keycloak-service
公開メンバ関数 | 限定公開メンバ関数 | 限定公開変数類 | 非公開メンバ関数 | 非公開変数類 | 全メンバ一覧
org.keycloak.authorization.admin.PolicyResourceService クラス
org.keycloak.authorization.admin.PolicyResourceService の継承関係図
Inheritance graph
org.keycloak.authorization.admin.PolicyResourceService 連携図
Collaboration graph

公開メンバ関数

 PolicyResourceService (Policy policy, ResourceServer resourceServer, AuthorizationProvider authorization, AdminPermissionEvaluator auth, AdminEventBuilder adminEvent)
 
Response update (String payload)
 
Response delete ()
 
Response findById ()
 
Response getDependentPolicies ()
 
Response getScopes ()
 
Response getResources ()
 
Response getAssociatedPolicies ()
 

限定公開メンバ関数

AbstractPolicyRepresentation toRepresentation (Policy policy, AuthorizationProvider authorization)
 
AbstractPolicyRepresentation doCreateRepresentation (String payload)
 
Policy getPolicy ()
 

限定公開変数類

final ResourceServer resourceServer
 
final AuthorizationProvider authorization
 
final AdminPermissionEvaluator auth
 

非公開メンバ関数

PolicyProviderFactory getProviderFactory (String policyType)
 
void audit (AbstractPolicyRepresentation policy, OperationType operation)
 

非公開変数類

KeycloakSession session
 
final Policy policy
 
final AdminEventBuilder adminEvent
 

詳解

著者
Pedro Igor

構築子と解体子

◆ PolicyResourceService()

org.keycloak.authorization.admin.PolicyResourceService.PolicyResourceService ( Policy  policy,
ResourceServer  resourceServer,
AuthorizationProvider  authorization,
AdminPermissionEvaluator  auth,
AdminEventBuilder  adminEvent 
)
inline
67  {
68  this.policy = policy;
69  this.resourceServer = resourceServer;
70  this.authorization = authorization;
71  this.auth = auth;
72  this.adminEvent = adminEvent.resource(ResourceType.AUTHORIZATION_POLICY);
73  }
org.keycloak.authorization.admin.PolicyResourceService.adminEvent
final AdminEventBuilder adminEvent
Definition: PolicyResourceService.java:65
org.keycloak.authorization.admin.PolicyResourceService.resourceServer
final ResourceServer resourceServer
Definition: PolicyResourceService.java:62
org.keycloak.authorization.admin.PolicyResourceService.authorization
final AuthorizationProvider authorization
Definition: PolicyResourceService.java:63
org.keycloak.authorization.admin.PolicyResourceService.policy
final Policy policy
Definition: PolicyResourceService.java:61
org.keycloak.services.resources.admin.AdminEventBuilder.resource
AdminEventBuilder resource(ResourceType resourceType)
Definition: AdminEventBuilder.java:118
org.keycloak.authorization.admin.PolicyResourceService.auth
final AdminPermissionEvaluator auth
Definition: PolicyResourceService.java:64

関数詳解

◆ audit()

void org.keycloak.authorization.admin.PolicyResourceService.audit ( AbstractPolicyRepresentation  policy,
OperationType  operation 
)
inlineprivate
261  {
262  if (authorization.getRealm().isAdminEventsEnabled()) {
263  adminEvent.operation(operation).resourcePath(session.getContext().getUri()).representation(policy).success();
264  }
265  }
org.keycloak.authorization.admin.PolicyResourceService.adminEvent
final AdminEventBuilder adminEvent
Definition: PolicyResourceService.java:65
org.keycloak.authorization.admin.PolicyResourceService.authorization
final AuthorizationProvider authorization
Definition: PolicyResourceService.java:63
org.keycloak.authorization.admin.PolicyResourceService.policy
final Policy policy
Definition: PolicyResourceService.java:61
org.keycloak.services.resources.admin.AdminEventBuilder.operation
AdminEventBuilder operation(OperationType operationType)
Definition: AdminEventBuilder.java:113
org.keycloak.authorization.admin.PolicyResourceService.session
KeycloakSession session
Definition: PolicyResourceService.java:60
org.keycloak.services.resources.admin.AdminEventBuilder.success
void success()
Definition: AdminEventBuilder.java:226
org.keycloak.services.resources.admin.AdminEventBuilder.resourcePath
AdminEventBuilder resourcePath(String... pathElements)
Definition: AdminEventBuilder.java:171

◆ delete()

Response org.keycloak.authorization.admin.PolicyResourceService.delete ( )
inline
101  {
102  if (auth != null) {
103  this.auth.realm().requireManageAuthorization();
104  }
105 
106  if (policy == null) {
107  return Response.status(Status.NOT_FOUND).build();
108  }
109 
110  StoreFactory storeFactory = authorization.getStoreFactory();
111  PolicyStore policyStore = storeFactory.getPolicyStore();
112  PolicyProviderFactory resource = getProviderFactory(policy.getType());
113 
114  resource.onRemove(policy, authorization);
115 
116  policyStore.delete(policy.getId());
117 
118  if (authorization.getRealm().isAdminEventsEnabled()) {
119  audit(toRepresentation(policy, authorization), OperationType.DELETE);
120  }
121 
122  return Response.noContent().build();
123  }
org.keycloak.authorization.admin.PolicyResourceService.getProviderFactory
PolicyProviderFactory getProviderFactory(String policyType)
Definition: PolicyResourceService.java:253
org.keycloak.authorization.admin.PolicyResourceService.authorization
final AuthorizationProvider authorization
Definition: PolicyResourceService.java:63
org.keycloak.authorization.admin.PolicyResourceService.policy
final Policy policy
Definition: PolicyResourceService.java:61
org.keycloak.authorization.admin.PolicyResourceService.toRepresentation
AbstractPolicyRepresentation toRepresentation(Policy policy, AuthorizationProvider authorization)
Definition: PolicyResourceService.java:140
org.keycloak.authorization.admin.PolicyResourceService.auth
final AdminPermissionEvaluator auth
Definition: PolicyResourceService.java:64
org.keycloak.authorization.admin.PolicyResourceService.audit
void audit(AbstractPolicyRepresentation policy, OperationType operation)
Definition: PolicyResourceService.java:261

◆ doCreateRepresentation()

AbstractPolicyRepresentation org.keycloak.authorization.admin.PolicyResourceService.doCreateRepresentation ( String  payload)
inlineprotected
241  {
242  PolicyRepresentation representation;
243 
244  try {
245  representation = JsonSerialization.readValue(payload, PolicyRepresentation.class);
246  } catch (IOException cause) {
247  throw new RuntimeException("Failed to deserialize representation", cause);
248  }
249 
250  return representation;
251  }

◆ findById()

Response org.keycloak.authorization.admin.PolicyResourceService.findById ( )
inline
128  {
129  if (auth != null) {
130  this.auth.realm().requireViewAuthorization();
131  }
132 
133  if (policy == null) {
134  return Response.status(Status.NOT_FOUND).build();
135  }
136 
137  return Response.ok(toRepresentation(policy, authorization)).build();
138  }
org.keycloak.authorization.admin.PolicyResourceService.authorization
final AuthorizationProvider authorization
Definition: PolicyResourceService.java:63
org.keycloak.authorization.admin.PolicyResourceService.policy
final Policy policy
Definition: PolicyResourceService.java:61
org.keycloak.authorization.admin.PolicyResourceService.toRepresentation
AbstractPolicyRepresentation toRepresentation(Policy policy, AuthorizationProvider authorization)
Definition: PolicyResourceService.java:140
org.keycloak.authorization.admin.PolicyResourceService.auth
final AdminPermissionEvaluator auth
Definition: PolicyResourceService.java:64

◆ getAssociatedPolicies()

Response org.keycloak.authorization.admin.PolicyResourceService.getAssociatedPolicies ( )
inline
220  {
221  if (auth != null) {
222  this.auth.realm().requireViewAuthorization();
223  }
224 
225  if (policy == null) {
226  return Response.status(Status.NOT_FOUND).build();
227  }
228 
229  return Response.ok(policy.getAssociatedPolicies().stream().map(policy -> {
230  PolicyRepresentation representation1 = new PolicyRepresentation();
231 
232  representation1.setId(policy.getId());
233  representation1.setName(policy.getName());
234  representation1.setType(policy.getType());
235  representation1.setDescription(policy.getDescription());
236 
237  return representation1;
238  }).collect(Collectors.toList())).build();
239  }
org.keycloak.authorization.admin.PolicyResourceService.policy
final Policy policy
Definition: PolicyResourceService.java:61
org.keycloak.authorization.admin.PolicyResourceService.auth
final AdminPermissionEvaluator auth
Definition: PolicyResourceService.java:64

◆ getDependentPolicies()

Response org.keycloak.authorization.admin.PolicyResourceService.getDependentPolicies ( )
inline
148  {
149  if (auth != null) {
150  this.auth.realm().requireViewAuthorization();
151  }
152 
153  if (policy == null) {
154  return Response.status(Status.NOT_FOUND).build();
155  }
156 
157  List<Policy> policies = authorization.getStoreFactory().getPolicyStore().findDependentPolicies(policy.getId(), resourceServer.getId());
158 
159  return Response.ok(policies.stream().map(policy -> {
160  PolicyRepresentation representation1 = new PolicyRepresentation();
161 
162  representation1.setId(policy.getId());
163  representation1.setName(policy.getName());
164  representation1.setType(policy.getType());
165 
166  return representation1;
167  }).collect(Collectors.toList())).build();
168  }
org.keycloak.authorization.admin.PolicyResourceService.resourceServer
final ResourceServer resourceServer
Definition: PolicyResourceService.java:62
org.keycloak.authorization.admin.PolicyResourceService.authorization
final AuthorizationProvider authorization
Definition: PolicyResourceService.java:63
org.keycloak.authorization.admin.PolicyResourceService.policy
final Policy policy
Definition: PolicyResourceService.java:61
org.keycloak.authorization.admin.PolicyResourceService.auth
final AdminPermissionEvaluator auth
Definition: PolicyResourceService.java:64

◆ getPolicy()

Policy org.keycloak.authorization.admin.PolicyResourceService.getPolicy ( )
inlineprotected
257  {
258  return policy;
259  }
org.keycloak.authorization.admin.PolicyResourceService.policy
final Policy policy
Definition: PolicyResourceService.java:61

◆ getProviderFactory()

PolicyProviderFactory org.keycloak.authorization.admin.PolicyResourceService.getProviderFactory ( String  policyType)
inlineprivate
253  {
254  return authorization.getProviderFactory(policyType);
255  }
org.keycloak.authorization.admin.PolicyResourceService.authorization
final AuthorizationProvider authorization
Definition: PolicyResourceService.java:63

◆ getResources()

Response org.keycloak.authorization.admin.PolicyResourceService.getResources ( )
inline
197  {
198  if (auth != null) {
199  this.auth.realm().requireViewAuthorization();
200  }
201 
202  if (policy == null) {
203  return Response.status(Status.NOT_FOUND).build();
204  }
205 
206  return Response.ok(policy.getResources().stream().map(resource -> {
207  ResourceRepresentation representation = new ResourceRepresentation();
208 
209  representation.setId(resource.getId());
210  representation.setName(resource.getName());
211 
212  return representation;
213  }).collect(Collectors.toList())).build();
214  }
org.keycloak.authorization.admin.PolicyResourceService.policy
final Policy policy
Definition: PolicyResourceService.java:61
org.keycloak.authorization.admin.PolicyResourceService.auth
final AdminPermissionEvaluator auth
Definition: PolicyResourceService.java:64

◆ getScopes()

Response org.keycloak.authorization.admin.PolicyResourceService.getScopes ( )
inline
174  {
175  if (auth != null) {
176  this.auth.realm().requireViewAuthorization();
177  }
178 
179  if (policy == null) {
180  return Response.status(Status.NOT_FOUND).build();
181  }
182 
183  return Response.ok(policy.getScopes().stream().map(scope -> {
184  ScopeRepresentation representation = new ScopeRepresentation();
185 
186  representation.setId(scope.getId());
187  representation.setName(scope.getName());
188 
189  return representation;
190  }).collect(Collectors.toList())).build();
191  }
org.keycloak.authorization.admin.PolicyResourceService.policy
final Policy policy
Definition: PolicyResourceService.java:61
org.keycloak.authorization.admin.PolicyResourceService.auth
final AdminPermissionEvaluator auth
Definition: PolicyResourceService.java:64

◆ toRepresentation()

AbstractPolicyRepresentation org.keycloak.authorization.admin.PolicyResourceService.toRepresentation ( Policy  policy,
AuthorizationProvider  authorization 
)
inlineprotected
140  {
141  return ModelToRepresentation.toRepresentation(policy, authorization, true, false);
142  }
org.keycloak.authorization.admin.PolicyResourceService.authorization
final AuthorizationProvider authorization
Definition: PolicyResourceService.java:63
org.keycloak.authorization.admin.PolicyResourceService.policy
final Policy policy
Definition: PolicyResourceService.java:61

◆ update()

Response org.keycloak.authorization.admin.PolicyResourceService.update ( String  payload)
inline
79  {
80  if (auth != null) {
81  this.auth.realm().requireManageAuthorization();
82  }
83 
84  AbstractPolicyRepresentation representation = doCreateRepresentation(payload);
85 
86  if (policy == null) {
87  return Response.status(Status.NOT_FOUND).build();
88  }
89 
90  representation.setId(policy.getId());
91 
92  RepresentationToModel.toModel(representation, authorization, policy);
93 
94 
95  audit(representation, OperationType.UPDATE);
96 
97  return Response.status(Status.CREATED).build();
98  }
org.keycloak.authorization.admin.PolicyResourceService.authorization
final AuthorizationProvider authorization
Definition: PolicyResourceService.java:63
org.keycloak.authorization.admin.PolicyResourceService.policy
final Policy policy
Definition: PolicyResourceService.java:61
org.keycloak.authorization.admin.PolicyResourceService.auth
final AdminPermissionEvaluator auth
Definition: PolicyResourceService.java:64
org.keycloak.authorization.admin.PolicyResourceService.doCreateRepresentation
AbstractPolicyRepresentation doCreateRepresentation(String payload)
Definition: PolicyResourceService.java:241
org.keycloak.authorization.admin.PolicyResourceService.audit
void audit(AbstractPolicyRepresentation policy, OperationType operation)
Definition: PolicyResourceService.java:261

メンバ詳解

◆ adminEvent

final AdminEventBuilder org.keycloak.authorization.admin.PolicyResourceService.adminEvent
private

◆ auth

final AdminPermissionEvaluator org.keycloak.authorization.admin.PolicyResourceService.auth
protected

◆ authorization

final AuthorizationProvider org.keycloak.authorization.admin.PolicyResourceService.authorization
protected

◆ policy

final Policy org.keycloak.authorization.admin.PolicyResourceService.policy
private

◆ resourceServer

final ResourceServer org.keycloak.authorization.admin.PolicyResourceService.resourceServer
protected

◆ session

KeycloakSession org.keycloak.authorization.admin.PolicyResourceService.session
private
このクラス詳解は次のファイルから抽出されました:
2018年11月18日(日) 14時00分07秒作成 - keycloak-service / 構成:   doxygen 1.8.13