org.keycloak.adapters.wildfly.SecurityInfoHelper 連携図

静的公開メンバ関数
static void	propagateSessionInfo (KeycloakAccount account)

静的限定公開メンバ関数
static Principal	getPrincipal (Subject subject)

static Group	createGroup (String name, Set< Principal > principals)

static Group []	getRoleSets (Collection< String > roleSet)

詳解

著者: Bill Burke

バージョン

Revision: 1

関数詳解

◆ createGroup()

static Group org.keycloak.adapters.wildfly.SecurityInfoHelper.createGroup	(	String	name,
		Set< Principal >	principals
	)

inlinestaticprotected

                                                                                {
         Group roles = null;
         Iterator<Principal> iter = principals.iterator();
         while (iter.hasNext()) {
             Object next = iter.next();
             if (!(next instanceof Group))
                 continue;
             Group grp = (Group) next;
             if (grp.getName().equals(name)) {
                 roles = grp;
                 break;
             }
         }
         // If we did not find a group create one
         if (roles == null) {
             roles = new SimpleGroup(name);
             principals.add(roles);
         }
         return roles;
     }

◆ getPrincipal()

static Principal org.keycloak.adapters.wildfly.SecurityInfoHelper.getPrincipal ( Subject subject )

inlinestaticprotected

Get the Principal given the authenticated Subject. Currently the first subject that is not of type

Group

is considered or the single subject inside the CallerPrincipal group.

引数

subject

戻り値: the authenticated subject

                                                              {
         Principal principal = null;
         Principal callerPrincipal = null;
         if (subject != null) {
             Set<Principal> principals = subject.getPrincipals();
             if (principals != null && !principals.isEmpty()) {
                 for (Principal p : principals) {
                     if (!(p instanceof Group) && principal == null) {
                         principal = p;
                     }
                     if (p instanceof Group) {
                         Group g = Group.class.cast(p);
                         if (g.getName().equals(SecurityConstants.CALLER_PRINCIPAL_GROUP) && callerPrincipal == null) {
                             Enumeration<? extends Principal> e = g.members();
                             if (e.hasMoreElements())
                                 callerPrincipal = e.nextElement();
                         }
                     }
                 }
             }
         }
         return callerPrincipal == null ? principal : callerPrincipal;
     }

◆ getRoleSets()

static Group [] org.keycloak.adapters.wildfly.SecurityInfoHelper.getRoleSets ( Collection< String > roleSet )

inlinestaticprotected

                                                                      {
         SimpleGroup roles = new SimpleGroup("Roles");
         Group[] roleSets = {roles};
         for (String role : roleSet) {
             roles.addMember(new SimplePrincipal(role));
         }
         return roleSets;
     }

◆ propagateSessionInfo()

static void org.keycloak.adapters.wildfly.SecurityInfoHelper.propagateSessionInfo ( KeycloakAccount account )

inlinestatic

                                                                      {
         Subject subject = new Subject();
         Set<Principal> principals = subject.getPrincipals();
         principals.add(account.getPrincipal());
         Group[] roleSets = getRoleSets(account.getRoles());
         for (int g = 0; g < roleSets.length; g++) {
             Group group = roleSets[g];
             String name = group.getName();
             Group subjectGroup = createGroup(name, principals);
             if (subjectGroup instanceof NestableGroup) {
                 /* A NestableGroup only allows Groups to be added to it so we
                 need to add a SimpleGroup to subjectRoles to contain the roles
                 */
                 SimpleGroup tmp = new SimpleGroup("Roles");
                 subjectGroup.addMember(tmp);
                 subjectGroup = tmp;
             }
             // Copy the group members to the Subject group
             Enumeration<? extends Principal> members = group.members();
             while (members.hasMoreElements()) {
                 Principal role = (Principal) members.nextElement();
                 subjectGroup.addMember(role);
             }
         }
         // add the CallerPrincipal group if none has been added in getRoleSets
         Group callerGroup = new SimpleGroup(SecurityConstants.CALLER_PRINCIPAL_GROUP);
         callerGroup.addMember(account.getPrincipal());
         principals.add(callerGroup);
         org.jboss.security.SecurityContext sc = SecurityContextAssociation.getSecurityContext();
         Principal userPrincipal = getPrincipal(subject);
         sc.getUtil().createSubjectInfo(userPrincipal, account, subject);
     }

このクラス詳解は次のファイルから抽出されました:

D:/AppData/OpenId/keycloak/doxygen/src/adapters/oidc/wildfly/wildfly-adapter/src/main/java/org/keycloak/adapters/wildfly/SecurityInfoHelper.java

静的公開メンバ関数

静的限定公開メンバ関数

詳解

関数詳解

◆ createGroup()

◆ getPrincipal()

◆ getRoleSets()

◆ propagateSessionInfo()