public class ScopeMappedResource extends Object
Modifier and Type | Field and Description |
---|---|
protected AdminEventBuilder |
adminEvent |
protected AdminPermissionEvaluator |
auth |
protected AdminPermissionEvaluator.RequirePermissionCheck |
managePermission |
protected RealmModel |
realm |
protected ScopeContainerModel |
scopeContainer |
protected KeycloakSession |
session |
protected AdminPermissionEvaluator.RequirePermissionCheck |
viewPermission |
Constructor and Description |
---|
ScopeMappedResource(RealmModel realm,
AdminPermissionEvaluator auth,
ScopeContainerModel scopeContainer,
KeycloakSession session,
AdminEventBuilder adminEvent,
AdminPermissionEvaluator.RequirePermissionCheck managePermission,
AdminPermissionEvaluator.RequirePermissionCheck viewPermission) |
Modifier and Type | Method and Description |
---|---|
void |
addRealmScopeMappings(List<RoleRepresentation> roles)
Add a set of realm-level roles to the client's scope
|
void |
deleteRealmScopeMappings(List<RoleRepresentation> roles)
Remove a set of realm-level roles from the client's scope
|
static List<RoleRepresentation> |
getAvailable(AdminPermissionEvaluator auth,
ScopeContainerModel client,
Set<RoleModel> roles) |
List<RoleRepresentation> |
getAvailableRealmScopeMappings()
Get realm-level roles that are available to attach to this client's scope
|
ScopeMappedClientResource |
getClientByIdScopeMappings(String client) |
static List<RoleRepresentation> |
getComposite(ScopeContainerModel client,
Set<RoleModel> roles) |
List<RoleRepresentation> |
getCompositeRealmScopeMappings()
Get effective realm-level roles associated with the client's scope
What this does is recurse
any composite roles associated with the client's scope and adds the roles to this lists.
|
List<RoleRepresentation> |
getRealmScopeMappings()
Get realm-level roles associated with the client's scope
|
MappingsRepresentation |
getScopeMappings()
Get all scope mappings for the client
|
protected RealmModel realm
protected AdminPermissionEvaluator auth
protected AdminPermissionEvaluator.RequirePermissionCheck managePermission
protected AdminPermissionEvaluator.RequirePermissionCheck viewPermission
protected ScopeContainerModel scopeContainer
protected KeycloakSession session
protected AdminEventBuilder adminEvent
public ScopeMappedResource(RealmModel realm, AdminPermissionEvaluator auth, ScopeContainerModel scopeContainer, KeycloakSession session, AdminEventBuilder adminEvent, AdminPermissionEvaluator.RequirePermissionCheck managePermission, AdminPermissionEvaluator.RequirePermissionCheck viewPermission)
@GET @Produces(value="application/json") public MappingsRepresentation getScopeMappings()
@Path(value="realm") @GET @Produces(value="application/json") public List<RoleRepresentation> getRealmScopeMappings()
@Path(value="realm/available") @GET @Produces(value="application/json") public List<RoleRepresentation> getAvailableRealmScopeMappings()
public static List<RoleRepresentation> getAvailable(AdminPermissionEvaluator auth, ScopeContainerModel client, Set<RoleModel> roles)
@Path(value="realm/composite") @GET @Produces(value="application/json") public List<RoleRepresentation> getCompositeRealmScopeMappings()
public static List<RoleRepresentation> getComposite(ScopeContainerModel client, Set<RoleModel> roles)
@Path(value="realm") @POST @Consumes(value="application/json") public void addRealmScopeMappings(List<RoleRepresentation> roles)
roles
- @Path(value="realm") @DELETE @Consumes(value="application/json") public void deleteRealmScopeMappings(List<RoleRepresentation> roles)
roles
- @Path(value="clients/{client}") public ScopeMappedClientResource getClientByIdScopeMappings(@PathParam(value="client") String client)
Copyright © 2019 JBoss by Red Hat. All rights reserved.