libre.sh/keycloak-scim
3
0
Fork 0
Code Issues 15 Pull requests Releases Packages Activity Actions

constants

Browse source
This commit is contained in:
Bill Burke 2014-01-13 19:42:34 -05:00
parent 39b61728d6
commit 62cc002396
10 changed files with 27 additions and 23 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
core/src/main/java/org/keycloak/adapters/AdapterAdminResourceConstants.java
View file

@ -1,9 +0,0 @@
package org.keycloak.adapters;
/**
* @author <a href="mailto:bill@burkecentral.com">Bill Burke</a>
* @version $Revision: 1 $
*/
public interface AdapterAdminResourceConstants {
public static final String LOGOUT = "k_logout";
}

12
core/src/main/java/org/keycloak/adapters/AdapterConstants.java Executable file
View file

@ -0,0 +1,12 @@
package org.keycloak.adapters;
/**
* @author <a href="mailto:bill@burkecentral.com">Bill Burke</a>
* @version $Revision: 1 $
*/
public interface AdapterConstants {
// URL endpoints
public static final String K_LOGOUT = "k_logout";
public static final String K_QUERY_BEARER_TOKEN = "k_query_bearer_token";
}

2
docbook/reference/en/en-US/modules/adapter-config.xml
View file

@ -174,7 +174,7 @@
<listitem> <listitem>
<para> <para>
If<literal>true</literal>, an authenticated browser client (via a Javascript HTTP invocation) If<literal>true</literal>, an authenticated browser client (via a Javascript HTTP invocation)
can obtain the signed access token via the URL<literal>root/K_QUERY_BEARER_TOKEN</literal>. can obtain the signed access token via the URL<literal>root/k_query_bearer_token</literal>.
This is<emphasis>OPTIONAL</emphasis>. The default value is<emphasis>false</emphasis>. This is<emphasis>OPTIONAL</emphasis>. The default value is<emphasis>false</emphasis>.
</para> </para>
</listitem> </listitem>

2
examples/as7-eap-demo/customer-app/src/main/webapp/customers/cors-test.html
View file

@ -6,7 +6,7 @@
<script type="text/javascript"> <script type="text/javascript">
console.log('here!!!!!'); console.log('here!!!!!');
var xhr1 = new XMLHttpRequest(); var xhr1 = new XMLHttpRequest();
xhr1.open('GET', '/customer-portal/K_QUERY_BEARER_TOKEN'); xhr1.open('GET', '/customer-portal/k_query_bearer_token');
xhr1.onreadystatechange = function () { xhr1.onreadystatechange = function () {
console.log('got here'); console.log('got here');
if (this.status == 200 && this.readyState == 4) { if (this.status == 200 && this.readyState == 4) {

2
examples/wildfly-demo/customer-app/src/main/webapp/customers/cors-test.html
View file

@ -6,7 +6,7 @@
<script type="text/javascript"> <script type="text/javascript">
console.log('here!!!!!'); console.log('here!!!!!');
var xhr1 = new XMLHttpRequest(); var xhr1 = new XMLHttpRequest();
xhr1.open('GET', '/customer-portal/K_QUERY_BEARER_TOKEN'); xhr1.open('GET', '/customer-portal/k_query_bearer_token');
xhr1.onreadystatechange = function () { xhr1.onreadystatechange = function () {
console.log('got here'); console.log('got here');
if (this.status == 200 && this.readyState == 4) { if (this.status == 200 && this.readyState == 4) {

5
integration/as7-eap6/adapter/src/main/java/org/keycloak/adapters/as7/AuthenticatedActionsValve.java
View file

@ -8,6 +8,7 @@ import org.apache.catalina.connector.Response;
import org.apache.catalina.valves.ValveBase; import org.apache.catalina.valves.ValveBase;
import org.jboss.logging.Logger; import org.jboss.logging.Logger;
import org.keycloak.SkeletonKeySession; import org.keycloak.SkeletonKeySession;
import org.keycloak.adapters.AdapterConstants;
import org.keycloak.representations.adapters.config.AdapterConfig; import org.keycloak.representations.adapters.config.AdapterConfig;
import org.keycloak.representations.SkeletonKeyToken; import org.keycloak.representations.SkeletonKeyToken;
@ -22,7 +23,7 @@ import java.util.Set;
* Actions include: * Actions include:
* <p/> * <p/>
* CORS Origin Check and Response headers * CORS Origin Check and Response headers
* K_QUERY_BEARER_TOKEN: Get bearer token from server for Javascripts CORS requests * k_query_bearer_token: Get bearer token from server for Javascripts CORS requests
* *
* @author <a href="mailto:bill@burkecentral.com">Bill Burke</a> * @author <a href="mailto:bill@burkecentral.com">Bill Burke</a>
* @version $Revision: 1 $ * @version $Revision: 1 $
@ -46,7 +47,7 @@ public class AuthenticatedActionsValve extends ValveBase {
SkeletonKeySession session = getSkeletonKeySession(request); SkeletonKeySession session = getSkeletonKeySession(request);
if (corsRequest(request, response, session)) return; if (corsRequest(request, response, session)) return;
String requestUri = request.getRequestURI(); String requestUri = request.getRequestURI();
if (requestUri.endsWith("K_QUERY_BEARER_TOKEN")) { if (requestUri.endsWith(AdapterConstants.K_QUERY_BEARER_TOKEN)) {
queryBearerToken(request, response, session); queryBearerToken(request, response, session);
return; return;
} }

4
integration/as7-eap6/adapter/src/main/java/org/keycloak/adapters/as7/OAuthAuthenticatorValve.java
View file

@ -13,7 +13,7 @@ import org.apache.catalina.core.StandardContext;
import org.apache.catalina.deploy.LoginConfig; import org.apache.catalina.deploy.LoginConfig;
import org.apache.catalina.realm.GenericPrincipal; import org.apache.catalina.realm.GenericPrincipal;
import org.jboss.logging.Logger; import org.jboss.logging.Logger;
import org.keycloak.adapters.AdapterAdminResourceConstants; import org.keycloak.adapters.AdapterConstants;
import org.keycloak.adapters.ResourceMetadata; import org.keycloak.adapters.ResourceMetadata;
import org.keycloak.SkeletonKeyPrincipal; import org.keycloak.SkeletonKeyPrincipal;
import org.keycloak.SkeletonKeySession; import org.keycloak.SkeletonKeySession;
@ -83,7 +83,7 @@ public class OAuthAuthenticatorValve extends FormAuthenticator implements Lifecy
return; return;
} }
String requestURI = request.getDecodedRequestURI(); String requestURI = request.getDecodedRequestURI();
if (requestURI.endsWith(AdapterAdminResourceConstants.LOGOUT)) { if (requestURI.endsWith(AdapterConstants.K_LOGOUT)) {
JWSInput input = verifyAdminRequest(request, response); JWSInput input = verifyAdminRequest(request, response);
if (input == null) { if (input == null) {
return; // we failed to verify the request return; // we failed to verify the request

5
integration/undertow/src/main/java/org/keycloak/adapters/undertow/AuthenticatedActionsHandler.java
View file

@ -5,6 +5,7 @@ import io.undertow.server.HttpServerExchange;
import io.undertow.util.Headers; import io.undertow.util.Headers;
import org.jboss.logging.Logger; import org.jboss.logging.Logger;
import org.keycloak.SkeletonKeySession; import org.keycloak.SkeletonKeySession;
import org.keycloak.adapters.AdapterConstants;
import org.keycloak.representations.adapters.config.AdapterConfig; import org.keycloak.representations.adapters.config.AdapterConfig;
import org.keycloak.representations.SkeletonKeyToken; import org.keycloak.representations.SkeletonKeyToken;
@ -18,7 +19,7 @@ import java.util.Set;
* Actions include: * Actions include:
* *
* CORS Origin Check and Response headers * CORS Origin Check and Response headers
* K_QUERY_BEARER_TOKEN: Get bearer token from server for Javascripts CORS requests * k_query_bearer_token: Get bearer token from server for Javascripts CORS requests
* *
* @author <a href="mailto:bill@burkecentral.com">Bill Burke</a> * @author <a href="mailto:bill@burkecentral.com">Bill Burke</a>
* @version $Revision: 1 $ * @version $Revision: 1 $
@ -39,7 +40,7 @@ public class AuthenticatedActionsHandler implements HttpHandler {
SkeletonKeySession session = getSkeletonKeySession(exchange); SkeletonKeySession session = getSkeletonKeySession(exchange);
if (corsRequest(exchange, session)) return; if (corsRequest(exchange, session)) return;
String requestUri = exchange.getRequestURI(); String requestUri = exchange.getRequestURI();
if (requestUri.endsWith("K_QUERY_BEARER_TOKEN")) { if (requestUri.endsWith(AdapterConstants.K_QUERY_BEARER_TOKEN)) {
queryBearerToken(exchange, session); queryBearerToken(exchange, session);
return; return;
} }

4
integration/undertow/src/main/java/org/keycloak/adapters/undertow/ServletAdminActionsHandler.java
View file

@ -6,7 +6,7 @@ import io.undertow.server.HttpServerExchange;
import io.undertow.server.session.SessionManager; import io.undertow.server.session.SessionManager;
import io.undertow.servlet.handlers.ServletRequestContext; import io.undertow.servlet.handlers.ServletRequestContext;
import org.jboss.logging.Logger; import org.jboss.logging.Logger;
import org.keycloak.adapters.AdapterAdminResourceConstants; import org.keycloak.adapters.AdapterConstants;
import org.keycloak.adapters.config.RealmConfiguration; import org.keycloak.adapters.config.RealmConfiguration;
import org.keycloak.jose.jws.JWSInput; import org.keycloak.jose.jws.JWSInput;
import org.keycloak.jose.jws.crypto.RSAProvider; import org.keycloak.jose.jws.crypto.RSAProvider;
@ -82,7 +82,7 @@ public class ServletAdminActionsHandler implements HttpHandler {
HttpServletResponse response = (HttpServletResponse) servletRequestContext.getServletResponse(); HttpServletResponse response = (HttpServletResponse) servletRequestContext.getServletResponse();
SessionManager manager = servletRequestContext.getDeployment().getSessionManager(); SessionManager manager = servletRequestContext.getDeployment().getSessionManager();
String requestUri = exchange.getRequestURI(); String requestUri = exchange.getRequestURI();
if (requestUri.endsWith(AdapterAdminResourceConstants.LOGOUT)) { if (requestUri.endsWith(AdapterConstants.K_LOGOUT)) {
JWSInput token = verifyAdminRequest(request, response); JWSInput token = verifyAdminRequest(request, response);
if (token == null) return; if (token == null) return;
userSessionManagement.remoteLogout(token, manager, response); userSessionManagement.remoteLogout(token, manager, response);

5
services/src/main/java/org/keycloak/services/managers/ResourceAdminManager.java
View file

@ -4,13 +4,12 @@ import org.jboss.resteasy.client.jaxrs.ResteasyClient;
import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder; import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
import org.jboss.resteasy.logging.Logger; import org.jboss.resteasy.logging.Logger;
import org.keycloak.TokenIdGenerator; import org.keycloak.TokenIdGenerator;
import org.keycloak.adapters.AdapterAdminResourceConstants; import org.keycloak.adapters.AdapterConstants;
import org.keycloak.models.ApplicationModel; import org.keycloak.models.ApplicationModel;
import org.keycloak.models.RealmModel; import org.keycloak.models.RealmModel;
import org.keycloak.representations.adapters.action.LogoutAction; import org.keycloak.representations.adapters.action.LogoutAction;
import javax.ws.rs.client.Entity; import javax.ws.rs.client.Entity;
import javax.ws.rs.core.Form;
import javax.ws.rs.core.Response; import javax.ws.rs.core.Response;
import java.util.List; import java.util.List;
@ -43,7 +42,7 @@ public class ResourceAdminManager {
LogoutAction adminAction = new LogoutAction(TokenIdGenerator.generateId(), System.currentTimeMillis() / 1000 + 30, resource.getName(), user); LogoutAction adminAction = new LogoutAction(TokenIdGenerator.generateId(), System.currentTimeMillis() / 1000 + 30, resource.getName(), user);
String token = new TokenManager().encodeToken(realm, adminAction); String token = new TokenManager().encodeToken(realm, adminAction);
logger.debug("logout user: {0} resource: {1} url: {2}", user, resource.getName(), managementUrl); logger.debug("logout user: {0} resource: {1} url: {2}", user, resource.getName(), managementUrl);
Response response = client.target(managementUrl).path(AdapterAdminResourceConstants.LOGOUT).request().post(Entity.text(token)); Response response = client.target(managementUrl).path(AdapterConstants.K_LOGOUT).request().post(Entity.text(token));
boolean success = response.getStatus() == 204; boolean success = response.getStatus() == 204;
response.close(); response.close();
return success; return success;