org.keycloak.protocol.saml.SamlProtocol の継承関係図
org.keycloak.protocol.saml.SamlProtocol 連携図
クラス | |
| class | ProtocolMapperProcessor |
静的公開メンバ関数 | |
| static boolean | isLogoutPostBindingForInitiator (UserSessionModel session) |
| static String | getLogoutServiceUrl (UriInfo uriInfo, ClientModel client, String bindingType) |
静的公開変数類 | |
| static final String | ATTRIBUTE_TRUE_VALUE = "true" |
| static final String | ATTRIBUTE_FALSE_VALUE = "false" |
| static final String | SAML_ASSERTION_CONSUMER_URL_POST_ATTRIBUTE = "saml_assertion_consumer_url_post" |
| static final String | SAML_ASSERTION_CONSUMER_URL_REDIRECT_ATTRIBUTE = "saml_assertion_consumer_url_redirect" |
| static final String | SAML_SINGLE_LOGOUT_SERVICE_URL_POST_ATTRIBUTE = "saml_single_logout_service_url_post" |
| static final String | SAML_SINGLE_LOGOUT_SERVICE_URL_REDIRECT_ATTRIBUTE = "saml_single_logout_service_url_redirect" |
| static final String | LOGIN_PROTOCOL = "saml" |
| static final String | SAML_BINDING = "saml_binding" |
| static final String | SAML_IDP_INITIATED_LOGIN = "saml_idp_initiated_login" |
| static final String | SAML_POST_BINDING = "post" |
| static final String | SAML_SOAP_BINDING = "soap" |
| static final String | SAML_REDIRECT_BINDING = "get" |
| static final String | SAML_REQUEST_ID = "SAML_REQUEST_ID" |
| static final String | SAML_LOGOUT_BINDING = "saml.logout.binding" |
| static final String | SAML_LOGOUT_ADD_EXTENSIONS_ELEMENT_WITH_KEY_INFO = "saml.logout.addExtensionsElementWithKeyInfo" |
| static final String | SAML_SERVER_SIGNATURE_KEYINFO_KEY_NAME_TRANSFORMER = "SAML_SERVER_SIGNATURE_KEYINFO_KEY_NAME_TRANSFORMER" |
| static final String | SAML_LOGOUT_REQUEST_ID = "SAML_LOGOUT_REQUEST_ID" |
| static final String | SAML_LOGOUT_RELAY_STATE = "SAML_LOGOUT_RELAY_STATE" |
| static final String | SAML_LOGOUT_CANONICALIZATION = "SAML_LOGOUT_CANONICALIZATION" |
| static final String | SAML_LOGOUT_BINDING_URI = "SAML_LOGOUT_BINDING_URI" |
| static final String | SAML_LOGOUT_SIGNATURE_ALGORITHM = "saml.logout.signature.algorithm" |
| static final String | SAML_NAME_ID = "SAML_NAME_ID" |
| static final String | SAML_NAME_ID_FORMAT = "SAML_NAME_ID_FORMAT" |
| static final String | SAML_DEFAULT_NAMEID_FORMAT = JBossSAMLURIConstants.NAMEID_FORMAT_UNSPECIFIED.get() |
| static final String | SAML_PERSISTENT_NAME_ID_FOR = "saml.persistent.name.id.for" |
| static final String | SAML_IDP_INITIATED_SSO_RELAY_STATE = "saml_idp_initiated_sso_relay_state" |
| static final String | SAML_IDP_INITIATED_SSO_URL_NAME = "saml_idp_initiated_sso_url_name" |
限定公開メンバ関数 | |
| Response | buildErrorResponse (boolean isPostBinding, String destination, JaxrsSAML2BindingBuilder binding, Document document) throws ConfigurationException, ProcessingException, IOException |
| String | getResponseIssuer (RealmModel realm) |
| boolean | isPostBinding (AuthenticationSessionModel authSession) |
| boolean | isPostBinding (AuthenticatedClientSessionModel clientSession) |
| boolean | isLogoutPostBindingForClient (AuthenticatedClientSessionModel clientSession) |
| String | getNameIdFormat (SamlClient samlClient, AuthenticatedClientSessionModel clientSession) |
| String | getNameId (String nameIdFormat, CommonClientSessionModel clientSession, UserSessionModel userSession) |
| String | getPersistentNameId (final CommonClientSessionModel clientSession, final UserSessionModel userSession) |
| Response | buildAuthenticatedResponse (AuthenticatedClientSessionModel clientSession, String redirectUri, Document samlDocument, JaxrsSAML2BindingBuilder bindingBuilder) throws ConfigurationException, ProcessingException, IOException |
| Response | buildLogoutResponse (UserSessionModel userSession, String logoutBindingUri, SAML2LogoutResponseBuilder builder, JaxrsSAML2BindingBuilder binding) throws ConfigurationException, ProcessingException, IOException |
| SAML2LogoutRequestBuilder | createLogoutRequest (String logoutUrl, AuthenticatedClientSessionModel clientSession, ClientModel client) |
限定公開変数類 | |
| KeycloakSession | session |
| RealmModel | realm |
| UriInfo | uriInfo |
| HttpHeaders | headers |
| EventBuilder | event |
静的限定公開変数類 | |
| static final Logger | logger = Logger.getLogger(SamlProtocol.class) |
非公開メンバ関数 | |
| Response | samlErrorMessage (AuthenticationSessionModel authSession, SamlClient samlClient, boolean isPostBinding, String destination, JBossSAMLURIConstants statusDetail, String relayState) |
| JBossSAMLURIConstants | translateErrorToSAMLStatus (Error error) |
| String | translateErrorToIdpInitiatedErrorMessage (Error error) |
| JaxrsSAML2BindingBuilder | createBindingBuilder (SamlClient samlClient) |
詳解
- バージョン
- Revision
- 1
関数詳解
◆ authenticated()
|
inline |
org.keycloak.protocol.LoginProtocolを実装しています。
388 // save NAME_ID and format in clientSession as they may be persistent or transient or email and not username
394 builder.requestID(requestID).destination(redirectUri).issuer(responseIssuer).assertionExpiration(realm.getAccessCodeLifespan()).subjectExpiration(realm.getAccessTokenLifespan())
395 .requestIssuer(clientSession.getClient().getClientId()).nameIdentifier(nameIdFormat, nameId).authMethod(JBossSAMLURIConstants.AC_UNSPECIFIED.get());
406 List<ProtocolMapperProcessor<SAMLAttributeStatementMapper>> attributeStatementMappers = new LinkedList<>();
407 List<ProtocolMapperProcessor<SAMLLoginResponseMapper>> loginResponseMappers = new LinkedList<>();
413 ProtocolMapper mapper = (ProtocolMapper) session.getKeycloakSessionFactory().getProviderFactory(ProtocolMapper.class, mapping.getProtocolMapper());
417 attributeStatementMappers.add(new ProtocolMapperProcessor<SAMLAttributeStatementMapper>((SAMLAttributeStatementMapper) mapper, mapping));
420 loginResponseMappers.add(new ProtocolMapperProcessor<SAMLLoginResponseMapper>((SAMLLoginResponseMapper) mapper, mapping));
423 roleListMapper = new ProtocolMapperProcessor<SAMLRoleListMapper>((SAMLRoleListMapper) mapper, mapping);
431 String keyName = samlClient.getXmlSigKeyInfoKeyNameTransformer().getKeyName(keys.getKid(), keys.getCertificate());
434 if ((! postBinding) && samlClient.requiresRealmSignature() && samlClient.addExtensionsElementWithKeyInfo()) {
439 final AttributeStatementType attributeStatement = populateAttributeStatements(attributeStatementMappers, session, userSession, clientSession);
448 samlModel = transformLoginResponse(loginResponseMappers, samlModel, session, userSession, clientSession);
452 return ErrorPage.error(session, null, Response.Status.BAD_REQUEST, Messages.FAILED_TO_PROCESS_RESPONSE);
463 bindingBuilder.signatureAlgorithm(samlClient.getSignatureAlgorithm()).signWith(keyName, keys.getPrivateKey(), keys.getPublicKey(), keys.getCertificate()).signDocument();
470 bindingBuilder.signatureAlgorithm(samlClient.getSignatureAlgorithm()).signWith(keyName, keys.getPrivateKey(), keys.getPublicKey(), keys.getCertificate()).signAssertions();
478 return ErrorPage.error(session, null, Response.Status.BAD_REQUEST, Messages.FAILED_TO_PROCESS_RESPONSE);
486 return ErrorPage.error(session, null, Response.Status.BAD_REQUEST, Messages.FAILED_TO_PROCESS_RESPONSE);
String getNameId(String nameIdFormat, CommonClientSessionModel clientSession, UserSessionModel userSession)
Definition: SamlProtocol.java:312
AttributeStatementType populateAttributeStatements(List< ProtocolMapperProcessor< SAMLAttributeStatementMapper >> attributeStatementMappers, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession)
Definition: SamlProtocol.java:508
static final Logger logger
Definition: SamlProtocol.java:93
static final String SAML_NAME_ID_FORMAT
Definition: SamlProtocol.java:117
String getResponseIssuer(RealmModel realm)
Definition: SamlProtocol.java:253
KeycloakSessionFactory getKeycloakSessionFactory()
Response buildAuthenticatedResponse(AuthenticatedClientSessionModel clientSession, String redirectUri, Document samlDocument, JaxrsSAML2BindingBuilder bindingBuilder)
Definition: SamlProtocol.java:490
boolean isPostBinding(AuthenticationSessionModel authSession)
Definition: SamlProtocol.java:257
static final String SAML_NAME_ID
Definition: SamlProtocol.java:116
String getNameIdFormat(SamlClient samlClient, AuthenticatedClientSessionModel clientSession)
Definition: SamlProtocol.java:299
int getAccessCodeLifespan()
Response samlErrorMessage(AuthenticationSessionModel authSession, SamlClient samlClient, boolean isPostBinding, String destination, JBossSAMLURIConstants statusDetail, String relayState)
Definition: SamlProtocol.java:191
KeyManager keys()
KeycloakSession session
Definition: SamlProtocol.java:123
Definition: KeyManager.java:75
< T extends Provider > ProviderFactory< T > getProviderFactory(Class< T > clazz)
ResponseType transformLoginResponse(List< ProtocolMapperProcessor< SAMLLoginResponseMapper >> mappers, ResponseType response, KeycloakSession session, UserSessionModel userSession, AuthenticatedClientSessionModel clientSession)
Definition: SamlProtocol.java:518
void populateRoles(ProtocolMapperProcessor< SAMLRoleListMapper > roleListMapper, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx, final AttributeStatementType existingAttributeStatement)
Definition: SamlProtocol.java:525
static final String SAML_REQUEST_ID
Definition: SamlProtocol.java:107
int getAccessTokenLifespan()
◆ backchannelLogout()
|
inline |
org.keycloak.protocol.LoginProtocolを実装しています。
657 logger.warnf("Can't do backchannel logout. No SingleLogoutService POST Binding registered for client: %s", client.getClientId());
660 SAML2LogoutRequestBuilder logoutBuilder = createLogoutRequest(logoutUrl, clientSession, client);
665 // This is POST binding, hence KeyID is included in dsig:KeyInfo/dsig:KeyName, no need to add <samlp:Extensions> element
677 formparams.add(new BasicNameValuePair("BACK_CHANNEL_LOGOUT", "BACK_CHANNEL_LOGOUT")); // for Picketlink
static final Logger logger
Definition: SamlProtocol.java:93
KeycloakSession session
Definition: SamlProtocol.java:123
< T extends Provider > T getProvider(Class< T > clazz)
static String getLogoutServiceUrl(UriInfo uriInfo, ClientModel client, String bindingType)
Definition: SamlProtocol.java:532
SAML2LogoutRequestBuilder createLogoutRequest(String logoutUrl, AuthenticatedClientSessionModel clientSession, ClientModel client)
Definition: SamlProtocol.java:711
static final String SAML_POST_BINDING
Definition: SamlProtocol.java:104
JaxrsSAML2BindingBuilder createBindingBuilder(SamlClient samlClient)
Definition: SamlProtocol.java:728
◆ buildAuthenticatedResponse()
|
inlineprotected |
boolean isPostBinding(AuthenticationSessionModel authSession)
Definition: SamlProtocol.java:257
◆ buildErrorResponse()
|
inlineprotected |
boolean isPostBinding(AuthenticationSessionModel authSession)
Definition: SamlProtocol.java:257
◆ buildLogoutResponse()
|
inlineprotected |
static boolean isLogoutPostBindingForInitiator(UserSessionModel session)
Definition: SamlProtocol.java:269
◆ close()
|
inline |
org.keycloak.provider.Providerを実装しています。
◆ createBindingBuilder()
|
inlineprivate |
732 String keyName = samlClient.getXmlSigKeyInfoKeyNameTransformer().getKeyName(keys.getKid(), keys.getCertificate());
733 binding.signatureAlgorithm(samlClient.getSignatureAlgorithm()).signWith(keyName, keys.getPrivateKey(), keys.getPublicKey(), keys.getCertificate()).signDocument();
ActiveRsaKey getActiveRsaKey(RealmModel realm)
KeyManager keys()
KeycloakSession session
Definition: SamlProtocol.java:123
◆ createLogoutRequest()
|
inlineprotected |
713 SAML2LogoutRequestBuilder logoutBuilder = new SAML2LogoutRequestBuilder().assertionExpiration(realm.getAccessCodeLifespan()).issuer(getResponseIssuer(realm))
714 .userPrincipal(clientSession.getNote(SAML_NAME_ID), clientSession.getNote(SAML_NAME_ID_FORMAT)).destination(logoutUrl);
static final String SAML_NAME_ID_FORMAT
Definition: SamlProtocol.java:117
String getResponseIssuer(RealmModel realm)
Definition: SamlProtocol.java:253
static final String SAML_NAME_ID
Definition: SamlProtocol.java:116
int getAccessCodeLifespan()
◆ finishLogout()
|
inline |
org.keycloak.protocol.LoginProtocolを実装しています。
592 logger.error("Can't finish SAML logout as there is no logout binding set. Please configure the logout service url in the admin console for your client applications.");
616 binding.signatureAlgorithm(algorithm).signWith(keyName, keys.getPrivateKey(), keys.getPublicKey(), keys.getCertificate()).signDocument();
617 boolean addExtension = (! postBinding) && Objects.equals("true", userSession.getNote(SamlProtocol.SAML_LOGOUT_ADD_EXTENSIONS_ELEMENT_WITH_KEY_INFO));
618 if (addExtension) { // Only include extension if REDIRECT binding and signing whole SAML protocol message
637 .detail(Details.RESPONSE_MODE, postBinding ? SamlProtocol.SAML_POST_BINDING : SamlProtocol.SAML_REDIRECT_BINDING)
Response buildLogoutResponse(UserSessionModel userSession, String logoutBindingUri, SAML2LogoutResponseBuilder builder, JaxrsSAML2BindingBuilder binding)
Definition: SamlProtocol.java:643
ActiveRsaKey getActiveRsaKey(RealmModel realm)
KeycloakContext getContext()
static final Logger logger
Definition: SamlProtocol.java:93
String getResponseIssuer(RealmModel realm)
Definition: SamlProtocol.java:253
static final String SAML_LOGOUT_CANONICALIZATION
Definition: SamlProtocol.java:113
static final String SAML_LOGOUT_RELAY_STATE
Definition: SamlProtocol.java:112
static final String SAML_SERVER_SIGNATURE_KEYINFO_KEY_NAME_TRANSFORMER
Definition: SamlProtocol.java:110
ClientModel getClient()
static final String SAML_LOGOUT_SIGNATURE_ALGORITHM
Definition: SamlProtocol.java:115
static boolean isLogoutPostBindingForInitiator(UserSessionModel session)
Definition: SamlProtocol.java:269
static final String SAML_LOGOUT_BINDING_URI
Definition: SamlProtocol.java:114
KeyManager keys()
KeycloakSession session
Definition: SamlProtocol.java:123
static final String SAML_LOGOUT_REQUEST_ID
Definition: SamlProtocol.java:111
◆ frontchannelLogout()
|
inline |
org.keycloak.protocol.LoginProtocolを実装しています。
553 String bindingUri = getLogoutServiceUrl(uriInfo, client, postBinding ? SAML_POST_BINDING : SAML_REDIRECT_BINDING);
555 logger.warnf("Failed to logout client %s, skipping this client. Please configure the logout service url in the admin console for your client applications.", client.getClientId());
560 SAML2LogoutRequestBuilder logoutBuilder = createLogoutRequest(bindingUri, clientSession, client);
561 // This is POST binding, hence KeyID is included in dsig:KeyInfo/dsig:KeyName, no need to add <samlp:Extensions> element
566 SAML2LogoutRequestBuilder logoutBuilder = createLogoutRequest(bindingUri, clientSession, client);
569 String keyName = samlClient.getXmlSigKeyInfoKeyNameTransformer().getKeyName(keys.getKid(), keys.getCertificate());
ActiveRsaKey getActiveRsaKey(RealmModel realm)
static final Logger logger
Definition: SamlProtocol.java:93
static final String SAML_REDIRECT_BINDING
Definition: SamlProtocol.java:106
KeyManager keys()
KeycloakSession session
Definition: SamlProtocol.java:123
static String getLogoutServiceUrl(UriInfo uriInfo, ClientModel client, String bindingType)
Definition: SamlProtocol.java:532
SAML2LogoutRequestBuilder createLogoutRequest(String logoutUrl, AuthenticatedClientSessionModel clientSession, ClientModel client)
Definition: SamlProtocol.java:711
boolean isLogoutPostBindingForClient(AuthenticatedClientSessionModel clientSession)
Definition: SamlProtocol.java:274
static final String SAML_POST_BINDING
Definition: SamlProtocol.java:104
JaxrsSAML2BindingBuilder createBindingBuilder(SamlClient samlClient)
Definition: SamlProtocol.java:728
◆ getLogoutServiceUrl()
|
inlinestatic |
543 return ResourceAdminManager.resolveUri(uriInfo.getRequestUri(), client.getRootUrl(), logoutServiceUrl);
static final String SAML_SINGLE_LOGOUT_SERVICE_URL_POST_ATTRIBUTE
Definition: SamlProtocol.java:99
static final String SAML_POST_BINDING
Definition: SamlProtocol.java:104
static final String SAML_SINGLE_LOGOUT_SERVICE_URL_REDIRECT_ATTRIBUTE
Definition: SamlProtocol.java:100
◆ getNameId()
|
inlineprotected |
316 logger.debugf("E-mail of the user %s has to be set for %s NameIDFormat", userSession.getUser().getUsername(), JBossSAMLURIConstants.NAMEID_FORMAT_EMAIL.get());
static final Logger logger
Definition: SamlProtocol.java:93
String getPersistentNameId(final CommonClientSessionModel clientSession, final UserSessionModel userSession)
Definition: SamlProtocol.java:346
◆ getNameIdFormat()
|
inlineprotected |
static final String SAML_DEFAULT_NAMEID_FORMAT
Definition: SamlProtocol.java:118
◆ getPersistentNameId()
|
inlineprotected |
Attempts to retrieve the persistent type NameId as follows:
- saml.persistent.name.id.for.$clientId user attribute
- saml.persistent.name.id.for.* user attribute
- G-$randomUuid
If a randomUuid is generated, an attribute for the given saml.persistent.name.id.for.$clientId will be generated, otherwise no state change will occur with respect to the user's attributes.
- 戻り値
- the user's persistent NameId
static final String SAML_PERSISTENT_NAME_ID_FOR
Definition: SamlProtocol.java:119
◆ getResponseIssuer()
|
inlineprotected |
String getName()
◆ isLogoutPostBindingForClient()
|
inlineprotected |
278 String logoutRedirectUrl = client.getAttribute(SAML_SINGLE_LOGOUT_SERVICE_URL_REDIRECT_ATTRIBUTE);
281 // if we don't have a redirect uri either, return true and default to the admin url + POST binding
295 // true if we don't have a redirect binding url, so use post binding, false for redirect binding
static final String SAML_SINGLE_LOGOUT_SERVICE_URL_POST_ATTRIBUTE
Definition: SamlProtocol.java:99
static final String SAML_BINDING
Definition: SamlProtocol.java:102
static final String SAML_POST_BINDING
Definition: SamlProtocol.java:104
static final String SAML_SINGLE_LOGOUT_SERVICE_URL_REDIRECT_ATTRIBUTE
Definition: SamlProtocol.java:100
◆ isLogoutPostBindingForInitiator()
|
inlinestatic |
KeycloakSession session
Definition: SamlProtocol.java:123
◆ isPostBinding() [1/2]
|
inlineprotected |
◆ isPostBinding() [2/2]
|
inlineprotected |
◆ populateAttributeStatements()
|
inline |
511 for (ProtocolMapperProcessor<SAMLAttributeStatementMapper> processor : attributeStatementMappers) {
512 processor.mapper.transformAttributeStatement(attributeStatement, processor.model, session, userSession, clientSession);
KeycloakSession session
Definition: SamlProtocol.java:123
◆ populateRoles()
|
inline |
529 roleListMapper.mapper.mapRoles(existingAttributeStatement, roleListMapper.model, session, userSession, clientSessionCtx);
KeycloakSession session
Definition: SamlProtocol.java:123
◆ requireReauthentication()
|
inline |
org.keycloak.protocol.LoginProtocolを実装しています。
◆ samlErrorMessage()
|
inlineprivate |
195 SAML2ErrorResponseBuilder builder = new SAML2ErrorResponseBuilder().destination(destination).issuer(getResponseIssuer(realm)).status(statusDetail.get());
199 String keyName = samlClient.getXmlSigKeyInfoKeyNameTransformer().getKeyName(keys.getKid(), keys.getCertificate());
204 binding.signatureAlgorithm(samlClient.getSignatureAlgorithm()).signWith(keyName, keys.getPrivateKey(), keys.getPublicKey(), keys.getCertificate()).signDocument();
214 return ErrorPage.error(session, authSession, Response.Status.BAD_REQUEST, Messages.FAILED_TO_PROCESS_RESPONSE);
Response buildErrorResponse(boolean isPostBinding, String destination, JaxrsSAML2BindingBuilder binding, Document document)
Definition: SamlProtocol.java:218
String getResponseIssuer(RealmModel realm)
Definition: SamlProtocol.java:253
boolean isPostBinding(AuthenticationSessionModel authSession)
Definition: SamlProtocol.java:257
KeyManager keys()
KeycloakSession session
Definition: SamlProtocol.java:123
Definition: KeyManager.java:75
◆ sendError()
|
inline |
org.keycloak.protocol.LoginProtocolを実装しています。
170 UriBuilder builder = RealmsResource.protocolUrl(uriInfo).path(SamlService.class, "idpInitiatedSSO");
178 return ErrorPage.error(session, authSession, Response.Status.BAD_REQUEST, translateErrorToIdpInitiatedErrorMessage(error));
183 authSession.getRedirectUri(), translateErrorToSAMLStatus(error), authSession.getClientNote(GeneralConstants.RELAY_STATE)
187 new AuthenticationSessionManager(session).removeAuthenticationSession(realm, authSession, true);
static final String LOGIN_PROTOCOL
Definition: SamlProtocol.java:101
static final String SAML_IDP_INITIATED_LOGIN
Definition: SamlProtocol.java:103
boolean isPostBinding(AuthenticationSessionModel authSession)
Definition: SamlProtocol.java:257
Response samlErrorMessage(AuthenticationSessionModel authSession, SamlClient samlClient, boolean isPostBinding, String destination, JBossSAMLURIConstants statusDetail, String relayState)
Definition: SamlProtocol.java:191
KeycloakSession session
Definition: SamlProtocol.java:123
static final String SAML_IDP_INITIATED_SSO_URL_NAME
Definition: SamlProtocol.java:121
JBossSAMLURIConstants translateErrorToSAMLStatus(Error error)
Definition: SamlProtocol.java:226
String translateErrorToIdpInitiatedErrorMessage(Error error)
Definition: SamlProtocol.java:240
String getName()
◆ sendPushRevocationPolicyRequest()
|
inlineinherited |
Send not-before revocation policy to the given client.
- 引数
-
realm resource notBefore managementUrl
- 戻り値
- if revocation policy was successfully updated at the client,trueotherwise.false
◆ setEventBuilder()
|
inline |
org.keycloak.protocol.LoginProtocolを実装しています。
◆ setHttpHeaders()
|
inline |
org.keycloak.protocol.LoginProtocolを実装しています。
◆ setRealm()
|
inline |
org.keycloak.protocol.LoginProtocolを実装しています。
◆ setSession()
|
inline |
org.keycloak.protocol.LoginProtocolを実装しています。
KeycloakSession session
Definition: SamlProtocol.java:123
◆ setUriInfo()
|
inline |
org.keycloak.protocol.LoginProtocolを実装しています。
◆ transformLoginResponse()
|
inline |
520 response = processor.mapper.transformLoginResponse(response, processor.model, session, userSession, clientSession);
KeycloakSession session
Definition: SamlProtocol.java:123
◆ translateErrorToIdpInitiatedErrorMessage()
|
inlineprivate |
248 logger.warn("Untranslated protocol Error: " + error.name() + " so we return default error message");
static final Logger logger
Definition: SamlProtocol.java:93
◆ translateErrorToSAMLStatus()
|
inlineprivate |
235 logger.warn("Untranslated protocol Error: " + error.name() + " so we return default SAML error");
static final Logger logger
Definition: SamlProtocol.java:93
メンバ詳解
◆ ATTRIBUTE_FALSE_VALUE
|
static |
◆ ATTRIBUTE_TRUE_VALUE
|
static |
◆ event
|
protected |
◆ headers
|
protected |
◆ logger
|
staticprotected |
◆ LOGIN_PROTOCOL
|
static |
◆ realm
|
protected |
◆ SAML_ASSERTION_CONSUMER_URL_POST_ATTRIBUTE
|
static |
◆ SAML_ASSERTION_CONSUMER_URL_REDIRECT_ATTRIBUTE
|
static |
◆ SAML_BINDING
|
static |
◆ SAML_DEFAULT_NAMEID_FORMAT
|
static |
◆ SAML_IDP_INITIATED_LOGIN
|
static |
◆ SAML_IDP_INITIATED_SSO_RELAY_STATE
|
static |
◆ SAML_IDP_INITIATED_SSO_URL_NAME
|
static |
◆ SAML_LOGOUT_ADD_EXTENSIONS_ELEMENT_WITH_KEY_INFO
|
static |
◆ SAML_LOGOUT_BINDING
|
static |
◆ SAML_LOGOUT_BINDING_URI
|
static |
◆ SAML_LOGOUT_CANONICALIZATION
|
static |
◆ SAML_LOGOUT_RELAY_STATE
|
static |
◆ SAML_LOGOUT_REQUEST_ID
|
static |
◆ SAML_LOGOUT_SIGNATURE_ALGORITHM
|
static |
◆ SAML_NAME_ID
|
static |
◆ SAML_NAME_ID_FORMAT
|
static |
◆ SAML_PERSISTENT_NAME_ID_FOR
|
static |
◆ SAML_POST_BINDING
|
static |
◆ SAML_REDIRECT_BINDING
|
static |
◆ SAML_REQUEST_ID
|
static |
◆ SAML_SERVER_SIGNATURE_KEYINFO_KEY_NAME_TRANSFORMER
|
static |
◆ SAML_SINGLE_LOGOUT_SERVICE_URL_POST_ATTRIBUTE
|
static |
◆ SAML_SINGLE_LOGOUT_SERVICE_URL_REDIRECT_ATTRIBUTE
|
static |
◆ SAML_SOAP_BINDING
|
static |
◆ session
|
protected |
◆ uriInfo
|
protected |
このクラス詳解は次のファイルから抽出されました:
- D:/AppData/doxygen/keycloak/src/keycloak/src/main/java/org/keycloak/protocol/saml/SamlProtocol.java
