org.keycloak.storage.jpa.JpaUserFederatedStorageProvider の継承関係図

org.keycloak.storage.jpa.JpaUserFederatedStorageProvider 連携図

公開メンバ関数
	JpaUserFederatedStorageProvider (KeycloakSession session, EntityManager em)

void	close ()

void	setAttribute (RealmModel realm, String userId, String name, List< String > values)

void	setSingleAttribute (RealmModel realm, String userId, String name, String value)

void	removeAttribute (RealmModel realm, String userId, String name)

MultivaluedHashMap< String, String >	getAttributes (RealmModel realm, String userId)

List< String >	getUsersByUserAttribute (RealmModel realm, String name, String value)

String	getUserByFederatedIdentity (FederatedIdentityModel link, RealmModel realm)

void	addFederatedIdentity (RealmModel realm, String userId, FederatedIdentityModel link)

boolean	removeFederatedIdentity (RealmModel realm, String userId, String socialProvider)

void	updateFederatedIdentity (RealmModel realm, String userId, FederatedIdentityModel model)

Set< FederatedIdentityModel >	getFederatedIdentities (String userId, RealmModel realm)

FederatedIdentityModel	getFederatedIdentity (String userId, String socialProvider, RealmModel realm)

void	addConsent (RealmModel realm, String userId, UserConsentModel consent)

UserConsentModel	getConsentByClient (RealmModel realm, String userId, String clientInternalId)

List< UserConsentModel >	getConsents (RealmModel realm, String userId)

void	updateConsent (RealmModel realm, String userId, UserConsentModel consent)

boolean	revokeConsentForClient (RealmModel realm, String userId, String clientInternalId)

void	setNotBeforeForUser (RealmModel realm, String userId, int notBefore)

int	getNotBeforeOfUser (RealmModel realm, String userId)

Set< GroupModel >	getGroups (RealmModel realm, String userId)

void	joinGroup (RealmModel realm, String userId, GroupModel group)

void	leaveGroup (RealmModel realm, String userId, GroupModel group)

List< String >	getMembership (RealmModel realm, GroupModel group, int firstResult, int max)

Set< String >	getRequiredActions (RealmModel realm, String userId)

void	addRequiredAction (RealmModel realm, String userId, String action)

void	removeRequiredAction (RealmModel realm, String userId, String action)

void	grantRole (RealmModel realm, String userId, RoleModel role)

Set< RoleModel >	getRoleMappings (RealmModel realm, String userId)

void	deleteRoleMapping (RealmModel realm, String userId, RoleModel role)

void	updateCredential (RealmModel realm, String userId, CredentialModel cred)

CredentialModel	createCredential (RealmModel realm, String userId, CredentialModel cred)

boolean	removeStoredCredential (RealmModel realm, String userId, String id)

CredentialModel	getStoredCredentialById (RealmModel realm, String userId, String id)

List< CredentialModel >	getStoredCredentials (RealmModel realm, String userId)

List< CredentialModel >	getStoredCredentialsByType (RealmModel realm, String userId, String type)

CredentialModel	getStoredCredentialByNameAndType (RealmModel realm, String userId, String name, String type)

List< String >	getStoredUsers (RealmModel realm, int first, int max)

void	updateCredential (RealmModel realm, UserModel user, CredentialModel cred)

CredentialModel	createCredential (RealmModel realm, UserModel user, CredentialModel cred)

boolean	removeStoredCredential (RealmModel realm, UserModel user, String id)

CredentialModel	getStoredCredentialById (RealmModel realm, UserModel user, String id)

List< CredentialModel >	getStoredCredentials (RealmModel realm, UserModel user)

List< CredentialModel >	getStoredCredentialsByType (RealmModel realm, UserModel user, String type)

CredentialModel	getStoredCredentialByNameAndType (RealmModel realm, UserModel user, String name, String type)

int	getStoredUsersCount (RealmModel realm)

void	preRemove (RealmModel realm)

void	preRemove (RealmModel realm, RoleModel role)

void	preRemove (RealmModel realm, GroupModel group)

void	preRemove (RealmModel realm, ClientModel client)

void	preRemove (ProtocolMapperModel protocolMapper)

void	preRemove (ClientScopeModel clientScope)

void	preRemove (RealmModel realm, UserModel user)

void	preRemove (RealmModel realm, ComponentModel model)

限定公開メンバ関数
void	createIndex (RealmModel realm, String userId)

CredentialModel	toModel (FederatedUserCredentialEntity entity)

限定公開変数類
EntityManager	em

非公開メンバ関数
void	deleteAttribute (RealmModel realm, String userId, String name)

void	persistAttributeValue (RealmModel realm, String userId, String name, String value)

BrokerLinkEntity	getBrokerLinkEntity (RealmModel realm, String userId, String socialProvider)

FederatedUserConsentEntity	getGrantedConsentEntity (String userId, String clientId)

UserConsentModel	toConsentModel (RealmModel realm, FederatedUserConsentEntity entity)

void	updateGrantedConsentEntity (FederatedUserConsentEntity consentEntity, UserConsentModel consentModel)

List< FederatedUserRequiredActionEntity >	getRequiredActionEntities (RealmModel realm, String userId)

非公開変数類
final KeycloakSession	session

詳解

著者: Bill Burke

バージョン

Revision: 1

構築子と解体子

◆ JpaUserFederatedStorageProvider()

org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.JpaUserFederatedStorageProvider	(	KeycloakSession	session,
		EntityManager	em
	)

inline

                                                                                       {
         this.session = session;
         this.em = em;
     }

関数詳解

◆ addConsent()

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.addConsent	(	RealmModel	realm,
		String	userId,
		UserConsentModel	consent
	)

inline

org.keycloak.storage.federated.UserConsentFederatedStorageを実装しています。

                                                                                       {
         createIndex(realm, userId);
         String clientId = consent.getClient().getId();
 
         FederatedUserConsentEntity consentEntity = getGrantedConsentEntity(userId, clientId);
         if (consentEntity != null) {
             throw new ModelDuplicateException("Consent already exists for client [" + clientId + "] and user [" + userId + "]");
         }
 
         consentEntity = new FederatedUserConsentEntity();
         consentEntity.setId(KeycloakModelUtils.generateId());
         consentEntity.setUserId(userId);
         StorageId clientStorageId = new StorageId(clientId);
         if (clientStorageId.isLocal()) {
             consentEntity.setClientId(clientId);
         } else {
             consentEntity.setClientStorageProvider(clientStorageId.getProviderId());
             consentEntity.setExternalClientId(clientStorageId.getExternalId());
         }
         consentEntity.setRealmId(realm.getId());
         consentEntity.setStorageProviderId(new StorageId(userId).getProviderId());
         long currentTime = Time.currentTimeMillis();
         consentEntity.setCreatedDate(currentTime);
         consentEntity.setLastUpdatedDate(currentTime);
         em.persist(consentEntity);
         em.flush();
 
         updateGrantedConsentEntity(consentEntity, consent);
 
     }

◆ addFederatedIdentity()

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.addFederatedIdentity	(	RealmModel	realm,
		String	userId,
		FederatedIdentityModel	link
	)

inline

org.keycloak.storage.federated.UserBrokerLinkFederatedStorageを実装しています。

                                                                                                    {
         createIndex(realm, userId);
         BrokerLinkEntity entity = new BrokerLinkEntity();
         entity.setRealmId(realm.getId());
         entity.setUserId(userId);
         entity.setBrokerUserId(link.getUserId());
         entity.setIdentityProvider(link.getIdentityProvider());
         entity.setToken(link.getToken());
         entity.setBrokerUserName(link.getUserName());
         entity.setStorageProviderId(new StorageId(userId).getProviderId());
         em.persist(entity);
 
     }

◆ addRequiredAction()

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.addRequiredAction	(	RealmModel	realm,
		String	userId,
		String	action
	)

inline

org.keycloak.storage.federated.UserRequiredActionsFederatedStorageを実装しています。

                                                                                   {
         Key key = new FederatedUserRequiredActionEntity.Key(userId, action);
         if (em.find(FederatedUserRequiredActionEntity.class, key) == null) {
             createIndex(realm, userId);
             FederatedUserRequiredActionEntity entity = new FederatedUserRequiredActionEntity();
             entity.setUserId(userId);
             entity.setRealmId(realm.getId());
             entity.setStorageProviderId(new StorageId(userId).getProviderId());
             entity.setAction(action);
             em.persist(entity);
         }
     }

◆ close()

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.close ( )

inline

org.keycloak.provider.Providerを実装しています。

                         {
 
     }

◆ createCredential() [1/2]

CredentialModel org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.createCredential	(	RealmModel	realm,
		String	userId,
		CredentialModel	cred
	)

inline

org.keycloak.storage.federated.UserFederatedUserCredentialStoreを実装しています。

                                                                                                    {
         createIndex(realm, userId);
         FederatedUserCredentialEntity entity = new FederatedUserCredentialEntity();
         String id = cred.getId() == null ? KeycloakModelUtils.generateId() : cred.getId();
         entity.setId(id);
         entity.setAlgorithm(cred.getAlgorithm());
         entity.setCounter(cred.getCounter());
         entity.setCreatedDate(cred.getCreatedDate());
         entity.setDevice(cred.getDevice());
         entity.setDigits(cred.getDigits());
         entity.setHashIterations(cred.getHashIterations());
         entity.setPeriod(cred.getPeriod());
         entity.setSalt(cred.getSalt());
         entity.setType(cred.getType());
         entity.setValue(cred.getValue());
         entity.setUserId(userId);
         entity.setRealmId(realm.getId());
         entity.setStorageProviderId(new StorageId(userId).getProviderId());
         em.persist(entity);
         MultivaluedHashMap<String, String> config = cred.getConfig();
         if (config != null && !config.isEmpty()) {
 
             for (String key : config.keySet()) {
                 List<String> values = config.getList(key);
                 for (String val : values) {
                     FederatedUserCredentialAttributeEntity attr = new FederatedUserCredentialAttributeEntity();
                     attr.setId(KeycloakModelUtils.generateId());
                     attr.setValue(val);
                     attr.setName(key);
                     attr.setCredential(entity);
                     em.persist(attr);
                     entity.getCredentialAttributes().add(attr);
                 }
             }
 
         }
         return toModel(entity);
     }

◆ createCredential() [2/2]

CredentialModel org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.createCredential	(	RealmModel	realm,
		UserModel	user,
		CredentialModel	cred
	)

inline

org.keycloak.credential.UserCredentialStoreを実装しています。

                                                                                                     {
         return createCredential(realm, user.getId(), cred);
     }

◆ createIndex()

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.createIndex	(	RealmModel	realm,
		String	userId
	)

inlineprotected

We create an entry so that its easy to iterate over all things in the database. Specifically useful for export

                                                                 {
         if (em.find(FederatedUser.class, userId) == null) {
             FederatedUser fedUser = new FederatedUser();
             fedUser.setId(userId);
             fedUser.setRealmId(realm.getId());
             fedUser.setStorageProviderId(new StorageId(userId).getProviderId());
             em.persist(fedUser);
         }
     }

◆ deleteAttribute()

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.deleteAttribute	(	RealmModel	realm,
		String	userId,
		String	name
	)

inlineprivate

                                                                                {
         em.createNamedQuery("deleteUserFederatedAttributesByUserAndName")
                 .setParameter("userId", userId)
                 .setParameter("realmId", realm.getId())
                 .setParameter("name", name)
                 .executeUpdate();
     }

◆ deleteRoleMapping()

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.deleteRoleMapping	(	RealmModel	realm,
		String	userId,
		RoleModel	role
	)

inline

org.keycloak.storage.federated.UserRoleMappingsFederatedStorageを実装しています。

                                                                                    {
         TypedQuery<FederatedUserRoleMappingEntity> query = em.createNamedQuery("feduserRoleMappings", FederatedUserRoleMappingEntity.class);
         query.setParameter("userId", userId);
         List<FederatedUserRoleMappingEntity> results = query.getResultList();
         for (FederatedUserRoleMappingEntity entity : results) {
             if (entity.getRoleId().equals(role.getId())) em.remove(entity);
 
         }
         em.flush();
     }

◆ getAttributes()

MultivaluedHashMap<String, String> org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getAttributes	(	RealmModel	realm,
		String	userId
	)

inline

org.keycloak.storage.federated.UserAttributeFederatedStorageを実装しています。

                                                                                              {
         TypedQuery<FederatedUserAttributeEntity> query = em.createNamedQuery("getFederatedAttributesByUser", FederatedUserAttributeEntity.class);
         List<FederatedUserAttributeEntity> list = query
                 .setParameter("userId", userId)
                 .setParameter("realmId", realm.getId())
                 .getResultList();
         MultivaluedHashMap<String, String> result = new MultivaluedHashMap<>();
         for (FederatedUserAttributeEntity entity : list) {
             result.add(entity.getName(), entity.getValue());
 
         }
         return result;
     }

◆ getBrokerLinkEntity()

BrokerLinkEntity org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getBrokerLinkEntity	(	RealmModel	realm,
		String	userId,
		String	socialProvider
	)

inlineprivate

                                                                                                          {
         TypedQuery<BrokerLinkEntity> query = em.createNamedQuery("findBrokerLinkByUserAndProvider", BrokerLinkEntity.class)
                 .setParameter("userId", userId)
                 .setParameter("realmId", realm.getId())
                 .setParameter("identityProvider", socialProvider);
         List<BrokerLinkEntity> results = query.getResultList();
         return results.size() > 0 ? results.get(0) : null;
     }

◆ getConsentByClient()

UserConsentModel org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getConsentByClient	(	RealmModel	realm,
		String	userId,
		String	clientInternalId
	)

inline

org.keycloak.storage.federated.UserConsentFederatedStorageを実装しています。

                                                                                                          {
         FederatedUserConsentEntity entity = getGrantedConsentEntity(userId, clientInternalId);
         return toConsentModel(realm, entity);
     }

◆ getConsents()

List<UserConsentModel> org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getConsents	(	RealmModel	realm,
		String	userId
	)

inline

org.keycloak.storage.federated.UserConsentFederatedStorageを実装しています。

                                                                                {
         TypedQuery<FederatedUserConsentEntity> query = em.createNamedQuery("userFederatedConsentsByUser", FederatedUserConsentEntity.class);
         query.setParameter("userId", userId);
         List<FederatedUserConsentEntity> results = query.getResultList();
 
         List<UserConsentModel> consents = new ArrayList<UserConsentModel>();
         for (FederatedUserConsentEntity entity : results) {
             UserConsentModel model = toConsentModel(realm, entity);
             consents.add(model);
         }
         return consents;
     }

◆ getFederatedIdentities()

Set<FederatedIdentityModel> org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getFederatedIdentities	(	String	userId,
		RealmModel	realm
	)

inline

org.keycloak.storage.federated.UserBrokerLinkFederatedStorageを実装しています。

                                                                                                {
         TypedQuery<BrokerLinkEntity> query = em.createNamedQuery("findBrokerLinkByUser", BrokerLinkEntity.class)
                 .setParameter("userId", userId);
         List<BrokerLinkEntity> results = query.getResultList();
         Set<FederatedIdentityModel> set = new HashSet<>();
         for (BrokerLinkEntity entity : results) {
             FederatedIdentityModel model = new FederatedIdentityModel(entity.getIdentityProvider(), entity.getBrokerUserId(), entity.getBrokerUserName(), entity.getToken());
             set.add(model);
         }
         return set;
     }

◆ getFederatedIdentity()

FederatedIdentityModel org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getFederatedIdentity	(	String	userId,
		String	socialProvider,
		RealmModel	realm
	)

inline

org.keycloak.storage.federated.UserBrokerLinkFederatedStorageを実装しています。

                                                                                                                {
         BrokerLinkEntity entity = getBrokerLinkEntity(realm, userId, socialProvider);
         if (entity == null) return null;
         return new FederatedIdentityModel(entity.getIdentityProvider(), entity.getBrokerUserId(), entity.getBrokerUserName(), entity.getToken());
     }

◆ getGrantedConsentEntity()

FederatedUserConsentEntity org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getGrantedConsentEntity	(	String	userId,
		String	clientId
	)

inlineprivate

                                                                                                {
         StorageId clientStorageId = new StorageId(clientId);
         String queryName = clientStorageId.isLocal() ?  "userFederatedConsentByUserAndClient" : "userFederatedConsentByUserAndExternalClient";
         TypedQuery<FederatedUserConsentEntity> query = em.createNamedQuery(queryName, FederatedUserConsentEntity.class);
         query.setParameter("userId", userId);
         if (clientStorageId.isLocal()) {
             query.setParameter("clientId", clientId);
         } else {
             query.setParameter("clientStorageProvider", clientStorageId.getProviderId());
             query.setParameter("externalClientId", clientStorageId.getExternalId());
         }
         List<FederatedUserConsentEntity> results = query.getResultList();
         if (results.size() > 1) {
             throw new ModelException("More results found for user [" + userId + "] and client [" + clientId + "]");
         } else if (results.size() == 1) {
             return results.get(0);
         } else {
             return null;
         }
     }

◆ getGroups()

Set<GroupModel> org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getGroups	(	RealmModel	realm,
		String	userId
	)

inline

org.keycloak.storage.federated.UserGroupMembershipFederatedStorageを実装しています。

                                                                       {
         Set<GroupModel> set = new HashSet<>();
         TypedQuery<FederatedUserGroupMembershipEntity> query = em.createNamedQuery("feduserGroupMembership", FederatedUserGroupMembershipEntity.class);
         query.setParameter("userId", userId);
         List<FederatedUserGroupMembershipEntity> results = query.getResultList();
         if (results.size() == 0) return set;
         for (FederatedUserGroupMembershipEntity entity : results) {
             GroupModel group = realm.getGroupById(entity.getGroupId());
             set.add(group);
         }
         return set;
     }

◆ getMembership()

List<String> org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getMembership	(	RealmModel	realm,
		GroupModel	group,
		int	firstResult,
		int	max
	)

inline

org.keycloak.storage.federated.UserGroupMembershipFederatedStorageを実装しています。

                                                                                                     {
         TypedQuery<String> query = em.createNamedQuery("fedgroupMembership", String.class)
                 .setParameter("realmId", realm.getId())
                 .setParameter("groupId", group.getId());
         query.setFirstResult(firstResult);
         query.setMaxResults(max);
         return query.getResultList();
     }

◆ getNotBeforeOfUser()

int org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getNotBeforeOfUser	(	RealmModel	realm,
		String	userId
	)

inline

org.keycloak.storage.federated.UserNotBeforeFederatedStorageを実装しています。

                                                                    {
         MultivaluedHashMap<String, String> attrs = getAttributes(realm, userId);
         String notBeforeStr = attrs.getFirst("fedNotBefore");
 
         return notBeforeStr==null ? 0 : Integer.parseInt(notBeforeStr);
     }

◆ getRequiredActionEntities()

List<FederatedUserRequiredActionEntity> org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getRequiredActionEntities	(	RealmModel	realm,
		String	userId
	)

inlineprivate

                                                                                                                {
         TypedQuery<FederatedUserRequiredActionEntity> query = em.createNamedQuery("getFederatedUserRequiredActionsByUser", FederatedUserRequiredActionEntity.class)
                 .setParameter("userId", userId)
                 .setParameter("realmId", realm.getId());
         return query.getResultList();
     }

◆ getRequiredActions()

Set<String> org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getRequiredActions	(	RealmModel	realm,
		String	userId
	)

inline

org.keycloak.storage.federated.UserRequiredActionsFederatedStorageを実装しています。

                                                                            {
         Set<String> set = new HashSet<>();
         List<FederatedUserRequiredActionEntity> values = getRequiredActionEntities(realm, userId);
         for (FederatedUserRequiredActionEntity entity : values) {
             set.add(entity.getAction());
         }
 
         return set;
 
     }

◆ getRoleMappings()

Set<RoleModel> org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getRoleMappings	(	RealmModel	realm,
		String	userId
	)

inline

org.keycloak.storage.federated.UserRoleMappingsFederatedStorageを実装しています。

                                                                            {
         Set<RoleModel> set = new HashSet<>();
         TypedQuery<FederatedUserRoleMappingEntity> query = em.createNamedQuery("feduserRoleMappings", FederatedUserRoleMappingEntity.class);
         query.setParameter("userId", userId);
         List<FederatedUserRoleMappingEntity> results = query.getResultList();
         if (results.size() == 0) return set;
         for (FederatedUserRoleMappingEntity entity : results) {
             RoleModel role = realm.getRoleById(entity.getRoleId());
             set.add(role);
         }
         return set;
     }

◆ getStoredCredentialById() [1/2]

CredentialModel org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getStoredCredentialById	(	RealmModel	realm,
		String	userId,
		String	id
	)

inline

org.keycloak.storage.federated.UserFederatedUserCredentialStoreを実装しています。

                                                                                                {
         FederatedUserCredentialEntity entity = em.find(FederatedUserCredentialEntity.class, id);
         if (entity == null) return null;
         CredentialModel model = toModel(entity);
         return model;
     }

◆ getStoredCredentialById() [2/2]

CredentialModel org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getStoredCredentialById	(	RealmModel	realm,
		UserModel	user,
		String	id
	)

inline

org.keycloak.credential.UserCredentialStoreを実装しています。

                                                                                                 {
         return getStoredCredentialById(realm, user.getId(), id);
     }

◆ getStoredCredentialByNameAndType() [1/2]

CredentialModel org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getStoredCredentialByNameAndType	(	RealmModel	realm,
		String	userId,
		String	name,
		String	type
	)

inline

org.keycloak.storage.federated.UserFederatedUserCredentialStoreを実装しています。

                                                                                                                        {
         TypedQuery<FederatedUserCredentialEntity> query = em.createNamedQuery("federatedUserCredentialByNameAndType", FederatedUserCredentialEntity.class)
                 .setParameter("type", type)
                 .setParameter("device", name)
                 .setParameter("userId", userId);
         List<FederatedUserCredentialEntity> results = query.getResultList();
         if (results.isEmpty()) return null;
         return toModel(results.get(0));
     }

◆ getStoredCredentialByNameAndType() [2/2]

CredentialModel org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getStoredCredentialByNameAndType	(	RealmModel	realm,
		UserModel	user,
		String	name,
		String	type
	)

inline

org.keycloak.credential.UserCredentialStoreを実装しています。

                                                                                                                         {
         return getStoredCredentialByNameAndType(realm, user.getId(), name, type);
     }

◆ getStoredCredentials() [1/2]

List<CredentialModel> org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getStoredCredentials	(	RealmModel	realm,
		String	userId
	)

inline

org.keycloak.storage.federated.UserFederatedUserCredentialStoreを実装しています。

                                                                                        {
         TypedQuery<FederatedUserCredentialEntity> query = em.createNamedQuery("federatedUserCredentialByUser", FederatedUserCredentialEntity.class)
                 .setParameter("userId", userId);
         List<FederatedUserCredentialEntity> results = query.getResultList();
         List<CredentialModel> rtn = new LinkedList<>();
         for (FederatedUserCredentialEntity entity : results) {
             rtn.add(toModel(entity));
         }
         return rtn;
     }

◆ getStoredCredentials() [2/2]

List<CredentialModel> org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getStoredCredentials	(	RealmModel	realm,
		UserModel	user
	)

inline

org.keycloak.credential.UserCredentialStoreを実装しています。

                                                                                         {
         return getStoredCredentials(realm, user.getId());
     }

◆ getStoredCredentialsByType() [1/2]

List<CredentialModel> org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getStoredCredentialsByType	(	RealmModel	realm,
		String	userId,
		String	type
	)

inline

org.keycloak.storage.federated.UserFederatedUserCredentialStoreを実装しています。

                                                                                                           {
         TypedQuery<FederatedUserCredentialEntity> query = em.createNamedQuery("federatedUserCredentialByUserAndType", FederatedUserCredentialEntity.class)
                 .setParameter("type", type)
                 .setParameter("userId", userId);
         List<FederatedUserCredentialEntity> results = query.getResultList();
         List<CredentialModel> rtn = new LinkedList<>();
         for (FederatedUserCredentialEntity entity : results) {
             rtn.add(toModel(entity));
         }
         return rtn;
     }

◆ getStoredCredentialsByType() [2/2]

List<CredentialModel> org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getStoredCredentialsByType	(	RealmModel	realm,
		UserModel	user,
		String	type
	)

inline

org.keycloak.credential.UserCredentialStoreを実装しています。

                                                                                                            {
         return getStoredCredentialsByType(realm, user.getId(), type);
     }

◆ getStoredUsers()

List<String> org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getStoredUsers	(	RealmModel	realm,
		int	first,
		int	max
	)

inline

org.keycloak.storage.federated.UserFederatedStorageProviderを実装しています。

                                                                              {
         TypedQuery<String> query = em.createNamedQuery("getFederatedUserIds", String.class)
                 .setParameter("realmId", realm.getId())
                 .setFirstResult(first);
         if (max > 0) query.setMaxResults(max);
         return query.getResultList();
     }

◆ getStoredUsersCount()

int org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getStoredUsersCount ( RealmModel realm )

inline

org.keycloak.storage.federated.UserFederatedStorageProviderを実装しています。

                                                      {
         Object count = em.createNamedQuery("getFederatedUserCount")
                 .setParameter("realmId", realm.getId())
                 .getSingleResult();
         return ((Number)count).intValue();
     }

◆ getUserByFederatedIdentity()

String org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getUserByFederatedIdentity	(	FederatedIdentityModel	link,
		RealmModel	realm
	)

inline

org.keycloak.storage.federated.UserBrokerLinkFederatedStorageを実装しています。

                                                                                             {
         TypedQuery<String> query = em.createNamedQuery("findUserByBrokerLinkAndRealm", String.class)
                 .setParameter("realmId", realm.getId())
                 .setParameter("identityProvider", link.getIdentityProvider())
                 .setParameter("brokerUserId", link.getUserId());
         List<String> results = query.getResultList();
         if (results.isEmpty()) {
             return null;
         } else if (results.size() > 1) {
             throw new IllegalStateException("More results found for identityProvider=" + link.getIdentityProvider() +
                     ", userId=" + link.getUserId() + ", results=" + results);
         } else {
             return results.get(0);
         }
     }

◆ getUsersByUserAttribute()

List<String> org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.getUsersByUserAttribute	(	RealmModel	realm,
		String	name,
		String	value
	)

inline

org.keycloak.storage.federated.UserAttributeFederatedStorageを実装しています。

                                                                                              {
         TypedQuery<String> query = em.createNamedQuery("getFederatedAttributesByNameAndValue", String.class)
                 .setParameter("realmId", realm.getId())
                 .setParameter("name", name)
                 .setParameter("value", value);
         return query.getResultList();
     }

◆ grantRole()

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.grantRole	(	RealmModel	realm,
		String	userId,
		RoleModel	role
	)

inline

org.keycloak.storage.federated.UserRoleMappingsFederatedStorageを実装しています。

                                                                            {
         createIndex(realm, userId);
         FederatedUserRoleMappingEntity entity = new FederatedUserRoleMappingEntity();
         entity.setUserId(userId);
         entity.setStorageProviderId(new StorageId(userId).getProviderId());
         entity.setRealmId(realm.getId());
         entity.setRoleId(role.getId());
         em.persist(entity);
 
     }

◆ joinGroup()

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.joinGroup	(	RealmModel	realm,
		String	userId,
		GroupModel	group
	)

inline

org.keycloak.storage.federated.UserGroupMembershipFederatedStorageを実装しています。

                                                                              {
         createIndex(realm, userId);
         FederatedUserGroupMembershipEntity entity = new FederatedUserGroupMembershipEntity();
         entity.setUserId(userId);
         entity.setStorageProviderId(new StorageId(userId).getProviderId());
         entity.setGroupId(group.getId());
         entity.setRealmId(realm.getId());
         em.persist(entity);
 
     }

◆ leaveGroup()

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.leaveGroup	(	RealmModel	realm,
		String	userId,
		GroupModel	group
	)

inline

org.keycloak.storage.federated.UserGroupMembershipFederatedStorageを実装しています。

                                                                               {
         if (userId == null || group == null) return;
 
         TypedQuery<FederatedUserGroupMembershipEntity> query1 = em.createNamedQuery("feduserMemberOf", FederatedUserGroupMembershipEntity.class);
         query1.setParameter("userId", userId);
         query1.setParameter("groupId", group.getId());
         TypedQuery<FederatedUserGroupMembershipEntity> query = query1;
         List<FederatedUserGroupMembershipEntity> results = query.getResultList();
         if (results.size() == 0) return;
         for (FederatedUserGroupMembershipEntity entity : results) {
             em.remove(entity);
         }
         em.flush();
 
     }

◆ persistAttributeValue()

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.persistAttributeValue	(	RealmModel	realm,
		String	userId,
		String	name,
		String	value
	)

inlineprivate

                                                                                                    {
         FederatedUserAttributeEntity attr = new FederatedUserAttributeEntity();
         attr.setId(KeycloakModelUtils.generateId());
         attr.setName(name);
         attr.setValue(value);
         attr.setUserId(userId);
         attr.setRealmId(realm.getId());
         attr.setStorageProviderId(new StorageId(userId).getProviderId());
         em.persist(attr);
     }

◆ preRemove() [1/8]

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.preRemove ( RealmModel realm )

inline

org.keycloak.storage.federated.UserFederatedStorageProviderを実装しています。

                                             {
         int num = em.createNamedQuery("deleteFederatedUserConsentClientScopesByRealm")
                 .setParameter("realmId", realm.getId()).executeUpdate();
         num = em.createNamedQuery("deleteFederatedUserConsentsByRealm")
                 .setParameter("realmId", realm.getId()).executeUpdate();
         num = em.createNamedQuery("deleteFederatedUserRoleMappingsByRealm")
                 .setParameter("realmId", realm.getId()).executeUpdate();
         num = em.createNamedQuery("deleteFederatedUserRequiredActionsByRealm")
                 .setParameter("realmId", realm.getId()).executeUpdate();
         num = em.createNamedQuery("deleteBrokerLinkByRealm")
                 .setParameter("realmId", realm.getId()).executeUpdate();
         num = em.createNamedQuery("deleteFederatedCredentialAttributeByRealm")
                 .setParameter("realmId", realm.getId()).executeUpdate();
         num = em.createNamedQuery("deleteFederatedUserCredentialsByRealm")
                 .setParameter("realmId", realm.getId()).executeUpdate();
         num = em.createNamedQuery("deleteUserFederatedAttributesByRealm")
                 .setParameter("realmId", realm.getId()).executeUpdate();
         num = em.createNamedQuery("deleteFederatedUserGroupMembershipByRealm")
                 .setParameter("realmId", realm.getId()).executeUpdate();
         num = em.createNamedQuery("deleteFederatedUsersByRealm")
                 .setParameter("realmId", realm.getId()).executeUpdate();
     }

◆ preRemove() [2/8]

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.preRemove	(	RealmModel	realm,
		RoleModel	role
	)

inline

org.keycloak.storage.federated.UserFederatedStorageProviderを実装しています。

                                                             {
         em.createNamedQuery("deleteFederatedUserRoleMappingsByRole").setParameter("roleId", role.getId()).executeUpdate();
     }

◆ preRemove() [3/8]

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.preRemove	(	RealmModel	realm,
		GroupModel	group
	)

inline

org.keycloak.storage.federated.UserFederatedStorageProviderを実装しています。

                                                               {
         em.createNamedQuery("deleteFederatedUserGroupMembershipsByGroup").setParameter("groupId", group.getId()).executeUpdate();
     }

◆ preRemove() [4/8]

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.preRemove	(	RealmModel	realm,
		ClientModel	client
	)

inline

org.keycloak.storage.federated.UserFederatedStorageProviderを実装しています。

                                                                 {
         StorageId clientStorageId = new StorageId(client.getId());
         if (clientStorageId.isLocal()) {
             em.createNamedQuery("deleteFederatedUserConsentClientScopesByClient").setParameter("clientId", client.getId()).executeUpdate();
             em.createNamedQuery("deleteFederatedUserConsentsByClient").setParameter("clientId", client.getId()).executeUpdate();
         } else {
             em.createNamedQuery("deleteFederatedUserConsentClientScopesByExternalClient")
                     .setParameter("clientStorageProvider", clientStorageId.getProviderId())
                     .setParameter("externalClientId",clientStorageId.getExternalId())
                     .executeUpdate();
             em.createNamedQuery("deleteFederatedUserConsentsByExternalClient")
                     .setParameter("clientStorageProvider", clientStorageId.getProviderId())
                     .setParameter("externalClientId",clientStorageId.getExternalId())
                     .executeUpdate();
 
         }
     }

◆ preRemove() [5/8]

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.preRemove ( ProtocolMapperModel protocolMapper )

inline

org.keycloak.storage.federated.UserFederatedStorageProviderを実装しています。

                                                               {
         // No op
     }

◆ preRemove() [6/8]

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.preRemove ( ClientScopeModel clientScope )

inline

org.keycloak.storage.federated.UserFederatedStorageProviderを実装しています。

                                                         {
         em.createNamedQuery("deleteFederatedUserConsentClientScopesByClientScope")
                 .setParameter("scopeId", clientScope.getId())
                 .executeUpdate();
     }

◆ preRemove() [7/8]

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.preRemove	(	RealmModel	realm,
		UserModel	user
	)

inline

org.keycloak.storage.federated.UserFederatedStorageProviderを実装しています。

                                                             {
         em.createNamedQuery("deleteBrokerLinkByUser")
                 .setParameter("userId", user.getId())
                 .setParameter("realmId", realm.getId())
                 .executeUpdate();
         em.createNamedQuery("deleteUserFederatedAttributesByUser")
                 .setParameter("userId", user.getId())
                 .setParameter("realmId", realm.getId())
                 .executeUpdate();
         em.createNamedQuery("deleteFederatedUserConsentClientScopesByUser")
                 .setParameter("userId", user.getId())
                 .setParameter("realmId", realm.getId())
                 .executeUpdate();
         em.createNamedQuery("deleteFederatedUserConsentsByUser")
                 .setParameter("userId", user.getId())
                 .setParameter("realmId", realm.getId())
                 .executeUpdate();
         em.createNamedQuery("deleteFederatedCredentialAttributeByUser")
                 .setParameter("userId", user.getId())
                 .setParameter("realmId", realm.getId())
                 .executeUpdate();
         em.createNamedQuery("deleteFederatedUserCredentialByUser")
                 .setParameter("userId", user.getId())
                 .setParameter("realmId", realm.getId())
                 .executeUpdate();
         em.createNamedQuery("deleteFederatedUserGroupMembershipsByUser")
                 .setParameter("userId", user.getId())
                 .setParameter("realmId", realm.getId())
                 .executeUpdate();
         em.createNamedQuery("deleteFederatedUserRequiredActionsByUser")
                 .setParameter("userId", user.getId())
                 .setParameter("realmId", realm.getId())
                 .executeUpdate();
         em.createNamedQuery("deleteFederatedUserRoleMappingsByUser")
                 .setParameter("userId", user.getId())
                 .setParameter("realmId", realm.getId())
                 .executeUpdate();
         em.createNamedQuery("deleteFederatedUserByUser")
                 .setParameter("userId", user.getId())
                 .setParameter("realmId", realm.getId())
                 .executeUpdate();
 
     }

◆ preRemove() [8/8]

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.preRemove	(	RealmModel	realm,
		ComponentModel	model
	)

inline

org.keycloak.storage.federated.UserFederatedStorageProviderを実装しています。

                                                                   {
         if (model.getProviderType().equals(UserStorageProvider.class.getName())) {
 
             em.createNamedQuery("deleteBrokerLinkByStorageProvider")
                     .setParameter("storageProviderId", model.getId())
                     .executeUpdate();
             em.createNamedQuery("deleteFederatedAttributesByStorageProvider")
                     .setParameter("storageProviderId", model.getId())
                     .executeUpdate();
             em.createNamedQuery("deleteFederatedUserConsentClientScopesByStorageProvider")
                     .setParameter("storageProviderId", model.getId())
                     .executeUpdate();
             em.createNamedQuery("deleteFederatedUserConsentsByStorageProvider")
                     .setParameter("storageProviderId", model.getId())
                     .executeUpdate();
             em.createNamedQuery("deleteFederatedCredentialAttributeByStorageProvider")
                     .setParameter("storageProviderId", model.getId())
                     .executeUpdate();
             em.createNamedQuery("deleteFederatedUserCredentialsByStorageProvider")
                     .setParameter("storageProviderId", model.getId())
                     .executeUpdate();
             em.createNamedQuery("deleteFederatedUserGroupMembershipByStorageProvider")
                     .setParameter("storageProviderId", model.getId())
                     .executeUpdate();
             em.createNamedQuery("deleteFederatedUserRequiredActionsByStorageProvider")
                     .setParameter("storageProviderId", model.getId())
                     .executeUpdate();
             em.createNamedQuery("deleteFederatedUserRoleMappingsByStorageProvider")
                     .setParameter("storageProviderId", model.getId())
                     .executeUpdate();
             em.createNamedQuery("deleteFederatedUsersByStorageProvider")
                     .setParameter("storageProviderId", model.getId())
                     .executeUpdate();
         } else if (model.getProviderType().equals(ClientStorageProvider.class.getName())) {
             em.createNamedQuery("deleteFederatedUserConsentClientScopesByClientStorageProvider")
                     .setParameter("clientStorageProvider",  model.getId())
                     .executeUpdate();
             em.createNamedQuery("deleteFederatedUserConsentsByClientStorageProvider")
                     .setParameter("clientStorageProvider",  model.getId())
                     .executeUpdate();
 
         }
 
     }

◆ removeAttribute()

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.removeAttribute	(	RealmModel	realm,
		String	userId,
		String	name
	)

inline

org.keycloak.storage.federated.UserAttributeFederatedStorageを実装しています。

                                                                               {
         //         createIndex(realm, user); don't need to create an index for removal
         deleteAttribute(realm, userId, name);
         em.flush();
     }

◆ removeFederatedIdentity()

boolean org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.removeFederatedIdentity	(	RealmModel	realm,
		String	userId,
		String	socialProvider
	)

inline

org.keycloak.storage.federated.UserBrokerLinkFederatedStorageを実装しています。

                                                                                                    {
         BrokerLinkEntity entity = getBrokerLinkEntity(realm, userId, socialProvider);
         if (entity == null) return false;
         em.remove(entity);
         return true;
     }

◆ removeRequiredAction()

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.removeRequiredAction	(	RealmModel	realm,
		String	userId,
		String	action
	)

inline

org.keycloak.storage.federated.UserRequiredActionsFederatedStorageを実装しています。

                                                                                      {
         List<FederatedUserRequiredActionEntity> values = getRequiredActionEntities(realm, userId);
         for (FederatedUserRequiredActionEntity entity : values) {
             if (action.equals(entity.getAction())) em.remove(entity);
         }
         em.flush();
 
     }

◆ removeStoredCredential() [1/2]

boolean org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.removeStoredCredential	(	RealmModel	realm,
		String	userId,
		String	id
	)

inline

org.keycloak.storage.federated.UserFederatedUserCredentialStoreを実装しています。

                                                                                       {
         FederatedUserCredentialEntity entity = em.find(FederatedUserCredentialEntity.class, id);
         if (entity == null) return false;
         em.remove(entity);
         return true;
     }

◆ removeStoredCredential() [2/2]

boolean org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.removeStoredCredential	(	RealmModel	realm,
		UserModel	user,
		String	id
	)

inline

org.keycloak.credential.UserCredentialStoreを実装しています。

                                                                                        {
         return removeStoredCredential(realm, user.getId(), id);
     }

◆ revokeConsentForClient()

boolean org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.revokeConsentForClient	(	RealmModel	realm,
		String	userId,
		String	clientInternalId
	)

inline

org.keycloak.storage.federated.UserConsentFederatedStorageを実装しています。

                                                                                                     {
         FederatedUserConsentEntity consentEntity = getGrantedConsentEntity(userId, clientInternalId);
         if (consentEntity == null) return false;
 
         em.remove(consentEntity);
         em.flush();
         return true;
     }

◆ setAttribute()

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.setAttribute	(	RealmModel	realm,
		String	userId,
		String	name,
		List< String >	values
	)

inline

org.keycloak.storage.federated.UserAttributeFederatedStorageを実装しています。

                                                                                                 {
         createIndex(realm, userId);
         deleteAttribute(realm, userId, name);
         em.flush();
         for (String value : values) {
             persistAttributeValue(realm, userId, name, value);
         }
     }

◆ setNotBeforeForUser()

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.setNotBeforeForUser	(	RealmModel	realm,
		String	userId,
		int	notBefore
	)

inline

org.keycloak.storage.federated.UserNotBeforeFederatedStorageを実装しています。

                                                                                     {
         // Track it as attribute for now
         String notBeforeStr = String.valueOf(notBefore);
         setSingleAttribute(realm, userId, "fedNotBefore", notBeforeStr);
     }

◆ setSingleAttribute()

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.setSingleAttribute	(	RealmModel	realm,
		String	userId,
		String	name,
		String	value
	)

inline

org.keycloak.storage.federated.UserAttributeFederatedStorageを実装しています。

                                                                                                {
         createIndex(realm, userId);
         deleteAttribute(realm, userId, name);
         em.flush();
         persistAttributeValue(realm, userId, name, value);
     }

◆ toConsentModel()

UserConsentModel org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.toConsentModel	(	RealmModel	realm,
		FederatedUserConsentEntity	entity
	)

inlineprivate

                                                                                                  {
         if (entity == null) {
             return null;
         }
 
         StorageId clientStorageId = null;
         if ( entity.getClientId() == null) {
             clientStorageId = new StorageId(entity.getClientStorageProvider(), entity.getExternalClientId());
         } else {
             clientStorageId = new StorageId(entity.getClientId());
         }
 
         ClientModel client = realm.getClientById(clientStorageId.getId());
         UserConsentModel model = new UserConsentModel(client);
         model.setCreatedDate(entity.getCreatedDate());
         model.setLastUpdatedDate(entity.getLastUpdatedDate());
 
         Collection<FederatedUserConsentClientScopeEntity> grantedClientScopeEntities = entity.getGrantedClientScopes();
         if (grantedClientScopeEntities != null) {
             for (FederatedUserConsentClientScopeEntity grantedClientScope : grantedClientScopeEntities) {
                 ClientScopeModel grantedClientScopeModel = realm.getClientScopeById(grantedClientScope.getScopeId());
                 if (grantedClientScopeModel != null) {
                     model.addGrantedClientScope(grantedClientScopeModel);
                 }
             }
         }
 
         return model;
     }

◆ toModel()

CredentialModel org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.toModel ( FederatedUserCredentialEntity entity )

inlineprotected

                                                                             {
         CredentialModel model = new CredentialModel();
         model.setId(entity.getId());
         model.setType(entity.getType());
         model.setValue(entity.getValue());
         model.setAlgorithm(entity.getAlgorithm());
         model.setSalt(entity.getSalt());
         model.setPeriod(entity.getPeriod());
         model.setCounter(entity.getCounter());
         model.setCreatedDate(entity.getCreatedDate());
         model.setDevice(entity.getDevice());
         model.setDigits(entity.getDigits());
         model.setHashIterations(entity.getHashIterations());
         MultivaluedHashMap<String, String> config = new MultivaluedHashMap<>();
         model.setConfig(config);
         for (FederatedUserCredentialAttributeEntity attr : entity.getCredentialAttributes()) {
             config.add(attr.getName(), attr.getValue());
         }
         return model;
     }

◆ updateConsent()

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.updateConsent	(	RealmModel	realm,
		String	userId,
		UserConsentModel	consent
	)

inline

org.keycloak.storage.federated.UserConsentFederatedStorageを実装しています。

                                                                                          {
         createIndex(realm, userId);
         String clientId = consent.getClient().getId();
 
         FederatedUserConsentEntity consentEntity = getGrantedConsentEntity(userId, clientId);
         if (consentEntity == null) {
             throw new ModelException("Consent not found for client [" + clientId + "] and user [" + userId + "]");
         }
 
         updateGrantedConsentEntity(consentEntity, consent);
 
     }

◆ updateCredential() [1/2]

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.updateCredential	(	RealmModel	realm,
		String	userId,
		CredentialModel	cred
	)

inline

org.keycloak.storage.federated.UserFederatedUserCredentialStoreを実装しています。

                                                                                         {
         FederatedUserCredentialEntity entity = em.find(FederatedUserCredentialEntity.class, cred.getId());
         if (entity == null) return;
         createIndex(realm, userId);
         entity.setAlgorithm(cred.getAlgorithm());
         entity.setCounter(cred.getCounter());
         entity.setCreatedDate(cred.getCreatedDate());
         entity.setDevice(cred.getDevice());
         entity.setDigits(cred.getDigits());
         entity.setHashIterations(cred.getHashIterations());
         entity.setPeriod(cred.getPeriod());
         entity.setSalt(cred.getSalt());
         entity.setType(cred.getType());
         entity.setValue(cred.getValue());
         if (entity.getCredentialAttributes().isEmpty() && (cred.getConfig() == null || cred.getConfig().isEmpty())) {
 
         } else {
             MultivaluedHashMap<String, String> attrs = new MultivaluedHashMap<>();
             MultivaluedHashMap<String, String> config = cred.getConfig();
             if (config == null) config = new MultivaluedHashMap<>();
 
             Iterator<FederatedUserCredentialAttributeEntity> it = entity.getCredentialAttributes().iterator();
             while (it.hasNext()) {
                 FederatedUserCredentialAttributeEntity attr = it.next();
                 List<String> values = config.getList(attr.getName());
                 if (values == null || !values.contains(attr.getValue())) {
                     em.remove(attr);
                     it.remove();
                 } else {
                     attrs.add(attr.getName(), attr.getValue());
                 }
 
             }
             for (String key : config.keySet()) {
                 List<String> values = config.getList(key);
                 List<String> attrValues = attrs.getList(key);
                 for (String val : values) {
                     if (attrValues == null || !attrValues.contains(val)) {
                         FederatedUserCredentialAttributeEntity attr = new FederatedUserCredentialAttributeEntity();
                         attr.setId(KeycloakModelUtils.generateId());
                         attr.setValue(val);
                         attr.setName(key);
                         attr.setCredential(entity);
                         em.persist(attr);
                         entity.getCredentialAttributes().add(attr);
                     }
                 }
             }
 
         }
 
     }

◆ updateCredential() [2/2]

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.updateCredential	(	RealmModel	realm,
		UserModel	user,
		CredentialModel	cred
	)

inline

org.keycloak.credential.UserCredentialStoreを実装しています。

                                                                                          {
         updateCredential(realm, user.getId(), cred);
     }

◆ updateFederatedIdentity()

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.updateFederatedIdentity	(	RealmModel	realm,
		String	userId,
		FederatedIdentityModel	model
	)

inline

org.keycloak.storage.federated.UserBrokerLinkFederatedStorageを実装しています。

                                                                                                        {
         createIndex(realm, userId);
         BrokerLinkEntity entity = getBrokerLinkEntity(realm, userId, model.getIdentityProvider());
         if (entity == null) return;
         entity.setBrokerUserName(model.getUserName());
         entity.setBrokerUserId(model.getUserId());
         entity.setToken(model.getToken());
         em.persist(entity);
         em.flush();
 
     }

◆ updateGrantedConsentEntity()

void org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.updateGrantedConsentEntity	(	FederatedUserConsentEntity	consentEntity,
		UserConsentModel	consentModel
	)

inlineprivate

                                                                                                                      {
         Collection<FederatedUserConsentClientScopeEntity> grantedClientScopeEntities = consentEntity.getGrantedClientScopes();
         Collection<FederatedUserConsentClientScopeEntity> scopesToRemove = new HashSet<>(grantedClientScopeEntities);
 
         for (ClientScopeModel clientScope : consentModel.getGrantedClientScopes()) {
             FederatedUserConsentClientScopeEntity grantedClientScopeEntity = new FederatedUserConsentClientScopeEntity();
             grantedClientScopeEntity.setUserConsent(consentEntity);
             grantedClientScopeEntity.setScopeId(clientScope.getId());
 
             // Check if it's already there
             if (!grantedClientScopeEntities.contains(grantedClientScopeEntity)) {
                 em.persist(grantedClientScopeEntity);
                 em.flush();
                 grantedClientScopeEntities.add(grantedClientScopeEntity);
             } else {
                 scopesToRemove.remove(grantedClientScopeEntity);
             }
         }
         // Those mappers were no longer on consentModel and will be removed
         for (FederatedUserConsentClientScopeEntity toRemove : scopesToRemove) {
             grantedClientScopeEntities.remove(toRemove);
             em.remove(toRemove);
         }
 
         consentEntity.setLastUpdatedDate(Time.currentTimeMillis());
 
         em.flush();
     }

メンバ詳解

◆ em

EntityManager org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.em

protected

◆ session

final KeycloakSession org.keycloak.storage.jpa.JpaUserFederatedStorageProvider.session

private

このクラス詳解は次のファイルから抽出されました:

D:/AppData/doxygen/keycloak/src/keycloak/src/main/java/org/keycloak/storage/jpa/JpaUserFederatedStorageProvider.java

公開メンバ関数

限定公開メンバ関数

限定公開変数類

非公開メンバ関数

非公開変数類

詳解

構築子と解体子

◆ JpaUserFederatedStorageProvider()

関数詳解

◆ addConsent()

◆ addFederatedIdentity()

◆ addRequiredAction()

◆ close()

◆ createCredential() [1/2]

◆ createCredential() [2/2]

◆ createIndex()

◆ deleteAttribute()

◆ deleteRoleMapping()

◆ getAttributes()

◆ getBrokerLinkEntity()

◆ getConsentByClient()

◆ getConsents()

◆ getFederatedIdentities()

◆ getFederatedIdentity()

◆ getGrantedConsentEntity()

◆ getGroups()

◆ getMembership()

◆ getNotBeforeOfUser()

◆ getRequiredActionEntities()

◆ getRequiredActions()

◆ getRoleMappings()

◆ getStoredCredentialById() [1/2]

◆ getStoredCredentialById() [2/2]

◆ getStoredCredentialByNameAndType() [1/2]

◆ getStoredCredentialByNameAndType() [2/2]

◆ getStoredCredentials() [1/2]

◆ getStoredCredentials() [2/2]

◆ getStoredCredentialsByType() [1/2]

◆ getStoredCredentialsByType() [2/2]

◆ getStoredUsers()

◆ getStoredUsersCount()

◆ getUserByFederatedIdentity()

◆ getUsersByUserAttribute()

◆ grantRole()

◆ joinGroup()

◆ leaveGroup()

◆ persistAttributeValue()

◆ preRemove() [1/8]

◆ preRemove() [2/8]

◆ preRemove() [3/8]

◆ preRemove() [4/8]

◆ preRemove() [5/8]

◆ preRemove() [6/8]

◆ preRemove() [7/8]

◆ preRemove() [8/8]

◆ removeAttribute()

◆ removeFederatedIdentity()

◆ removeRequiredAction()

◆ removeStoredCredential() [1/2]

◆ removeStoredCredential() [2/2]

◆ revokeConsentForClient()

◆ setAttribute()

◆ setNotBeforeForUser()

◆ setSingleAttribute()

◆ toConsentModel()

◆ toModel()

◆ updateConsent()

◆ updateCredential() [1/2]

◆ updateCredential() [2/2]

◆ updateFederatedIdentity()

◆ updateGrantedConsentEntity()

メンバ詳解

◆ em

◆ session