org.keycloak.adapters.KeycloakDeploymentBuilder 連携図

静的公開メンバ関数
static KeycloakDeployment	build (InputStream is)

static AdapterConfig	loadAdapterConfig (InputStream is)

static KeycloakDeployment	build (AdapterConfig adapterConfig)

限定公開メンバ関数
	KeycloakDeploymentBuilder ()

KeycloakDeployment	internalBuild (AdapterConfig adapterConfig)

限定公開変数類
KeycloakDeployment	deployment = new KeycloakDeployment()

静的非公開変数類
static final Logger	log = Logger.getLogger(KeycloakDeploymentBuilder.class)

詳解

著者: Bill Burke; Brad Culley; John D. Ament

バージョン

Revision: 1

構築子と解体子

◆ KeycloakDeploymentBuilder()

org.keycloak.adapters.KeycloakDeploymentBuilder.KeycloakDeploymentBuilder ( )

inlineprotected

50 {

51 }

関数詳解

◆ build() [1/2]

static KeycloakDeployment org.keycloak.adapters.KeycloakDeploymentBuilder.build ( InputStream is )

inlinestatic

                                                            {
         AdapterConfig adapterConfig = loadAdapterConfig(is);
         return new KeycloakDeploymentBuilder().internalBuild(adapterConfig);
     }

◆ build() [2/2]

static KeycloakDeployment org.keycloak.adapters.KeycloakDeploymentBuilder.build ( AdapterConfig adapterConfig )

inlinestatic

                                                                         {
         return new KeycloakDeploymentBuilder().internalBuild(adapterConfig);
     }

◆ internalBuild()

KeycloakDeployment org.keycloak.adapters.KeycloakDeploymentBuilder.internalBuild ( AdapterConfig adapterConfig )

inlineprotected

                                                                             {
         if (adapterConfig.getRealm() == null) throw new RuntimeException("Must set 'realm' in config");
         deployment.setRealm(adapterConfig.getRealm());
         String resource = adapterConfig.getResource();
         if (resource == null) throw new RuntimeException("Must set 'resource' in config");
         deployment.setResourceName(resource);
 
         String realmKeyPem = adapterConfig.getRealmKey();
         if (realmKeyPem != null) {
             PublicKey realmKey;
             try {
                 realmKey = PemUtils.decodePublicKey(realmKeyPem);
                 HardcodedPublicKeyLocator pkLocator = new HardcodedPublicKeyLocator(realmKey);
                 deployment.setPublicKeyLocator(pkLocator);
             } catch (Exception e) {
                 throw new RuntimeException(e);
             }
         } else {
             JWKPublicKeyLocator pkLocator = new JWKPublicKeyLocator();
             deployment.setPublicKeyLocator(pkLocator);
         }
 
         if (adapterConfig.getSslRequired() != null) {
             deployment.setSslRequired(SslRequired.valueOf(adapterConfig.getSslRequired().toUpperCase()));
         } else {
             deployment.setSslRequired(SslRequired.EXTERNAL);
         }
 
         if (adapterConfig.getConfidentialPort() != -1) {
             deployment.setConfidentialPort(adapterConfig.getConfidentialPort());
         }
 
         if (adapterConfig.getTokenStore() != null) {
             deployment.setTokenStore(TokenStore.valueOf(adapterConfig.getTokenStore().toUpperCase()));
         } else {
             deployment.setTokenStore(TokenStore.SESSION);
         }
         if (adapterConfig.getPrincipalAttribute() != null) deployment.setPrincipalAttribute(adapterConfig.getPrincipalAttribute());
 
         deployment.setResourceCredentials(adapterConfig.getCredentials());
         deployment.setClientAuthenticator(ClientCredentialsProviderUtils.bootstrapClientAuthenticator(deployment));
 
         deployment.setPublicClient(adapterConfig.isPublicClient());
         deployment.setUseResourceRoleMappings(adapterConfig.isUseResourceRoleMappings());
 
         deployment.setExposeToken(adapterConfig.isExposeToken());
 
         if (adapterConfig.isCors()) {
             deployment.setCors(true);
             deployment.setCorsMaxAge(adapterConfig.getCorsMaxAge());
             deployment.setCorsAllowedHeaders(adapterConfig.getCorsAllowedHeaders());
             deployment.setCorsAllowedMethods(adapterConfig.getCorsAllowedMethods());
             deployment.setCorsExposedHeaders(adapterConfig.getCorsExposedHeaders());
         }
 
         // https://tools.ietf.org/html/rfc7636
         if (adapterConfig.isPkce()) {
             deployment.setPkce(true);
         }
 
         deployment.setBearerOnly(adapterConfig.isBearerOnly());
         deployment.setAutodetectBearerOnly(adapterConfig.isAutodetectBearerOnly());
         deployment.setEnableBasicAuth(adapterConfig.isEnableBasicAuth());
         deployment.setAlwaysRefreshToken(adapterConfig.isAlwaysRefreshToken());
         deployment.setRegisterNodeAtStartup(adapterConfig.isRegisterNodeAtStartup());
         deployment.setRegisterNodePeriod(adapterConfig.getRegisterNodePeriod());
         deployment.setTokenMinimumTimeToLive(adapterConfig.getTokenMinimumTimeToLive());
         deployment.setMinTimeBetweenJwksRequests(adapterConfig.getMinTimeBetweenJwksRequests());
         deployment.setPublicKeyCacheTtl(adapterConfig.getPublicKeyCacheTtl());
         deployment.setIgnoreOAuthQueryParameter(adapterConfig.isIgnoreOAuthQueryParameter());
         deployment.setRewriteRedirectRules(adapterConfig.getRedirectRewriteRules());
 
         if (realmKeyPem == null && adapterConfig.isBearerOnly() && adapterConfig.getAuthServerUrl() == null) {
             throw new IllegalArgumentException("For bearer auth, you must set the realm-public-key or auth-server-url");
         }
         if (realmKeyPem == null || !deployment.isBearerOnly() || deployment.isEnableBasicAuth() || deployment.isRegisterNodeAtStartup() || deployment.getRegisterNodePeriod() != -1) {
             deployment.setClient(new HttpClientBuilder().build(adapterConfig));
         }
         if (adapterConfig.getAuthServerUrl() == null && (!deployment.isBearerOnly() || realmKeyPem == null)) {
             throw new RuntimeException("You must specify auth-server-url");
         }
         deployment.setAuthServerBaseUrl(adapterConfig);
         if (adapterConfig.getTurnOffChangeSessionIdOnLogin() != null) {
             deployment.setTurnOffChangeSessionIdOnLogin(adapterConfig.getTurnOffChangeSessionIdOnLogin());
         }
 
         PolicyEnforcerConfig policyEnforcerConfig = adapterConfig.getPolicyEnforcerConfig();
 
         if (policyEnforcerConfig != null) {
             deployment.setPolicyEnforcer(new PolicyEnforcer(deployment, adapterConfig));
         }
 
         log.debug("Use authServerUrl: " + deployment.getAuthServerBaseUrl() + ", tokenUrl: " + deployment.getTokenUrl() + ", relativeUrls: " + deployment.getRelativeUrls());
         return deployment;
     }

◆ loadAdapterConfig()

static AdapterConfig org.keycloak.adapters.KeycloakDeploymentBuilder.loadAdapterConfig ( InputStream is )

inlinestatic

                                                                   {
         ObjectMapper mapper = new ObjectMapper(new SystemPropertiesJsonParserFactory());
         mapper.setSerializationInclusion(JsonInclude.Include.NON_DEFAULT);
         AdapterConfig adapterConfig;
         try {
             adapterConfig = mapper.readValue(is, AdapterConfig.class);
         } catch (IOException e) {
             throw new RuntimeException(e);
         }
         return adapterConfig;
     }

メンバ詳解

◆ deployment

KeycloakDeployment org.keycloak.adapters.KeycloakDeploymentBuilder.deployment = new KeycloakDeployment()

protected

◆ log

final Logger org.keycloak.adapters.KeycloakDeploymentBuilder.log = Logger.getLogger(KeycloakDeploymentBuilder.class)

staticprivate

このクラス詳解は次のファイルから抽出されました:

D:/AppData/OpenId/keycloak/doxygen/src/adapters/oidc/adapter-core/src/main/java/org/keycloak/adapters/KeycloakDeploymentBuilder.java

静的公開メンバ関数

限定公開メンバ関数

限定公開変数類

静的非公開変数類

詳解

構築子と解体子

◆ KeycloakDeploymentBuilder()

関数詳解

◆ build() [1/2]

◆ build() [2/2]

◆ internalBuild()

◆ loadAdapterConfig()

メンバ詳解

◆ deployment

◆ log