keycloak
公開メンバ関数 | 非公開変数類 | 全メンバ一覧
org.keycloak.AuthorizationContext クラス
org.keycloak.AuthorizationContext 連携図
Collaboration graph

公開メンバ関数

 AuthorizationContext (AccessToken authzToken, PathConfig current)
 
 AuthorizationContext ()
 
boolean hasPermission (String resourceName, String scopeName)
 
boolean hasResourcePermission (String resourceName)
 
boolean hasScopePermission (String scopeName)
 
List< PermissiongetPermissions ()
 
boolean isGranted ()
 

非公開変数類

final AccessToken authzToken
 
final PathConfig current
 
boolean granted
 

詳解

著者
Pedro Igor

構築子と解体子

◆ AuthorizationContext() [1/2]

org.keycloak.AuthorizationContext.AuthorizationContext ( AccessToken  authzToken,
PathConfig  current 
)
inline
38  {
39  this.authzToken = authzToken;
40  this.current = current;
41  this.granted = true;
42  }
final PathConfig current
Definition: AuthorizationContext.java:35
boolean granted
Definition: AuthorizationContext.java:36
final AccessToken authzToken
Definition: AuthorizationContext.java:34

◆ AuthorizationContext() [2/2]

org.keycloak.AuthorizationContext.AuthorizationContext ( )
inline
44  {
45  this(null, null);
46  this.granted = false;
47  }
boolean granted
Definition: AuthorizationContext.java:36

関数詳解

◆ getPermissions()

List<Permission> org.keycloak.AuthorizationContext.getPermissions ( )
inline
105  {
106  if (this.authzToken == null) {
107  return Collections.emptyList();
108  }
109 
110  Authorization authorization = this.authzToken.getAuthorization();
111 
112  if (authorization == null) {
113  return Collections.emptyList();
114  }
115 
116  return Collections.unmodifiableList(new ArrayList<>(authorization.getPermissions()));
117  }
Authorization getAuthorization()
Definition: AccessToken.java:251
final AccessToken authzToken
Definition: AuthorizationContext.java:34

◆ hasPermission()

boolean org.keycloak.AuthorizationContext.hasPermission ( String  resourceName,
String  scopeName 
)
inline
49  {
50  if (this.authzToken == null) {
51  return false;
52  }
53 
54  Authorization authorization = this.authzToken.getAuthorization();
55 
56  if (authorization == null) {
57  return false;
58  }
59 
60  for (Permission permission : authorization.getPermissions()) {
61  if (resourceName.equalsIgnoreCase(permission.getResourceName()) || resourceName.equalsIgnoreCase(permission.getResourceId())) {
62  if (scopeName == null) {
63  return true;
64  }
65 
66  if (permission.getScopes().contains(scopeName)) {
67  return true;
68  }
69  }
70  }
71 
72  if (current != null) {
73  if (current.getName().equals(resourceName)) {
74  return true;
75  }
76  }
77 
78  return false;
79  }
final PathConfig current
Definition: AuthorizationContext.java:35
Authorization getAuthorization()
Definition: AccessToken.java:251
String getName()
Definition: PolicyEnforcerConfig.java:193
final AccessToken authzToken
Definition: AuthorizationContext.java:34

◆ hasResourcePermission()

boolean org.keycloak.AuthorizationContext.hasResourcePermission ( String  resourceName)
inline
81  {
82  return hasPermission(resourceName, null);
83  }
boolean hasPermission(String resourceName, String scopeName)
Definition: AuthorizationContext.java:49

◆ hasScopePermission()

boolean org.keycloak.AuthorizationContext.hasScopePermission ( String  scopeName)
inline
85  {
86  if (this.authzToken == null) {
87  return false;
88  }
89 
90  Authorization authorization = this.authzToken.getAuthorization();
91 
92  if (authorization == null) {
93  return false;
94  }
95 
96  for (Permission permission : authorization.getPermissions()) {
97  if (permission.getScopes().contains(scopeName)) {
98  return true;
99  }
100  }
101 
102  return false;
103  }
Authorization getAuthorization()
Definition: AccessToken.java:251
final AccessToken authzToken
Definition: AuthorizationContext.java:34

◆ isGranted()

boolean org.keycloak.AuthorizationContext.isGranted ( )
inline
119  {
120  return granted;
121  }
boolean granted
Definition: AuthorizationContext.java:36

メンバ詳解

◆ authzToken

final AccessToken org.keycloak.AuthorizationContext.authzToken
private

◆ current

final PathConfig org.keycloak.AuthorizationContext.current
private

◆ granted

boolean org.keycloak.AuthorizationContext.granted
private

このクラス詳解は次のファイルから抽出されました: