org.keycloak.protocol.saml.mappers.RoleListMapper の継承関係図

org.keycloak.protocol.saml.mappers.RoleListMapper 連携図

公開メンバ関数
String	getDisplayCategory ()

String	getDisplayType ()

String	getHelpText ()

List< ProviderConfigProperty >	getConfigProperties ()

String	getId ()

void	mapRoles (AttributeStatementType roleAttributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionContext clientSessionCtx)

String	getProtocol ()

void	close ()

final ProtocolMapper	create (KeycloakSession session)

void	init (Config.Scope config)

void	postInit (KeycloakSessionFactory factory)

静的公開メンバ関数
static ProtocolMapperModel	create (String name, String samlAttributeName, String nameFormat, String friendlyName, boolean singleAttribute)

静的公開変数類
static final String	PROVIDER_ID = "saml-role-list-mapper"

static final String	SINGLE_ROLE_ATTRIBUTE = "single"

静的関数
	[static initializer]

静的非公開変数類
static final List< ProviderConfigProperty >	configProperties = new ArrayList<>()

詳解

著者: Bill Burke

バージョン

Revision: 1

関数詳解

◆ [static initializer]()

org.keycloak.protocol.saml.mappers.RoleListMapper.[static initializer] ( )

inlinestaticpackage

◆ close()

void org.keycloak.protocol.saml.mappers.AbstractSAMLProtocolMapper.close ( )

inlineinherited

                         {
 
     }

◆ create() [1/2]

final ProtocolMapper org.keycloak.protocol.saml.mappers.AbstractSAMLProtocolMapper.create ( KeycloakSession session )

inlineinherited

                                                                 {
         throw new RuntimeException("UNSUPPORTED METHOD");
     }

◆ create() [2/2]

static ProtocolMapperModel org.keycloak.protocol.saml.mappers.RoleListMapper.create	(	String	name,
		String	samlAttributeName,
		String	nameFormat,
		String	friendlyName,
		boolean	singleAttribute
	)

inlinestatic

                                                                                                                                                      {
         ProtocolMapperModel mapper = new ProtocolMapperModel();
         mapper.setName(name);
         mapper.setProtocolMapper(PROVIDER_ID);
         mapper.setProtocol(SamlProtocol.LOGIN_PROTOCOL);
         Map<String, String> config = new HashMap<>();
         config.put(AttributeStatementHelper.SAML_ATTRIBUTE_NAME, samlAttributeName);
         if (friendlyName != null) {
             config.put(AttributeStatementHelper.FRIENDLY_NAME, friendlyName);
         }
         if (nameFormat != null) {
             config.put(AttributeStatementHelper.SAML_ATTRIBUTE_NAMEFORMAT, nameFormat);
         }
         config.put(SINGLE_ROLE_ATTRIBUTE, Boolean.toString(singleAttribute));
         mapper.setConfig(config);
 
         return mapper;
     }

◆ getConfigProperties()

List<ProviderConfigProperty> org.keycloak.protocol.saml.mappers.RoleListMapper.getConfigProperties ( )

inline

                                                               {
         return configProperties;
     }

◆ getDisplayCategory()

String org.keycloak.protocol.saml.mappers.RoleListMapper.getDisplayCategory ( )

inline

                                        {
         return "Role Mapper";
     }

◆ getDisplayType()

String org.keycloak.protocol.saml.mappers.RoleListMapper.getDisplayType ( )

inline

                                    {
         return "Role list";
     }

◆ getHelpText()

String org.keycloak.protocol.saml.mappers.RoleListMapper.getHelpText ( )

inline

                                 {
         return "Role names are stored in an attribute value.  There is either one attribute with multiple attribute values, or an attribute per role name depending on how you configure it.  You can also specify the attribute name i.e. 'Role' or 'memberOf' being examples.";
     }

◆ getId()

String org.keycloak.protocol.saml.mappers.RoleListMapper.getId ( )

inline

                           {
         return PROVIDER_ID;
     }

◆ getProtocol()

String org.keycloak.protocol.saml.mappers.AbstractSAMLProtocolMapper.getProtocol ( )

inlineinherited

                                 {
         return SamlProtocol.LOGIN_PROTOCOL;
     }

◆ init()

void org.keycloak.protocol.saml.mappers.AbstractSAMLProtocolMapper.init ( Config.Scope config )

inlineinherited

49 {

50 }

◆ mapRoles()

void org.keycloak.protocol.saml.mappers.RoleListMapper.mapRoles	(	AttributeStatementType	roleAttributeStatement,
		ProtocolMapperModel	mappingModel,
		KeycloakSession	session,
		UserSessionModel	userSession,
		ClientSessionContext	clientSessionCtx
	)

inline

org.keycloak.protocol.saml.mappers.SAMLRoleListMapperを実装しています。

                                                                                                                                                                                                         {
         String single = mappingModel.getConfig().get(SINGLE_ROLE_ATTRIBUTE);
         boolean singleAttribute = Boolean.parseBoolean(single);
 
         List<SamlProtocol.ProtocolMapperProcessor<SAMLRoleNameMapper>> roleNameMappers = new LinkedList<>();
         KeycloakSessionFactory sessionFactory = session.getKeycloakSessionFactory();
         AttributeType singleAttributeType = null;
         Set<ProtocolMapperModel> requestedProtocolMappers = clientSessionCtx.getProtocolMappers();
         for (ProtocolMapperModel mapping : requestedProtocolMappers) {
 
             ProtocolMapper mapper = (ProtocolMapper)sessionFactory.getProviderFactory(ProtocolMapper.class, mapping.getProtocolMapper());
             if (mapper == null) continue;
 
             if (mapper instanceof SAMLRoleNameMapper) {
                 roleNameMappers.add(new SamlProtocol.ProtocolMapperProcessor<>((SAMLRoleNameMapper) mapper,mapping));
             }
 
             if (mapper instanceof HardcodedRole) {
                 AttributeType attributeType;
                 if (singleAttribute) {
                     if (singleAttributeType == null) {
                         singleAttributeType = AttributeStatementHelper.createAttributeType(mappingModel);
                         roleAttributeStatement.addAttribute(new AttributeStatementType.ASTChoiceType(singleAttributeType));
                     }
                     attributeType = singleAttributeType;
                 } else {
                     attributeType = AttributeStatementHelper.createAttributeType(mappingModel);
                     roleAttributeStatement.addAttribute(new AttributeStatementType.ASTChoiceType(attributeType));
                 }
 
                 attributeType.addAttributeValue(mapping.getConfig().get(HardcodedRole.ROLE_ATTRIBUTE));
             }
         }
 
         List<String> allRoleNames = clientSessionCtx.getRoles().stream()
           // todo need a role mapping
           .flatMap(RoleUtils::expandCompositeRolesStream)
           .map(roleModel -> roleNameMappers.stream()
             .map(entry -> entry.mapper.mapName(entry.model, roleModel))
             .filter(Objects::nonNull)
             .findFirst()
             .orElse(roleModel.getName())
           ).collect(Collectors.toList());
 
         for (String roleName : allRoleNames) {
             AttributeType attributeType;
             if (singleAttribute) {
                 if (singleAttributeType == null) {
                     singleAttributeType = AttributeStatementHelper.createAttributeType(mappingModel);
                     roleAttributeStatement.addAttribute(new AttributeStatementType.ASTChoiceType(singleAttributeType));
                 }
                 attributeType = singleAttributeType;
             } else {
                 attributeType = AttributeStatementHelper.createAttributeType(mappingModel);
                 roleAttributeStatement.addAttribute(new AttributeStatementType.ASTChoiceType(attributeType));
             }
 
             attributeType.addAttributeValue(roleName);
         }
 
     }

◆ postInit()

void org.keycloak.protocol.saml.mappers.AbstractSAMLProtocolMapper.postInit ( KeycloakSessionFactory factory )

inlineinherited

                                                          {
 
     }

メンバ詳解

◆ configProperties

final List<ProviderConfigProperty> org.keycloak.protocol.saml.mappers.RoleListMapper.configProperties = new ArrayList<>()

staticprivate

◆ PROVIDER_ID

final String org.keycloak.protocol.saml.mappers.RoleListMapper.PROVIDER_ID = "saml-role-list-mapper"

static

◆ SINGLE_ROLE_ATTRIBUTE

final String org.keycloak.protocol.saml.mappers.RoleListMapper.SINGLE_ROLE_ATTRIBUTE = "single"

static

このクラス詳解は次のファイルから抽出されました:

D:/AppData/doxygen/keycloak/rest-service/src/services/src/main/java/org/keycloak/protocol/saml/mappers/RoleListMapper.java

公開メンバ関数

静的公開メンバ関数

静的公開変数類

静的関数

静的非公開変数類

詳解

関数詳解

◆ [static initializer]()

◆ close()

◆ create() [1/2]

◆ create() [2/2]

◆ getConfigProperties()

◆ getDisplayCategory()

◆ getDisplayType()

◆ getHelpText()

◆ getId()

◆ getProtocol()

◆ init()

◆ mapRoles()

◆ postInit()

メンバ詳解

◆ configProperties

◆ PROVIDER_ID

◆ SINGLE_ROLE_ATTRIBUTE