org.keycloak.exportimport.util.ExportUtils 連携図

静的公開メンバ関数
static RealmRepresentation	exportRealm (KeycloakSession session, RealmModel realm, boolean includeUsers, boolean internal)

static RealmRepresentation	exportRealm (KeycloakSession session, RealmModel realm, ExportOptions options, boolean internal)

static MultivaluedHashMap< String, ComponentExportRepresentation >	exportComponents (RealmModel realm, String parentId)

static ClientRepresentation	exportClient (KeycloakSession session, ClientModel client)

static ResourceServerRepresentation	exportAuthorizationSettings (KeycloakSession session, ClientModel client)

static List< RoleRepresentation >	exportRoles (Collection< RoleModel > roles)

static List< String >	getRoleNames (Collection< RoleModel > roles)

static RoleRepresentation	exportRole (RoleModel role)

static UserRepresentation	exportUser (KeycloakSession session, RealmModel realm, UserModel user, ExportOptions options)

static FederatedIdentityRepresentation	exportSocialLink (FederatedIdentityModel socialLink)

static CredentialRepresentation	exportCredential (CredentialModel userCred)

static void	exportUsersToStream (KeycloakSession session, RealmModel realm, List< UserModel > usersToExport, ObjectMapper mapper, OutputStream os) throws IOException

static void	exportUsersToStream (KeycloakSession session, RealmModel realm, List< UserModel > usersToExport, ObjectMapper mapper, OutputStream os, ExportOptions options) throws IOException

static void	exportFederatedUsersToStream (KeycloakSession session, RealmModel realm, List< String > usersToExport, ObjectMapper mapper, OutputStream os) throws IOException

static void	exportFederatedUsersToStream (KeycloakSession session, RealmModel realm, List< String > usersToExport, ObjectMapper mapper, OutputStream os, ExportOptions options) throws IOException

static UserRepresentation	exportFederatedUser (KeycloakSession session, RealmModel realm, String id, ExportOptions options)

静的非公開メンバ関数
static PolicyRepresentation	createPolicyRepresentation (AuthorizationProvider authorizationProvider, Policy policy)

詳解

著者: Marek Posolda

関数詳解

◆ createPolicyRepresentation()

static PolicyRepresentation org.keycloak.exportimport.util.ExportUtils.createPolicyRepresentation	(	AuthorizationProvider	authorizationProvider,
		Policy	policy
	)

inlinestaticprivate

                                                                                                                                {
         try {
             PolicyRepresentation rep = toRepresentation(policy, authorizationProvider, true, true);
 
             Map<String, String> config = new HashMap<>(rep.getConfig());
 
             rep.setConfig(config);
 
             Set<Scope> scopes = policy.getScopes();
 
             if (!scopes.isEmpty()) {
                 List<String> scopeNames = scopes.stream().map(Scope::getName).collect(Collectors.toList());
                 config.put("scopes", JsonSerialization.writeValueAsString(scopeNames));
             }
 
             Set<Resource> policyResources = policy.getResources();
 
             if (!policyResources.isEmpty()) {
                 List<String> resourceNames = policyResources.stream().map(Resource::getName).collect(Collectors.toList());
                 config.put("resources", JsonSerialization.writeValueAsString(resourceNames));
             }
 
             Set<Policy> associatedPolicies = policy.getAssociatedPolicies();
 
             if (!associatedPolicies.isEmpty()) {
                 config.put("applyPolicies", JsonSerialization.writeValueAsString(associatedPolicies.stream().map(associated -> associated.getName()).collect(Collectors.toList())));
             }
 
             return rep;
         } catch (Exception e) {
             throw new RuntimeException("Error while exporting policy [" + policy.getName() + "].", e);
         }
     }

◆ exportAuthorizationSettings()

static ResourceServerRepresentation org.keycloak.exportimport.util.ExportUtils.exportAuthorizationSettings	(	KeycloakSession	session,
		ClientModel	client
	)

inlinestatic

                                                                                                                         {
         AuthorizationProviderFactory providerFactory = (AuthorizationProviderFactory) session.getKeycloakSessionFactory().getProviderFactory(AuthorizationProvider.class);
         AuthorizationProvider authorization = providerFactory.create(session, client.getRealm());
         StoreFactory storeFactory = authorization.getStoreFactory();
         ResourceServer settingsModel = authorization.getStoreFactory().getResourceServerStore().findById(client.getId());
 
         if (settingsModel == null) {
             return null;
         }
 
         ResourceServerRepresentation representation = toRepresentation(settingsModel, client);
 
         representation.setId(null);
         representation.setName(null);
         representation.setClientId(null);
 
         List<ResourceRepresentation> resources = storeFactory.getResourceStore().findByResourceServer(settingsModel.getId())
                 .stream().map(resource -> {
                     ResourceRepresentation rep = toRepresentation(resource, settingsModel, authorization);
 
                     if (rep.getOwner().getId().equals(settingsModel.getId())) {
                         rep.setOwner((ResourceOwnerRepresentation) null);
                     } else {
                         rep.getOwner().setId(null);
                     }
                     rep.getScopes().forEach(scopeRepresentation -> {
                         scopeRepresentation.setId(null);
                         scopeRepresentation.setIconUri(null);
                     });
 
                     return rep;
                 }).collect(Collectors.toList());
 
         representation.setResources(resources);
 
         List<PolicyRepresentation> policies = new ArrayList<>();
         PolicyStore policyStore = storeFactory.getPolicyStore();
 
         policies.addAll(policyStore.findByResourceServer(settingsModel.getId())
                 .stream().filter(policy -> !policy.getType().equals("resource") && !policy.getType().equals("scope") && policy.getOwner() == null)
                 .map(policy -> createPolicyRepresentation(authorization, policy)).collect(Collectors.toList()));
         policies.addAll(policyStore.findByResourceServer(settingsModel.getId())
                 .stream().filter(policy -> (policy.getType().equals("resource") || policy.getType().equals("scope") && policy.getOwner() == null))
                 .map(policy -> createPolicyRepresentation(authorization, policy)).collect(Collectors.toList()));
 
         representation.setPolicies(policies);
 
         List<ScopeRepresentation> scopes = storeFactory.getScopeStore().findByResourceServer(settingsModel.getId()).stream().map(scope -> {
             ScopeRepresentation rep = toRepresentation(scope);
 
             rep.setPolicies(null);
             rep.setResources(null);
 
             return rep;
         }).collect(Collectors.toList());
 
         representation.setScopes(scopes);
 
         return representation;
     }

◆ exportClient()

static ClientRepresentation org.keycloak.exportimport.util.ExportUtils.exportClient	(	KeycloakSession	session,
		ClientModel	client
	)

inlinestatic

Full export of application including claims and secret

引数

client

戻り値: full ApplicationRepresentation

                                                                                                  {
         ClientRepresentation clientRep = ModelToRepresentation.toRepresentation(client, session);
         clientRep.setSecret(client.getSecret());
         clientRep.setAuthorizationSettings(exportAuthorizationSettings(session,client));
         return clientRep;
     }

◆ exportComponents()

static MultivaluedHashMap<String, ComponentExportRepresentation> org.keycloak.exportimport.util.ExportUtils.exportComponents	(	RealmModel	realm,
		String	parentId
	)

inlinestatic

                                                                                                                                 {
         List<ComponentModel> componentList = realm.getComponents(parentId);
         MultivaluedHashMap<String, ComponentExportRepresentation> components = new MultivaluedHashMap<>();
         for (ComponentModel component : componentList) {
             ComponentExportRepresentation compRep = new ComponentExportRepresentation();
             compRep.setId(component.getId());
             compRep.setProviderId(component.getProviderId());
             compRep.setConfig(component.getConfig());
             compRep.setName(component.getName());
             compRep.setSubType(component.getSubType());
             compRep.setSubComponents(exportComponents(realm, component.getId()));
             components.add(component.getProviderType(), compRep);
         }
         return components;
     }

◆ exportCredential()

static CredentialRepresentation org.keycloak.exportimport.util.ExportUtils.exportCredential ( CredentialModel userCred )

inlinestatic

                                                                                       {
         CredentialRepresentation credRep = new CredentialRepresentation();
         credRep.setType(userCred.getType());
         credRep.setDevice(userCred.getDevice());
         credRep.setHashedSaltedValue(userCred.getValue());
         if (userCred.getSalt() != null) credRep.setSalt(Base64.encodeBytes(userCred.getSalt()));
         credRep.setHashIterations(userCred.getHashIterations());
         credRep.setCounter(userCred.getCounter());
         credRep.setAlgorithm(userCred.getAlgorithm());
         credRep.setDigits(userCred.getDigits());
         credRep.setCreatedDate(userCred.getCreatedDate());
         credRep.setConfig(userCred.getConfig());
         credRep.setPeriod(userCred.getPeriod());
         return credRep;
     }

◆ exportFederatedUser()

static UserRepresentation org.keycloak.exportimport.util.ExportUtils.exportFederatedUser	(	KeycloakSession	session,
		RealmModel	realm,
		String	id,
		ExportOptions	options
	)

inlinestatic

Full export of user data stored in federated storage (including role mappings and credentials)

引数

id

戻り値: fully exported user representation

                                                                                                                                       {
         UserRepresentation userRep = new UserRepresentation();
         userRep.setId(id);
         MultivaluedHashMap<String, String> attributes = session.userFederatedStorage().getAttributes(realm, id);
         if (attributes.size() > 0) {
             Map<String, List<String>> attrs = new HashMap<>();
             attrs.putAll(attributes);
             userRep.setAttributes(attrs);
         }
 
         Set<String> requiredActions = session.userFederatedStorage().getRequiredActions(realm, id);
         if (requiredActions.size() > 0) {
             List<String> actions = new LinkedList<>();
             actions.addAll(requiredActions);
             userRep.setRequiredActions(actions);
         }
 
 
         // Social links
         Set<FederatedIdentityModel> socialLinks = session.userFederatedStorage().getFederatedIdentities(id, realm);
         List<FederatedIdentityRepresentation> socialLinkReps = new ArrayList<FederatedIdentityRepresentation>();
         for (FederatedIdentityModel socialLink : socialLinks) {
             FederatedIdentityRepresentation socialLinkRep = exportSocialLink(socialLink);
             socialLinkReps.add(socialLinkRep);
         }
         if (socialLinkReps.size() > 0) {
             userRep.setFederatedIdentities(socialLinkReps);
         }
 
         // Role mappings
         if (options.isGroupsAndRolesIncluded()) {
             Set<RoleModel> roles = session.userFederatedStorage().getRoleMappings(realm, id);
             List<String> realmRoleNames = new ArrayList<>();
             Map<String, List<String>> clientRoleNames = new HashMap<>();
             for (RoleModel role : roles) {
                 if (role.getContainer() instanceof RealmModel) {
                     realmRoleNames.add(role.getName());
                 } else {
                     ClientModel client = (ClientModel) role.getContainer();
                     String clientId = client.getClientId();
                     List<String> currentClientRoles = clientRoleNames.get(clientId);
                     if (currentClientRoles == null) {
                         currentClientRoles = new ArrayList<>();
                         clientRoleNames.put(clientId, currentClientRoles);
                     }
 
                     currentClientRoles.add(role.getName());
                 }
             }
 
             if (realmRoleNames.size() > 0) {
                 userRep.setRealmRoles(realmRoleNames);
             }
             if (clientRoleNames.size() > 0) {
                 userRep.setClientRoles(clientRoleNames);
             }
         }
 
         // Credentials
         List<CredentialModel> creds = session.userFederatedStorage().getStoredCredentials(realm, id);
         List<CredentialRepresentation> credReps = new ArrayList<CredentialRepresentation>();
         for (CredentialModel cred : creds) {
             CredentialRepresentation credRep = exportCredential(cred);
             credReps.add(credRep);
         }
         userRep.setCredentials(credReps);
 
         // Grants
         List<UserConsentModel> consents = session.users().getConsents(realm, id);
         LinkedList<UserConsentRepresentation> consentReps = new LinkedList<UserConsentRepresentation>();
         for (UserConsentModel consent : consents) {
             UserConsentRepresentation consentRep = ModelToRepresentation.toRepresentation(consent);
             consentReps.add(consentRep);
         }
         if (consentReps.size() > 0) {
             userRep.setClientConsents(consentReps);
         }
 
         // Not Before
         int notBefore = session.userFederatedStorage().getNotBeforeOfUser(realm, userRep.getId());
         userRep.setNotBefore(notBefore);
 
         if (options.isGroupsAndRolesIncluded()) {
             List<String> groups = new LinkedList<>();
             for (GroupModel group : session.userFederatedStorage().getGroups(realm, id)) {
                 groups.add(ModelToRepresentation.buildGroupPath(group));
             }
             userRep.setGroups(groups);
         }
         return userRep;
     }

◆ exportFederatedUsersToStream() [1/2]

static void org.keycloak.exportimport.util.ExportUtils.exportFederatedUsersToStream	(	KeycloakSession	session,
		RealmModel	realm,
		List< String >	usersToExport,
		ObjectMapper	mapper,
		OutputStream	os
	)		throws IOException

inlinestatic

                                                                                                                                                                                     {
         exportFederatedUsersToStream(session, realm, usersToExport, mapper, os, new ExportOptions());
     }

◆ exportFederatedUsersToStream() [2/2]

static void org.keycloak.exportimport.util.ExportUtils.exportFederatedUsersToStream	(	KeycloakSession	session,
		RealmModel	realm,
		List< String >	usersToExport,
		ObjectMapper	mapper,
		OutputStream	os,
		ExportOptions	options
	)		throws IOException

inlinestatic

                                                                                                                                                                                                            {
         JsonFactory factory = mapper.getFactory();
         JsonGenerator generator = factory.createGenerator(os, JsonEncoding.UTF8);
         try {
             if (mapper.isEnabled(SerializationFeature.INDENT_OUTPUT)) {
                 generator.useDefaultPrettyPrinter();
             }
             generator.writeStartObject();
             generator.writeStringField("realm", realm.getName());
             // generator.writeStringField("strategy", strategy.toString());
             generator.writeFieldName("federatedUsers");
             generator.writeStartArray();
 
             for (String userId : usersToExport) {
                 UserRepresentation userRep = ExportUtils.exportFederatedUser(session, realm, userId, options);
                 generator.writeObject(userRep);
             }
 
             generator.writeEndArray();
             generator.writeEndObject();
         } finally {
             generator.close();
         }
     }

◆ exportRealm() [1/2]

static RealmRepresentation org.keycloak.exportimport.util.ExportUtils.exportRealm	(	KeycloakSession	session,
		RealmModel	realm,
		boolean	includeUsers,
		boolean	internal
	)

inlinestatic

                                                                                                                                      {
         ExportOptions opts = new ExportOptions(false, true, true);
         if (includeUsers) {
             opts.setUsersIncluded(true);
         }
         return exportRealm(session, realm, opts, internal);
     }

◆ exportRealm() [2/2]

static RealmRepresentation org.keycloak.exportimport.util.ExportUtils.exportRealm	(	KeycloakSession	session,
		RealmModel	realm,
		ExportOptions	options,
		boolean	internal
	)

inlinestatic

                                                                                                                                       {
         RealmRepresentation rep = ModelToRepresentation.toRepresentation(realm, internal);
         ModelToRepresentation.exportAuthenticationFlows(realm, rep);
         ModelToRepresentation.exportRequiredActions(realm, rep);
 
         // Project/product version
         rep.setKeycloakVersion(Version.VERSION);
 
         // Client Scopes
         List<ClientScopeModel> clientScopeModels = realm.getClientScopes();
         List<ClientScopeRepresentation> clientScopesReps = new ArrayList<>();
         for (ClientScopeModel app : clientScopeModels) {
             ClientScopeRepresentation clientRep = ModelToRepresentation.toRepresentation(app);
             clientScopesReps.add(clientRep);
         }
         rep.setClientScopes(clientScopesReps);
 
         List<String> defaultClientScopeNames = realm.getDefaultClientScopes(true).stream().map((ClientScopeModel clientScope) -> {
             return clientScope.getName();
         }).collect(Collectors.toList());
         rep.setDefaultDefaultClientScopes(defaultClientScopeNames);
 
         List<String> optionalClientScopeNames = realm.getDefaultClientScopes(false).stream().map((ClientScopeModel clientScope) -> {
             return clientScope.getName();
         }).collect(Collectors.toList());
         rep.setDefaultOptionalClientScopes(optionalClientScopeNames);
 
         // Clients
         List<ClientModel> clients = Collections.emptyList();
 
         if (options.isClientsIncluded()) {
             clients = realm.getClients();
             List<ClientRepresentation> clientReps = new ArrayList<>();
             for (ClientModel app : clients) {
                 ClientRepresentation clientRep = exportClient(session, app);
                 clientReps.add(clientRep);
             }
             rep.setClients(clientReps);
         }
 
         // Groups and Roles
         if (options.isGroupsAndRolesIncluded()) {
             ModelToRepresentation.exportGroups(realm, rep);
 
             List<RoleRepresentation> realmRoleReps = null;
             Map<String, List<RoleRepresentation>> clientRolesReps = new HashMap<>();
 
             Set<RoleModel> realmRoles = realm.getRoles();
             if (realmRoles != null && realmRoles.size() > 0) {
                 realmRoleReps = exportRoles(realmRoles);
             }
 
             RolesRepresentation rolesRep = new RolesRepresentation();
             if (realmRoleReps != null) {
                 rolesRep.setRealm(realmRoleReps);
             }
 
             if (options.isClientsIncluded()) {
                 for (ClientModel client : clients) {
                     Set<RoleModel> currentAppRoles = client.getRoles();
                     List<RoleRepresentation> currentAppRoleReps = exportRoles(currentAppRoles);
                     clientRolesReps.put(client.getClientId(), currentAppRoleReps);
                 }
                 if (clientRolesReps.size() > 0) {
                     rolesRep.setClient(clientRolesReps);
                 }
             }
             rep.setRoles(rolesRep);
         }
 
         // Scopes
         Map<String, List<ScopeMappingRepresentation>> clientScopeReps = new HashMap<>();
 
         if (options.isClientsIncluded()) {
             List<ClientModel> allClients = new ArrayList<>(clients);
 
             // Scopes of clients
             for (ClientModel client : allClients) {
                 Set<RoleModel> clientScopes = client.getScopeMappings();
                 ScopeMappingRepresentation scopeMappingRep = null;
                 for (RoleModel scope : clientScopes) {
                     if (scope.getContainer() instanceof RealmModel) {
                         if (scopeMappingRep == null) {
                             scopeMappingRep = rep.clientScopeMapping(client.getClientId());
                         }
                         scopeMappingRep.role(scope.getName());
                     } else {
                         ClientModel app = (ClientModel) scope.getContainer();
                         String appName = app.getClientId();
                         List<ScopeMappingRepresentation> currentAppScopes = clientScopeReps.get(appName);
                         if (currentAppScopes == null) {
                             currentAppScopes = new ArrayList<>();
                             clientScopeReps.put(appName, currentAppScopes);
                         }
 
                         ScopeMappingRepresentation currentClientScope = null;
                         for (ScopeMappingRepresentation scopeMapping : currentAppScopes) {
                             if (client.getClientId().equals(scopeMapping.getClient())) {
                                 currentClientScope = scopeMapping;
                                 break;
                             }
                         }
                         if (currentClientScope == null) {
                             currentClientScope = new ScopeMappingRepresentation();
                             currentClientScope.setClient(client.getClientId());
                             currentAppScopes.add(currentClientScope);
                         }
                         currentClientScope.role(scope.getName());
                     }
                 }
             }
         }
 
         // Scopes of client scopes
         for (ClientScopeModel clientScope : realm.getClientScopes()) {
             Set<RoleModel> clientScopes = clientScope.getScopeMappings();
             ScopeMappingRepresentation scopeMappingRep = null;
             for (RoleModel scope : clientScopes) {
                 if (scope.getContainer() instanceof RealmModel) {
                     if (scopeMappingRep == null) {
                         scopeMappingRep = rep.clientScopeScopeMapping(clientScope.getName());
                     }
                     scopeMappingRep.role(scope.getName());
                 } else {
                     ClientModel app = (ClientModel)scope.getContainer();
                     String appName = app.getClientId();
                     List<ScopeMappingRepresentation> currentAppScopes = clientScopeReps.get(appName);
                     if (currentAppScopes == null) {
                         currentAppScopes = new ArrayList<>();
                         clientScopeReps.put(appName, currentAppScopes);
                     }
 
                     ScopeMappingRepresentation currentClientTemplateScope = null;
                     for (ScopeMappingRepresentation scopeMapping : currentAppScopes) {
                         if (clientScope.getName().equals(scopeMapping.getClientScope())) {
                             currentClientTemplateScope = scopeMapping;
                             break;
                         }
                     }
                     if (currentClientTemplateScope == null) {
                         currentClientTemplateScope = new ScopeMappingRepresentation();
                         currentClientTemplateScope.setClientScope(clientScope.getName());
                         currentAppScopes.add(currentClientTemplateScope);
                     }
                     currentClientTemplateScope.role(scope.getName());
                 }
             }
         }
 
         if (clientScopeReps.size() > 0) {
             rep.setClientScopeMappings(clientScopeReps);
         }
 
         // Finally users if needed
         if (options.isUsersIncluded()) {
             List<UserModel> allUsers = session.users().getUsers(realm, true);
             List<UserRepresentation> users = new LinkedList<>();
             for (UserModel user : allUsers) {
                 UserRepresentation userRep = exportUser(session, realm, user, options);
                 users.add(userRep);
             }
 
             if (users.size() > 0) {
                 rep.setUsers(users);
             }
 
             List<UserRepresentation> federatedUsers = new LinkedList<>();
             for (String userId : session.userFederatedStorage().getStoredUsers(realm, 0, -1)) {
                 UserRepresentation userRep = exportFederatedUser(session, realm, userId, options);
                 federatedUsers.add(userRep);
             }
             if (federatedUsers.size() > 0) {
                 rep.setFederatedUsers(federatedUsers);
             }
 
         }
 
         // components
         MultivaluedHashMap<String, ComponentExportRepresentation> components = exportComponents(realm, realm.getId());
         rep.setComponents(components);
 
         return rep;
     }

◆ exportRole()

static RoleRepresentation org.keycloak.exportimport.util.ExportUtils.exportRole ( RoleModel role )

inlinestatic

Full export of role including composite roles

引数

role

戻り値: RoleRepresentation with all stuff filled (including composite roles)

                                                                 {
         RoleRepresentation roleRep = ModelToRepresentation.toRepresentation(role);
 
         Set<RoleModel> composites = role.getComposites();
         if (composites != null && composites.size() > 0) {
             Set<String> compositeRealmRoles = null;
             Map<String, List<String>> compositeClientRoles = null;
 
             for (RoleModel composite : composites) {
                 RoleContainerModel crContainer = composite.getContainer();
                 if (crContainer instanceof RealmModel) {
 
                     if (compositeRealmRoles == null) {
                         compositeRealmRoles = new HashSet<>();
                     }
                     compositeRealmRoles.add(composite.getName());
                 } else {
                     if (compositeClientRoles == null) {
                         compositeClientRoles = new HashMap<>();
                     }
 
                     ClientModel app = (ClientModel)crContainer;
                     String appName = app.getClientId();
                     List<String> currentAppComposites = compositeClientRoles.get(appName);
                     if (currentAppComposites == null) {
                         currentAppComposites = new ArrayList<>();
                         compositeClientRoles.put(appName, currentAppComposites);
                     }
                     currentAppComposites.add(composite.getName());
                 }
             }
 
             RoleRepresentation.Composites compRep = new RoleRepresentation.Composites();
             if (compositeRealmRoles != null) {
                 compRep.setRealm(compositeRealmRoles);
             }
             if (compositeClientRoles != null) {
                 compRep.setClient(compositeClientRoles);
             }
 
             roleRep.setComposites(compRep);
         }
 
         return roleRep;
     }

◆ exportRoles()

static List<RoleRepresentation> org.keycloak.exportimport.util.ExportUtils.exportRoles ( Collection< RoleModel > roles )

inlinestatic

                                                                                     {
         List<RoleRepresentation> roleReps = new ArrayList<RoleRepresentation>();
 
         for (RoleModel role : roles) {
             RoleRepresentation roleRep = exportRole(role);
             roleReps.add(roleRep);
         }
         return roleReps;
     }

◆ exportSocialLink()

static FederatedIdentityRepresentation org.keycloak.exportimport.util.ExportUtils.exportSocialLink ( FederatedIdentityModel socialLink )

inlinestatic

                                                                                                       {
         FederatedIdentityRepresentation socialLinkRep = new FederatedIdentityRepresentation();
         socialLinkRep.setIdentityProvider(socialLink.getIdentityProvider());
         socialLinkRep.setUserId(socialLink.getUserId());
         socialLinkRep.setUserName(socialLink.getUserName());
         return socialLinkRep;
     }

◆ exportUser()

static UserRepresentation org.keycloak.exportimport.util.ExportUtils.exportUser	(	KeycloakSession	session,
		RealmModel	realm,
		UserModel	user,
		ExportOptions	options
	)

inlinestatic

Full export of user (including role mappings and credentials)

引数

user

戻り値: fully exported user representation

                                                                                                                                   {
         UserRepresentation userRep = ModelToRepresentation.toRepresentation(session, realm, user);
 
         // Social links
         Set<FederatedIdentityModel> socialLinks = session.users().getFederatedIdentities(user, realm);
         List<FederatedIdentityRepresentation> socialLinkReps = new ArrayList<FederatedIdentityRepresentation>();
         for (FederatedIdentityModel socialLink : socialLinks) {
             FederatedIdentityRepresentation socialLinkRep = exportSocialLink(socialLink);
             socialLinkReps.add(socialLinkRep);
         }
         if (socialLinkReps.size() > 0) {
             userRep.setFederatedIdentities(socialLinkReps);
         }
 
         // Role mappings
         Set<RoleModel> roles = user.getRoleMappings();
         List<String> realmRoleNames = new ArrayList<>();
         Map<String, List<String>> clientRoleNames = new HashMap<>();
         for (RoleModel role : roles) {
             if (role.getContainer() instanceof RealmModel) {
                 realmRoleNames.add(role.getName());
             } else {
                 ClientModel client = (ClientModel)role.getContainer();
                 String clientId = client.getClientId();
                 List<String> currentClientRoles = clientRoleNames.get(clientId);
                 if (currentClientRoles == null) {
                     currentClientRoles = new ArrayList<>();
                     clientRoleNames.put(clientId, currentClientRoles);
                 }
 
                 currentClientRoles.add(role.getName());
             }
         }
 
         if (realmRoleNames.size() > 0) {
             userRep.setRealmRoles(realmRoleNames);
         }
         if (clientRoleNames.size() > 0) {
             userRep.setClientRoles(clientRoleNames);
         }
 
         // Credentials
         List<CredentialModel> creds = session.userCredentialManager().getStoredCredentials(realm, user);
         List<CredentialRepresentation> credReps = new ArrayList<CredentialRepresentation>();
         for (CredentialModel cred : creds) {
             CredentialRepresentation credRep = exportCredential(cred);
             credReps.add(credRep);
         }
         userRep.setCredentials(credReps);
         userRep.setFederationLink(user.getFederationLink());
 
         // Grants
         List<UserConsentModel> consents = session.users().getConsents(realm, user.getId());
         LinkedList<UserConsentRepresentation> consentReps = new LinkedList<UserConsentRepresentation>();
         for (UserConsentModel consent : consents) {
             UserConsentRepresentation consentRep = ModelToRepresentation.toRepresentation(consent);
             consentReps.add(consentRep);
         }
         if (consentReps.size() > 0) {
             userRep.setClientConsents(consentReps);
         }
 
         // Not Before
         int notBefore = session.users().getNotBeforeOfUser(realm, user);
         userRep.setNotBefore(notBefore);
 
         // Service account
         if (user.getServiceAccountClientLink() != null) {
             String clientInternalId = user.getServiceAccountClientLink();
             ClientModel client = realm.getClientById(clientInternalId);
             if (client != null) {
                 userRep.setServiceAccountClientId(client.getClientId());
             }
         }
 
         if (options.isGroupsAndRolesIncluded()) {
             List<String> groups = new LinkedList<>();
             for (GroupModel group : user.getGroups()) {
                 groups.add(ModelToRepresentation.buildGroupPath(group));
             }
             userRep.setGroups(groups);
         }
         return userRep;
     }

◆ exportUsersToStream() [1/2]

static void org.keycloak.exportimport.util.ExportUtils.exportUsersToStream	(	KeycloakSession	session,
		RealmModel	realm,
		List< UserModel >	usersToExport,
		ObjectMapper	mapper,
		OutputStream	os
	)		throws IOException

inlinestatic

                                                                                                                                                                               {
         exportUsersToStream(session, realm, usersToExport, mapper, os, new ExportOptions());
     }

◆ exportUsersToStream() [2/2]

static void org.keycloak.exportimport.util.ExportUtils.exportUsersToStream	(	KeycloakSession	session,
		RealmModel	realm,
		List< UserModel >	usersToExport,
		ObjectMapper	mapper,
		OutputStream	os,
		ExportOptions	options
	)		throws IOException

inlinestatic

                                                                                                                                                                                                      {
         JsonFactory factory = mapper.getFactory();
         JsonGenerator generator = factory.createGenerator(os, JsonEncoding.UTF8);
         try {
             if (mapper.isEnabled(SerializationFeature.INDENT_OUTPUT)) {
                 generator.useDefaultPrettyPrinter();
             }
             generator.writeStartObject();
             generator.writeStringField("realm", realm.getName());
             // generator.writeStringField("strategy", strategy.toString());
             generator.writeFieldName("users");
             generator.writeStartArray();
 
             for (UserModel user : usersToExport) {
                 UserRepresentation userRep = ExportUtils.exportUser(session, realm, user, options);
                 generator.writeObject(userRep);
             }
 
             generator.writeEndArray();
             generator.writeEndObject();
         } finally {
             generator.close();
         }
     }

◆ getRoleNames()

static List<String> org.keycloak.exportimport.util.ExportUtils.getRoleNames ( Collection< RoleModel > roles )

inlinestatic

                                                                          {
         List<String> roleNames = new ArrayList<String>();
         for (RoleModel role : roles) {
             roleNames.add(role.getName());
         }
         return roleNames;
     }

このクラス詳解は次のファイルから抽出されました:

D:/AppData/doxygen/keycloak/rest-service/src/services/src/main/java/org/keycloak/exportimport/util/ExportUtils.java

静的公開メンバ関数

静的非公開メンバ関数

詳解

関数詳解

◆ createPolicyRepresentation()

◆ exportAuthorizationSettings()

◆ exportClient()

◆ exportComponents()

◆ exportCredential()

◆ exportFederatedUser()

◆ exportFederatedUsersToStream() [1/2]

◆ exportFederatedUsersToStream() [2/2]

◆ exportRealm() [1/2]

◆ exportRealm() [2/2]

◆ exportRole()

◆ exportRoles()

◆ exportSocialLink()

◆ exportUser()

◆ exportUsersToStream() [1/2]

◆ exportUsersToStream() [2/2]

◆ getRoleNames()