org.keycloak.adapters.jetty.core.JettySessionTokenStore クラス

org.keycloak.adapters.jetty.core.JettySessionTokenStore の継承関係図

org.keycloak.adapters.jetty.core.JettySessionTokenStore 連携図

公開メンバ関数
	JettySessionTokenStore (Request request, KeycloakDeployment deployment, AdapterSessionStore sessionStore)
void	checkCurrentToken ()
boolean	isCached (RequestAuthenticator authenticator)
void	saveAccountInfo (OidcKeycloakAccount account)
void	logout ()
void	refreshCallback (RefreshableKeycloakSecurityContext securityContext)
void	saveRequest ()
boolean	restoreRequest ()

限定公開変数類
KeycloakDeployment	deployment
AdapterSessionStore	sessionStore

非公開変数類
Request	request

静的非公開変数類
static final Logger	log = Logger.getLogger(JettySessionTokenStore.class)

詳解

Handle storage of token info in HTTP Session. Per-request object

著者

Marek Posolda

構築子と解体子

JettySessionTokenStore()

org.keycloak.adapters.jetty.core.JettySessionTokenStore.JettySessionTokenStore ( Request  request, KeycloakDeployment  deployment, AdapterSessionStore  sessionStore  )

inline

                                                                                                                    {
        this.request = request;
        this.deployment = deployment;
        this.sessionStore = sessionStore;
    }

関数詳解

checkCurrentToken()

void org.keycloak.adapters.jetty.core.JettySessionTokenStore.checkCurrentToken ( )

inline

org.keycloak.adapters.AdapterTokenStoreを実装しています。

                                    {
        if (request.getSession(false) == null) return;
        RefreshableKeycloakSecurityContext session = (RefreshableKeycloakSecurityContext) request.getSession().getAttribute(KeycloakSecurityContext.class.getName());
        if (session == null) return;

        // just in case session got serialized
        if (session.getDeployment() == null) session.setCurrentRequestInfo(deployment, this);

        if (session.isActive() && !session.getDeployment().isAlwaysRefreshToken()) return;

        // FYI: A refresh requires same scope, so same roles will be set.  Otherwise, refresh will fail and token will
        // not be updated
        boolean success = session.refreshExpiredToken(false);
        if (success && session.isActive()) return;

        // Refresh failed, so user is already logged out from keycloak. Cleanup and expire our session
        request.getSession().removeAttribute(KeycloakSecurityContext.class.getName());
        request.getSession().invalidate();
    }

isCached()

boolean org.keycloak.adapters.jetty.core.JettySessionTokenStore.isCached ( RequestAuthenticator  authenticator )

inline

org.keycloak.adapters.AdapterTokenStoreを実装しています。

                                                                {
        if (request.getSession(false) == null || request.getSession().getAttribute(KeycloakSecurityContext.class.getName()) == null)
            return false;
        log.debug("remote logged in already. Establish state from session");

        RefreshableKeycloakSecurityContext securityContext = (RefreshableKeycloakSecurityContext) request.getSession().getAttribute(KeycloakSecurityContext.class.getName());
        if (!deployment.getRealm().equals(securityContext.getRealm())) {
            log.debug("Account from cookie is from a different realm than for the request.");
            return false;
        }

        securityContext.setCurrentRequestInfo(deployment, this);
        request.setAttribute(KeycloakSecurityContext.class.getName(), securityContext);

        JettyRequestAuthenticator jettyAuthenticator = (JettyRequestAuthenticator) authenticator;
        KeycloakPrincipal<RefreshableKeycloakSecurityContext> principal = AdapterUtils.createPrincipal(deployment, securityContext);
        jettyAuthenticator.principal = principal;
        restoreRequest();
        return true;
    }

logout()

void org.keycloak.adapters.jetty.core.JettySessionTokenStore.logout ( )

inline

org.keycloak.adapters.AdapterTokenStoreを実装しています。

                         {
        HttpSession session = request.getSession(false);
        if (session != null) {
            session.removeAttribute(KeycloakSecurityContext.class.getName());
        }
    }

refreshCallback()

void org.keycloak.adapters.jetty.core.JettySessionTokenStore.refreshCallback ( RefreshableKeycloakSecurityContext  securityContext )

inline

org.keycloak.adapters.AdapterTokenStoreを実装しています。

                                                                                    {
        // no-op
    }

restoreRequest()

boolean org.keycloak.adapters.jetty.core.JettySessionTokenStore.restoreRequest ( )

inline

                                    {
        return sessionStore.restoreRequest();
    }

saveAccountInfo()

void org.keycloak.adapters.jetty.core.JettySessionTokenStore.saveAccountInfo ( OidcKeycloakAccount  account )

inline

org.keycloak.adapters.AdapterTokenStoreを実装しています。

                                                             {
        RefreshableKeycloakSecurityContext securityContext = (RefreshableKeycloakSecurityContext) account.getKeycloakSecurityContext();
        request.getSession().setAttribute(KeycloakSecurityContext.class.getName(), securityContext);
    }

saveRequest()

void org.keycloak.adapters.jetty.core.JettySessionTokenStore.saveRequest ( )

inline

                              {
        sessionStore.saveRequest();

    }

メンバ詳解

deployment

KeycloakDeployment org.keycloak.adapters.jetty.core.JettySessionTokenStore.deployment

protected

log

final Logger org.keycloak.adapters.jetty.core.JettySessionTokenStore.log = Logger.getLogger(JettySessionTokenStore.class)

staticprivate

request

Request org.keycloak.adapters.jetty.core.JettySessionTokenStore.request

private

sessionStore

AdapterSessionStore org.keycloak.adapters.jetty.core.JettySessionTokenStore.sessionStore

protected

---

このクラス詳解は次のファイルから抽出されました:

• D:/AppData/OpenId/keycloak/doxygen/src/adapters/oidc/jetty/jetty-core/src/main/java/org/keycloak/adapters/jetty/core/JettySessionTokenStore.java