Class SAMLAudienceProtocolMapper
- java.lang.Object
-
- org.keycloak.protocol.saml.mappers.AbstractSAMLProtocolMapper
-
- org.keycloak.protocol.saml.mappers.SAMLAudienceProtocolMapper
-
- All Implemented Interfaces:
org.keycloak.protocol.ProtocolMapper,SAMLLoginResponseMapper,org.keycloak.provider.ConfiguredProvider,org.keycloak.provider.Provider,org.keycloak.provider.ProviderFactory<org.keycloak.protocol.ProtocolMapper>
public class SAMLAudienceProtocolMapper extends AbstractSAMLProtocolMapper implements SAMLLoginResponseMapper
SAML mapper to add a audience restriction into the assertion, to another client (clientId) or to a custom URI. Only one URI is added, clientId has preference over the custom value (the class maps OIDC behavior).- Author:
- rmartinc
-
-
Field Summary
Fields Modifier and Type Field Description static StringAUDIENCE_CATEGORYstatic StringINCLUDED_CLIENT_AUDIENCEstatic StringINCLUDED_CUSTOM_AUDIENCEprotected static org.jboss.logging.Loggerloggerstatic StringPROVIDER_ID
-
Constructor Summary
Constructors Constructor Description SAMLAudienceProtocolMapper()
-
Method Summary
All Methods Static Methods Instance Methods Concrete Methods Modifier and Type Method Description List<org.keycloak.provider.ProviderConfigProperty>getConfigProperties()StringgetDisplayCategory()StringgetDisplayType()StringgetHelpText()StringgetId()protected static org.keycloak.dom.saml.v2.assertion.AudienceRestrictionTypelocateAudienceRestriction(org.keycloak.dom.saml.v2.protocol.ResponseType response)org.keycloak.dom.saml.v2.protocol.ResponseTypetransformLoginResponse(org.keycloak.dom.saml.v2.protocol.ResponseType response, org.keycloak.models.ProtocolMapperModel mappingModel, org.keycloak.models.KeycloakSession session, org.keycloak.models.UserSessionModel userSession, org.keycloak.models.ClientSessionContext clientSessionCtx)-
Methods inherited from class org.keycloak.protocol.saml.mappers.AbstractSAMLProtocolMapper
close, create, getProtocol, init, postInit
-
-
-
-
Field Detail
-
logger
protected static final org.jboss.logging.Logger logger
-
PROVIDER_ID
public static final String PROVIDER_ID
- See Also:
- Constant Field Values
-
AUDIENCE_CATEGORY
public static final String AUDIENCE_CATEGORY
- See Also:
- Constant Field Values
-
INCLUDED_CLIENT_AUDIENCE
public static final String INCLUDED_CLIENT_AUDIENCE
- See Also:
- Constant Field Values
-
INCLUDED_CUSTOM_AUDIENCE
public static final String INCLUDED_CUSTOM_AUDIENCE
- See Also:
- Constant Field Values
-
-
Method Detail
-
getConfigProperties
public List<org.keycloak.provider.ProviderConfigProperty> getConfigProperties()
- Specified by:
getConfigPropertiesin interfaceorg.keycloak.provider.ConfiguredProvider
-
getId
public String getId()
- Specified by:
getIdin interfaceorg.keycloak.provider.ProviderFactory<org.keycloak.protocol.ProtocolMapper>
-
getDisplayType
public String getDisplayType()
- Specified by:
getDisplayTypein interfaceorg.keycloak.protocol.ProtocolMapper
-
getDisplayCategory
public String getDisplayCategory()
- Specified by:
getDisplayCategoryin interfaceorg.keycloak.protocol.ProtocolMapper
-
getHelpText
public String getHelpText()
- Specified by:
getHelpTextin interfaceorg.keycloak.provider.ConfiguredProvider
-
locateAudienceRestriction
protected static org.keycloak.dom.saml.v2.assertion.AudienceRestrictionType locateAudienceRestriction(org.keycloak.dom.saml.v2.protocol.ResponseType response)
-
transformLoginResponse
public org.keycloak.dom.saml.v2.protocol.ResponseType transformLoginResponse(org.keycloak.dom.saml.v2.protocol.ResponseType response, org.keycloak.models.ProtocolMapperModel mappingModel, org.keycloak.models.KeycloakSession session, org.keycloak.models.UserSessionModel userSession, org.keycloak.models.ClientSessionContext clientSessionCtx)- Specified by:
transformLoginResponsein interfaceSAMLLoginResponseMapper
-
-