org.keycloak.services.resources.admin.permissions.RealmAuth 連携図

公開メンバ関数
	RealmAuth (AdminAuth auth, ClientModel realmAdminApp)

RealmAuth	init (AdminAuth.Resource resource)

AdminAuth	getAuth ()

void	requireAny ()

boolean	hasAny ()

boolean	hasView ()

boolean	hasManage ()

void	requireView ()

void	requireManage ()

非公開メンバ関数
String	getViewRole (AdminAuth.Resource resource)

String	getManageRole (AdminAuth.Resource resource)

非公開変数類
AdminAuth.Resource	resource

AdminAuth	auth

ClientModel	realmAdminApp

詳解

著者: Stian Thorgersen

構築子と解体子

◆ RealmAuth()

org.keycloak.services.resources.admin.permissions.RealmAuth.RealmAuth	(	AdminAuth	auth,
		ClientModel	realmAdminApp
	)

inline

                                                                 {
         this.auth = auth;
         this.realmAdminApp = realmAdminApp;
     }

関数詳解

◆ getAuth()

AdminAuth org.keycloak.services.resources.admin.permissions.RealmAuth.getAuth ( )

inline

                                {
         return auth;
     }

◆ getManageRole()

String org.keycloak.services.resources.admin.permissions.RealmAuth.getManageRole ( AdminAuth.Resource resource )

inlineprivate

                                                               {
         switch (resource) {
             case CLIENT:
                 return AdminRoles.MANAGE_CLIENTS;
             case USER:
                 return AdminRoles.MANAGE_USERS;
             case REALM:
                 return AdminRoles.MANAGE_REALM;
             case EVENTS:
                 return AdminRoles.MANAGE_EVENTS;
             case IDENTITY_PROVIDER:
                 return AdminRoles.MANAGE_IDENTITY_PROVIDERS;
             case IMPERSONATION:
                 return ImpersonationConstants.IMPERSONATION_ROLE;
             case AUTHORIZATION:
                 return AdminRoles.MANAGE_AUTHORIZATION;
             default:
                 throw new IllegalStateException();
         }
     }

◆ getViewRole()

String org.keycloak.services.resources.admin.permissions.RealmAuth.getViewRole ( AdminAuth.Resource resource )

inlineprivate

                                                             {
         switch (resource) {
             case CLIENT:
                 return AdminRoles.VIEW_CLIENTS;
             case USER:
                 return AdminRoles.VIEW_USERS;
             case REALM:
                 return AdminRoles.VIEW_REALM;
             case EVENTS:
                 return AdminRoles.VIEW_EVENTS;
             case IDENTITY_PROVIDER:
                 return AdminRoles.VIEW_IDENTITY_PROVIDERS;
             case AUTHORIZATION:
                 return AdminRoles.VIEW_AUTHORIZATION;
             default:
                 throw new IllegalStateException();
         }
     }

◆ hasAny()

boolean org.keycloak.services.resources.admin.permissions.RealmAuth.hasAny ( )

inline

                             {
         return auth.hasOneOfAppRole(realmAdminApp, AdminRoles.ALL_REALM_ROLES);
     }

◆ hasManage()

boolean org.keycloak.services.resources.admin.permissions.RealmAuth.hasManage ( )

inline

                                {
         return auth.hasOneOfAppRole(realmAdminApp, getManageRole(resource));
     }

◆ hasView()

boolean org.keycloak.services.resources.admin.permissions.RealmAuth.hasView ( )

inline

                              {
         return auth.hasOneOfAppRole(realmAdminApp, getViewRole(resource), getManageRole(resource));
     }

◆ init()

RealmAuth org.keycloak.services.resources.admin.permissions.RealmAuth.init ( AdminAuth.Resource resource )

inline

                                                        {
         this.resource = resource;
         return this;
     }

◆ requireAny()

void org.keycloak.services.resources.admin.permissions.RealmAuth.requireAny ( )

inline

                              {
         if (!hasAny()) {
             throw new ForbiddenException();
         }
     }

◆ requireManage()

void org.keycloak.services.resources.admin.permissions.RealmAuth.requireManage ( )

inline

                                 {
         if (!hasManage()) {
             throw new ForbiddenException();
         }
     }

◆ requireView()

void org.keycloak.services.resources.admin.permissions.RealmAuth.requireView ( )

inline

                               {
         if (!hasView()) {
             throw new ForbiddenException();
         }
     }

メンバ詳解

◆ auth

AdminAuth org.keycloak.services.resources.admin.permissions.RealmAuth.auth

private

◆ realmAdminApp

ClientModel org.keycloak.services.resources.admin.permissions.RealmAuth.realmAdminApp

private

◆ resource

AdminAuth.Resource org.keycloak.services.resources.admin.permissions.RealmAuth.resource

private

このクラス詳解は次のファイルから抽出されました:

D:/AppData/doxygen/keycloak/rest-service/src/services/src/main/java/org/keycloak/services/resources/admin/permissions/RealmAuth.java

公開メンバ関数

非公開メンバ関数

非公開変数類

詳解

構築子と解体子

◆ RealmAuth()

関数詳解

◆ getAuth()

◆ getManageRole()

◆ getViewRole()

◆ hasAny()

◆ hasManage()

◆ hasView()

◆ init()

◆ requireAny()

◆ requireManage()

◆ requireView()

メンバ詳解

◆ auth

◆ realmAdminApp

◆ resource