org.keycloak.models.jpa.JpaUserProvider の継承関係図

org.keycloak.models.jpa.JpaUserProvider 連携図

公開メンバ関数
	JpaUserProvider (KeycloakSession session, EntityManager em)

UserModel	addUser (RealmModel realm, String id, String username, boolean addDefaultRoles, boolean addDefaultRequiredActions)

UserModel	addUser (RealmModel realm, String username)

boolean	removeUser (RealmModel realm, UserModel user)

void	addFederatedIdentity (RealmModel realm, UserModel user, FederatedIdentityModel identity)

void	updateFederatedIdentity (RealmModel realm, UserModel federatedUser, FederatedIdentityModel federatedIdentityModel)

boolean	removeFederatedIdentity (RealmModel realm, UserModel user, String identityProvider)

void	addConsent (RealmModel realm, String userId, UserConsentModel consent)

UserConsentModel	getConsentByClient (RealmModel realm, String userId, String clientId)

List< UserConsentModel >	getConsents (RealmModel realm, String userId)

void	updateConsent (RealmModel realm, String userId, UserConsentModel consent)

boolean	revokeConsentForClient (RealmModel realm, String userId, String clientId)

void	setNotBeforeForUser (RealmModel realm, UserModel user, int notBefore)

int	getNotBeforeOfUser (RealmModel realm, UserModel user)

void	grantToAllUsers (RealmModel realm, RoleModel role)

void	preRemove (RealmModel realm)

void	removeImportedUsers (RealmModel realm, String storageProviderId)

void	unlinkUsers (RealmModel realm, String storageProviderId)

void	preRemove (RealmModel realm, RoleModel role)

void	preRemove (RealmModel realm, ClientModel client)

void	preRemove (ProtocolMapperModel protocolMapper)

void	preRemove (ClientScopeModel clientScope)

List< UserModel >	getGroupMembers (RealmModel realm, GroupModel group)

List< UserModel >	getRoleMembers (RealmModel realm, RoleModel role)

void	preRemove (RealmModel realm, GroupModel group)

UserModel	getUserById (String id, RealmModel realm)

UserModel	getUserByUsername (String username, RealmModel realm)

UserModel	getUserByEmail (String email, RealmModel realm)

void	close ()

UserModel	getUserByFederatedIdentity (FederatedIdentityModel identity, RealmModel realm)

UserModel	getServiceAccount (ClientModel client)

List< UserModel >	getUsers (RealmModel realm, boolean includeServiceAccounts)

int	getUsersCount (RealmModel realm, boolean includeServiceAccount)

int	getUsersCount (RealmModel realm)

List< UserModel >	getUsers (RealmModel realm)

List< UserModel >	getUsers (RealmModel realm, int firstResult, int maxResults)

List< UserModel >	getUsers (RealmModel realm, int firstResult, int maxResults, boolean includeServiceAccounts)

List< UserModel >	getGroupMembers (RealmModel realm, GroupModel group, int firstResult, int maxResults)

List< UserModel >	getRoleMembers (RealmModel realm, RoleModel role, int firstResult, int maxResults)

List< UserModel >	searchForUser (String search, RealmModel realm)

List< UserModel >	searchForUser (String search, RealmModel realm, int firstResult, int maxResults)

List< UserModel >	searchForUser (Map< String, String > attributes, RealmModel realm)

List< UserModel >	searchForUser (Map< String, String > attributes, RealmModel realm, int firstResult, int maxResults)

List< UserModel >	searchForUserByUserAttribute (String attrName, String attrValue, RealmModel realm)

Set< FederatedIdentityModel >	getFederatedIdentities (UserModel user, RealmModel realm)

FederatedIdentityModel	getFederatedIdentity (UserModel user, String identityProvider, RealmModel realm)

void	preRemove (RealmModel realm, ComponentModel component)

void	updateCredential (RealmModel realm, UserModel user, CredentialModel cred)

CredentialModel	createCredential (RealmModel realm, UserModel user, CredentialModel cred)

boolean	removeStoredCredential (RealmModel realm, UserModel user, String id)

CredentialModel	getStoredCredentialById (RealmModel realm, UserModel user, String id)

List< CredentialModel >	getStoredCredentials (RealmModel realm, UserModel user)

List< CredentialModel >	getStoredCredentialsByType (RealmModel realm, UserModel user, String type)

CredentialModel	getStoredCredentialByNameAndType (RealmModel realm, UserModel user, String name, String type)

限定公開メンバ関数
void	removeConsentByClientStorageProvider (RealmModel realm, String providerId)

CredentialModel	toModel (CredentialEntity entity)

void	ensureEmailConstraint (List< UserEntity > users, RealmModel realm)

限定公開変数類
EntityManager	em

非公開メンバ関数
void	removeUser (UserEntity user)

UserConsentEntity	getGrantedConsentEntity (String userId, String clientId)

UserConsentModel	toConsentModel (RealmModel realm, UserConsentEntity entity)

void	updateGrantedConsentEntity (UserConsentEntity consentEntity, UserConsentModel consentModel)

FederatedIdentityEntity	findFederatedIdentity (UserModel user, String identityProvider)

UserEntity	userInEntityManagerContext (String id)

非公開変数類
final KeycloakSession	session

静的非公開変数類
static final String	EMAIL = "email"

static final String	USERNAME = "username"

static final String	FIRST_NAME = "firstName"

static final String	LAST_NAME = "lastName"

詳解

著者: Bill Burke

バージョン

Revision: 1

構築子と解体子

◆ JpaUserProvider()

org.keycloak.models.jpa.JpaUserProvider.JpaUserProvider	(	KeycloakSession	session,
		EntityManager	em
	)

inline

                                                                       {
         this.session = session;
         this.em = em;
     }

関数詳解

◆ addConsent()

void org.keycloak.models.jpa.JpaUserProvider.addConsent	(	RealmModel	realm,
		String	userId,
		UserConsentModel	consent
	)

inline

org.keycloak.models.UserProviderを実装しています。

                                                                                       {
         String clientId = consent.getClient().getId();
 
         UserConsentEntity consentEntity = getGrantedConsentEntity(userId, clientId);
         if (consentEntity != null) {
             throw new ModelDuplicateException("Consent already exists for client [" + clientId + "] and user [" + userId + "]");
         }
 
         long currentTime = Time.currentTimeMillis();
 
         consentEntity = new UserConsentEntity();
         consentEntity.setId(KeycloakModelUtils.generateId());
         consentEntity.setUser(em.getReference(UserEntity.class, userId));
         StorageId clientStorageId = new StorageId(clientId);
         if (clientStorageId.isLocal()) {
             consentEntity.setClientId(clientId);
         } else {
             consentEntity.setClientStorageProvider(clientStorageId.getProviderId());
             consentEntity.setExternalClientId(clientStorageId.getExternalId());
         }
 
         consentEntity.setCreatedDate(currentTime);
         consentEntity.setLastUpdatedDate(currentTime);
         em.persist(consentEntity);
         em.flush();
 
         updateGrantedConsentEntity(consentEntity, consent);
     }

◆ addFederatedIdentity()

void org.keycloak.models.jpa.JpaUserProvider.addFederatedIdentity	(	RealmModel	realm,
		UserModel	user,
		FederatedIdentityModel	identity
	)

inline

org.keycloak.models.UserProviderを実装しています。

                                                                                                         {
         FederatedIdentityEntity entity = new FederatedIdentityEntity();
         entity.setRealmId(realm.getId());
         entity.setIdentityProvider(identity.getIdentityProvider());
         entity.setUserId(identity.getUserId());
         entity.setUserName(identity.getUserName().toLowerCase());
         entity.setToken(identity.getToken());
         UserEntity userEntity = em.getReference(UserEntity.class, user.getId());
         entity.setUser(userEntity);
         em.persist(entity);
         em.flush();
     }

◆ addUser() [1/2]

UserModel org.keycloak.models.jpa.JpaUserProvider.addUser	(	RealmModel	realm,
		String	id,
		String	username,
		boolean	addDefaultRoles,
		boolean	addDefaultRequiredActions
	)

inline

org.keycloak.models.UserProviderを実装しています。

                                                                                                                                        {
         if (id == null) {
             id = KeycloakModelUtils.generateId();
         }
 
         UserEntity entity = new UserEntity();
         entity.setId(id);
         entity.setCreatedTimestamp(System.currentTimeMillis());
         entity.setUsername(username.toLowerCase());
         entity.setRealmId(realm.getId());
         em.persist(entity);
         em.flush();
         UserAdapter userModel = new UserAdapter(session, realm, em, entity);
 
         if (addDefaultRoles) {
             DefaultRoles.addDefaultRoles(realm, userModel);
 
             for (GroupModel g : realm.getDefaultGroups()) {
                 userModel.joinGroupImpl(g); // No need to check if user has group as it's new user
             }
         }
 
         if (addDefaultRequiredActions){
             for (RequiredActionProviderModel r : realm.getRequiredActionProviders()) {
                 if (r.isEnabled() && r.isDefaultAction()) {
                     userModel.addRequiredAction(r.getAlias());
                 }
             }
         }
 
         return userModel;
     }

◆ addUser() [2/2]

UserModel org.keycloak.models.jpa.JpaUserProvider.addUser	(	RealmModel	realm,
		String	username
	)

inline

org.keycloak.storage.user.UserRegistrationProviderを実装しています。

                                                                 {
         return addUser(realm, KeycloakModelUtils.generateId(), username.toLowerCase(), true, true);
     }

◆ close()

void org.keycloak.models.jpa.JpaUserProvider.close ( )

inline

org.keycloak.models.UserProviderを実装しています。

546 {

547 }

◆ createCredential()

CredentialModel org.keycloak.models.jpa.JpaUserProvider.createCredential	(	RealmModel	realm,
		UserModel	user,
		CredentialModel	cred
	)

inline

org.keycloak.credential.UserCredentialStoreを実装しています。

                                                                                                     {
         CredentialEntity entity = new CredentialEntity();
         String id = cred.getId() == null ? KeycloakModelUtils.generateId() : cred.getId();
         entity.setId(id);
         entity.setAlgorithm(cred.getAlgorithm());
         entity.setCounter(cred.getCounter());
         entity.setCreatedDate(cred.getCreatedDate());
         entity.setDevice(cred.getDevice());
         entity.setDigits(cred.getDigits());
         entity.setHashIterations(cred.getHashIterations());
         entity.setPeriod(cred.getPeriod());
         entity.setSalt(cred.getSalt());
         entity.setType(cred.getType());
         entity.setValue(cred.getValue());
         UserEntity userRef = em.getReference(UserEntity.class, user.getId());
         entity.setUser(userRef);
         em.persist(entity);
 
         MultivaluedHashMap<String, String> config = cred.getConfig();
         if (config != null && !config.isEmpty()) {
 
             for (String key : config.keySet()) {
                 List<String> values = config.getList(key);
                 for (String val : values) {
                     CredentialAttributeEntity attr = new CredentialAttributeEntity();
                     attr.setId(KeycloakModelUtils.generateId());
                     attr.setValue(val);
                     attr.setName(key);
                     attr.setCredential(entity);
                     em.persist(attr);
                     entity.getCredentialAttributes().add(attr);
                 }
             }
 
         }
 
         UserEntity userEntity = userInEntityManagerContext(user.getId());
         if (userEntity != null) {
             userEntity.getCredentials().add(entity);
         }
         return toModel(entity);
     }

◆ ensureEmailConstraint()

void org.keycloak.models.jpa.JpaUserProvider.ensureEmailConstraint	(	List< UserEntity >	users,
		RealmModel	realm
	)

inlineprotected

                                                                                    {
         UserEntity user = users.get(0);
         
         if (users.size() > 1) {
             // Realm settings have been changed from allowing duplicate emails to not allowing them
             // but duplicates haven't been removed.
             throw new ModelDuplicateException("Multiple users with email '" + user.getEmail() + "' exist in Keycloak.");
         }
         
         if (realm.isDuplicateEmailsAllowed()) {
             return;
         }
      
         if (user.getEmail() != null && !user.getEmail().equals(user.getEmailConstraint())) {
             // Realm settings have been changed from allowing duplicate emails to not allowing them.
             // We need to update the email constraint to reflect this change in the user entities.
             user.setEmailConstraint(user.getEmail());
             em.persist(user);
         }  
     }

◆ findFederatedIdentity()

FederatedIdentityEntity org.keycloak.models.jpa.JpaUserProvider.findFederatedIdentity	(	UserModel	user,
		String	identityProvider
	)

inlineprivate

                                                                                                    {
         TypedQuery<FederatedIdentityEntity> query = em.createNamedQuery("findFederatedIdentityByUserAndProvider", FederatedIdentityEntity.class);
         UserEntity userEntity = em.getReference(UserEntity.class, user.getId());
         query.setParameter("user", userEntity);
         query.setParameter("identityProvider", identityProvider);
         List<FederatedIdentityEntity> results = query.getResultList();
         return results.size() > 0 ? results.get(0) : null;
     }

◆ getConsentByClient()

UserConsentModel org.keycloak.models.jpa.JpaUserProvider.getConsentByClient	(	RealmModel	realm,
		String	userId,
		String	clientId
	)

inline

org.keycloak.models.UserProviderを実装しています。

                                                                                                  {
         UserConsentEntity entity = getGrantedConsentEntity(userId, clientId);
         return toConsentModel(realm, entity);
     }

◆ getConsents()

List<UserConsentModel> org.keycloak.models.jpa.JpaUserProvider.getConsents	(	RealmModel	realm,
		String	userId
	)

inline

org.keycloak.models.UserProviderを実装しています。

                                                                                {
         TypedQuery<UserConsentEntity> query = em.createNamedQuery("userConsentsByUser", UserConsentEntity.class);
         query.setParameter("userId", userId);
         List<UserConsentEntity> results = query.getResultList();
 
         List<UserConsentModel> consents = new ArrayList<UserConsentModel>();
         for (UserConsentEntity entity : results) {
             UserConsentModel model = toConsentModel(realm, entity);
             consents.add(model);
         }
         return consents;
     }

◆ getFederatedIdentities()

Set<FederatedIdentityModel> org.keycloak.models.jpa.JpaUserProvider.getFederatedIdentities	(	UserModel	user,
		RealmModel	realm
	)

inline

org.keycloak.models.UserProviderを実装しています。

                                                                                                 {
         TypedQuery<FederatedIdentityEntity> query = em.createNamedQuery("findFederatedIdentityByUser", FederatedIdentityEntity.class);
         UserEntity userEntity = em.getReference(UserEntity.class, user.getId());
         query.setParameter("user", userEntity);
         List<FederatedIdentityEntity> results = query.getResultList();
         Set<FederatedIdentityModel> set = new HashSet<FederatedIdentityModel>();
         for (FederatedIdentityEntity entity : results) {
             set.add(new FederatedIdentityModel(entity.getIdentityProvider(), entity.getUserId(), entity.getUserName(), entity.getToken()));
         }
         return set;
     }

◆ getFederatedIdentity()

FederatedIdentityModel org.keycloak.models.jpa.JpaUserProvider.getFederatedIdentity	(	UserModel	user,
		String	identityProvider,
		RealmModel	realm
	)

inline

org.keycloak.models.UserProviderを実装しています。

                                                                                                                   {
         FederatedIdentityEntity entity = findFederatedIdentity(user, identityProvider);
         return (entity != null) ? new FederatedIdentityModel(entity.getIdentityProvider(), entity.getUserId(), entity.getUserName(), entity.getToken()) : null;
     }

◆ getGrantedConsentEntity()

UserConsentEntity org.keycloak.models.jpa.JpaUserProvider.getGrantedConsentEntity	(	String	userId,
		String	clientId
	)

inlineprivate

                                                                                       {
         StorageId clientStorageId = new StorageId(clientId);
         String queryName = clientStorageId.isLocal() ?  "userConsentByUserAndClient" : "userConsentByUserAndExternalClient";
         TypedQuery<UserConsentEntity> query = em.createNamedQuery(queryName, UserConsentEntity.class);
         query.setParameter("userId", userId);
         if (clientStorageId.isLocal()) {
             query.setParameter("clientId", clientId);
         } else {
             query.setParameter("clientStorageProvider", clientStorageId.getProviderId());
             query.setParameter("externalClientId", clientStorageId.getExternalId());
         }
         List<UserConsentEntity> results = query.getResultList();
         if (results.size() > 1) {
             throw new ModelException("More results found for user [" + userId + "] and client [" + clientId + "]");
         } else if (results.size() == 1) {
             return results.get(0);
         } else {
             return null;
         }
 
     }

◆ getGroupMembers() [1/2]

List<UserModel> org.keycloak.models.jpa.JpaUserProvider.getGroupMembers	(	RealmModel	realm,
		GroupModel	group
	)

inline

org.keycloak.storage.user.UserQueryProviderを実装しています。

                                                                                {
         TypedQuery<UserEntity> query = em.createNamedQuery("groupMembership", UserEntity.class);
         query.setParameter("groupId", group.getId());
         List<UserEntity> results = query.getResultList();
 
         List<UserModel> users = new ArrayList<UserModel>();
         for (UserEntity user : results) {
             users.add(new UserAdapter(session, realm, em, user));
         }
         return users;
     }

◆ getGroupMembers() [2/2]

List<UserModel> org.keycloak.models.jpa.JpaUserProvider.getGroupMembers	(	RealmModel	realm,
		GroupModel	group,
		int	firstResult,
		int	maxResults
	)

inline

org.keycloak.storage.user.UserQueryProviderを実装しています。

                                                                                                                 {
         TypedQuery<UserEntity> query = em.createNamedQuery("groupMembership", UserEntity.class);
         query.setParameter("groupId", group.getId());
         if (firstResult != -1) {
             query.setFirstResult(firstResult);
         }
         if (maxResults != -1) {
             query.setMaxResults(maxResults);
         }
         List<UserEntity> results = query.getResultList();
 
         List<UserModel> users = new LinkedList<>();
         for (UserEntity user : results) {
             users.add(new UserAdapter(session, realm, em, user));
         }
         return users;
     }

◆ getNotBeforeOfUser()

int org.keycloak.models.jpa.JpaUserProvider.getNotBeforeOfUser	(	RealmModel	realm,
		UserModel	user
	)

inline

org.keycloak.models.UserProviderを実装しています。

                                                                     {
         UserEntity entity = em.getReference(UserEntity.class, user.getId());
         return entity.getNotBefore();
     }

◆ getRoleMembers() [1/2]

List<UserModel> org.keycloak.models.jpa.JpaUserProvider.getRoleMembers	(	RealmModel	realm,
		RoleModel	role
	)

inline

org.keycloak.storage.user.UserQueryProviderを実装しています。

                                                                             {
         TypedQuery<UserEntity> query = em.createNamedQuery("usersInRole", UserEntity.class);
         query.setParameter("roleId", role.getId());
         List<UserEntity> results = query.getResultList();
 
         List<UserModel> users = new ArrayList<UserModel>();
         for (UserEntity user : results) {
             users.add(new UserAdapter(session, realm, em, user));
         }
         return users;
     }

◆ getRoleMembers() [2/2]

List<UserModel> org.keycloak.models.jpa.JpaUserProvider.getRoleMembers	(	RealmModel	realm,
		RoleModel	role,
		int	firstResult,
		int	maxResults
	)

inline

org.keycloak.storage.user.UserQueryProviderを実装しています。

                                                                                                              {
         TypedQuery<UserEntity> query = em.createNamedQuery("usersInRole", UserEntity.class);
         query.setParameter("roleId", role.getId());
         if (firstResult != -1) {
             query.setFirstResult(firstResult);
         }
         if (maxResults != -1) {
             query.setMaxResults(maxResults);
         }
         List<UserEntity> results = query.getResultList();
 
         List<UserModel> users = new LinkedList<>();
         for (UserEntity user : results) {
             users.add(new UserAdapter(session, realm, em, user));
         }
         return users;
     }

◆ getServiceAccount()

UserModel org.keycloak.models.jpa.JpaUserProvider.getServiceAccount ( ClientModel client )

inline

org.keycloak.models.UserProviderを実装しています。

                                                            {
         TypedQuery<UserEntity> query = em.createNamedQuery("getRealmUserByServiceAccount", UserEntity.class);
         query.setParameter("realmId", client.getRealm().getId());
         query.setParameter("clientInternalId", client.getId());
         List<UserEntity> results = query.getResultList();
         if (results.isEmpty()) {
             return null;
         } else if (results.size() > 1) {
             throw new IllegalStateException("More service account linked users found for client=" + client.getClientId() +
                     ", results=" + results);
         } else {
             UserEntity user = results.get(0);
             return new UserAdapter(session, client.getRealm(), em, user);
         }
     }

◆ getStoredCredentialById()

CredentialModel org.keycloak.models.jpa.JpaUserProvider.getStoredCredentialById	(	RealmModel	realm,
		UserModel	user,
		String	id
	)

inline

org.keycloak.credential.UserCredentialStoreを実装しています。

                                                                                                 {
         CredentialEntity entity = em.find(CredentialEntity.class, id);
         if (entity == null) return null;
         CredentialModel model = toModel(entity);
         return model;
     }

◆ getStoredCredentialByNameAndType()

CredentialModel org.keycloak.models.jpa.JpaUserProvider.getStoredCredentialByNameAndType	(	RealmModel	realm,
		UserModel	user,
		String	name,
		String	type
	)

inline

org.keycloak.credential.UserCredentialStoreを実装しています。

                                                                                                                         {
         UserEntity userEntity = em.getReference(UserEntity.class, user.getId());
         TypedQuery<CredentialEntity> query = em.createNamedQuery("credentialByNameAndType", CredentialEntity.class)
                 .setParameter("type", type)
                 .setParameter("device", name)
                 .setParameter("user", userEntity);
         List<CredentialEntity> results = query.getResultList();
         if (results.isEmpty()) return null;
         return toModel(results.get(0));
     }

◆ getStoredCredentials()

List<CredentialModel> org.keycloak.models.jpa.JpaUserProvider.getStoredCredentials	(	RealmModel	realm,
		UserModel	user
	)

inline

org.keycloak.credential.UserCredentialStoreを実装しています。

                                                                                         {
         UserEntity userEntity = em.getReference(UserEntity.class, user.getId());
         TypedQuery<CredentialEntity> query = em.createNamedQuery("credentialByUser", CredentialEntity.class)
                 .setParameter("user", userEntity);
         List<CredentialEntity> results = query.getResultList();
         List<CredentialModel> rtn = new LinkedList<>();
         for (CredentialEntity entity : results) {
             rtn.add(toModel(entity));
         }
         return rtn;
     }

◆ getStoredCredentialsByType()

List<CredentialModel> org.keycloak.models.jpa.JpaUserProvider.getStoredCredentialsByType	(	RealmModel	realm,
		UserModel	user,
		String	type
	)

inline

org.keycloak.credential.UserCredentialStoreを実装しています。

                                                                                                            {
         List<CredentialEntity> results;
         UserEntity userEntity = userInEntityManagerContext(user.getId());
         if (userEntity != null) {
 
             // user already in persistence context, no need to execute a query
             results = userEntity.getCredentials().stream().filter(it -> it.getType().equals(type)).collect(Collectors.toList());
         } else {
             userEntity = em.getReference(UserEntity.class, user.getId());
             TypedQuery<CredentialEntity> query = em.createNamedQuery("credentialByUserAndType", CredentialEntity.class)
                     .setParameter("type", type)
                     .setParameter("user", userEntity);
             results = query.getResultList();
         }
         List<CredentialModel> rtn = new LinkedList<>();
         for (CredentialEntity entity : results) {
             rtn.add(toModel(entity));
         }
         return rtn;
     }

◆ getUserByEmail()

UserModel org.keycloak.models.jpa.JpaUserProvider.getUserByEmail	(	String	email,
		RealmModel	realm
	)

inline

org.keycloak.storage.user.UserLookupProviderを実装しています。

                                                                     {
         TypedQuery<UserEntity> query = em.createNamedQuery("getRealmUserByEmail", UserEntity.class);
         query.setParameter("email", email.toLowerCase());
         query.setParameter("realmId", realm.getId());
         List<UserEntity> results = query.getResultList();
         
         if (results.isEmpty()) return null;
         
         ensureEmailConstraint(results, realm);
         
         return new UserAdapter(session, realm, em, results.get(0));
     }

◆ getUserByFederatedIdentity()

UserModel org.keycloak.models.jpa.JpaUserProvider.getUserByFederatedIdentity	(	FederatedIdentityModel	identity,
		RealmModel	realm
	)

inline

org.keycloak.models.UserProviderを実装しています。

                                                                                                    {
         TypedQuery<UserEntity> query = em.createNamedQuery("findUserByFederatedIdentityAndRealm", UserEntity.class);
         query.setParameter("realmId", realm.getId());
         query.setParameter("identityProvider", identity.getIdentityProvider());
         query.setParameter("userId", identity.getUserId());
         List<UserEntity> results = query.getResultList();
         if (results.isEmpty()) {
             return null;
         } else if (results.size() > 1) {
             throw new IllegalStateException("More results found for identityProvider=" + identity.getIdentityProvider() +
                     ", userId=" + identity.getUserId() + ", results=" + results);
         } else {
             UserEntity user = results.get(0);
             return new UserAdapter(session, realm, em, user);
         }
     }

◆ getUserById()

UserModel org.keycloak.models.jpa.JpaUserProvider.getUserById	(	String	id,
		RealmModel	realm
	)

inline

org.keycloak.storage.user.UserLookupProviderを実装しています。

                                                               {
         TypedQuery<UserEntity> query = em.createNamedQuery("getRealmUserById", UserEntity.class);
         query.setParameter("id", id);
         query.setParameter("realmId", realm.getId());
         List<UserEntity> entities = query.getResultList();
         if (entities.size() == 0) return null;
         return new UserAdapter(session, realm, em, entities.get(0));
     }

◆ getUserByUsername()

UserModel org.keycloak.models.jpa.JpaUserProvider.getUserByUsername	(	String	username,
		RealmModel	realm
	)

inline

org.keycloak.storage.user.UserLookupProviderを実装しています。

                                                                           {
         TypedQuery<UserEntity> query = em.createNamedQuery("getRealmUserByUsername", UserEntity.class);
         query.setParameter("username", username.toLowerCase());
         query.setParameter("realmId", realm.getId());
         List<UserEntity> results = query.getResultList();
         if (results.size() == 0) return null;
         return new UserAdapter(session, realm, em, results.get(0));
     }

◆ getUsers() [1/4]

List<UserModel> org.keycloak.models.jpa.JpaUserProvider.getUsers	(	RealmModel	realm,
		boolean	includeServiceAccounts
	)

inline

org.keycloak.models.UserProviderを実装しています。

                                                                                       {
         return getUsers(realm, -1, -1, includeServiceAccounts);
     }

◆ getUsers() [2/4]

List<UserModel> org.keycloak.models.jpa.JpaUserProvider.getUsers ( RealmModel realm )

inline

org.keycloak.storage.user.UserQueryProviderを実装しています。

                                                       {
         return getUsers(realm, false);
     }

◆ getUsers() [3/4]

List<UserModel> org.keycloak.models.jpa.JpaUserProvider.getUsers	(	RealmModel	realm,
		int	firstResult,
		int	maxResults
	)

inline

org.keycloak.storage.user.UserQueryProviderを実装しています。

                                                                                        {
         return getUsers(realm, firstResult, maxResults, false);
     }

◆ getUsers() [4/4]

List<UserModel> org.keycloak.models.jpa.JpaUserProvider.getUsers	(	RealmModel	realm,
		int	firstResult,
		int	maxResults,
		boolean	includeServiceAccounts
	)

inline

org.keycloak.models.UserProviderを実装しています。

                                                                                                                        {
         String queryName = includeServiceAccounts ? "getAllUsersByRealm" : "getAllUsersByRealmExcludeServiceAccount" ;
 
         TypedQuery<UserEntity> query = em.createNamedQuery(queryName, UserEntity.class);
         query.setParameter("realmId", realm.getId());
         if (firstResult != -1) {
             query.setFirstResult(firstResult);
         }
         if (maxResults != -1) {
             query.setMaxResults(maxResults);
         }
         List<UserEntity> results = query.getResultList();
         List<UserModel> users = new LinkedList<>();
         for (UserEntity entity : results) users.add(new UserAdapter(session, realm, em, entity));
         return users;
     }

◆ getUsersCount() [1/2]

int org.keycloak.models.jpa.JpaUserProvider.getUsersCount	(	RealmModel	realm,
		boolean	includeServiceAccount
	)

inline

org.keycloak.storage.user.UserQueryProviderを実装しています。

                                                                               {
         String namedQuery = "getRealmUserCountExcludeServiceAccount";
 
         if (includeServiceAccount) {
             namedQuery = "getRealmUserCount";
         }
 
         Object count = em.createNamedQuery(namedQuery)
                 .setParameter("realmId", realm.getId())
                 .getSingleResult();
         return ((Number)count).intValue();
     }

◆ getUsersCount() [2/2]

int org.keycloak.models.jpa.JpaUserProvider.getUsersCount ( RealmModel realm )

inline

org.keycloak.storage.user.UserQueryProviderを実装しています。

                                                {
         return getUsersCount(realm, false);
     }

◆ grantToAllUsers()

void org.keycloak.models.jpa.JpaUserProvider.grantToAllUsers	(	RealmModel	realm,
		RoleModel	role
	)

inline

org.keycloak.storage.user.UserBulkUpdateProviderを実装しています。

                                                                   {
         int num = em.createNamedQuery("grantRoleToAllUsers")
                 .setParameter("realmId", realm.getId())
                 .setParameter("roleId", role.getId())
                 .executeUpdate();
     }

◆ preRemove() [1/7]

void org.keycloak.models.jpa.JpaUserProvider.preRemove ( RealmModel realm )

inline

org.keycloak.models.UserProviderを実装しています。

                                             {
         int num = em.createNamedQuery("deleteUserConsentClientScopesByRealm")
                 .setParameter("realmId", realm.getId()).executeUpdate();
         num = em.createNamedQuery("deleteUserConsentsByRealm")
                 .setParameter("realmId", realm.getId()).executeUpdate();
         num = em.createNamedQuery("deleteUserRoleMappingsByRealm")
                 .setParameter("realmId", realm.getId()).executeUpdate();
         num = em.createNamedQuery("deleteUserRequiredActionsByRealm")
                 .setParameter("realmId", realm.getId()).executeUpdate();
         num = em.createNamedQuery("deleteFederatedIdentityByRealm")
                 .setParameter("realmId", realm.getId()).executeUpdate();
         num = em.createNamedQuery("deleteCredentialAttributeByRealm")
                 .setParameter("realmId", realm.getId()).executeUpdate();
         num = em.createNamedQuery("deleteCredentialsByRealm")
                 .setParameter("realmId", realm.getId()).executeUpdate();
         num = em.createNamedQuery("deleteUserAttributesByRealm")
                 .setParameter("realmId", realm.getId()).executeUpdate();
         num = em.createNamedQuery("deleteUserGroupMembershipByRealm")
                 .setParameter("realmId", realm.getId()).executeUpdate();
         num = em.createNamedQuery("deleteUsersByRealm")
                 .setParameter("realmId", realm.getId()).executeUpdate();
     }

◆ preRemove() [2/7]

void org.keycloak.models.jpa.JpaUserProvider.preRemove	(	RealmModel	realm,
		RoleModel	role
	)

inline

org.keycloak.models.UserProviderを実装しています。

                                                             {
         em.createNamedQuery("deleteUserRoleMappingsByRole").setParameter("roleId", role.getId()).executeUpdate();
     }

◆ preRemove() [3/7]

void org.keycloak.models.jpa.JpaUserProvider.preRemove	(	RealmModel	realm,
		ClientModel	client
	)

inline

org.keycloak.models.UserProviderを実装しています。

                                                                 {
         StorageId clientStorageId = new StorageId(client.getId());
         if (clientStorageId.isLocal()) {
             int num = em.createNamedQuery("deleteUserConsentClientScopesByClient")
                     .setParameter("clientId", client.getId())
                     .executeUpdate();
             num = em.createNamedQuery("deleteUserConsentsByClient")
                     .setParameter("clientId", client.getId())
                     .executeUpdate();
         } else {
             em.createNamedQuery("deleteUserConsentClientScopesByExternalClient")
                     .setParameter("clientStorageProvider", clientStorageId.getProviderId())
                     .setParameter("externalClientId", clientStorageId.getExternalId())
                     .executeUpdate();
             em.createNamedQuery("deleteUserConsentsByExternalClient")
                     .setParameter("clientStorageProvider", clientStorageId.getProviderId())
                     .setParameter("externalClientId", clientStorageId.getExternalId())
                     .executeUpdate();
 
         }
     }

◆ preRemove() [4/7]

void org.keycloak.models.jpa.JpaUserProvider.preRemove ( ProtocolMapperModel protocolMapper )

inline

org.keycloak.models.UserProviderを実装しています。

                                                               {
         // No-op
     }

◆ preRemove() [5/7]

void org.keycloak.models.jpa.JpaUserProvider.preRemove ( ClientScopeModel clientScope )

inline

org.keycloak.models.UserProviderを実装しています。

                                                         {
         em.createNamedQuery("deleteUserConsentClientScopesByClientScope")
                 .setParameter("scopeId", clientScope.getId())
                 .executeUpdate();
     }

◆ preRemove() [6/7]

void org.keycloak.models.jpa.JpaUserProvider.preRemove	(	RealmModel	realm,
		GroupModel	group
	)

inline

org.keycloak.models.UserProviderを実装しています。

                                                               {
         em.createNamedQuery("deleteUserGroupMembershipsByGroup").setParameter("groupId", group.getId()).executeUpdate();
 
     }

◆ preRemove() [7/7]

void org.keycloak.models.jpa.JpaUserProvider.preRemove	(	RealmModel	realm,
		ComponentModel	component
	)

inline

org.keycloak.models.UserProviderを実装しています。

                                                                       {
         if (component.getProviderType().equals(UserStorageProvider.class.getName())) {
             removeImportedUsers(realm, component.getId());
         }
         if (component.getProviderType().equals(ClientStorageProvider.class.getName())) {
             removeConsentByClientStorageProvider(realm, component.getId());
         }
     }

◆ removeConsentByClientStorageProvider()

void org.keycloak.models.jpa.JpaUserProvider.removeConsentByClientStorageProvider	(	RealmModel	realm,
		String	providerId
	)

inlineprotected

                                                                                              {
         em.createNamedQuery("deleteUserConsentClientScopesByClientStorageProvider")
                 .setParameter("clientStorageProvider", providerId)
                 .executeUpdate();
         em.createNamedQuery("deleteUserConsentsByClientStorageProvider")
                 .setParameter("clientStorageProvider", providerId)
                 .executeUpdate();
 
     }

◆ removeFederatedIdentity()

boolean org.keycloak.models.jpa.JpaUserProvider.removeFederatedIdentity	(	RealmModel	realm,
		UserModel	user,
		String	identityProvider
	)

inline

org.keycloak.models.UserProviderを実装しています。

                                                                                                       {
         FederatedIdentityEntity entity = findFederatedIdentity(user, identityProvider);
         if (entity != null) {
             em.remove(entity);
             em.flush();
             return true;
         } else {
             return false;
         }
     }

◆ removeImportedUsers()

void org.keycloak.models.jpa.JpaUserProvider.removeImportedUsers	(	RealmModel	realm,
		String	storageProviderId
	)

inline

org.keycloak.models.UserProviderを実装しています。

                                                                                 {
         int num = em.createNamedQuery("deleteUserRoleMappingsByRealmAndLink")
                 .setParameter("realmId", realm.getId())
                 .setParameter("link", storageProviderId)
                 .executeUpdate();
         num = em.createNamedQuery("deleteUserRequiredActionsByRealmAndLink")
                 .setParameter("realmId", realm.getId())
                 .setParameter("link", storageProviderId)
                 .executeUpdate();
         num = em.createNamedQuery("deleteFederatedIdentityByRealmAndLink")
                 .setParameter("realmId", realm.getId())
                 .setParameter("link", storageProviderId)
                 .executeUpdate();
         num = em.createNamedQuery("deleteCredentialAttributeByRealmAndLink")
                 .setParameter("realmId", realm.getId())
                 .setParameter("link", storageProviderId)
                 .executeUpdate();
         num = em.createNamedQuery("deleteCredentialsByRealmAndLink")
                 .setParameter("realmId", realm.getId())
                 .setParameter("link", storageProviderId)
                 .executeUpdate();
         num = em.createNamedQuery("deleteUserAttributesByRealmAndLink")
                 .setParameter("realmId", realm.getId())
                 .setParameter("link", storageProviderId)
                 .executeUpdate();
         num = em.createNamedQuery("deleteUserGroupMembershipsByRealmAndLink")
                 .setParameter("realmId", realm.getId())
                 .setParameter("link", storageProviderId)
                 .executeUpdate();
         num = em.createNamedQuery("deleteUserConsentClientScopesByRealmAndLink")
                 .setParameter("realmId", realm.getId())
                 .setParameter("link", storageProviderId)
                 .executeUpdate();
         num = em.createNamedQuery("deleteUserConsentsByRealmAndLink")
                 .setParameter("realmId", realm.getId())
                 .setParameter("link", storageProviderId)
                 .executeUpdate();
         num = em.createNamedQuery("deleteUsersByRealmAndLink")
                 .setParameter("realmId", realm.getId())
                 .setParameter("link", storageProviderId)
                 .executeUpdate();
     }

◆ removeStoredCredential()

boolean org.keycloak.models.jpa.JpaUserProvider.removeStoredCredential	(	RealmModel	realm,
		UserModel	user,
		String	id
	)

inline

org.keycloak.credential.UserCredentialStoreを実装しています。

                                                                                        {
         CredentialEntity entity = em.find(CredentialEntity.class, id);
         if (entity == null) return false;
         em.remove(entity);
         UserEntity userEntity = userInEntityManagerContext(user.getId());
         if (userEntity != null) {
             userEntity.getCredentials().remove(entity);
         }
         return true;
     }

◆ removeUser() [1/2]

boolean org.keycloak.models.jpa.JpaUserProvider.removeUser	(	RealmModel	realm,
		UserModel	user
	)

inline

org.keycloak.storage.user.UserRegistrationProviderを実装しています。

                                                                 {
         UserEntity userEntity = em.find(UserEntity.class, user.getId());
         if (userEntity == null) return false;
         removeUser(userEntity);
         return true;
     }

◆ removeUser() [2/2]

void org.keycloak.models.jpa.JpaUserProvider.removeUser ( UserEntity user )

inlineprivate

                                              {
         String id = user.getId();
         em.createNamedQuery("deleteUserRoleMappingsByUser").setParameter("user", user).executeUpdate();
         em.createNamedQuery("deleteUserGroupMembershipsByUser").setParameter("user", user).executeUpdate();
         em.createNamedQuery("deleteFederatedIdentityByUser").setParameter("user", user).executeUpdate();
         em.createNamedQuery("deleteUserConsentClientScopesByUser").setParameter("user", user).executeUpdate();
         em.createNamedQuery("deleteUserConsentsByUser").setParameter("user", user).executeUpdate();
         em.flush();
         // not sure why i have to do a clear() here.  I was getting some messed up errors that Hibernate couldn't
         // un-delete the UserEntity.
         em.clear();
         user = em.find(UserEntity.class, id);
         if (user != null) {
             em.remove(user);
         }
 
         em.flush();
     }

◆ revokeConsentForClient()

boolean org.keycloak.models.jpa.JpaUserProvider.revokeConsentForClient	(	RealmModel	realm,
		String	userId,
		String	clientId
	)

inline

org.keycloak.models.UserProviderを実装しています。

                                                                                             {
         UserConsentEntity consentEntity = getGrantedConsentEntity(userId, clientId);
         if (consentEntity == null) return false;
 
         em.remove(consentEntity);
         em.flush();
         return true;
     }

◆ searchForUser() [1/4]

List<UserModel> org.keycloak.models.jpa.JpaUserProvider.searchForUser	(	String	search,
		RealmModel	realm
	)

inline

org.keycloak.storage.user.UserQueryProviderを実装しています。

                                                                           {
         return searchForUser(search, realm, -1, -1);
     }

◆ searchForUser() [2/4]

List<UserModel> org.keycloak.models.jpa.JpaUserProvider.searchForUser	(	String	search,
		RealmModel	realm,
		int	firstResult,
		int	maxResults
	)

inline

org.keycloak.storage.user.UserQueryProviderを実装しています。

                                                                                                            {
         TypedQuery<UserEntity> query = em.createNamedQuery("searchForUser", UserEntity.class);
         query.setParameter("realmId", realm.getId());
         query.setParameter("search", "%" + search.toLowerCase() + "%");
         if (firstResult != -1) {
             query.setFirstResult(firstResult);
         }
         if (maxResults != -1) {
             query.setMaxResults(maxResults);
         }
         List<UserEntity> results = query.getResultList();
         List<UserModel> users = new LinkedList<>();
         for (UserEntity entity : results) users.add(new UserAdapter(session, realm, em, entity));
         return users;
     }

◆ searchForUser() [3/4]

List<UserModel> org.keycloak.models.jpa.JpaUserProvider.searchForUser	(	Map< String, String >	attributes,
		RealmModel	realm
	)

inline

org.keycloak.storage.user.UserQueryProviderを実装しています。

                                                                                            {
         return searchForUser(attributes, realm, -1, -1);
     }

◆ searchForUser() [4/4]

List<UserModel> org.keycloak.models.jpa.JpaUserProvider.searchForUser	(	Map< String, String >	attributes,
		RealmModel	realm,
		int	firstResult,
		int	maxResults
	)

inline

org.keycloak.storage.user.UserQueryProviderを実装しています。

                                                                                                                             {
         StringBuilder builder = new StringBuilder("select u from UserEntity u where u.realmId = :realmId");
         for (Map.Entry<String, String> entry : attributes.entrySet()) {
             String attribute = null;
             String parameterName = null;
             if (entry.getKey().equals(UserModel.USERNAME)) {
                 attribute = "lower(u.username)";
                 parameterName = JpaUserProvider.USERNAME;
             } else if (entry.getKey().equalsIgnoreCase(UserModel.FIRST_NAME)) {
                 attribute = "lower(u.firstName)";
                 parameterName = JpaUserProvider.FIRST_NAME;
             } else if (entry.getKey().equalsIgnoreCase(UserModel.LAST_NAME)) {
                 attribute = "lower(u.lastName)";
                 parameterName = JpaUserProvider.LAST_NAME;
             } else if (entry.getKey().equalsIgnoreCase(UserModel.EMAIL)) {
                 attribute = "lower(u.email)";
                 parameterName = JpaUserProvider.EMAIL;
             }
             if (attribute == null) continue;
             builder.append(" and ");
             builder.append(attribute).append(" like :").append(parameterName);
         }
         builder.append(" order by u.username");
         String q = builder.toString();
         TypedQuery<UserEntity> query = em.createQuery(q, UserEntity.class);
         query.setParameter("realmId", realm.getId());
         for (Map.Entry<String, String> entry : attributes.entrySet()) {
             String parameterName = null;
             if (entry.getKey().equals(UserModel.USERNAME)) {
                 parameterName = JpaUserProvider.USERNAME;
             } else if (entry.getKey().equalsIgnoreCase(UserModel.FIRST_NAME)) {
                 parameterName = JpaUserProvider.FIRST_NAME;
             } else if (entry.getKey().equalsIgnoreCase(UserModel.LAST_NAME)) {
                 parameterName = JpaUserProvider.LAST_NAME;
             } else if (entry.getKey().equalsIgnoreCase(UserModel.EMAIL)) {
                 parameterName = JpaUserProvider.EMAIL;
             }
             if (parameterName == null) continue;
             query.setParameter(parameterName, "%" + entry.getValue().toLowerCase() + "%");
         }
         if (firstResult != -1) {
             query.setFirstResult(firstResult);
         }
         if (maxResults != -1) {
             query.setMaxResults(maxResults);
         }
         List<UserEntity> results = query.getResultList();
         List<UserModel> users = new ArrayList<UserModel>();
         for (UserEntity entity : results) users.add(new UserAdapter(session, realm, em, entity));
         return users;
     }

◆ searchForUserByUserAttribute()

List<UserModel> org.keycloak.models.jpa.JpaUserProvider.searchForUserByUserAttribute	(	String	attrName,
		String	attrValue,
		RealmModel	realm
	)

inline

org.keycloak.storage.user.UserQueryProviderを実装しています。

                                                                                                              {
         TypedQuery<UserEntity> query = em.createNamedQuery("getRealmUsersByAttributeNameAndValue", UserEntity.class);
         query.setParameter("name", attrName);
         query.setParameter("value", attrValue);
         query.setParameter("realmId", realm.getId());
         List<UserEntity> results = query.getResultList();
 
         List<UserModel> users = new ArrayList<UserModel>();
         for (UserEntity user : results) {
             users.add(new UserAdapter(session, realm, em, user));
         }
         return users;
     }

◆ setNotBeforeForUser()

void org.keycloak.models.jpa.JpaUserProvider.setNotBeforeForUser	(	RealmModel	realm,
		UserModel	user,
		int	notBefore
	)

inline

org.keycloak.models.UserProviderを実装しています。

                                                                                      {
         UserEntity entity = em.getReference(UserEntity.class, user.getId());
         entity.setNotBefore(notBefore);
     }

◆ toConsentModel()

UserConsentModel org.keycloak.models.jpa.JpaUserProvider.toConsentModel	(	RealmModel	realm,
		UserConsentEntity	entity
	)

inlineprivate

                                                                                         {
         if (entity == null) {
             return null;
         }
 
         StorageId clientStorageId = null;
         if ( entity.getClientId() == null) {
             clientStorageId = new StorageId(entity.getClientStorageProvider(), entity.getExternalClientId());
         } else {
             clientStorageId = new StorageId(entity.getClientId());
         }
 
         ClientModel client = realm.getClientById(clientStorageId.getId());
         if (client == null) {
             throw new ModelException("Client with id " + clientStorageId.getId() + " is not available");
         }
         UserConsentModel model = new UserConsentModel(client);
         model.setCreatedDate(entity.getCreatedDate());
         model.setLastUpdatedDate(entity.getLastUpdatedDate());
 
         Collection<UserConsentClientScopeEntity> grantedClientScopeEntities = entity.getGrantedClientScopes();
         if (grantedClientScopeEntities != null) {
             for (UserConsentClientScopeEntity grantedClientScope : grantedClientScopeEntities) {
                 ClientScopeModel grantedClientScopeModel = KeycloakModelUtils.findClientScopeById(realm, grantedClientScope.getScopeId());
                 if (grantedClientScopeModel != null) {
                     model.addGrantedClientScope(grantedClientScopeModel);
                 }
             }
         }
 
         return model;
     }

◆ toModel()

CredentialModel org.keycloak.models.jpa.JpaUserProvider.toModel ( CredentialEntity entity )

inlineprotected

                                                                {
         CredentialModel model = new CredentialModel();
         model.setId(entity.getId());
         model.setType(entity.getType());
         model.setValue(entity.getValue());
         model.setAlgorithm(entity.getAlgorithm());
         model.setSalt(entity.getSalt());
         model.setPeriod(entity.getPeriod());
         model.setCounter(entity.getCounter());
         model.setCreatedDate(entity.getCreatedDate());
         model.setDevice(entity.getDevice());
         model.setDigits(entity.getDigits());
         model.setHashIterations(entity.getHashIterations());
         MultivaluedHashMap<String, String> config = new MultivaluedHashMap<>();
         model.setConfig(config);
         for (CredentialAttributeEntity attr : entity.getCredentialAttributes()) {
             config.add(attr.getName(), attr.getValue());
         }
         return model;
     }

◆ unlinkUsers()

void org.keycloak.models.jpa.JpaUserProvider.unlinkUsers	(	RealmModel	realm,
		String	storageProviderId
	)

inline

org.keycloak.models.UserProviderを実装しています。

                                                                         {
         em.createNamedQuery("unlinkUsers")
                 .setParameter("realmId", realm.getId())
                 .setParameter("link", storageProviderId)
                 .executeUpdate();
     }

◆ updateConsent()

void org.keycloak.models.jpa.JpaUserProvider.updateConsent	(	RealmModel	realm,
		String	userId,
		UserConsentModel	consent
	)

inline

org.keycloak.models.UserProviderを実装しています。

                                                                                          {
         String clientId = consent.getClient().getId();
 
         UserConsentEntity consentEntity = getGrantedConsentEntity(userId, clientId);
         if (consentEntity == null) {
             throw new ModelException("Consent not found for client [" + clientId + "] and user [" + userId + "]");
         }
 
         updateGrantedConsentEntity(consentEntity, consent);
     }

◆ updateCredential()

void org.keycloak.models.jpa.JpaUserProvider.updateCredential	(	RealmModel	realm,
		UserModel	user,
		CredentialModel	cred
	)

inline

org.keycloak.credential.UserCredentialStoreを実装しています。

                                                                                          {
         CredentialEntity entity = em.find(CredentialEntity.class, cred.getId());
         if (entity == null) return;
         entity.setAlgorithm(cred.getAlgorithm());
         entity.setCounter(cred.getCounter());
         entity.setCreatedDate(cred.getCreatedDate());
         entity.setDevice(cred.getDevice());
         entity.setDigits(cred.getDigits());
         entity.setHashIterations(cred.getHashIterations());
         entity.setPeriod(cred.getPeriod());
         entity.setSalt(cred.getSalt());
         entity.setType(cred.getType());
         entity.setValue(cred.getValue());
         if (entity.getCredentialAttributes().isEmpty() && (cred.getConfig() == null || cred.getConfig().isEmpty())) {
 
         } else {
             MultivaluedHashMap<String, String> attrs = cred.getConfig();
             MultivaluedHashMap<String, String> config = cred.getConfig();
             if (config == null) config = new MultivaluedHashMap<>();
 
             Iterator<CredentialAttributeEntity> it = entity.getCredentialAttributes().iterator();
             while (it.hasNext()) {
                 CredentialAttributeEntity attr = it.next();
                 List<String> values = config.getList(attr.getName());
                 if (values == null || !values.contains(attr.getValue())) {
                     em.remove(attr);
                     it.remove();
                 } else {
                     attrs.add(attr.getName(), attr.getValue());
                 }
 
             }
             for (String key : config.keySet()) {
                 List<String> values = config.getList(key);
                 List<String> attrValues = attrs.getList(key);
                 for (String val : values) {
                     if (attrValues == null || !attrValues.contains(val)) {
                         CredentialAttributeEntity attr = new CredentialAttributeEntity();
                         attr.setId(KeycloakModelUtils.generateId());
                         attr.setValue(val);
                         attr.setName(key);
                         attr.setCredential(entity);
                         em.persist(attr);
                         entity.getCredentialAttributes().add(attr);
                     }
                 }
             }
 
         }
 
     }

◆ updateFederatedIdentity()

void org.keycloak.models.jpa.JpaUserProvider.updateFederatedIdentity	(	RealmModel	realm,
		UserModel	federatedUser,
		FederatedIdentityModel	federatedIdentityModel
	)

inline

org.keycloak.models.UserProviderを実装しています。

                                                                                                                                   {
         FederatedIdentityEntity federatedIdentity = findFederatedIdentity(federatedUser, federatedIdentityModel.getIdentityProvider());
 
         federatedIdentity.setToken(federatedIdentityModel.getToken());
 
         em.persist(federatedIdentity);
         em.flush();
     }

◆ updateGrantedConsentEntity()

void org.keycloak.models.jpa.JpaUserProvider.updateGrantedConsentEntity	(	UserConsentEntity	consentEntity,
		UserConsentModel	consentModel
	)

inlineprivate

                                                                                                             {
         Collection<UserConsentClientScopeEntity> grantedClientScopeEntities = consentEntity.getGrantedClientScopes();
         Collection<UserConsentClientScopeEntity> scopesToRemove = new HashSet<>(grantedClientScopeEntities);
 
         for (ClientScopeModel clientScope : consentModel.getGrantedClientScopes()) {
             UserConsentClientScopeEntity grantedClientScopeEntity = new UserConsentClientScopeEntity();
             grantedClientScopeEntity.setUserConsent(consentEntity);
             grantedClientScopeEntity.setScopeId(clientScope.getId());
 
             // Check if it's already there
             if (!grantedClientScopeEntities.contains(grantedClientScopeEntity)) {
                 em.persist(grantedClientScopeEntity);
                 em.flush();
                 grantedClientScopeEntities.add(grantedClientScopeEntity);
             } else {
                 scopesToRemove.remove(grantedClientScopeEntity);
             }
         }
         // Those client scopes were no longer on consentModel and will be removed
         for (UserConsentClientScopeEntity toRemove : scopesToRemove) {
             grantedClientScopeEntities.remove(toRemove);
             em.remove(toRemove);
         }
 
         consentEntity.setLastUpdatedDate(Time.currentTimeMillis());
 
         em.flush();
     }

◆ userInEntityManagerContext()

UserEntity org.keycloak.models.jpa.JpaUserProvider.userInEntityManagerContext ( String id )

inlineprivate

                                                              {
         UserEntity user = em.getReference(UserEntity.class, id);
         boolean isLoaded = em.getEntityManagerFactory().getPersistenceUnitUtil().isLoaded(user);
         return isLoaded ? user : null;
     }

メンバ詳解

◆ em

EntityManager org.keycloak.models.jpa.JpaUserProvider.em

protected

◆ EMAIL

final String org.keycloak.models.jpa.JpaUserProvider.EMAIL = "email"

staticprivate

◆ FIRST_NAME

final String org.keycloak.models.jpa.JpaUserProvider.FIRST_NAME = "firstName"

staticprivate

◆ LAST_NAME

final String org.keycloak.models.jpa.JpaUserProvider.LAST_NAME = "lastName"

staticprivate

◆ session

final KeycloakSession org.keycloak.models.jpa.JpaUserProvider.session

private

◆ USERNAME

final String org.keycloak.models.jpa.JpaUserProvider.USERNAME = "username"

staticprivate

このクラス詳解は次のファイルから抽出されました:

D:/AppData/doxygen/keycloak/src/keycloak/src/main/java/org/keycloak/models/jpa/JpaUserProvider.java

公開メンバ関数

限定公開メンバ関数

限定公開変数類

非公開メンバ関数

非公開変数類

静的非公開変数類

詳解

構築子と解体子

◆ JpaUserProvider()

関数詳解

◆ addConsent()

◆ addFederatedIdentity()

◆ addUser() [1/2]

◆ addUser() [2/2]

◆ close()

◆ createCredential()

◆ ensureEmailConstraint()

◆ findFederatedIdentity()

◆ getConsentByClient()

◆ getConsents()

◆ getFederatedIdentities()

◆ getFederatedIdentity()

◆ getGrantedConsentEntity()

◆ getGroupMembers() [1/2]

◆ getGroupMembers() [2/2]

◆ getNotBeforeOfUser()

◆ getRoleMembers() [1/2]

◆ getRoleMembers() [2/2]

◆ getServiceAccount()

◆ getStoredCredentialById()

◆ getStoredCredentialByNameAndType()

◆ getStoredCredentials()

◆ getStoredCredentialsByType()

◆ getUserByEmail()

◆ getUserByFederatedIdentity()

◆ getUserById()

◆ getUserByUsername()

◆ getUsers() [1/4]

◆ getUsers() [2/4]

◆ getUsers() [3/4]

◆ getUsers() [4/4]

◆ getUsersCount() [1/2]

◆ getUsersCount() [2/2]

◆ grantToAllUsers()

◆ preRemove() [1/7]

◆ preRemove() [2/7]

◆ preRemove() [3/7]

◆ preRemove() [4/7]

◆ preRemove() [5/7]

◆ preRemove() [6/7]

◆ preRemove() [7/7]

◆ removeConsentByClientStorageProvider()

◆ removeFederatedIdentity()

◆ removeImportedUsers()

◆ removeStoredCredential()

◆ removeUser() [1/2]

◆ removeUser() [2/2]

◆ revokeConsentForClient()

◆ searchForUser() [1/4]

◆ searchForUser() [2/4]

◆ searchForUser() [3/4]

◆ searchForUser() [4/4]

◆ searchForUserByUserAttribute()

◆ setNotBeforeForUser()

◆ toConsentModel()

◆ toModel()

◆ unlinkUsers()

◆ updateConsent()

◆ updateCredential()

◆ updateFederatedIdentity()

◆ updateGrantedConsentEntity()

◆ userInEntityManagerContext()

メンバ詳解

◆ em

◆ EMAIL

◆ FIRST_NAME

◆ LAST_NAME

◆ session

◆ USERNAME