org.keycloak.authorization.jpa.store.JPAPermissionTicketStore の継承関係図

org.keycloak.authorization.jpa.store.JPAPermissionTicketStore 連携図

公開メンバ関数
	JPAPermissionTicketStore (EntityManager entityManager, AuthorizationProvider provider)

PermissionTicket	create (String resourceId, String scopeId, String requester, ResourceServer resourceServer)

void	delete (String id)

PermissionTicket	findById (String id, String resourceServerId)

List< PermissionTicket >	findByResourceServer (final String resourceServerId)

List< PermissionTicket >	findByResource (final String resourceId, String resourceServerId)

List< PermissionTicket >	findByScope (String scopeId, String resourceServerId)

List< PermissionTicket >	find (Map< String, String > attributes, String resourceServerId, int firstResult, int maxResult)

List< PermissionTicket >	findGranted (String userId, String resourceServerId)

List< PermissionTicket >	findByOwner (String owner, String resourceServerId)

非公開変数類
final EntityManager	entityManager

final AuthorizationProvider	provider

詳解

著者: Pedro Igor

構築子と解体子

◆ JPAPermissionTicketStore()

org.keycloak.authorization.jpa.store.JPAPermissionTicketStore.JPAPermissionTicketStore	(	EntityManager	entityManager,
		AuthorizationProvider	provider
	)

inline

                                                                                                  {
         this.entityManager = entityManager;
         this.provider = provider;
     }

関数詳解

◆ create()

PermissionTicket org.keycloak.authorization.jpa.store.JPAPermissionTicketStore.create	(	String	resourceId,
		String	scopeId,
		String	requester,
		ResourceServer	resourceServer
	)

inline

org.keycloak.authorization.store.PermissionTicketStoreを実装しています。

                                                                                                                        {
         PermissionTicketEntity entity = new PermissionTicketEntity();
 
         entity.setId(KeycloakModelUtils.generateId());
         entity.setResource(ResourceAdapter.toEntity(entityManager, provider.getStoreFactory().getResourceStore().findById(resourceId, resourceServer.getId())));
         entity.setRequester(requester);
         entity.setCreatedTimestamp(System.currentTimeMillis());
 
         if (scopeId != null) {
             entity.setScope(ScopeAdapter.toEntity(entityManager, provider.getStoreFactory().getScopeStore().findById(scopeId, resourceServer.getId())));
         }
 
         entity.setOwner(entity.getResource().getOwner());
         entity.setResourceServer(ResourceServerAdapter.toEntity(entityManager, resourceServer));
 
         this.entityManager.persist(entity);
         this.entityManager.flush();
         PermissionTicket model = new PermissionTicketAdapter(entity, entityManager, provider.getStoreFactory());
         return model;
     }

◆ delete()

void org.keycloak.authorization.jpa.store.JPAPermissionTicketStore.delete ( String id )

inline

org.keycloak.authorization.store.PermissionTicketStoreを実装しています。

                                   {
         PermissionTicketEntity policy = entityManager.find(PermissionTicketEntity.class, id);
         if (policy != null) {
             this.entityManager.remove(policy);
         }
     }

◆ find()

List<PermissionTicket> org.keycloak.authorization.jpa.store.JPAPermissionTicketStore.find	(	Map< String, String >	attributes,
		String	resourceServerId,
		int	firstResult,
		int	maxResult
	)

inline

org.keycloak.authorization.store.PermissionTicketStoreを実装しています。

                                                                                                                                 {
         CriteriaBuilder builder = entityManager.getCriteriaBuilder();
         CriteriaQuery<PermissionTicketEntity> querybuilder = builder.createQuery(PermissionTicketEntity.class);
         Root<PermissionTicketEntity> root = querybuilder.from(PermissionTicketEntity.class);
 
         querybuilder.select(root.get("id"));
 
         List<Predicate> predicates = new ArrayList();
 
         if (resourceServerId != null) {
             predicates.add(builder.equal(root.get("resourceServer").get("id"), resourceServerId));
         }
 
         attributes.forEach((name, value) -> {
             if (PermissionTicket.ID.equals(name)) {
                 predicates.add(root.get(name).in(value));
             } else if (PermissionTicket.SCOPE.equals(name)) {
                 predicates.add(root.join("scope").get("id").in(value));
             } else if (PermissionTicket.SCOPE_IS_NULL.equals(name)) {
                 if (Boolean.valueOf(value)) {
                     predicates.add(builder.isNull(root.get("scope")));
                 } else {
                     predicates.add(builder.isNotNull(root.get("scope")));
                 }
             } else if (PermissionTicket.RESOURCE.equals(name)) {
                 predicates.add(root.join("resource").get("id").in(value));
             } else if (PermissionTicket.OWNER.equals(name)) {
                 predicates.add(builder.equal(root.get("owner"), value));
             } else if (PermissionTicket.REQUESTER.equals(name)) {
                 predicates.add(builder.equal(root.get("requester"), value));
             } else if (PermissionTicket.GRANTED.equals(name)) {
                 if (Boolean.valueOf(value)) {
                     predicates.add(builder.isNotNull(root.get("grantedTimestamp")));
                 } else {
                     predicates.add(builder.isNull(root.get("grantedTimestamp")));
                 }
             } else if (PermissionTicket.REQUESTER_IS_NULL.equals(name)) {
                 predicates.add(builder.isNull(root.get("requester")));
             } else if (PermissionTicket.POLICY_IS_NOT_NULL.equals(name)) {
                 predicates.add(builder.isNotNull(root.get("policy")));
             } else if (PermissionTicket.POLICY.equals(name)) {
                 predicates.add(root.join("policy").get("id").in(value));
             } else {
                 throw new RuntimeException("Unsupported filter [" + name + "]");
             }
         });
 
         querybuilder.where(predicates.toArray(new Predicate[predicates.size()])).orderBy(builder.asc(root.get("resource").get("id")));
 
         Query query = entityManager.createQuery(querybuilder);
 
         if (firstResult != -1) {
             query.setFirstResult(firstResult);
         }
 
         if (maxResult != -1) {
             query.setMaxResults(maxResult);
         }
 
         List<String> result = query.getResultList();
         List<PermissionTicket> list = new LinkedList<>();
         PermissionTicketStore ticketStore = provider.getStoreFactory().getPermissionTicketStore();
 
         for (String id : result) {
             PermissionTicket ticket = ticketStore.findById(id, resourceServerId);
             if (Objects.nonNull(ticket)) {
                 list.add(ticket);
             }
         }
 
         return list;
     }

◆ findById()

PermissionTicket org.keycloak.authorization.jpa.store.JPAPermissionTicketStore.findById	(	String	id,
		String	resourceServerId
	)

inline

org.keycloak.authorization.store.PermissionTicketStoreを実装しています。

                                                                          {
         if (id == null) {
             return null;
         }
 
         PermissionTicketEntity entity = entityManager.find(PermissionTicketEntity.class, id);
         if (entity == null) return null;
 
         return new PermissionTicketAdapter(entity, entityManager, provider.getStoreFactory());
     }

◆ findByOwner()

List<PermissionTicket> org.keycloak.authorization.jpa.store.JPAPermissionTicketStore.findByOwner	(	String	owner,
		String	resourceServerId
	)

inline

org.keycloak.authorization.store.PermissionTicketStoreを実装しています。

                                                                                      {
         TypedQuery<String> query = entityManager.createNamedQuery("findPolicyIdByType", String.class);
 
         query.setFlushMode(FlushModeType.COMMIT);
         query.setParameter("serverId", resourceServerId);
         query.setParameter("owner", owner);
 
         List<String> result = query.getResultList();
         List<PermissionTicket> list = new LinkedList<>();
         PermissionTicketStore ticketStore = provider.getStoreFactory().getPermissionTicketStore();
 
         for (String id : result) {
             PermissionTicket ticket = ticketStore.findById(id, resourceServerId);
             if (Objects.nonNull(ticket)) {
                 list.add(ticket);
             }
         }
 
         return list;
     }

◆ findByResource()

List<PermissionTicket> org.keycloak.authorization.jpa.store.JPAPermissionTicketStore.findByResource	(	final String	resourceId,
		String	resourceServerId
	)

inline

org.keycloak.authorization.store.PermissionTicketStoreを実装しています。

                                                                                                    {
         TypedQuery<String> query = entityManager.createNamedQuery("findPermissionIdByResource", String.class);
 
         query.setFlushMode(FlushModeType.COMMIT);
         query.setParameter("resourceId", resourceId);
         query.setParameter("serverId", resourceServerId);
 
         List<String> result = query.getResultList();
         List<PermissionTicket> list = new LinkedList<>();
         PermissionTicketStore ticketStore = provider.getStoreFactory().getPermissionTicketStore();
 
         for (String id : result) {
             PermissionTicket ticket = ticketStore.findById(id, resourceServerId);
             if (Objects.nonNull(ticket)) {
                 list.add(ticket);
             }
         }
 
         return list;
     }

◆ findByResourceServer()

List<PermissionTicket> org.keycloak.authorization.jpa.store.JPAPermissionTicketStore.findByResourceServer ( final String resourceServerId )

inline

org.keycloak.authorization.store.PermissionTicketStoreを実装しています。

                                                                                       {
         TypedQuery<String> query = entityManager.createNamedQuery("findPolicyIdByServerId", String.class);
 
         query.setParameter("serverId", resourceServerId);
 
         List<String> result = query.getResultList();
         List<PermissionTicket> list = new LinkedList<>();
         PermissionTicketStore ticketStore = provider.getStoreFactory().getPermissionTicketStore();
 
         for (String id : result) {
             PermissionTicket ticket = ticketStore.findById(id, resourceServerId);
             if (Objects.nonNull(ticket)) {
                 list.add(ticket);
             }
         }
 
         return list;
     }

◆ findByScope()

List<PermissionTicket> org.keycloak.authorization.jpa.store.JPAPermissionTicketStore.findByScope	(	String	scopeId,
		String	resourceServerId
	)

inline

org.keycloak.authorization.store.PermissionTicketStoreを実装しています。

                                                                                        {
         if (scopeId==null) {
             return Collections.emptyList();
         }
 
         // Use separate subquery to handle DB2 and MSSSQL
         TypedQuery<String> query = entityManager.createNamedQuery("findPermissionIdByScope", String.class);
 
         query.setFlushMode(FlushModeType.COMMIT);
         query.setParameter("scopeId", scopeId);
         query.setParameter("serverId", resourceServerId);
 
         List<String> result = query.getResultList();
         List<PermissionTicket> list = new LinkedList<>();
         PermissionTicketStore ticketStore = provider.getStoreFactory().getPermissionTicketStore();
 
         for (String id : result) {
             PermissionTicket ticket = ticketStore.findById(id, resourceServerId);
             if (Objects.nonNull(ticket)) {
                 list.add(ticket);
             }
         }
 
         return list;
     }

◆ findGranted()

List<PermissionTicket> org.keycloak.authorization.jpa.store.JPAPermissionTicketStore.findGranted	(	String	userId,
		String	resourceServerId
	)

inline

org.keycloak.authorization.store.PermissionTicketStoreを実装しています。

                                                                                       {
         HashMap<String, String> filters = new HashMap<>();
 
         filters.put(PermissionTicket.GRANTED, Boolean.TRUE.toString());
         filters.put(PermissionTicket.REQUESTER, userId);
 
         return find(filters, resourceServerId, -1, -1);
     }

メンバ詳解

◆ entityManager

final EntityManager org.keycloak.authorization.jpa.store.JPAPermissionTicketStore.entityManager

private

◆ provider

final AuthorizationProvider org.keycloak.authorization.jpa.store.JPAPermissionTicketStore.provider

private

このクラス詳解は次のファイルから抽出されました:

D:/AppData/doxygen/keycloak/src/keycloak/src/main/java/org/keycloak/authorization/jpa/store/JPAPermissionTicketStore.java

公開メンバ関数

非公開変数類

詳解

構築子と解体子

◆ JPAPermissionTicketStore()

関数詳解

◆ create()

◆ delete()

◆ find()

◆ findById()

◆ findByOwner()

◆ findByResource()

◆ findByResourceServer()

◆ findByScope()

◆ findGranted()

メンバ詳解

◆ entityManager

◆ provider