Package org.keycloak.adapters
Class RequestAuthenticator
java.lang.Object
org.keycloak.adapters.RequestAuthenticator
- Version:
- $Revision: 1 $
- Author:
- Bill Burke
-
Field Summary
Modifier and TypeFieldDescriptionprotected AuthChallenge
protected KeycloakDeployment
protected HttpFacade
protected static org.jboss.logging.Logger
protected int
protected AdapterTokenStore
-
Constructor Summary
ConstructorDescriptionRequestAuthenticator
(HttpFacade facade, KeycloakDeployment deployment) RequestAuthenticator
(HttpFacade facade, KeycloakDeployment deployment, AdapterTokenStore tokenStore, int sslRedirectPort) -
Method Summary
Modifier and TypeMethodDescriptionprotected abstract String
changeHttpSessionId
(boolean create) After code is received, we change the session id if possible to guard against https://www.owasp.org/index.php/Session_Fixationprotected void
completeAuthentication
(BearerTokenRequestAuthenticator bearer, String method) protected void
protected abstract void
completeBearerAuthentication
(KeycloakPrincipal<RefreshableKeycloakSecurityContext> principal, String method) protected abstract void
protected BasicAuthRequestAuthenticator
protected BearerTokenRequestAuthenticator
protected abstract OAuthRequestAuthenticator
protected QueryParameterTokenRequestAuthenticator
protected boolean
protected boolean
-
Field Details
-
log
protected static org.jboss.logging.Logger log -
facade
-
challenge
-
deployment
-
tokenStore
-
sslRedirectPort
protected int sslRedirectPort
-
-
Constructor Details
-
RequestAuthenticator
public RequestAuthenticator(HttpFacade facade, KeycloakDeployment deployment, AdapterTokenStore tokenStore, int sslRedirectPort) -
RequestAuthenticator
-
-
Method Details
-
getChallenge
-
authenticate
-
verifySSL
protected boolean verifySSL() -
isAutodetectedBearerOnly
-
createOAuthAuthenticator
-
createBearerTokenAuthenticator
-
createBasicAuthAuthenticator
-
createQueryParameterTokenRequestAuthenticator
-
completeAuthentication
-
completeOAuthAuthentication
protected abstract void completeOAuthAuthentication(KeycloakPrincipal<RefreshableKeycloakSecurityContext> principal) -
completeBearerAuthentication
protected abstract void completeBearerAuthentication(KeycloakPrincipal<RefreshableKeycloakSecurityContext> principal, String method) -
changeHttpSessionId
After code is received, we change the session id if possible to guard against https://www.owasp.org/index.php/Session_Fixation- Parameters:
create
-- Returns:
-
completeAuthentication
-