keycloak-scim/server_development/topics/user-storage/provider-capability-interfaces.adoc

19 lines
1.6 KiB
Text
Raw Normal View History

[[_provider_capability_interfaces]]
2016-12-03 00:55:47 +00:00
=== Provider Capability Interfaces
2017-04-03 19:18:56 +00:00
If you have examined the `UserStorageProvider` interface closely you might notice that it does not define any methods for locating or managing users. These methods are actually defined in other _capability interfaces_ depending on what scope of capabilities your external user store can provide and execute on. For example, some external stores are read-only and can only do simple queries and credential validation. You will only be required to implement the _capability interfaces_ for the features you are able to. You can implement these interfaces:
2016-12-03 00:55:47 +00:00
|===
|SPI|Description
2017-03-28 16:00:13 +00:00
|`org.keycloak.storage.user.UserLookupProvider`|This interface is required if you want to be able to log in with users from this external store. Most (all?) providers implement this interface.
|`org.keycloak.storage.user.UserQueryProvider`|Defines complex queries that are used to locate one or more users. You must implement this interface if you want to view and manage users from the administration console.
2016-12-03 00:55:47 +00:00
|`org.keycloak.storage.user.UserRegistrationProvider`|Implement this interface if your provider supports adding and removing users.
|`org.keycloak.storage.user.UserBulkUpdateProvider`|Implement this interface if your provider supports bulk update of a set of users.
2017-03-28 16:00:13 +00:00
|`org.keycloak.credential.CredentialInputValidator`|Implement this interface if your provider can validate one or more different credential types (for example, if your provider can validate a password).
|`org.keycloak.credential.CredentialInputUpdater`|Implement this interface if your provider supports updating one or more different credential types.
2016-12-03 00:55:47 +00:00
|===