(boolean create)After code is received, we change the session id if possible to guard against https://www.owasp.org/index.php/Session_Fixationprotected voidcompleteAuthentication(BearerTokenRequestAuthenticator bearer, String method)protected voidcompleteAuthentication(OAuthRequestAuthenticator oauth)protected abstract voidcompleteBearerAuthentication(org.keycloak.KeycloakPrincipal<RefreshableKeycloakSecurityContext> principal, String method)protected abstract voidcompleteOAuthAuthentication(org.keycloak.KeycloakPrincipal<RefreshableKeycloakSecurityContext> principal)protected BasicAuthRequestAuthenticatorcreateBasicAuthAuthenticator()protected BearerTokenRequestAuthenticatorcreateBearerTokenAuthenticator()protected abstract OAuthRequestAuthenticatorcreateOAuthAuthenticator()protected QueryParameterTokenRequestAuthenticatorcreateQueryParameterTokenRequestAuthenticator()org.keycloak.adapters.spi.AuthChallengegetChallenge()protected booleanisAutodetectedBearerOnly(org.keycloak.adapters.spi.HttpFacade.Request request)protected booleanverifySSL()
-
-
-
Field Detail
-
log
protected static org.jboss.logging.Logger log
-
facade
protected org.keycloak.adapters.spi.HttpFacade facade
-
challenge
protected org.keycloak.adapters.spi.AuthChallenge challenge
-
deployment
protected KeycloakDeployment deployment
-
tokenStore
protected AdapterTokenStore tokenStore
-
sslRedirectPort
protected int sslRedirectPort
-
-
Constructor Detail
-
RequestAuthenticator
public RequestAuthenticator(org.keycloak.adapters.spi.HttpFacade facade, KeycloakDeployment deployment, AdapterTokenStore tokenStore, int sslRedirectPort)
-
RequestAuthenticator
public RequestAuthenticator(org.keycloak.adapters.spi.HttpFacade facade, KeycloakDeployment deployment)
-
-
Method Detail
-
getChallenge
public org.keycloak.adapters.spi.AuthChallenge getChallenge()
-
authenticate
public org.keycloak.adapters.spi.AuthOutcome authenticate()
-
verifySSL
protected boolean verifySSL()
-
isAutodetectedBearerOnly
protected boolean isAutodetectedBearerOnly(org.keycloak.adapters.spi.HttpFacade.Request request)
-
createOAuthAuthenticator
protected abstract OAuthRequestAuthenticator createOAuthAuthenticator()
-
createBearerTokenAuthenticator
protected BearerTokenRequestAuthenticator createBearerTokenAuthenticator()
-
createBasicAuthAuthenticator
protected BasicAuthRequestAuthenticator createBasicAuthAuthenticator()
-
createQueryParameterTokenRequestAuthenticator
protected QueryParameterTokenRequestAuthenticator createQueryParameterTokenRequestAuthenticator()
-
completeAuthentication
protected void completeAuthentication(OAuthRequestAuthenticator oauth)
-
completeOAuthAuthentication
protected abstract void completeOAuthAuthentication(org.keycloak.KeycloakPrincipal<RefreshableKeycloakSecurityContext> principal)
-
completeBearerAuthentication
protected abstract void completeBearerAuthentication(org.keycloak.KeycloakPrincipal<RefreshableKeycloakSecurityContext> principal, String method)
-
changeHttpSessionId
protected abstract String changeHttpSessionId(boolean create)
After code is received, we change the session id if possible to guard against https://www.owasp.org/index.php/Session_Fixation- Parameters:
create-- Returns:
-
completeAuthentication
protected void completeAuthentication(BearerTokenRequestAuthenticator bearer, String method)
-
-