diff --git a/model/hybrid/pom.xml b/model/hybrid/pom.xml
deleted file mode 100755
index 344fef31c7..0000000000
--- a/model/hybrid/pom.xml
+++ /dev/null
@@ -1,30 +0,0 @@
-
-
-
- keycloak-parent
- org.keycloak
- 1.0-beta-4-SNAPSHOT
- ../../pom.xml
-
- 4.0.0
-
- keycloak-model-hybrid
- Keycloak Model Hybrid
-
-
-
-
- org.keycloak
- keycloak-core
- ${project.version}
- provided
-
-
- org.keycloak
- keycloak-model-api
- ${project.version}
- provided
-
-
-
diff --git a/model/hybrid/src/main/java/org/keycloak/models/hybrid/ApplicationAdapter.java b/model/hybrid/src/main/java/org/keycloak/models/hybrid/ApplicationAdapter.java
deleted file mode 100755
index 713d6513b9..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/hybrid/ApplicationAdapter.java
+++ /dev/null
@@ -1,137 +0,0 @@
-package org.keycloak.models.hybrid;
-
-import org.keycloak.models.ApplicationModel;
-import org.keycloak.models.ClientModel;
-import org.keycloak.models.RoleModel;
-import org.keycloak.models.realms.Application;
-import org.keycloak.models.utils.KeycloakModelUtils;
-
-import java.util.List;
-import java.util.Set;
-
-/**
- * @author Stian Thorgersen
- */
-public class ApplicationAdapter extends ClientAdapter implements ApplicationModel {
-
- private Application application;
-
- ApplicationAdapter(HybridModelProvider provider, Application application) {
- super(provider, application);
- this.application = application;
- }
-
- Application getApplication() {
- return application;
- }
-
- @Override
- public void updateApplication() {
- application.updateApplication();
- }
-
- @Override
- public String getName() {
- return application.getName();
- }
-
- @Override
- public void setName(String name) {
- application.setName(name);
- }
-
- @Override
- public boolean isSurrogateAuthRequired() {
- return application.isSurrogateAuthRequired();
- }
-
- @Override
- public void setSurrogateAuthRequired(boolean surrogateAuthRequired) {
- application.setSurrogateAuthRequired(surrogateAuthRequired);
- }
-
- @Override
- public String getManagementUrl() {
- return application.getManagementUrl();
- }
-
- @Override
- public void setManagementUrl(String url) {
- application.setManagementUrl(url);
- }
-
- @Override
- public String getBaseUrl() {
- return application.getBaseUrl();
- }
-
- @Override
- public void setBaseUrl(String url) {
- application.setBaseUrl(url);
- }
-
- @Override
- public List getDefaultRoles() {
- return application.getDefaultRoles();
- }
-
- @Override
- public void addDefaultRole(String name) {
- if (getRole(name) == null) {
- addRole(name);
- }
-
- application.addDefaultRole(name);
- }
-
- @Override
- public void updateDefaultRoles(String[] defaultRoles) {
- application.updateDefaultRoles(defaultRoles);
- }
-
- @Override
- public Set getApplicationScopeMappings(ClientModel client) {
- return provider.mappings().wrap(application.getApplicationScopeMappings(provider.mappings().unwrap(client)));
- }
-
- @Override
- public boolean isBearerOnly() {
- return application.isBearerOnly();
- }
-
- @Override
- public void setBearerOnly(boolean only) {
- application.setBearerOnly(only);
- }
-
- @Override
- public RoleModel getRole(String name) {
- return provider.mappings().wrap(application.getRole(name));
- }
-
- @Override
- public RoleModel addRole(String name) {
- return addRole(KeycloakModelUtils.generateId(), name);
- }
-
- @Override
- public RoleModel addRole(String id, String name) {
- return provider.mappings().wrap(application.addRole(id, name));
- }
-
- @Override
- public boolean removeRole(RoleModel role) {
- if (application.removeRole(provider.mappings().unwrap(role))) {
- provider.users().onRoleRemoved(role.getId());
- return true;
- } else {
- return false;
- }
- }
-
- @Override
- public Set getRoles() {
- return provider.mappings().wrap(application.getRoles());
- }
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/hybrid/ClientAdapter.java b/model/hybrid/src/main/java/org/keycloak/models/hybrid/ClientAdapter.java
deleted file mode 100755
index dfaa612583..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/hybrid/ClientAdapter.java
+++ /dev/null
@@ -1,191 +0,0 @@
-package org.keycloak.models.hybrid;
-
-import org.keycloak.models.ClientModel;
-import org.keycloak.models.RealmModel;
-import org.keycloak.models.RoleModel;
-import org.keycloak.models.realms.Client;
-
-import java.util.Set;
-
-/**
- * @author Stian Thorgersen
- */
-public abstract class ClientAdapter implements ClientModel {
-
- protected HybridModelProvider provider;
-
- protected Client client;
-
- ClientAdapter(HybridModelProvider provider, Client client) {
- this.provider = provider;
- this.client = client;
- }
-
- @Override
- public String getId() {
- return client.getId();
- }
-
- @Override
- public String getClientId() {
- return client.getClientId();
- }
-
- @Override
- public long getAllowedClaimsMask() {
- return client.getAllowedClaimsMask();
- }
-
- @Override
- public void setAllowedClaimsMask(long mask) {
- client.setAllowedClaimsMask(mask);
- }
-
- @Override
- public Set getWebOrigins() {
- return client.getWebOrigins();
- }
-
- @Override
- public void setWebOrigins(Set webOrigins) {
- client.setWebOrigins(webOrigins);
- }
-
- @Override
- public void addWebOrigin(String webOrigin) {
- client.addWebOrigin(webOrigin);
- }
-
- @Override
- public void removeWebOrigin(String webOrigin) {
- client.removeWebOrigin(webOrigin);
- }
-
- @Override
- public Set getRedirectUris() {
- return client.getRedirectUris();
- }
-
- @Override
- public void setRedirectUris(Set redirectUris) {
- client.setRedirectUris(redirectUris);
- }
-
- @Override
- public void addRedirectUri(String redirectUri) {
- client.addRedirectUri(redirectUri);
- }
-
- @Override
- public void removeRedirectUri(String redirectUri) {
- client.removeRedirectUri(redirectUri);
- }
-
- @Override
- public boolean isEnabled() {
- return client.isEnabled();
- }
-
- @Override
- public void setEnabled(boolean enabled) {
- client.setEnabled(enabled);
- }
-
- @Override
- public boolean validateSecret(String secret) {
- return client.validateSecret(secret);
- }
-
- @Override
- public String getSecret() {
- return client.getSecret();
- }
-
- @Override
- public void setSecret(String secret) {
- client.setSecret(secret);
- }
-
- @Override
- public boolean isPublicClient() {
- return client.isPublicClient();
- }
-
- @Override
- public void setPublicClient(boolean flag) {
- client.setPublicClient(flag);
- }
-
- @Override
- public boolean isDirectGrantsOnly() {
- return client.isDirectGrantsOnly();
- }
-
- @Override
- public void setDirectGrantsOnly(boolean flag) {
- client.setDirectGrantsOnly(flag);
- }
-
- @Override
- public Set getScopeMappings() {
- return provider.mappings().wrap(client.getScopeMappings());
- }
-
- @Override
- public void addScopeMapping(RoleModel role) {
- if (!hasScope(role)) {
- client.addScopeMapping(provider.mappings().unwrap(role));
- }
- }
-
- @Override
- public void deleteScopeMapping(RoleModel role) {
- client.deleteScopeMapping(provider.mappings().unwrap(role));
- }
-
- @Override
- public Set getRealmScopeMappings() {
- return provider.mappings().wrap(client.getRealmScopeMappings());
- }
-
- @Override
- public boolean hasScope(RoleModel role) {
- Set roles = getScopeMappings();
- if (roles.contains(role)) {
- return true;
- }
-
- for (RoleModel mapping : roles) {
- if (mapping.hasRole(role)) {
- return true;
- }
- }
-
- return false;
- }
-
- @Override
- public RealmModel getRealm() {
- return provider.mappings().wrap(client.getRealm());
- }
-
- @Override
- public int getNotBefore() {
- return client.getNotBefore();
- }
-
- @Override
- public void setNotBefore(int notBefore) {
- client.setNotBefore(notBefore);
- }
-
- @Override
- public boolean equals(Object o) {
- if (this == o) return true;
- if (!this.getClass().equals(o.getClass())) return false;
-
- ClientAdapter that = (ClientAdapter) o;
- return that.getId().equals(getId());
- }
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/hybrid/HybridKeycloakTransaction.java b/model/hybrid/src/main/java/org/keycloak/models/hybrid/HybridKeycloakTransaction.java
deleted file mode 100644
index b6a54eaf09..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/hybrid/HybridKeycloakTransaction.java
+++ /dev/null
@@ -1,65 +0,0 @@
-package org.keycloak.models.hybrid;
-
-import org.keycloak.models.KeycloakTransaction;
-
-/**
- * @author Stian Thorgersen
- */
-public class HybridKeycloakTransaction implements KeycloakTransaction {
-
- private KeycloakTransaction[] txs;
-
- public HybridKeycloakTransaction(KeycloakTransaction... txs) {
- this.txs = txs;
- }
-
- @Override
- public void begin() {
- for (KeycloakTransaction tx : txs) {
- tx.begin();
- }
- }
-
- @Override
- public void commit() {
- // TODO What do we do if one tx fails?
- for (KeycloakTransaction tx : txs) {
- tx.commit();
- }
- }
-
- @Override
- public void rollback() {
- for (KeycloakTransaction tx : txs) {
- tx.rollback();
- }
- }
-
- @Override
- public void setRollbackOnly() {
- for (KeycloakTransaction tx : txs) {
- tx.setRollbackOnly();
- }
- }
-
- @Override
- public boolean getRollbackOnly() {
- for (KeycloakTransaction tx : txs) {
- if (tx.getRollbackOnly()) {
- return true;
- }
- }
- return false;
- }
-
- @Override
- public boolean isActive() {
- for (KeycloakTransaction tx : txs) {
- if (tx.isActive()) {
- return true;
- }
- }
- return false;
- }
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/hybrid/HybridModelProvider.java b/model/hybrid/src/main/java/org/keycloak/models/hybrid/HybridModelProvider.java
deleted file mode 100755
index 1b27841ab3..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/hybrid/HybridModelProvider.java
+++ /dev/null
@@ -1,202 +0,0 @@
-package org.keycloak.models.hybrid;
-
-import org.keycloak.models.ApplicationModel;
-import org.keycloak.models.KeycloakSession;
-import org.keycloak.models.KeycloakTransaction;
-import org.keycloak.models.ModelProvider;
-import org.keycloak.models.OAuthClientModel;
-import org.keycloak.models.RealmModel;
-import org.keycloak.models.RoleModel;
-import org.keycloak.models.SocialLinkModel;
-import org.keycloak.models.UserModel;
-import org.keycloak.models.UsernameLoginFailureModel;
-import org.keycloak.models.realms.RealmProvider;
-import org.keycloak.models.sessions.SessionProvider;
-import org.keycloak.models.users.UserProvider;
-import org.keycloak.models.utils.KeycloakModelUtils;
-
-import java.util.HashSet;
-import java.util.List;
-import java.util.Map;
-import java.util.Set;
-
-/**
- * @author Stian Thorgersen
- */
-public class HybridModelProvider implements ModelProvider {
-
- private final Mappings mappings;
-
- private KeycloakSession session;
-
- private HybridKeycloakTransaction tx;
-
- public HybridModelProvider(KeycloakSession session) {
- this.session = session;
- this.mappings = new Mappings(this);
- }
-
- @Override
- public KeycloakTransaction getTransaction() {
- if (tx == null) {
- tx = new HybridKeycloakTransaction(realms().getTransaction(), users().getTransaction(), sessions().getTransaction());
- }
-
- return tx;
- }
-
- Mappings mappings() {
- return mappings;
- }
-
- SessionProvider sessions() {
- return session.getProvider(SessionProvider.class);
- }
-
- UserProvider users() {
- return session.getProvider(UserProvider.class);
- }
-
- RealmProvider realms() {
- return session.getProvider(RealmProvider.class);
- }
-
- @Override
- public RealmModel createRealm(String name) {
- return createRealm(KeycloakModelUtils.generateId(), name);
- }
-
- @Override
- public RealmModel createRealm(String id, String name) {
- return mappings.wrap(realms().createRealm(id, name));
- }
-
- @Override
- public RealmModel getRealm(String id) {
- return mappings.wrap(realms().getRealm(id));
- }
-
- @Override
- public RealmModel getRealmByName(String name) {
- return mappings.wrap(realms().getRealmByName(name));
- }
-
- @Override
- public UserModel getUserById(String id, RealmModel realm) {
- return mappings.wrap(realm, users().getUserById(id, realm.getId()));
- }
-
- @Override
- public UserModel getUserByUsername(String username, RealmModel realm) {
- return mappings.wrap(realm, users().getUserByUsername(username, realm.getId()));
- }
-
- @Override
- public UserModel getUserByEmail(String email, RealmModel realm) {
- return mappings.wrap(realm, users().getUserByEmail(email, realm.getId()));
- }
-
- @Override
- public UserModel getUserBySocialLink(SocialLinkModel socialLink, RealmModel realm) {
- return mappings.wrap(realm, users().getUserByAttribute("keycloak.socialLink." + socialLink.getSocialProvider() + ".userId", socialLink.getSocialUserId(), realm.getId()));
- }
-
- @Override
- public List getUsers(RealmModel realm) {
- return mappings.wrapUsers(realm, users().getUsers(realm.getId()));
- }
-
- @Override
- public List searchForUser(String search, RealmModel realm) {
- return mappings.wrapUsers(realm, users().searchForUser(search, realm.getId()));
- }
-
- @Override
- public List searchForUserByAttributes(Map attributes, RealmModel realm) {
- return mappings.wrapUsers(realm, users().searchForUserByAttributes(attributes, realm.getId()));
- }
-
- @Override
- public Set getSocialLinks(UserModel user, RealmModel realm) {
- Set links = new HashSet();
-
- for (Map.Entry e : user.getAttributes().entrySet()) {
- if (e.getKey().matches("keycloak\\.socialLink\\..*\\.userId")) {
- String provider = e.getKey().split("\\.")[2];
-
- SocialLinkModel link = new SocialLinkModel();
- link.setSocialProvider(provider);
- link.setSocialUserId(e.getValue());
- link.setSocialUsername(user.getAttribute("keycloak.socialLink." + provider + ".username"));
-
- links.add(link);
- }
-
- }
-
- return links;
- }
-
- @Override
- public SocialLinkModel getSocialLink(UserModel user, String provider, RealmModel realm) {
- if (user.getAttribute("keycloak.socialLink." + provider + ".userId") != null) {
- SocialLinkModel link = new SocialLinkModel();
- link.setSocialProvider(provider);
- link.setSocialUserId(user.getAttribute("keycloak.socialLink." + provider + ".userId"));
- link.setSocialUsername(user.getAttribute("keycloak.socialLink." + provider + ".username"));
- return link;
- } else {
- return null;
- }
- }
-
- @Override
- public RoleModel getRoleById(String id, RealmModel realm) {
- return mappings.wrap(realms().getRoleById(id, realm.getId()));
- }
-
- @Override
- public ApplicationModel getApplicationById(String id, RealmModel realm) {
- return mappings.wrap(realms().getApplicationById(id, realm.getId()));
- }
-
- @Override
- public OAuthClientModel getOAuthClientById(String id, RealmModel realm) {
- return mappings.wrap(realms().getOAuthClientById(id, realm.getId()));
- }
-
- @Override
- public List getRealms() {
- return mappings.wrap(realms().getRealms());
- }
-
- @Override
- public boolean removeRealm(String id) {
- if (realms().removeRealm(id)) {
- users().onRealmRemoved(id);
- return true;
- } else {
- return false;
- }
- }
-
- @Override
- public UsernameLoginFailureModel getUserLoginFailure(String username, RealmModel realm) {
- return mappings.wrap(sessions().getUserLoginFailure(username, realm.getId()));
- }
-
- @Override
- public UsernameLoginFailureModel addUserLoginFailure(String username, RealmModel realm) {
- return mappings.wrap(sessions().addUserLoginFailure(username, realm.getId()));
- }
-
- @Override
- public List getAllUserLoginFailures(RealmModel realm) {
- return mappings.wrapLoginFailures(sessions().getAllUserLoginFailures(realm.getId()));
- }
-
- @Override
- public void close() {
- }
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/hybrid/HybridModelProviderFactory.java b/model/hybrid/src/main/java/org/keycloak/models/hybrid/HybridModelProviderFactory.java
deleted file mode 100755
index 3a644d403c..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/hybrid/HybridModelProviderFactory.java
+++ /dev/null
@@ -1,31 +0,0 @@
-package org.keycloak.models.hybrid;
-
-import org.keycloak.Config;
-import org.keycloak.models.KeycloakSession;
-import org.keycloak.models.ModelProvider;
-import org.keycloak.models.ModelProviderFactory;
-
-/**
- * @author Stian Thorgersen
- */
-public class HybridModelProviderFactory implements ModelProviderFactory {
-
- @Override
- public String getId() {
- return "hybrid";
- }
-
- @Override
- public ModelProvider create(KeycloakSession session) {
- return new HybridModelProvider(session);
- }
-
- @Override
- public void init(Config.Scope config) {
- }
-
- @Override
- public void close() {
- }
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/hybrid/Mappings.java b/model/hybrid/src/main/java/org/keycloak/models/hybrid/Mappings.java
deleted file mode 100644
index 39972aeac4..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/hybrid/Mappings.java
+++ /dev/null
@@ -1,220 +0,0 @@
-package org.keycloak.models.hybrid;
-
-import org.keycloak.models.ApplicationModel;
-import org.keycloak.models.ClientModel;
-import org.keycloak.models.OAuthClientModel;
-import org.keycloak.models.RealmModel;
-import org.keycloak.models.RoleContainerModel;
-import org.keycloak.models.RoleModel;
-import org.keycloak.models.UserModel;
-import org.keycloak.models.UserSessionModel;
-import org.keycloak.models.UsernameLoginFailureModel;
-import org.keycloak.models.realms.Application;
-import org.keycloak.models.realms.Client;
-import org.keycloak.models.realms.OAuthClient;
-import org.keycloak.models.realms.Realm;
-import org.keycloak.models.realms.Role;
-import org.keycloak.models.sessions.LoginFailure;
-import org.keycloak.models.sessions.Session;
-import org.keycloak.models.users.User;
-
-import java.util.HashMap;
-import java.util.HashSet;
-import java.util.LinkedList;
-import java.util.List;
-import java.util.Map;
-import java.util.Set;
-
-/**
- * @author Stian Thorgersen
- */
-public class Mappings {
-
- private final HybridModelProvider provider;
- private Map mappings = new HashMap();
-
- public Mappings(HybridModelProvider provider) {
- this.provider = provider;
- }
-
- public RealmModel wrap(Realm realm) {
- if (realm == null) return null;
-
- RealmAdapter adapter = (RealmAdapter) mappings.get(realm);
- if (adapter == null) {
- adapter = new RealmAdapter(provider, realm);
- mappings.put(realm, adapter);
- }
- return adapter;
- }
-
- public List wrap(List realms) {
- List adapters = new LinkedList();
- for (Realm realm : realms) {
- adapters.add(wrap(realm));
- }
- return adapters;
- }
-
- public RoleModel wrap(Role role) {
- if (role == null) return null;
-
- RoleAdapter adapter = (RoleAdapter) mappings.get(role);
- if (adapter == null) {
- adapter = new RoleAdapter(provider, role);
- mappings.put(role, adapter);
- }
- return adapter;
- }
-
- public Set wrap(Set roles) {
- Set adapters = new HashSet();
- for (Role role : roles) {
- adapters.add(wrap(role));
- }
- return adapters;
- }
-
- public Role unwrap(RoleModel role) {
- if (role instanceof RoleAdapter) {
- return ((RoleAdapter) role).getRole();
- } else {
- return provider.realms().getRoleById(role.getId(), getRealm(role.getContainer()));
- }
- }
-
- public ApplicationModel wrap(Application application) {
- return application != null ? new ApplicationAdapter(provider, application) : null;
- }
-
- public List wrapApps(List applications) {
- List adapters = new LinkedList();
- for (Application application : applications) {
- adapters.add(wrap(application));
- }
- return adapters;
- }
-
- public Map wrap(Map applications) {
- Map adapters = new HashMap();
- for (Map.Entry e : applications.entrySet()) {
- adapters.put(e.getKey(), wrap(e.getValue()));
- }
- return adapters;
- }
-
- public OAuthClientModel wrap(OAuthClient client) {
- return client != null ? new OAuthClientAdapter(provider, client) : null;
- }
-
- public List wrapClients(List clients) {
- List adapters = new LinkedList();
- for (OAuthClient client : clients) {
- adapters.add(wrap(client));
- }
- return adapters;
- }
-
- public Client unwrap(ClientModel client) {
- if (client == null) {
- return null;
- }
-
- if (client instanceof ApplicationAdapter) {
- return ((ApplicationAdapter) client).getApplication();
- } else if (client instanceof OAuthClientAdapter) {
- return ((OAuthClientAdapter) client).getOauthClient();
- } else {
- throw new IllegalArgumentException("Not a hybrid model");
- }
- }
-
- public Application unwrap(ApplicationModel application) {
- if (application == null) {
- return null;
- }
-
- if (!(application instanceof ApplicationAdapter)) {
- throw new IllegalArgumentException("Not a hybrid model");
- }
-
- return ((ApplicationAdapter) application).getApplication();
- }
-
- public UserModel wrap(RealmModel realm, User user) {
- return user != null ? new UserAdapter(provider, realm, user) : null;
- }
-
- public List wrapUsers(RealmModel realm, List users) {
- List adapters = new LinkedList();
- for (User user : users) {
- adapters.add(wrap(realm, user));
- }
- return adapters;
- }
-
- public static User unwrap(UserModel user) {
- if (user == null) {
- return null;
- }
-
- if (!(user instanceof UserAdapter)) {
- throw new IllegalArgumentException("Not a hybrid model");
- }
-
- return ((UserAdapter) user).getUser();
- }
-
- public UserSessionModel wrap(RealmModel realm, Session session) {
- return session != null ? new UserSessionAdapter(provider, realm, session) : null;
- }
-
- public List wrapSessions(RealmModel realm, List sessions) {
- List adapters = new LinkedList();
- for (Session session : sessions) {
- adapters.add(wrap(realm, session));
- }
- return adapters;
- }
-
- public Set wrapSessions(RealmModel realm, Set sessions) {
- Set adapters = new HashSet();
- for (Session session : sessions) {
- adapters.add(wrap(realm, session));
- }
- return adapters;
- }
-
- public Session unwrap(UserSessionModel session) {
- if (session == null) {
- return null;
- }
-
- if (!(session instanceof UserSessionAdapter)) {
- throw new IllegalArgumentException("Not a hybrid model");
- }
-
- return ((UserSessionAdapter) session).getSession();
- }
-
- public UsernameLoginFailureModel wrap(LoginFailure loginFailure) {
- return loginFailure != null ? new UsernameLoginFailureAdapter(provider, loginFailure) : null;
- }
-
- public List wrapLoginFailures(List loginFailures) {
- List adapters = new LinkedList();
- for (LoginFailure loginFailure : loginFailures) {
- adapters.add(wrap(loginFailure));
- }
- return adapters;
- }
-
- private String getRealm(RoleContainerModel container) {
- if (container instanceof RealmModel) {
- return ((RealmModel) container).getId();
- } else {
- return ((ApplicationModel) container).getRealm().getId();
- }
- }
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/hybrid/OAuthClientAdapter.java b/model/hybrid/src/main/java/org/keycloak/models/hybrid/OAuthClientAdapter.java
deleted file mode 100644
index 308e819ed8..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/hybrid/OAuthClientAdapter.java
+++ /dev/null
@@ -1,27 +0,0 @@
-package org.keycloak.models.hybrid;
-
-import org.keycloak.models.OAuthClientModel;
-import org.keycloak.models.realms.OAuthClient;
-
-/**
- * @author Stian Thorgersen
- */
-public class OAuthClientAdapter extends ClientAdapter implements OAuthClientModel {
-
- private OAuthClient oauthClient;
-
- OAuthClientAdapter(HybridModelProvider provider, OAuthClient oauthClient) {
- super(provider, oauthClient);
- this.oauthClient = oauthClient;
- }
-
- OAuthClient getOauthClient() {
- return oauthClient;
- }
-
- @Override
- public void setClientId(String id) {
- oauthClient.setClientId(id);
- }
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/hybrid/RealmAdapter.java b/model/hybrid/src/main/java/org/keycloak/models/hybrid/RealmAdapter.java
deleted file mode 100755
index f8b541506e..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/hybrid/RealmAdapter.java
+++ /dev/null
@@ -1,794 +0,0 @@
-package org.keycloak.models.hybrid;
-
-import org.keycloak.models.ApplicationModel;
-import org.keycloak.models.AuthenticationProviderModel;
-import org.keycloak.models.ClientModel;
-import org.keycloak.models.OAuthClientModel;
-import org.keycloak.models.PasswordPolicy;
-import org.keycloak.models.RealmModel;
-import org.keycloak.models.RequiredCredentialModel;
-import org.keycloak.models.RoleModel;
-import org.keycloak.models.SocialLinkModel;
-import org.keycloak.models.UserCredentialModel;
-import org.keycloak.models.UserCredentialValueModel;
-import org.keycloak.models.UserModel;
-import org.keycloak.models.UsernameLoginFailureModel;
-import org.keycloak.models.realms.Application;
-import org.keycloak.models.realms.Client;
-import org.keycloak.models.realms.OAuthClient;
-import org.keycloak.models.realms.Realm;
-import org.keycloak.models.users.Credentials;
-import org.keycloak.models.users.Feature;
-import org.keycloak.models.users.User;
-import org.keycloak.models.utils.KeycloakModelUtils;
-import org.keycloak.models.utils.Pbkdf2PasswordEncoder;
-import org.keycloak.models.utils.TimeBasedOTP;
-
-import java.security.PrivateKey;
-import java.security.PublicKey;
-import java.util.HashSet;
-import java.util.List;
-import java.util.Map;
-import java.util.Set;
-
-/**
- * @author Stian Thorgersen
- */
-public class RealmAdapter implements RealmModel {
-
- private HybridModelProvider provider;
- private Realm realm;
-
- RealmAdapter(HybridModelProvider provider, Realm realm) {
- this.provider = provider;
- this.realm = realm;
- }
-
- Realm getRealm() {
- return realm;
- }
-
- @Override
- public String getId() {
- return realm.getId();
- }
-
- @Override
- public String getName() {
- return realm.getName();
- }
-
- @Override
- public void setName(String name) {
- realm.setName(name);
- }
-
- @Override
- public boolean isEnabled() {
- return realm.isEnabled();
- }
-
- @Override
- public void setEnabled(boolean enabled) {
- realm.setEnabled(enabled);
- }
-
- @Override
- public boolean isSslNotRequired() {
- return realm.isSslNotRequired();
- }
-
- @Override
- public void setSslNotRequired(boolean sslNotRequired) {
- realm.setSslNotRequired(sslNotRequired);
- }
-
- @Override
- public boolean isRegistrationAllowed() {
- return realm.isRegistrationAllowed();
- }
-
- @Override
- public void setRegistrationAllowed(boolean registrationAllowed) {
- realm.setRegistrationAllowed(registrationAllowed);
- }
-
- @Override
- public boolean isPasswordCredentialGrantAllowed() {
- return realm.isPasswordCredentialGrantAllowed();
- }
-
- @Override
- public void setPasswordCredentialGrantAllowed(boolean passwordCredentialGrantAllowed) {
- realm.setPasswordCredentialGrantAllowed(passwordCredentialGrantAllowed);
- }
-
- @Override
- public boolean isRememberMe() {
- return realm.isRememberMe();
- }
-
- @Override
- public void setRememberMe(boolean rememberMe) {
- realm.setRememberMe(rememberMe);
- }
-
- @Override
- public boolean isBruteForceProtected() {
- return realm.isBruteForceProtected();
- }
-
- @Override
- public void setBruteForceProtected(boolean value) {
- realm.setBruteForceProtected(value);
- }
-
- @Override
- public int getMaxFailureWaitSeconds() {
- return realm.getMaxFailureWaitSeconds();
- }
-
- @Override
- public void setMaxFailureWaitSeconds(int val) {
- realm.setMaxFailureWaitSeconds(val);
- }
-
- @Override
- public int getWaitIncrementSeconds() {
- return realm.getWaitIncrementSeconds();
- }
-
- @Override
- public void setWaitIncrementSeconds(int val) {
- realm.setWaitIncrementSeconds(val);
- }
-
- @Override
- public int getMinimumQuickLoginWaitSeconds() {
- return realm.getMinimumQuickLoginWaitSeconds();
- }
-
- @Override
- public void setMinimumQuickLoginWaitSeconds(int val) {
- realm.setMinimumQuickLoginWaitSeconds(val);
- }
-
- @Override
- public long getQuickLoginCheckMilliSeconds() {
- return realm.getQuickLoginCheckMilliSeconds();
- }
-
- @Override
- public void setQuickLoginCheckMilliSeconds(long val) {
- realm.setQuickLoginCheckMilliSeconds(val);
- }
-
- @Override
- public int getMaxDeltaTimeSeconds() {
- return realm.getMaxDeltaTimeSeconds();
- }
-
- @Override
- public void setMaxDeltaTimeSeconds(int val) {
- realm.setMaxDeltaTimeSeconds(val);
- }
-
- @Override
- public int getFailureFactor() {
- return realm.getFailureFactor();
- }
-
- @Override
- public void setFailureFactor(int failureFactor) {
- realm.setFailureFactor(failureFactor);
- }
-
- @Override
- public boolean isVerifyEmail() {
- return realm.isVerifyEmail();
- }
-
- @Override
- public void setVerifyEmail(boolean verifyEmail) {
- realm.setVerifyEmail(verifyEmail);
- }
-
- @Override
- public boolean isResetPasswordAllowed() {
- return realm.isResetPasswordAllowed();
- }
-
- @Override
- public void setResetPasswordAllowed(boolean resetPasswordAllowed) {
- realm.setResetPasswordAllowed(resetPasswordAllowed);
- }
-
- @Override
- public int getSsoSessionIdleTimeout() {
- return realm.getSsoSessionIdleTimeout();
- }
-
- @Override
- public void setSsoSessionIdleTimeout(int seconds) {
- realm.setSsoSessionIdleTimeout(seconds);
- }
-
- @Override
- public int getSsoSessionMaxLifespan() {
- return realm.getSsoSessionMaxLifespan();
- }
-
- @Override
- public void setSsoSessionMaxLifespan(int seconds) {
- realm.setSsoSessionMaxLifespan(seconds);
- }
-
- @Override
- public int getAccessTokenLifespan() {
- return realm.getAccessTokenLifespan();
- }
-
- @Override
- public void setAccessTokenLifespan(int seconds) {
- realm.setAccessTokenLifespan(seconds);
- }
-
- @Override
- public int getAccessCodeLifespan() {
- return realm.getAccessCodeLifespan();
- }
-
- @Override
- public void setAccessCodeLifespan(int seconds) {
- realm.setAccessCodeLifespan(seconds);
- }
-
- @Override
- public int getAccessCodeLifespanUserAction() {
- return realm.getAccessCodeLifespanUserAction();
- }
-
- @Override
- public void setAccessCodeLifespanUserAction(int seconds) {
- realm.setAccessCodeLifespanUserAction(seconds);
- }
-
- @Override
- public String getPublicKeyPem() {
- return realm.getPublicKeyPem();
- }
-
- @Override
- public void setPublicKeyPem(String publicKeyPem) {
- realm.setPublicKeyPem(publicKeyPem);
- }
-
- @Override
- public String getPrivateKeyPem() {
- return realm.getPrivateKeyPem();
- }
-
- @Override
- public void setPrivateKeyPem(String privateKeyPem) {
- realm.setPrivateKeyPem(privateKeyPem);
- }
-
- @Override
- public PublicKey getPublicKey() {
- return realm.getPublicKey();
- }
-
- @Override
- public void setPublicKey(PublicKey publicKey) {
- realm.setPublicKey(publicKey);
- }
-
- @Override
- public PrivateKey getPrivateKey() {
- return realm.getPrivateKey();
- }
-
- @Override
- public void setPrivateKey(PrivateKey privateKey) {
- realm.setPrivateKey(privateKey);
- }
-
- @Override
- public List getRequiredCredentials() {
- return realm.getRequiredCredentials();
- }
-
- @Override
- public void addRequiredCredential(String cred) {
- realm.addRequiredCredential(cred);
- }
-
- @Override
- public PasswordPolicy getPasswordPolicy() {
- return realm.getPasswordPolicy();
- }
-
- @Override
- public void setPasswordPolicy(PasswordPolicy policy) {
- realm.setPasswordPolicy(policy);
- }
-
- @Override
- public boolean validatePassword(UserModel userModel, String password) {
- if (provider.users().supports(Feature.VERIFY_CREDENTIALS)) {
- User user = provider.mappings().unwrap(userModel);
- return provider.users().verifyCredentials(user, new Credentials(UserCredentialModel.PASSWORD, password));
- } else {
- for (UserCredentialValueModel cred : userModel.getCredentialsDirectly()) {
- if (cred.getType().equals(UserCredentialModel.PASSWORD)) {
- return new Pbkdf2PasswordEncoder(cred.getSalt()).verify(password, cred.getValue());
- }
- }
- return false;
- }
- }
-
- @Override
- public boolean validateTOTP(UserModel userModel, String password, String token) {
- if (provider.users().supports(Feature.VERIFY_CREDENTIALS)) {
- User user = provider.mappings().unwrap(userModel);
- return provider.users().verifyCredentials(user, new Credentials(UserCredentialModel.PASSWORD, password),
- new Credentials(UserCredentialModel.TOTP, token));
- } else {
- if (!validatePassword(userModel, password)) return false;
- for (UserCredentialValueModel cred : userModel.getCredentialsDirectly()) {
- if (cred.getType().equals(UserCredentialModel.TOTP)) {
- return new TimeBasedOTP().validate(token, cred.getValue().getBytes());
- }
- }
- return false;
- }
- }
-
- @Override
- public UserModel getUser(String name) {
- return provider.getUserByUsername(name, this);
- }
-
- @Override
- public UserModel getUserByEmail(String email) {
- return provider.getUserByEmail(email, this);
- }
-
- @Override
- public UserModel getUserById(String name) {
- return provider.getUserById(name, this);
- }
-
- @Override
- public UserModel addUser(String id, String username, boolean addDefaultRoles) {
- if (id == null) {
- id = KeycloakModelUtils.generateId();
- }
-
- Set initialRoles = new HashSet();
-
- if (addDefaultRoles) {
- for (String r : realm.getDefaultRoles()) {
- initialRoles.add(realm.getRole(r).getId());
- }
-
- for (Application app : realm.getApplications()) {
- for (String r : app.getDefaultRoles()) {
- initialRoles.add(app.getRole(r).getId());
- }
- }
- }
-
- return provider.mappings().wrap(this, provider.users().addUser(id, username, initialRoles, realm.getId()));
- }
-
- @Override
- public UserModel addUser(String username) {
- return addUser(null, username, true);
- }
-
- @Override
- public boolean removeUser(String name) {
- return provider.users().removeUser(name, realm.getId());
- }
-
- @Override
- public RoleModel getRoleById(String id) {
- return provider.mappings().wrap(provider.realms().getRoleById(id, realm.getId()));
- }
-
- @Override
- public List getDefaultRoles() {
- return realm.getDefaultRoles();
- }
-
- @Override
- public void addDefaultRole(String name) {
- if (getRole(name) == null) {
- addRole(name);
- }
-
- realm.addDefaultRole(name);
- }
-
- @Override
- public void updateDefaultRoles(String[] defaultRoles) {
- for (String name : defaultRoles) {
- if (getRole(name) == null) {
- addRole(name);
- }
- }
-
- realm.updateDefaultRoles(defaultRoles);
- }
-
- @Override
- public ClientModel findClient(String clientId) {
- Client client = realm.findClient(clientId);
- if (client instanceof Application) {
- return provider.mappings().wrap((Application) client);
- } else if (client instanceof OAuthClient) {
- return provider.mappings().wrap((OAuthClient) client);
- } else {
- throw new IllegalArgumentException("Unsupported client type");
- }
- }
-
- @Override
- public Map getApplicationNameMap() {
- return provider.mappings().wrap(realm.getApplicationNameMap());
- }
-
- @Override
- public List getApplications() {
- return provider.mappings().wrapApps(realm.getApplications());
- }
-
- @Override
- public ApplicationModel addApplication(String name) {
- return addApplication(KeycloakModelUtils.generateId(), name);
- }
-
- @Override
- public ApplicationModel addApplication(String id, String name) {
- return provider.mappings().wrap(realm.addApplication(id, name));
- }
-
- @Override
- public boolean removeApplication(String id) {
- Application application = provider.realms().getApplicationById(id, realm.getId());
- if (application != null) {
- return realm.removeApplication(application);
- } else {
- return false;
- }
- }
-
- @Override
- public ApplicationModel getApplicationById(String id) {
- return provider.getApplicationById(id, this);
- }
-
- @Override
- public ApplicationModel getApplicationByName(String name) {
- return provider.mappings().wrap(realm.getApplicationByName(name));
- }
-
- @Override
- public void updateRequiredCredentials(Set creds) {
- realm.updateRequiredCredentials(creds);
- }
-
- @Override
- public UserModel getUserBySocialLink(SocialLinkModel socialLink) {
- return provider.getUserBySocialLink(socialLink, this);
- }
-
- @Override
- public Set getSocialLinks(UserModel user) {
- return provider.getSocialLinks(user, this);
- }
-
- @Override
- public SocialLinkModel getSocialLink(UserModel user, String socialProvider) {
- return provider.getSocialLink(user, socialProvider, this);
- }
-
- @Override
- public void addSocialLink(UserModel user, SocialLinkModel socialLink) {
- user.setAttribute("keycloak.socialLink." + socialLink.getSocialProvider() + ".userId", socialLink.getSocialUserId());
- user.setAttribute("keycloak.socialLink." + socialLink.getSocialProvider() + ".username", socialLink.getSocialUsername());
- }
-
- @Override
- public boolean removeSocialLink(UserModel user, String socialProvider) {
- if (user.getAttribute("keycloak.socialLink." + socialProvider + ".userId") != null) {
- user.removeAttribute("keycloak.socialLink." + socialProvider + ".userId");
- user.removeAttribute("keycloak.socialLink." + socialProvider + ".username");
- return true;
- } else {
- return false;
- }
- }
-
- @Override
- public boolean isSocial() {
- return realm.isSocial();
- }
-
- @Override
- public void setSocial(boolean social) {
- realm.setSocial(social);
- }
-
- @Override
- public boolean isUpdateProfileOnInitialSocialLogin() {
- return realm.isUpdateProfileOnInitialSocialLogin();
- }
-
- @Override
- public void setUpdateProfileOnInitialSocialLogin(boolean updateProfileOnInitialSocialLogin) {
- realm.setUpdateProfileOnInitialSocialLogin(updateProfileOnInitialSocialLogin);
- }
-
- @Override
- public UsernameLoginFailureModel getUserLoginFailure(String username) {
- return provider.getUserLoginFailure(username, this);
- }
-
- @Override
- public UsernameLoginFailureModel addUserLoginFailure(String username) {
- return provider.addUserLoginFailure(username, this);
- }
-
- @Override
- public List getAllUserLoginFailures() {
- return provider.getAllUserLoginFailures(this);
- }
-
- @Override
- public List getUsers() {
- return provider.getUsers(this);
- }
-
- @Override
- public List searchForUser(String search) {
- return provider.searchForUser(search, this);
- }
-
- @Override
- public List searchForUserByAttributes(Map attributes) {
- return provider.searchForUserByAttributes(attributes, this);
- }
-
- @Override
- public OAuthClientModel addOAuthClient(String name) {
- return addOAuthClient(KeycloakModelUtils.generateId(), name);
- }
-
- @Override
- public OAuthClientModel addOAuthClient(String id, String name) {
- return provider.mappings().wrap(realm.addOAuthClient(id, name));
- }
-
- @Override
- public OAuthClientModel getOAuthClient(String name) {
- return provider.mappings().wrap(realm.getOAuthClient(name));
- }
-
- @Override
- public OAuthClientModel getOAuthClientById(String id) {
- return provider.getOAuthClientById(id, this);
- }
-
- @Override
- public boolean removeOAuthClient(String id) {
- OAuthClient client = provider.realms().getOAuthClientById(id, realm.getId());
- if (client != null) {
- return realm.removeOAuthClient(client);
- } else {
- return false;
- }
- }
-
- @Override
- public List getOAuthClients() {
- return provider.mappings().wrapClients(realm.getOAuthClients());
- }
-
- @Override
- public Map getSmtpConfig() {
- return realm.getSmtpConfig();
- }
-
- @Override
- public void setSmtpConfig(Map smtpConfig) {
- realm.setSmtpConfig(smtpConfig);
- }
-
- @Override
- public Map getSocialConfig() {
- return realm.getSocialConfig();
- }
-
- @Override
- public void setSocialConfig(Map socialConfig) {
- realm.setSocialConfig(socialConfig);
- }
-
- @Override
- public Map getLdapServerConfig() {
- return realm.getLdapServerConfig();
- }
-
- @Override
- public void setLdapServerConfig(Map ldapServerConfig) {
- realm.setLdapServerConfig(ldapServerConfig);
- }
-
- @Override
- public List getAuthenticationProviders() {
- return realm.getAuthenticationProviders();
- }
-
- @Override
- public void setAuthenticationProviders(List authenticationProviders) {
- realm.setAuthenticationProviders(authenticationProviders);
- }
-
- @Override
- public String getLoginTheme() {
- return realm.getLoginTheme();
- }
-
- @Override
- public void setLoginTheme(String name) {
- realm.setLoginTheme(name);
- }
-
- @Override
- public String getAccountTheme() {
- return realm.getAccountTheme();
- }
-
- @Override
- public void setAccountTheme(String name) {
- realm.setAccountTheme(name);
- }
-
- @Override
- public String getAdminTheme() {
- return realm.getAdminTheme();
- }
-
- @Override
- public void setAdminTheme(String name) {
- realm.setAdminTheme(name);
- }
-
- @Override
- public String getEmailTheme() {
- return realm.getEmailTheme();
- }
-
- @Override
- public void setEmailTheme(String name) {
- realm.setEmailTheme(name);
- }
-
- @Override
- public int getNotBefore() {
- return realm.getNotBefore();
- }
-
- @Override
- public void setNotBefore(int notBefore) {
- realm.setNotBefore(notBefore);
- }
-
- @Override
- public boolean isAuditEnabled() {
- return realm.isAuditEnabled();
- }
-
- @Override
- public void setAuditEnabled(boolean enabled) {
- realm.setAuditEnabled(enabled);
- }
-
- @Override
- public long getAuditExpiration() {
- return realm.getAuditExpiration();
- }
-
- @Override
- public void setAuditExpiration(long expiration) {
- realm.setAuditExpiration(expiration);
- }
-
- @Override
- public Set getAuditListeners() {
- return realm.getAuditListeners();
- }
-
- @Override
- public void setAuditListeners(Set listeners) {
- realm.setAuditListeners(listeners);
- }
-
- @Override
- public ApplicationModel getMasterAdminApp() {
- return provider.mappings().wrap(realm.getMasterAdminApp());
- }
-
- @Override
- public void setMasterAdminApp(ApplicationModel app) {
- realm.setMasterAdminApp(provider.mappings().unwrap(app));
- }
-
- @Override
- public ClientModel findClientById(String id) {
- Application application = provider.realms().getApplicationById(id, realm.getId());
- if (application != null) {
- return provider.mappings().wrap(application);
- }
-
- OAuthClient client = provider.realms().getOAuthClientById(id, realm.getId());
- if (client != null) {
- return provider.mappings().wrap(client);
- }
-
- return null;
- }
-
- @Override
- public RoleModel getRole(String name) {
- return provider.mappings().wrap(realm.getRole(name));
- }
-
- @Override
- public RoleModel addRole(String name) {
- return addRole(KeycloakModelUtils.generateId(), name);
- }
-
- @Override
- public RoleModel addRole(String id, String name) {
- return provider.mappings().wrap(realm.addRole(id, name));
-
- }
-
- @Override
- public boolean removeRoleById(String id) {
- RoleModel role = getRoleById(id);
- if (role != null) {
- if (role.getContainer().removeRole(role)) {
- provider.users().onRoleRemoved(role.getId());
- return true;
- } else {
- return false;
- }
- }
- return false;
- }
-
- @Override
- public boolean removeRole(RoleModel role) {
- return removeRoleById(role.getId());
- }
-
- @Override
- public Set getRoles() {
- return provider.mappings().wrap(realm.getRoles());
- }
-
- @Override
- public boolean equals(Object o) {
- if (this == o) return true;
- if (o == null || !(o instanceof RealmModel)) return false;
-
- RealmModel that = (RealmModel) o;
- return that.getId().equals(getId());
- }
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/hybrid/RoleAdapter.java b/model/hybrid/src/main/java/org/keycloak/models/hybrid/RoleAdapter.java
deleted file mode 100755
index 7b10d04984..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/hybrid/RoleAdapter.java
+++ /dev/null
@@ -1,114 +0,0 @@
-package org.keycloak.models.hybrid;
-
-import org.keycloak.models.RoleContainerModel;
-import org.keycloak.models.RoleModel;
-import org.keycloak.models.realms.Application;
-import org.keycloak.models.realms.Realm;
-import org.keycloak.models.realms.Role;
-import org.keycloak.models.utils.KeycloakModelUtils;
-
-import java.util.HashSet;
-import java.util.Set;
-
-/**
- * @author Stian Thorgersen
- */
-public class RoleAdapter implements RoleModel {
-
- private HybridModelProvider provider;
-
- private Role role;
-
- RoleAdapter(HybridModelProvider provider, Role role) {
- this.provider = provider;
- this.role = role;
- }
-
- Role getRole() {
- return role;
- }
-
- @Override
- public String getName() {
- return role.getName();
- }
-
- @Override
- public String getDescription() {
- return role.getDescription();
- }
-
- @Override
- public void setDescription(String description) {
- role.setDescription(description);
- }
-
- @Override
- public String getId() {
- return role.getId();
- }
-
- @Override
- public void setName(String name) {
- role.setName(name);
- }
-
- @Override
- public boolean isComposite() {
- return role.isComposite();
- }
-
- @Override
- public void addCompositeRole(RoleModel role) {
- this.role.addCompositeRole(provider.mappings().unwrap(role));
- }
-
- @Override
- public void removeCompositeRole(RoleModel role) {
- this.role.removeCompositeRole(provider.mappings().unwrap(role));
- }
-
- @Override
- public Set getComposites() {
- return provider.mappings().wrap(role.getComposites());
- }
-
- @Override
- public RoleContainerModel getContainer() {
- if (role.getContainer() instanceof Application) {
- return provider.mappings().wrap((Application) role.getContainer());
- } else if (role.getContainer() instanceof Realm) {
- return provider.mappings().wrap((Realm) role.getContainer());
- } else {
- throw new IllegalArgumentException("Unsupported role container");
- }
- }
-
- @Override
- public boolean hasRole(RoleModel role) {
- if (this.equals(role)) {
- return true;
- }
- if (!isComposite()) {
- return false;
- }
-
- Set visited = new HashSet();
- return KeycloakModelUtils.searchFor(role, this, visited);
- }
-
- @Override
- public boolean equals(Object o) {
- if (this == o) return true;
- if (o == null || !(o instanceof RoleModel)) return false;
-
- RoleModel that = (RoleModel) o;
- return that.getId().equals(getId());
- }
-
- @Override
- public int hashCode() {
- return getId().hashCode();
- }
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/hybrid/UserAdapter.java b/model/hybrid/src/main/java/org/keycloak/models/hybrid/UserAdapter.java
deleted file mode 100644
index e082fc6ff2..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/hybrid/UserAdapter.java
+++ /dev/null
@@ -1,325 +0,0 @@
-package org.keycloak.models.hybrid;
-
-import org.keycloak.models.ApplicationModel;
-import org.keycloak.models.AuthenticationLinkModel;
-import org.keycloak.models.PasswordPolicy;
-import org.keycloak.models.RealmModel;
-import org.keycloak.models.RoleModel;
-import org.keycloak.models.UserCredentialModel;
-import org.keycloak.models.UserCredentialValueModel;
-import org.keycloak.models.UserModel;
-import org.keycloak.models.users.Attributes;
-import org.keycloak.models.users.Credentials;
-import org.keycloak.models.users.Feature;
-import org.keycloak.models.users.User;
-import org.keycloak.models.utils.Pbkdf2PasswordEncoder;
-
-import java.util.Collections;
-import java.util.HashSet;
-import java.util.Iterator;
-import java.util.LinkedList;
-import java.util.List;
-import java.util.Map;
-import java.util.Set;
-
-import static org.keycloak.models.utils.Pbkdf2PasswordEncoder.getSalt;
-
-/**
- * @author Stian Thorgersen
- */
-public class UserAdapter implements UserModel {
-
- private HybridModelProvider provider;
- private RealmModel realm;
- private User user;
-
- UserAdapter(HybridModelProvider provider, RealmModel realm, User user) {
- this.provider = provider;
- this.realm = realm;
- this.user = user;
- }
-
- User getUser() {
- return user;
- }
-
- @Override
- public String getId() {
- return user.getId();
- }
-
- @Override
- public String getUsername() {
- return user.getUsername();
- }
-
- @Override
- public void setUsername(String username) {
- user.setUsername(username);
- }
-
- @Override
- public boolean isEnabled() {
- return user.isEnabled();
- }
-
- @Override
- public void setEnabled(boolean enabled) {
- user.setEnabled(enabled);
- }
-
- @Override
- public void setAttribute(String name, String value) {
- user.setAttribute(name, value);
- }
-
- @Override
- public void removeAttribute(String name) {
- user.removeAttribute(name);
- }
-
- @Override
- public String getAttribute(String name) {
- return user.getAttribute(name);
- }
-
- @Override
- public Map getAttributes() {
- return user.getAttributes();
- }
-
- @Override
- public Set getRequiredActions() {
- String value = user.getAttribute(Attributes.REQUIRED_ACTIONS);
- if (value == null) {
- return Collections.emptySet();
- }
-
- Set actions = new HashSet();
- for (String a : value.substring(1, value.length() - 1).split(",")) {
- actions.add(RequiredAction.valueOf(a.trim()));
- }
- return actions;
- }
-
- @Override
- public void addRequiredAction(RequiredAction action) {
- Set actions;
- if (user.getAttribute(Attributes.REQUIRED_ACTIONS) == null) {
- actions = new HashSet();
- } else {
- actions = getRequiredActions();
- }
-
- if (!actions.contains(action)) {
- actions.add(action);
- user.setAttribute(Attributes.REQUIRED_ACTIONS, actions.toString());
- }
- }
-
- @Override
- public void removeRequiredAction(RequiredAction action) {
- Set actions = getRequiredActions();
- if (actions.contains(action)) {
- actions.remove(action);
-
- if (actions.isEmpty()) {
- user.removeAttribute(Attributes.REQUIRED_ACTIONS);
- } else {
- user.setAttribute(Attributes.REQUIRED_ACTIONS, actions.toString());
- }
- }
- }
-
- @Override
- public String getFirstName() {
- return user.getFirstName();
- }
-
- @Override
- public void setFirstName(String firstName) {
- user.setFirstName(firstName);
- }
-
- @Override
- public String getLastName() {
- return user.getLastName();
- }
-
- @Override
- public void setLastName(String lastName) {
- user.setLastName(lastName);
- }
-
- @Override
- public String getEmail() {
- return user.getEmail();
- }
-
- @Override
- public void setEmail(String email) {
- user.setEmail(email);
- }
-
- @Override
- public boolean isEmailVerified() {
- return isBooleanAttribute(Attributes.EMAIL_VERIFIED);
- }
-
- @Override
- public void setEmailVerified(boolean verified) {
- setBooleanAttribute(Attributes.EMAIL_VERIFIED, verified);
- }
-
- @Override
- public boolean isTotp() {
- return isBooleanAttribute(Attributes.TOTP_ENABLED);
- }
-
- @Override
- public void setTotp(boolean totp) {
- setBooleanAttribute(Attributes.TOTP_ENABLED, totp);
- }
-
- @Override
- public void updateCredential(UserCredentialModel model) {
- if (provider.users().supports(Feature.UPDATE_CREDENTIALS)) {
- Credentials credentials;
-
- if (model.getType().equals(UserCredentialModel.PASSWORD)) {
- byte[] salt = getSalt();
- int hashIterations = 1;
- PasswordPolicy policy = realm.getPasswordPolicy();
- if (policy != null) {
- hashIterations = policy.getHashIterations();
- if (hashIterations == -1) hashIterations = 1;
- }
- String value = new Pbkdf2PasswordEncoder(salt).encode(model.getValue(), hashIterations);
-
- credentials = new Credentials(model.getType(), salt, value, hashIterations, model.getDevice());
- } else {
- credentials = new Credentials(model.getType(), model.getValue(), model.getDevice());
- }
-
- user.updateCredential(credentials);
- } else {
- throw new RuntimeException("Users store doesn't support updating credentials");
- }
- }
-
- @Override
- public List getCredentialsDirectly() {
- if (provider.users().supports(Feature.READ_CREDENTIALS)) {
- List models = new LinkedList();
- for (Credentials cred : user.getCredentials()) {
- UserCredentialValueModel model = new UserCredentialValueModel();
- model.setType(cred.getType());
- model.setValue(cred.getValue());
- model.setDevice(cred.getDevice());
- model.setSalt(cred.getSalt());
- model.setHashIterations(cred.getHashIterations());
- models.add(model);
- }
- return models;
- } else {
- throw new IllegalStateException("Users provider doesn't support reading credentials");
- }
- }
-
- @Override
- public void updateCredentialDirectly(UserCredentialValueModel model) {
- if (provider.users().supports(Feature.UPDATE_CREDENTIALS)) {
- Credentials credentials = new Credentials(model.getType(), model.getSalt(), model.getValue(), model.getHashIterations(), model.getDevice());
- user.updateCredential(credentials);
- } else {
- throw new IllegalStateException("Users provider doesn't support updating credentials");
- }
- }
-
- @Override
- public AuthenticationLinkModel getAuthenticationLink() {
- for (Map.Entry e : user.getAttributes().entrySet()) {
- if (e.getKey().matches("keycloak\\.authenticationLink\\..*\\.userId")) {
- String provider = e.getKey().split("\\.")[2];
- return new AuthenticationLinkModel(provider, e.getValue());
- }
- }
- return null;
- }
-
- @Override
- public void setAuthenticationLink(AuthenticationLinkModel authenticationLink) {
- Iterator> itr = user.getAttributes().entrySet().iterator();
- while (itr.hasNext()) {
- if (itr.next().getKey().matches("keycloak\\.authenticationLink\\..*\\.userId")) {
- itr.remove();
- }
- }
- user.setAttribute("keycloak.authenticationLink." + authenticationLink.getAuthProvider() + ".userId", authenticationLink.getAuthUserId());
- }
-
- @Override
- public Set getRealmRoleMappings() {
- Set roles = new HashSet();
- for (RoleModel r : getRoleMappings()) {
- if (r.getContainer() instanceof RealmModel) {
- roles.add(r);
- }
- }
- return roles;
- }
-
- @Override
- public Set getApplicationRoleMappings(ApplicationModel app) {
- Set roles = new HashSet();
- for (RoleModel r : getRoleMappings()) {
- if (r.getContainer() instanceof ApplicationModel && ((ApplicationModel) r.getContainer()).getId().equals(app.getId())) {
- roles.add(r);
- }
- }
- return roles;
- }
-
- @Override
- public boolean hasRole(RoleModel role) {
- for (RoleModel r : getRoleMappings()) {
- if (r.hasRole(role)) {
- return true;
- }
- }
- return false;
- }
-
- @Override
- public void grantRole(RoleModel role) {
- user.grantRole(role.getId());
- }
-
- @Override
- public Set getRoleMappings() {
- Set roles = new HashSet();
- for (String r : user.getRoleMappings()) {
- roles.add(realm.getRoleById(r));
- }
- return roles;
- }
-
- @Override
- public void deleteRoleMapping(RoleModel role) {
- user.deleteRoleMapping(role.getId());
- }
-
- private boolean isBooleanAttribute(String name) {
- String v = user.getAttribute(name);
- return v != null ? v.equals("true") : false;
- }
-
- private void setBooleanAttribute(String name, boolean enable) {
- if (enable) {
- user.setAttribute(name, "true");
- } else {
- user.removeAttribute(name);
- }
- }
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/hybrid/UserSessionAdapter.java b/model/hybrid/src/main/java/org/keycloak/models/hybrid/UserSessionAdapter.java
deleted file mode 100644
index 8b5a0d9f93..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/hybrid/UserSessionAdapter.java
+++ /dev/null
@@ -1,100 +0,0 @@
-package org.keycloak.models.hybrid;
-
-import org.keycloak.models.ClientModel;
-import org.keycloak.models.RealmModel;
-import org.keycloak.models.UserModel;
-import org.keycloak.models.UserSessionModel;
-import org.keycloak.models.sessions.Session;
-
-import java.util.LinkedList;
-import java.util.List;
-
-/**
- * @author Stian Thorgersen
- */
-public class UserSessionAdapter implements UserSessionModel {
-
- private HybridModelProvider provider;
- private RealmModel realm;
- private Session session;
-
- UserSessionAdapter(HybridModelProvider provider, RealmModel realm, Session session) {
- this.provider = provider;
- this.realm = realm;
- this.session = session;
- }
-
- Session getSession() {
- return session;
- }
-
- @Override
- public String getId() {
- return session.getId();
- }
-
- @Override
- public void setId(String id) {
- session.setId(id);
- }
-
- @Override
- public UserModel getUser() {
- return provider.getUserById(session.getUser(), realm);
- }
-
- @Override
- public void setUser(UserModel user) {
- session.setUser(user.getId());
- }
-
- @Override
- public String getIpAddress() {
- return session.getIpAddress();
- }
-
- @Override
- public void setIpAddress(String ipAddress) {
- session.setIpAddress(ipAddress);
- }
-
- @Override
- public int getStarted() {
- return session.getStarted();
- }
-
- @Override
- public void setStarted(int started) {
- session.setStarted(started);
- }
-
- @Override
- public int getLastSessionRefresh() {
- return session.getLastSessionRefresh();
- }
-
- @Override
- public void setLastSessionRefresh(int seconds) {
- session.setLastSessionRefresh(seconds);
- }
-
- @Override
- public void associateClient(ClientModel client) {
- session.associateClient(client.getId());
- }
-
- @Override
- public List getClientAssociations() {
- List clients = new LinkedList();
- for (String id : session.getClientAssociations()) {
- clients.add(realm.findClientById(id));
- }
- return clients;
- }
-
- @Override
- public void removeAssociatedClient(ClientModel client) {
- session.removeAssociatedClient(client.getId());
- }
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/hybrid/UsernameLoginFailureAdapter.java b/model/hybrid/src/main/java/org/keycloak/models/hybrid/UsernameLoginFailureAdapter.java
deleted file mode 100755
index b496f3f86c..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/hybrid/UsernameLoginFailureAdapter.java
+++ /dev/null
@@ -1,70 +0,0 @@
-package org.keycloak.models.hybrid;
-
-import org.keycloak.models.UsernameLoginFailureModel;
-import org.keycloak.models.sessions.LoginFailure;
-
-/**
- * @author Stian Thorgersen
- */
-public class UsernameLoginFailureAdapter implements UsernameLoginFailureModel {
-
- private HybridModelProvider provider;
-
- private LoginFailure loginFailure;
-
- UsernameLoginFailureAdapter(HybridModelProvider provider, LoginFailure loginFailure) {
- this.provider = provider;
- this.loginFailure = loginFailure;
- }
-
- @Override
- public String getUsername() {
- return loginFailure.getUsername();
- }
-
- @Override
- public int getFailedLoginNotBefore() {
- return loginFailure.getFailedLoginNotBefore();
- }
-
- @Override
- public void setFailedLoginNotBefore(int notBefore) {
- loginFailure.setFailedLoginNotBefore(notBefore);
- }
-
- @Override
- public int getNumFailures() {
- return loginFailure.getNumFailures();
- }
-
- @Override
- public void incrementFailures() {
- loginFailure.incrementFailures();
- }
-
- @Override
- public void clearFailures() {
- loginFailure.clearFailures();
- }
-
- @Override
- public long getLastFailure() {
- return loginFailure.getLastFailure();
- }
-
- @Override
- public void setLastFailure(long lastFailure) {
- loginFailure.setLastFailure(lastFailure);
- }
-
- @Override
- public String getLastIPFailure() {
- return loginFailure.getLastIPFailure();
- }
-
- @Override
- public void setLastIPFailure(String ip) {
- loginFailure.setLastIPFailure(ip);
- }
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/realms/Application.java b/model/hybrid/src/main/java/org/keycloak/models/realms/Application.java
deleted file mode 100755
index bf6afb0c16..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/realms/Application.java
+++ /dev/null
@@ -1,40 +0,0 @@
-package org.keycloak.models.realms;
-
-import java.util.List;
-import java.util.Set;
-
-/**
- * @author Bill Burke
- * @version $Revision: 1 $
- */
-public interface Application extends RoleContainer, Client {
- void updateApplication();
-
- String getName();
-
- void setName(String name);
-
- boolean isSurrogateAuthRequired();
-
- void setSurrogateAuthRequired(boolean surrogateAuthRequired);
-
- String getManagementUrl();
-
- void setManagementUrl(String url);
-
- String getBaseUrl();
-
- void setBaseUrl(String url);
-
- List getDefaultRoles();
-
- void addDefaultRole(String name);
-
- void updateDefaultRoles(String[] defaultRoles);
-
- Set getApplicationScopeMappings(Client client);
-
- boolean isBearerOnly();
- void setBearerOnly(boolean only);
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/realms/Client.java b/model/hybrid/src/main/java/org/keycloak/models/realms/Client.java
deleted file mode 100755
index f7d6a6a374..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/realms/Client.java
+++ /dev/null
@@ -1,76 +0,0 @@
-package org.keycloak.models.realms;
-
-import java.util.Set;
-
-/**
- * @author Bill Burke
- * @version $Revision: 1 $
- */
-public interface Client {
- /**
- * Internal database key
- *
- * @return
- */
- String getId();
-
- /**
- * String exposed to outside world
- *
- * @return
- */
- String getClientId();
-
- long getAllowedClaimsMask();
-
- void setAllowedClaimsMask(long mask);
-
- Set getWebOrigins();
-
- void setWebOrigins(Set webOrigins);
-
- void addWebOrigin(String webOrigin);
-
- void removeWebOrigin(String webOrigin);
-
- Set getRedirectUris();
-
- void setRedirectUris(Set redirectUris);
-
- void addRedirectUri(String redirectUri);
-
- void removeRedirectUri(String redirectUri);
-
-
- boolean isEnabled();
-
- void setEnabled(boolean enabled);
-
- boolean validateSecret(String secret);
- String getSecret();
- public void setSecret(String secret);
-
- boolean isPublicClient();
- void setPublicClient(boolean flag);
-
- boolean isDirectGrantsOnly();
- void setDirectGrantsOnly(boolean flag);
-
- Set getScopeMappings();
- void addScopeMapping(Role role);
- void deleteScopeMapping(Role role);
- Set getRealmScopeMappings();
-
-
- Realm getRealm();
-
- /**
- * Time in seconds since epoc
- *
- * @return
- */
- int getNotBefore();
-
- void setNotBefore(int notBefore);
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/realms/OAuthClient.java b/model/hybrid/src/main/java/org/keycloak/models/realms/OAuthClient.java
deleted file mode 100755
index 74f4cfdb11..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/realms/OAuthClient.java
+++ /dev/null
@@ -1,11 +0,0 @@
-package org.keycloak.models.realms;
-
-/**
- * @author Bill Burke
- * @version $Revision: 1 $
- */
-public interface OAuthClient extends Client {
-
- void setClientId(String id);
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/realms/Realm.java b/model/hybrid/src/main/java/org/keycloak/models/realms/Realm.java
deleted file mode 100755
index 5f1d6e8953..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/realms/Realm.java
+++ /dev/null
@@ -1,208 +0,0 @@
-package org.keycloak.models.realms;
-
-import org.keycloak.models.AuthenticationProviderModel;
-import org.keycloak.models.PasswordPolicy;
-import org.keycloak.models.RequiredCredentialModel;
-
-import java.security.PrivateKey;
-import java.security.PublicKey;
-import java.util.List;
-import java.util.Map;
-import java.util.Set;
-
-/**
- * @author Bill Burke
- * @version $Revision: 1 $
- */
-public interface Realm extends RoleContainer {
-
- String getId();
-
- String getName();
-
- void setName(String name);
-
- boolean isEnabled();
-
- void setEnabled(boolean enabled);
-
- boolean isSslNotRequired();
-
- void setSslNotRequired(boolean sslNotRequired);
-
- boolean isRegistrationAllowed();
-
- void setRegistrationAllowed(boolean registrationAllowed);
-
- boolean isPasswordCredentialGrantAllowed();
-
- void setPasswordCredentialGrantAllowed(boolean passwordCredentialGrantAllowed);
-
- boolean isRememberMe();
-
- void setRememberMe(boolean rememberMe);
-
- //--- brute force settings
- boolean isBruteForceProtected();
- void setBruteForceProtected(boolean value);
- int getMaxFailureWaitSeconds();
- void setMaxFailureWaitSeconds(int val);
- int getWaitIncrementSeconds();
- void setWaitIncrementSeconds(int val);
- int getMinimumQuickLoginWaitSeconds();
- void setMinimumQuickLoginWaitSeconds(int val);
- long getQuickLoginCheckMilliSeconds();
- void setQuickLoginCheckMilliSeconds(long val);
- int getMaxDeltaTimeSeconds();
- void setMaxDeltaTimeSeconds(int val);
- int getFailureFactor();
- void setFailureFactor(int failureFactor);
- //--- end brute force settings
-
-
- boolean isVerifyEmail();
-
- void setVerifyEmail(boolean verifyEmail);
-
- boolean isResetPasswordAllowed();
-
- void setResetPasswordAllowed(boolean resetPasswordAllowed);
-
- int getSsoSessionIdleTimeout();
- void setSsoSessionIdleTimeout(int seconds);
-
- int getSsoSessionMaxLifespan();
- void setSsoSessionMaxLifespan(int seconds);
-
- int getAccessTokenLifespan();
-
- void setAccessTokenLifespan(int seconds);
-
- int getAccessCodeLifespan();
-
- void setAccessCodeLifespan(int seconds);
-
- int getAccessCodeLifespanUserAction();
-
- void setAccessCodeLifespanUserAction(int seconds);
-
- String getPublicKeyPem();
-
- void setPublicKeyPem(String publicKeyPem);
-
- String getPrivateKeyPem();
-
- void setPrivateKeyPem(String privateKeyPem);
-
- PublicKey getPublicKey();
-
- void setPublicKey(PublicKey publicKey);
-
- PrivateKey getPrivateKey();
-
- void setPrivateKey(PrivateKey privateKey);
-
- List getRequiredCredentials();
-
- void addRequiredCredential(String cred);
-
- PasswordPolicy getPasswordPolicy();
-
- void setPasswordPolicy(PasswordPolicy policy);
-
- List getDefaultRoles();
-
- void addDefaultRole(String name);
-
- void updateDefaultRoles(String[] defaultRoles);
-
- Client findClient(String clientId);
-
- Map getApplicationNameMap();
-
- List getApplications();
-
- Application addApplication(String id, String name);
-
- boolean removeApplication(Application application);
-
- Application getApplicationByName(String name);
-
- void updateRequiredCredentials(Set creds);
-
- boolean isSocial();
-
- void setSocial(boolean social);
-
- boolean isUpdateProfileOnInitialSocialLogin();
-
- void setUpdateProfileOnInitialSocialLogin(boolean updateProfileOnInitialSocialLogin);
-
- OAuthClient addOAuthClient(String id, String name);
-
- OAuthClient getOAuthClient(String name);
- boolean removeOAuthClient(OAuthClient client);
-
- List getOAuthClients();
-
- Map getSmtpConfig();
-
- void setSmtpConfig(Map smtpConfig);
-
- Map getSocialConfig();
-
- void setSocialConfig(Map socialConfig);
-
- Map getLdapServerConfig();
-
- void setLdapServerConfig(Map ldapServerConfig);
-
- List getAuthenticationProviders();
-
- void setAuthenticationProviders(List authenticationProviders);
-
- String getLoginTheme();
-
- void setLoginTheme(String name);
-
- String getAccountTheme();
-
- void setAccountTheme(String name);
-
- String getAdminTheme();
-
- void setAdminTheme(String name);
-
- String getEmailTheme();
-
- void setEmailTheme(String name);
-
-
- /**
- * Time in seconds since epoc
- *
- * @return
- */
- int getNotBefore();
-
- void setNotBefore(int notBefore);
-
- boolean removeRole(Role role);
-
- boolean isAuditEnabled();
-
- void setAuditEnabled(boolean enabled);
-
- long getAuditExpiration();
-
- void setAuditExpiration(long expiration);
-
- Set getAuditListeners();
-
- void setAuditListeners(Set listeners);
-
- Application getMasterAdminApp();
-
- void setMasterAdminApp(Application app);
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/realms/RealmProvider.java b/model/hybrid/src/main/java/org/keycloak/models/realms/RealmProvider.java
deleted file mode 100644
index b762d67ca4..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/realms/RealmProvider.java
+++ /dev/null
@@ -1,29 +0,0 @@
-package org.keycloak.models.realms;
-
-import org.keycloak.models.KeycloakTransaction;
-import org.keycloak.provider.Provider;
-
-import java.util.List;
-
-/**
- * @author Stian Thorgersen
- */
-public interface RealmProvider extends Provider {
-
- Realm createRealm(String name);
- Realm createRealm(String id, String name);
-
- Realm getRealm(String id);
- Realm getRealmByName(String name);
- List getRealms();
- boolean removeRealm(String id);
-
- Role getRoleById(String id, String realm);
- Application getApplicationById(String id, String realm);
- OAuthClient getOAuthClientById(String id, String realm);
-
- KeycloakTransaction getTransaction();
-
- void close();
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/realms/RealmProviderFactory.java b/model/hybrid/src/main/java/org/keycloak/models/realms/RealmProviderFactory.java
deleted file mode 100755
index fb4dea3120..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/realms/RealmProviderFactory.java
+++ /dev/null
@@ -1,9 +0,0 @@
-package org.keycloak.models.realms;
-
-import org.keycloak.provider.ProviderFactory;
-
-/**
- * @author Stian Thorgersen
- */
-public interface RealmProviderFactory extends ProviderFactory {
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/realms/RealmSpi.java b/model/hybrid/src/main/java/org/keycloak/models/realms/RealmSpi.java
deleted file mode 100644
index 9ec584f0b9..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/realms/RealmSpi.java
+++ /dev/null
@@ -1,27 +0,0 @@
-package org.keycloak.models.realms;
-
-import org.keycloak.provider.Provider;
-import org.keycloak.provider.ProviderFactory;
-import org.keycloak.provider.Spi;
-
-/**
- * @author Stian Thorgersen
- */
-public class RealmSpi implements Spi {
-
- @Override
- public String getName() {
- return "modelRealms";
- }
-
- @Override
- public Class getProviderClass() {
- return RealmProvider.class;
- }
-
- @Override
- public Class getProviderFactoryClass() {
- return RealmProviderFactory.class;
- }
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/realms/Role.java b/model/hybrid/src/main/java/org/keycloak/models/realms/Role.java
deleted file mode 100755
index 431d1b6bac..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/realms/Role.java
+++ /dev/null
@@ -1,31 +0,0 @@
-package org.keycloak.models.realms;
-
-import java.util.Set;
-
-/**
- * @author Bill Burke
- * @version $Revision: 1 $
- */
-public interface Role {
-
- String getId();
-
- String getName();
-
- void setName(String name);
-
- String getDescription();
-
- void setDescription(String description);
-
- boolean isComposite();
-
- void addCompositeRole(Role role);
-
- void removeCompositeRole(Role role);
-
- Set getComposites();
-
- RoleContainer getContainer();
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/realms/RoleContainer.java b/model/hybrid/src/main/java/org/keycloak/models/realms/RoleContainer.java
deleted file mode 100755
index 5d4c02cbd0..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/realms/RoleContainer.java
+++ /dev/null
@@ -1,19 +0,0 @@
-package org.keycloak.models.realms;
-
-import java.util.Set;
-
-/**
- * @author Bill Burke
- * @version $Revision: 1 $
- */
-public interface RoleContainer {
-
- Role getRole(String name);
-
- Set getRoles();
-
- Role addRole(String id, String name);
-
- boolean removeRole(Role role);
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/sessions/LoginFailure.java b/model/hybrid/src/main/java/org/keycloak/models/sessions/LoginFailure.java
deleted file mode 100755
index f0e7b24c6f..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/sessions/LoginFailure.java
+++ /dev/null
@@ -1,29 +0,0 @@
-package org.keycloak.models.sessions;
-
-/**
- * @author Bill Burke
- * @version $Revision: 1 $
- */
-public interface LoginFailure {
-
- String getUsername();
-
- int getFailedLoginNotBefore();
-
- void setFailedLoginNotBefore(int notBefore);
-
- int getNumFailures();
-
- void incrementFailures();
-
- void clearFailures();
-
- long getLastFailure();
-
- void setLastFailure(long lastFailure);
-
- String getLastIPFailure();
-
- void setLastIPFailure(String ip);
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/sessions/Session.java b/model/hybrid/src/main/java/org/keycloak/models/sessions/Session.java
deleted file mode 100755
index 722895d7a1..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/sessions/Session.java
+++ /dev/null
@@ -1,36 +0,0 @@
-package org.keycloak.models.sessions;
-
-import java.util.List;
-
-/**
- * @author Stian Thorgersen
- */
-public interface Session {
-
- String getId();
-
- void setId(String id);
-
- String getUser();
-
- void setUser(String user);
-
- String getIpAddress();
-
- void setIpAddress(String ipAddress);
-
- int getStarted();
-
- void setStarted(int started);
-
- int getLastSessionRefresh();
-
- void setLastSessionRefresh(int seconds);
-
- void associateClient(String client);
-
- List getClientAssociations();
-
- void removeAssociatedClient(String client);
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/sessions/SessionProvider.java b/model/hybrid/src/main/java/org/keycloak/models/sessions/SessionProvider.java
deleted file mode 100644
index baf0396afd..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/sessions/SessionProvider.java
+++ /dev/null
@@ -1,42 +0,0 @@
-package org.keycloak.models.sessions;
-
-import org.keycloak.models.KeycloakTransaction;
-import org.keycloak.provider.Provider;
-
-import java.util.List;
-import java.util.Set;
-
-/**
- * @author Stian Thorgersen
- */
-public interface SessionProvider extends Provider {
-
- LoginFailure getUserLoginFailure(String username, String realm);
-
- LoginFailure addUserLoginFailure(String username, String realm);
-
- List getAllUserLoginFailures(String realm);
-
- Session createUserSession(String realm, String id, String user, String ipAddress);
-
- Session getUserSession(String id, String realm);
-
- List getUserSessionsByUser(String user, String realm);
-
- Set getUserSessionsByClient(String realm, String client);
-
- int getActiveUserSessions(String realm, String client);
-
- void removeUserSession(Session session);
-
- void removeUserSessions(String realm, String user);
-
- void removeExpiredUserSessions(String realm, long refreshTimeout, long sessionTimeout);
-
- void removeUserSessions(String realm);
-
- KeycloakTransaction getTransaction();
-
- void close();
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/sessions/SessionProviderFactory.java b/model/hybrid/src/main/java/org/keycloak/models/sessions/SessionProviderFactory.java
deleted file mode 100755
index 08e20511f2..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/sessions/SessionProviderFactory.java
+++ /dev/null
@@ -1,9 +0,0 @@
-package org.keycloak.models.sessions;
-
-import org.keycloak.provider.ProviderFactory;
-
-/**
- * @author Stian Thorgersen
- */
-public interface SessionProviderFactory extends ProviderFactory {
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/sessions/SessionSpi.java b/model/hybrid/src/main/java/org/keycloak/models/sessions/SessionSpi.java
deleted file mode 100644
index cf6c7fc68e..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/sessions/SessionSpi.java
+++ /dev/null
@@ -1,27 +0,0 @@
-package org.keycloak.models.sessions;
-
-import org.keycloak.provider.Provider;
-import org.keycloak.provider.ProviderFactory;
-import org.keycloak.provider.Spi;
-
-/**
- * @author Stian Thorgersen
- */
-public class SessionSpi implements Spi {
-
- @Override
- public String getName() {
- return "modelSessions";
- }
-
- @Override
- public Class getProviderClass() {
- return SessionProvider.class;
- }
-
- @Override
- public Class getProviderFactoryClass() {
- return SessionProviderFactory.class;
- }
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/users/Attributes.java b/model/hybrid/src/main/java/org/keycloak/models/users/Attributes.java
deleted file mode 100644
index c341ab09ec..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/users/Attributes.java
+++ /dev/null
@@ -1,12 +0,0 @@
-package org.keycloak.models.users;
-
-/**
- * @author Stian Thorgersen
- */
-public interface Attributes {
-
- String EMAIL_VERIFIED = "keycloak.emailVerified";
- String TOTP_ENABLED = "keycloak.totpEnabled";
- String REQUIRED_ACTIONS = "keycloak.requiredActions";
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/users/Credentials.java b/model/hybrid/src/main/java/org/keycloak/models/users/Credentials.java
deleted file mode 100644
index 57368bcc53..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/users/Credentials.java
+++ /dev/null
@@ -1,72 +0,0 @@
-package org.keycloak.models.users;
-
-/**
- * @author Marek Posolda
- */
-public class Credentials {
-
- private byte[] salt;
- private String type;
- private String value;
- private String device;
- private int hashIterations;
-
- public Credentials(String type, String value) {
- this.type = type;
- this.value = value;
- }
-
- public Credentials(String type, String value, String device) {
- this.type = type;
- this.value = value;
- this.device = device;
- }
-
- public Credentials(String type, byte[] salt, String value, int hashIterations, String device) {
- this.salt = salt;
- this.type = type;
- this.value = value;
- this.hashIterations = hashIterations;
- this.device = device;
- }
-
- public String getType() {
- return type;
- }
-
- public void setType(String type) {
- this.type = type;
- }
-
- public String getValue() {
- return value;
- }
-
- public void setValue(String value) {
- this.value = value;
- }
-
- public String getDevice() {
- return device;
- }
-
- public void setDevice(String device) {
- this.device = device;
- }
-
- public byte[] getSalt() {
- return salt;
- }
-
- public void setSalt(byte[] salt) {
- this.salt = salt;
- }
-
- public int getHashIterations() {
- return hashIterations;
- }
-
- public void setHashIterations(int hashIterations) {
- this.hashIterations = hashIterations;
- }
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/users/Feature.java b/model/hybrid/src/main/java/org/keycloak/models/users/Feature.java
deleted file mode 100644
index 395fb03b77..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/users/Feature.java
+++ /dev/null
@@ -1,12 +0,0 @@
-package org.keycloak.models.users;
-
-/**
- * @author Stian Thorgersen
- */
-public enum Feature {
-
- READ_CREDENTIALS,
- UPDATE_CREDENTIALS,
- VERIFY_CREDENTIALS;
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/users/User.java b/model/hybrid/src/main/java/org/keycloak/models/users/User.java
deleted file mode 100755
index 90f288003f..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/users/User.java
+++ /dev/null
@@ -1,58 +0,0 @@
-package org.keycloak.models.users;
-
-import java.util.List;
-import java.util.Map;
-import java.util.Set;
-
-/**
- * @author Bill Burke
- * @version $Revision: 1 $
- */
-public interface User {
-
- public static final String USERNAME = "username";
- public static final String LAST_NAME = "lastName";
- public static final String FIRST_NAME = "firstName";
- public static final String EMAIL = "email";
-
- String getId();
-
- boolean isEnabled();
-
- void setEnabled(boolean enabled);
-
- String getUsername();
-
- void setUsername(String username);
-
- String getFirstName();
-
- void setFirstName(String firstName);
-
- String getLastName();
-
- void setLastName(String lastName);
-
- String getEmail();
-
- void setEmail(String email);
-
- String getAttribute(String name);
-
- Map getAttributes();
-
- void setAttribute(String name, String value);
-
- void removeAttribute(String name);
-
- List getCredentials();
-
- void updateCredential(Credentials cred);
-
- Set getRoleMappings();
-
- void grantRole(String role);
-
- void deleteRoleMapping(String role);
-
-}
\ No newline at end of file
diff --git a/model/hybrid/src/main/java/org/keycloak/models/users/UserProvider.java b/model/hybrid/src/main/java/org/keycloak/models/users/UserProvider.java
deleted file mode 100644
index de53736507..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/users/UserProvider.java
+++ /dev/null
@@ -1,46 +0,0 @@
-package org.keycloak.models.users;
-
-import org.keycloak.models.KeycloakTransaction;
-import org.keycloak.provider.Provider;
-
-import java.util.List;
-import java.util.Map;
-import java.util.Set;
-
-/**
- * @author Stian Thorgersen
- */
-public interface UserProvider extends Provider {
-
- KeycloakTransaction getTransaction();
-
- User addUser(String id, String username, Set roles, String realm);
-
- boolean removeUser(String name, String realm);
-
- User getUserById(String id, String realm);
- User getUserByUsername(String username, String realm);
- User getUserByEmail(String email, String realm);
- User getUserByAttribute(String name, String value, String realm);
-
- List getUsers(String realm);
- List searchForUser(String search, String realm);
- List searchForUserByAttributes(Map attributes, String realm);
-
- /**
- * Returns features supported by the provider. A provider is required to at least support one of verifying credentials
- * or reading credentials.
- *
- * @param feature
- * @return
- */
- boolean supports(Feature feature);
-
- boolean verifyCredentials(User user, Credentials... credentials);
-
- void onRealmRemoved(String realm);
- void onRoleRemoved(String role);
-
- void close();
-
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/users/UserProviderFactory.java b/model/hybrid/src/main/java/org/keycloak/models/users/UserProviderFactory.java
deleted file mode 100755
index e2f7c46b4f..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/users/UserProviderFactory.java
+++ /dev/null
@@ -1,9 +0,0 @@
-package org.keycloak.models.users;
-
-import org.keycloak.provider.ProviderFactory;
-
-/**
- * @author Stian Thorgersen
- */
-public interface UserProviderFactory extends ProviderFactory {
-}
diff --git a/model/hybrid/src/main/java/org/keycloak/models/users/UserSpi.java b/model/hybrid/src/main/java/org/keycloak/models/users/UserSpi.java
deleted file mode 100644
index e3d8e232bd..0000000000
--- a/model/hybrid/src/main/java/org/keycloak/models/users/UserSpi.java
+++ /dev/null
@@ -1,27 +0,0 @@
-package org.keycloak.models.users;
-
-import org.keycloak.provider.Provider;
-import org.keycloak.provider.ProviderFactory;
-import org.keycloak.provider.Spi;
-
-/**
- * @author Stian Thorgersen
- */
-public class UserSpi implements Spi {
-
- @Override
- public String getName() {
- return "modelUsers";
- }
-
- @Override
- public Class getProviderClass() {
- return UserProvider.class;
- }
-
- @Override
- public Class getProviderFactoryClass() {
- return UserProviderFactory.class;
- }
-
-}
diff --git a/model/hybrid/src/main/resources/META-INF/services/org.keycloak.models.ModelProviderFactory b/model/hybrid/src/main/resources/META-INF/services/org.keycloak.models.ModelProviderFactory
deleted file mode 100644
index 4fdf8537c9..0000000000
--- a/model/hybrid/src/main/resources/META-INF/services/org.keycloak.models.ModelProviderFactory
+++ /dev/null
@@ -1 +0,0 @@
-org.keycloak.models.hybrid.HybridModelProviderFactory
\ No newline at end of file
diff --git a/model/hybrid/src/main/resources/META-INF/services/org.keycloak.provider.Spi b/model/hybrid/src/main/resources/META-INF/services/org.keycloak.provider.Spi
deleted file mode 100644
index 6f3050ea7f..0000000000
--- a/model/hybrid/src/main/resources/META-INF/services/org.keycloak.provider.Spi
+++ /dev/null
@@ -1,3 +0,0 @@
-org.keycloak.models.realms.RealmSpi
-org.keycloak.models.sessions.SessionSpi
-org.keycloak.models.users.UserSpi
\ No newline at end of file
diff --git a/model/realms-jpa/pom.xml b/model/realms-jpa/pom.xml
deleted file mode 100755
index 09413e8484..0000000000
--- a/model/realms-jpa/pom.xml
+++ /dev/null
@@ -1,45 +0,0 @@
-
-
-
- keycloak-parent
- org.keycloak
- 1.0-beta-4-SNAPSHOT
- ../../pom.xml
-
- 4.0.0
-
- keycloak-model-realms-jpa
- Keycloak Model Realms JPA
-
-
-
-
- org.keycloak
- keycloak-core
- ${project.version}
- provided
-
-
- org.keycloak
- keycloak-model-api
- ${project.version}
-
-
- org.keycloak
- keycloak-model-hybrid
- ${project.version}
-
-
- org.hibernate.javax.persistence
- hibernate-jpa-2.0-api
- provided
-
-
- org.hibernate
- hibernate-entitymanager
- ${hibernate.entitymanager.version}
- provided
-
-
-
diff --git a/model/realms-jpa/src/main/java/org/keycloak/models/realms/jpa/ApplicationAdapter.java b/model/realms-jpa/src/main/java/org/keycloak/models/realms/jpa/ApplicationAdapter.java
deleted file mode 100755
index 16c250057a..0000000000
--- a/model/realms-jpa/src/main/java/org/keycloak/models/realms/jpa/ApplicationAdapter.java
+++ /dev/null
@@ -1,258 +0,0 @@
-package org.keycloak.models.realms.jpa;
-
-import org.keycloak.models.realms.Application;
-import org.keycloak.models.realms.Client;
-import org.keycloak.models.realms.Realm;
-import org.keycloak.models.realms.RealmProvider;
-import org.keycloak.models.realms.Role;
-import org.keycloak.models.realms.RoleContainer;
-import org.keycloak.models.realms.jpa.entities.ApplicationEntity;
-import org.keycloak.models.realms.jpa.entities.RoleEntity;
-import org.keycloak.models.realms.jpa.entities.ScopeMappingEntity;
-
-import javax.persistence.EntityManager;
-import javax.persistence.TypedQuery;
-import java.util.ArrayList;
-import java.util.Collection;
-import java.util.HashSet;
-import java.util.List;
-import java.util.Set;
-
-/**
- * @author Bill Burke
- * @version $Revision: 1 $
- */
-public class ApplicationAdapter extends ClientAdapter implements Application {
-
- protected EntityManager em;
- protected ApplicationEntity applicationEntity;
-
- public ApplicationAdapter(RealmProvider provider, EntityManager em, ApplicationEntity applicationEntity) {
- super(provider, applicationEntity, em);
- this.em = em;
- this.applicationEntity = applicationEntity;
- }
-
- @Override
- public void updateApplication() {
- em.flush();
- }
-
- @Override
- public String getName() {
- return entity.getName();
- }
-
- @Override
- public void setName(String name) {
- entity.setName(name);
- }
-
- @Override
- public boolean isSurrogateAuthRequired() {
- return applicationEntity.isSurrogateAuthRequired();
- }
-
- @Override
- public void setSurrogateAuthRequired(boolean surrogateAuthRequired) {
- applicationEntity.setSurrogateAuthRequired(surrogateAuthRequired);
- }
-
- @Override
- public String getManagementUrl() {
- return applicationEntity.getManagementUrl();
- }
-
- @Override
- public void setManagementUrl(String url) {
- applicationEntity.setManagementUrl(url);
- }
-
- @Override
- public String getBaseUrl() {
- return applicationEntity.getBaseUrl();
- }
-
- @Override
- public void setBaseUrl(String url) {
- applicationEntity.setBaseUrl(url);
- }
-
- @Override
- public boolean isBearerOnly() {
- return applicationEntity.isBearerOnly();
- }
-
- @Override
- public void setBearerOnly(boolean only) {
- applicationEntity.setBearerOnly(only);
- }
-
- @Override
- public boolean isDirectGrantsOnly() {
- return false; // applications can't be grant only
- }
-
- @Override
- public void setDirectGrantsOnly(boolean flag) {
- // applications can't be grant only
- }
-
- @Override
- public Role getRole(String name) {
- TypedQuery query = em.createNamedQuery("getAppRoleByName", RoleEntity.class);
- query.setParameter("name", name);
- query.setParameter("application", entity);
- List roles = query.getResultList();
- if (roles.size() == 0) return null;
- return new RoleAdapter(provider, em, roles.get(0));
- }
-
- @Override
- public Role addRole(String id, String name) {
- RoleEntity roleEntity = new RoleEntity();
- roleEntity.setId(id);
- roleEntity.setName(name);
- roleEntity.setApplication(applicationEntity);
- roleEntity.setApplicationRole(true);
- roleEntity.setRealmId(entity.getRealm().getId());
- em.persist(roleEntity);
- applicationEntity.getRoles().add(roleEntity);
- em.flush();
- return new RoleAdapter(provider, em, roleEntity);
- }
-
- @Override
- public boolean removeRole(Role Role) {
- RoleAdapter roleAdapter = (RoleAdapter) Role;
- if (Role == null) {
- return false;
- }
- if (!roleAdapter.getContainer().equals(this)) return false;
-
- if (!roleAdapter.getRole().isApplicationRole()) return false;
-
- RoleEntity role = roleAdapter.getRole();
-
- applicationEntity.getRoles().remove(role);
- applicationEntity.getDefaultRoles().remove(role);
- em.createNativeQuery("delete from CompositeRole where childRole = :role").setParameter("role", role).executeUpdate();
- em.createQuery("delete from " + ScopeMappingEntity.class.getSimpleName() + " where role = :role").setParameter("role", role).executeUpdate();
- role.setApplication(null);
- em.flush();
- em.remove(role);
- em.flush();
-
- return true;
- }
-
- @Override
- public Set getRoles() {
- Set list = new HashSet();
- Collection roles = applicationEntity.getRoles();
- if (roles == null) return list;
- for (RoleEntity entity : roles) {
- list.add(new RoleAdapter(provider, em, entity));
- }
- return list;
- }
-
- @Override
- public Set getApplicationScopeMappings(Client client) {
- Set roleMappings = client.getScopeMappings();
-
- Set appRoles = new HashSet();
- for (Role role : roleMappings) {
- RoleContainer container = role.getContainer();
- if (container instanceof Realm) {
- } else {
- Application app = (Application)container;
- if (app.getId().equals(getId())) {
- appRoles.add(role);
- }
- }
- }
-
- return appRoles;
- }
-
-
-
-
- @Override
- public List getDefaultRoles() {
- Collection entities = applicationEntity.getDefaultRoles();
- List roles = new ArrayList();
- if (entities == null) return roles;
- for (RoleEntity entity : entities) {
- roles.add(entity.getName());
- }
- return roles;
- }
-
- @Override
- public void addDefaultRole(String name) {
- Role role = getRole(name);
- Collection entities = applicationEntity.getDefaultRoles();
- for (RoleEntity entity : entities) {
- if (entity.getId().equals(role.getId())) {
- return;
- }
- }
- entities.add(((RoleAdapter) role).getRole());
- em.flush();
- }
-
- public static boolean contains(String str, String[] array) {
- for (String s : array) {
- if (str.equals(s)) return true;
- }
- return false;
- }
-
- @Override
- public void updateDefaultRoles(String[] defaultRoles) {
- Collection entities = applicationEntity.getDefaultRoles();
- Set already = new HashSet();
- List remove = new ArrayList();
- for (RoleEntity rel : entities) {
- if (!contains(rel.getName(), defaultRoles)) {
- remove.add(rel);
- } else {
- already.add(rel.getName());
- }
- }
- for (RoleEntity entity : remove) {
- entities.remove(entity);
- }
- em.flush();
- for (String roleName : defaultRoles) {
- if (!already.contains(roleName)) {
- addDefaultRole(roleName);
- }
- }
- em.flush();
- }
-
- @Override
- public boolean equals(Object o) {
- if (this == o) return true;
- if (o == null || !(o instanceof Application)) return false;
-
- Application that = (Application) o;
- return that.getId().equals(getId());
- }
-
- @Override
- public int hashCode() {
- return getId().hashCode();
- }
-
- public String toString() {
- return getName();
- }
-
- ApplicationEntity getJpaEntity() {
- return applicationEntity;
- }
-}
diff --git a/model/realms-jpa/src/main/java/org/keycloak/models/realms/jpa/ClientAdapter.java b/model/realms-jpa/src/main/java/org/keycloak/models/realms/jpa/ClientAdapter.java
deleted file mode 100755
index 147a4aa65e..0000000000
--- a/model/realms-jpa/src/main/java/org/keycloak/models/realms/jpa/ClientAdapter.java
+++ /dev/null
@@ -1,225 +0,0 @@
-package org.keycloak.models.realms.jpa;
-
-import org.keycloak.models.realms.Client;
-import org.keycloak.models.realms.Realm;
-import org.keycloak.models.realms.RealmProvider;
-import org.keycloak.models.realms.Role;
-import org.keycloak.models.realms.RoleContainer;
-import org.keycloak.models.realms.jpa.entities.ClientEntity;
-import org.keycloak.models.realms.jpa.entities.ScopeMappingEntity;
-
-import javax.persistence.EntityManager;
-import javax.persistence.TypedQuery;
-import java.util.HashSet;
-import java.util.List;
-import java.util.Set;
-
-/**
- * @author Bill Burke
- * @version $Revision: 1 $
- */
-public abstract class ClientAdapter implements Client {
- protected RealmProvider provider;
- protected ClientEntity entity;
- protected EntityManager em;
-
- public ClientAdapter(RealmProvider provider, ClientEntity entity, EntityManager em) {
- this.provider = provider;
- this.entity = entity;
- this.em = em;
- }
-
- public ClientEntity getEntity() {
- return entity;
- }
-
- @Override
- public String getId() {
- return entity.getId();
- }
-
- @Override
- public Realm getRealm() {
- return new RealmAdapter(provider, em, entity.getRealm());
- }
-
- @Override
- public String getClientId() {
- return entity.getName();
- }
-
- @Override
- public boolean isEnabled() {
- return entity.isEnabled();
- }
-
- @Override
- public void setEnabled(boolean enabled) {
- entity.setEnabled(enabled);
- }
-
- @Override
- public long getAllowedClaimsMask() {
- return entity.getAllowedClaimsMask();
- }
-
- @Override
- public void setAllowedClaimsMask(long mask) {
- entity.setAllowedClaimsMask(mask);
- }
-
- @Override
- public boolean isPublicClient() {
- return entity.isPublicClient();
- }
-
- @Override
- public void setPublicClient(boolean flag) {
- entity.setPublicClient(flag);
- }
-
- @Override
- public Set getWebOrigins() {
- Set result = new HashSet();
- result.addAll(entity.getWebOrigins());
- return result;
- }
-
-
-
- @Override
- public void setWebOrigins(Set webOrigins) {
- entity.setWebOrigins(webOrigins);
- }
-
- @Override
- public void addWebOrigin(String webOrigin) {
- entity.getWebOrigins().add(webOrigin);
- }
-
- @Override
- public void removeWebOrigin(String webOrigin) {
- entity.getWebOrigins().remove(webOrigin);
- }
-
- @Override
- public Set getRedirectUris() {
- Set result = new HashSet();
- result.addAll(entity.getRedirectUris());
- return result;
- }
-
- @Override
- public void setRedirectUris(Set redirectUris) {
- entity.setRedirectUris(redirectUris);
- }
-
- @Override
- public void addRedirectUri(String redirectUri) {
- entity.getRedirectUris().add(redirectUri);
- }
-
- @Override
- public void removeRedirectUri(String redirectUri) {
- entity.getRedirectUris().remove(redirectUri);
- }
-
- @Override
- public String getSecret() {
- return entity.getSecret();
- }
-
- @Override
- public void setSecret(String secret) {
- entity.setSecret(secret);
- }
-
- @Override
- public boolean validateSecret(String secret) {
- return secret.equals(entity.getSecret());
- }
-
- @Override
- public int getNotBefore() {
- return entity.getNotBefore();
- }
-
- @Override
- public void setNotBefore(int notBefore) {
- entity.setNotBefore(notBefore);
- }
-
- @Override
- public Set getRealmScopeMappings() {
- Set roleMappings = getScopeMappings();
-
- Set appRoles = new HashSet();
- for (Role role : roleMappings) {
- RoleContainer container = role.getContainer();
- if (container instanceof Realm) {
- if (((Realm) container).getId().equals(entity.getRealm().getId())) {
- appRoles.add(role);
- }
- }
- }
-
- return appRoles;
- }
-
-
-
- @Override
- public Set getScopeMappings() {
- TypedQuery query = em.createNamedQuery("clientScopeMappingIds", String.class);
- query.setParameter("client", getEntity());
- List ids = query.getResultList();
- Set roles = new HashSet();
- for (String roleId : ids) {
- Role role = provider.getRoleById(roleId, entity.getRealm().getId());
- if (role == null) continue;
- roles.add(role);
- }
- return roles;
- }
-
- @Override
- public void addScopeMapping(Role role) {
- ScopeMappingEntity entity = new ScopeMappingEntity();
- entity.setClient(getEntity());
- entity.setRole(((RoleAdapter) role).getRole());
- em.persist(entity);
- em.flush();
- em.detach(entity);
- }
-
- @Override
- public void deleteScopeMapping(Role role) {
- TypedQuery query = getRealmScopeMappingQuery((RoleAdapter) role);
- List results = query.getResultList();
- if (results.size() == 0) return;
- for (ScopeMappingEntity entity : results) {
- em.remove(entity);
- }
- }
-
- protected TypedQuery getRealmScopeMappingQuery(RoleAdapter role) {
- TypedQuery query = em.createNamedQuery("hasScope", ScopeMappingEntity.class);
- query.setParameter("client", getEntity());
- query.setParameter("role", role.getRole());
- return query;
- }
-
- @Override
- public boolean equals(Object o) {
- if (this == o) return true;
- if (!this.getClass().equals(o.getClass())) return false;
-
- ClientAdapter that = (ClientAdapter) o;
- return that.getId().equals(getId());
- }
-
- @Override
- public int hashCode() {
- return entity.getId().hashCode();
- }
-}
diff --git a/model/realms-jpa/src/main/java/org/keycloak/models/realms/jpa/JpaKeycloakTransaction.java b/model/realms-jpa/src/main/java/org/keycloak/models/realms/jpa/JpaKeycloakTransaction.java
deleted file mode 100755
index fd417141f2..0000000000
--- a/model/realms-jpa/src/main/java/org/keycloak/models/realms/jpa/JpaKeycloakTransaction.java
+++ /dev/null
@@ -1,53 +0,0 @@
-package org.keycloak.models.realms.jpa;
-
-import org.keycloak.models.KeycloakTransaction;
-
-import javax.persistence.EntityManager;
-import javax.persistence.PersistenceException;
-
-/**
- * @author Bill Burke
- * @version $Revision: 1 $
- */
-public class JpaKeycloakTransaction implements KeycloakTransaction {
-
- protected EntityManager em;
-
- public JpaKeycloakTransaction(EntityManager em) {
- this.em = em;
- }
-
- @Override
- public void begin() {
- em.getTransaction().begin();
- }
-
- @Override
- public void commit() {
- try {
- em.getTransaction().commit();
- } catch (PersistenceException e) {
- throw PersistenceExceptionConverter.convert(e.getCause() != null ? e.getCause() : e);
- }
- }
-
- @Override
- public void rollback() {
- em.getTransaction().rollback();
- }
-
- @Override
- public void setRollbackOnly() {
- em.getTransaction().setRollbackOnly();
- }
-
- @Override
- public boolean getRollbackOnly() {
- return em.getTransaction().getRollbackOnly();
- }
-
- @Override
- public boolean isActive() {
- return em.getTransaction().isActive();
- }
-}
diff --git a/model/realms-jpa/src/main/java/org/keycloak/models/realms/jpa/JpaRealmProvider.java b/model/realms-jpa/src/main/java/org/keycloak/models/realms/jpa/JpaRealmProvider.java
deleted file mode 100755
index 00c833c69f..0000000000
--- a/model/realms-jpa/src/main/java/org/keycloak/models/realms/jpa/JpaRealmProvider.java
+++ /dev/null
@@ -1,135 +0,0 @@
-package org.keycloak.models.realms.jpa;
-
-import org.keycloak.models.KeycloakTransaction;
-import org.keycloak.models.realms.Application;
-import org.keycloak.models.realms.OAuthClient;
-import org.keycloak.models.realms.Realm;
-import org.keycloak.models.realms.RealmProvider;
-import org.keycloak.models.realms.Role;
-import org.keycloak.models.realms.jpa.entities.ApplicationEntity;
-import org.keycloak.models.realms.jpa.entities.OAuthClientEntity;
-import org.keycloak.models.realms.jpa.entities.RealmEntity;
-import org.keycloak.models.realms.jpa.entities.RoleEntity;
-import org.keycloak.models.utils.KeycloakModelUtils;
-
-import javax.persistence.EntityManager;
-import javax.persistence.TypedQuery;
-import java.util.ArrayList;
-import java.util.List;
-
-/**
- * @author Bill Burke
- * @version $Revision: 1 $
- */
-public class JpaRealmProvider implements RealmProvider {
-
- protected final EntityManager em;
-
- public JpaRealmProvider(EntityManager em) {
- this.em = PersistenceExceptionConverter.create(em);
- }
-
- @Override
- public KeycloakTransaction getTransaction() {
- return new JpaKeycloakTransaction(em);
- }
-
- @Override
- public Realm createRealm(String name) {
- return createRealm(KeycloakModelUtils.generateId(), name);
- }
-
- @Override
- public Realm createRealm(String id, String name) {
- RealmEntity realm = new RealmEntity();
- realm.setName(name);
- realm.setId(id);
- em.persist(realm);
- em.flush();
- return new RealmAdapter(this, em, realm);
- }
-
- @Override
- public Realm getRealm(String id) {
- RealmEntity realm = em.find(RealmEntity.class, id);
- if (realm == null) return null;
- return new RealmAdapter(this, em, realm);
- }
-
- @Override
- public List getRealms() {
- TypedQuery query = em.createNamedQuery("getAllRealms", RealmEntity.class);
- List entities = query.getResultList();
- List realms = new ArrayList();
- for (RealmEntity entity : entities) {
- realms.add(new RealmAdapter(this, em, entity));
- }
- return realms;
- }
-
- @Override
- public Realm getRealmByName(String name) {
- TypedQuery query = em.createNamedQuery("getRealmByName", RealmEntity.class);
- query.setParameter("name", name);
- List entities = query.getResultList();
- if (entities.size() == 0) return null;
- if (entities.size() > 1) throw new IllegalStateException("Should not be more than one realm with same name");
- RealmEntity realm = query.getResultList().get(0);
- if (realm == null) return null;
- return new RealmAdapter(this, em, realm);
- }
-
- @Override
- public boolean removeRealm(String id) {
- RealmEntity realm = em.find(RealmEntity.class, id);
- if (realm == null) {
- return false;
- }
-
- RealmAdapter adapter = new RealmAdapter(this, em, realm);
- for (Application a : adapter.getApplications()) {
- adapter.removeApplication(a);
- }
-
- for (OAuthClient oauth : adapter.getOAuthClients()) {
- adapter.removeOAuthClient(oauth);
- }
-
- em.remove(realm);
-
- return true;
- }
-
- @Override
- public void close() {
- if (em.getTransaction().isActive()) em.getTransaction().rollback();
- if (em.isOpen()) em.close();
- }
-
- @Override
- public Role getRoleById(String id, String realm) {
- RoleEntity entity = em.find(RoleEntity.class, id);
- if (entity == null) return null;
- if (!realm.equals(entity.getRealmId())) return null;
- return new RoleAdapter(this, em, entity);
- }
-
- @Override
- public Application getApplicationById(String id, String realm) {
- ApplicationEntity app = em.find(ApplicationEntity.class, id);
-
- // Check if application belongs to this realm
- if (app == null || !realm.equals(app.getRealm().getId())) return null;
- return new ApplicationAdapter(this, em, app);
- }
-
- @Override
- public OAuthClient getOAuthClientById(String id, String realm) {
- OAuthClientEntity client = em.find(OAuthClientEntity.class, id);
-
- // Check if client belongs to this realm
- if (client == null || !realm.equals(client.getRealm().getId())) return null;
- return new OAuthClientAdapter(this, client, em);
- }
-
-}
diff --git a/model/realms-jpa/src/main/java/org/keycloak/models/realms/jpa/JpaRealmProviderFactory.java b/model/realms-jpa/src/main/java/org/keycloak/models/realms/jpa/JpaRealmProviderFactory.java
deleted file mode 100755
index f5c72cd114..0000000000
--- a/model/realms-jpa/src/main/java/org/keycloak/models/realms/jpa/JpaRealmProviderFactory.java
+++ /dev/null
@@ -1,41 +0,0 @@
-package org.keycloak.models.realms.jpa;
-
-import org.keycloak.Config;
-import org.keycloak.models.KeycloakSession;
-import org.keycloak.models.realms.RealmProvider;
-import org.keycloak.models.realms.RealmProviderFactory;
-import org.keycloak.util.JpaUtils;
-
-import javax.persistence.EntityManagerFactory;
-import javax.persistence.Persistence;
-
-/**
- * @author Bill Burke
- * @version $Revision: 1 $
- */
-public class JpaRealmProviderFactory implements RealmProviderFactory {
-
- protected EntityManagerFactory emf;
-
- @Override
- public void init(Config.Scope config) {
- String persistenceUnit = config.get("persistenceUnit", "jpa-keycloak-identity-store");
- emf = Persistence.createEntityManagerFactory(persistenceUnit, JpaUtils.getHibernateProperties());
- }
-
- @Override
- public String getId() {
- return "jpa";
- }
-
- @Override
- public RealmProvider create(KeycloakSession session) {
- return new JpaRealmProvider(emf.createEntityManager());
- }
-
- @Override
- public void close() {
- emf.close();
- }
-
-}
diff --git a/model/realms-jpa/src/main/java/org/keycloak/models/realms/jpa/OAuthClientAdapter.java b/model/realms-jpa/src/main/java/org/keycloak/models/realms/jpa/OAuthClientAdapter.java
deleted file mode 100755
index b792a7db87..0000000000
--- a/model/realms-jpa/src/main/java/org/keycloak/models/realms/jpa/OAuthClientAdapter.java
+++ /dev/null
@@ -1,52 +0,0 @@
-package org.keycloak.models.realms.jpa;
-
-import org.keycloak.models.realms.OAuthClient;
-import org.keycloak.models.realms.RealmProvider;
-import org.keycloak.models.realms.jpa.entities.OAuthClientEntity;
-
-import javax.persistence.EntityManager;
-
-/**
- * @author Bill Burke
- * @version $Revision: 1 $
- */
-public class OAuthClientAdapter extends ClientAdapter implements OAuthClient {
-
- protected final OAuthClientEntity oAuthClientEntity;
-
- public OAuthClientAdapter(RealmProvider provider, OAuthClientEntity entity, EntityManager em) {
- super(provider, entity, em);
- oAuthClientEntity = entity;
- }
-
- @Override
- public void setClientId(String id) {
- entity.setName(id);
-
- }
-
- @Override
- public boolean isDirectGrantsOnly() {
- return oAuthClientEntity.isDirectGrantsOnly();
- }
-
- @Override
- public void setDirectGrantsOnly(boolean flag) {
- oAuthClientEntity.setDirectGrantsOnly(flag);
- }
-
- @Override
- public boolean equals(Object o) {
- if (this == o) return true;
- if (o == null || !(o instanceof OAuthClient)) return false;
-
- OAuthClient that = (OAuthClient) o;
- return that.getId().equals(getId());
- }
-
- @Override
- public int hashCode() {
- return getId().hashCode();
- }
-
-}
diff --git a/model/realms-jpa/src/main/java/org/keycloak/models/realms/jpa/PersistenceExceptionConverter.java b/model/realms-jpa/src/main/java/org/keycloak/models/realms/jpa/PersistenceExceptionConverter.java
deleted file mode 100644
index f479939eb6..0000000000
--- a/model/realms-jpa/src/main/java/org/keycloak/models/realms/jpa/PersistenceExceptionConverter.java
+++ /dev/null
@@ -1,48 +0,0 @@
-package org.keycloak.models.realms.jpa;
-
-import org.hibernate.exception.ConstraintViolationException;
-import org.keycloak.models.ModelDuplicateException;
-import org.keycloak.models.ModelException;
-
-import javax.persistence.EntityExistsException;
-import javax.persistence.EntityManager;
-import java.lang.reflect.InvocationHandler;
-import java.lang.reflect.InvocationTargetException;
-import java.lang.reflect.Method;
-import java.lang.reflect.Proxy;
-
-/**
- * @author Stian Thorgersen
- */
-public class PersistenceExceptionConverter implements InvocationHandler {
-
- private EntityManager em;
-
- public static EntityManager create(EntityManager em) {
- return (EntityManager) Proxy.newProxyInstance(EntityManager.class.getClassLoader(), new Class[]{EntityManager.class}, new PersistenceExceptionConverter(em));
- }
-
- private PersistenceExceptionConverter(EntityManager em) {
- this.em = em;
- }
-
- @Override
- public Object invoke(Object proxy, Method method, Object[] args) throws Throwable {
- try {
- return method.invoke(em, args);
- } catch (InvocationTargetException e) {
- throw convert(e.getCause());
- }
- }
-
- public static ModelException convert(Throwable t) {
- if (t.getCause() != null && t.getCause() instanceof ConstraintViolationException) {
- throw new ModelDuplicateException(t);
- } if (t instanceof EntityExistsException) {
- throw new ModelDuplicateException(t);
- } else {
- throw new ModelException(t);
- }
- }
-
-}
diff --git a/model/realms-jpa/src/main/java/org/keycloak/models/realms/jpa/RealmAdapter.java b/model/realms-jpa/src/main/java/org/keycloak/models/realms/jpa/RealmAdapter.java
deleted file mode 100755
index ffbbacfefe..0000000000
--- a/model/realms-jpa/src/main/java/org/keycloak/models/realms/jpa/RealmAdapter.java
+++ /dev/null
@@ -1,853 +0,0 @@
-package org.keycloak.models.realms.jpa;
-
-import org.keycloak.models.AuthenticationProviderModel;
-import org.keycloak.models.PasswordPolicy;
-import org.keycloak.models.RequiredCredentialModel;
-import org.keycloak.models.realms.Application;
-import org.keycloak.models.realms.Client;
-import org.keycloak.models.realms.OAuthClient;
-import org.keycloak.models.realms.Realm;
-import org.keycloak.models.realms.RealmProvider;
-import org.keycloak.models.realms.Role;
-import org.keycloak.models.realms.jpa.entities.ApplicationEntity;
-import org.keycloak.models.realms.jpa.entities.AuthenticationProviderEntity;
-import org.keycloak.models.realms.jpa.entities.OAuthClientEntity;
-import org.keycloak.models.realms.jpa.entities.RealmEntity;
-import org.keycloak.models.realms.jpa.entities.RequiredCredentialEntity;
-import org.keycloak.models.realms.jpa.entities.RoleEntity;
-import org.keycloak.models.realms.jpa.entities.ScopeMappingEntity;
-import org.keycloak.models.utils.KeycloakModelUtils;
-
-import javax.persistence.EntityManager;
-import javax.persistence.TypedQuery;
-import java.security.PrivateKey;
-import java.security.PublicKey;
-import java.util.ArrayList;
-import java.util.Collection;
-import java.util.Collections;
-import java.util.Comparator;
-import java.util.HashMap;
-import java.util.HashSet;
-import java.util.Iterator;
-import java.util.List;
-import java.util.Map;
-import java.util.Set;
-
-/**
- * @author Bill Burke
- * @version $Revision: 1 $
- */
-public class RealmAdapter implements Realm {
- protected RealmEntity realm;
- protected RealmProvider provider;
- protected EntityManager em;
- protected volatile transient PublicKey publicKey;
- protected volatile transient PrivateKey privateKey;
- protected PasswordPolicy passwordPolicy;
-
- public RealmAdapter(RealmProvider provider, EntityManager em, RealmEntity realm) {
- this.provider = provider;
- this.em = em;
- this.realm = realm;
- }
-
- public RealmEntity getEntity() {
- return realm;
- }
-
- @Override
- public String getId() {
- return realm.getId();
- }
-
- @Override
- public String getName() {
- return realm.getName();
- }
-
- @Override
- public void setName(String name) {
- realm.setName(name);
- em.flush();
- }
-
- @Override
- public boolean isEnabled() {
- return realm.isEnabled();
- }
-
- @Override
- public void setEnabled(boolean enabled) {
- realm.setEnabled(enabled);
- em.flush();
- }
-
- @Override
- public boolean isSslNotRequired() {
- return realm.isSslNotRequired();
- }
-
- @Override
- public void setSslNotRequired(boolean sslNotRequired) {
- realm.setSslNotRequired(sslNotRequired);
- em.flush();
- }
-
- @Override
- public boolean isPasswordCredentialGrantAllowed() {
- return realm.isPasswordCredentialGrantAllowed();
- }
-
- @Override
- public void setPasswordCredentialGrantAllowed(boolean passwordCredentialGrantAllowed) {
- realm.setPasswordCredentialGrantAllowed(passwordCredentialGrantAllowed);
- em.flush();
- }
-
- @Override
- public boolean isRegistrationAllowed() {
- return realm.isRegistrationAllowed();
- }
-
- @Override
- public void setRegistrationAllowed(boolean registrationAllowed) {
- realm.setRegistrationAllowed(registrationAllowed);
- em.flush();
- }
-
- @Override
- public boolean isRememberMe() {
- return realm.isRememberMe();
- }
-
- @Override
- public void setRememberMe(boolean rememberMe) {
- realm.setRememberMe(rememberMe);
- em.flush();
- }
-
- @Override
- public boolean isBruteForceProtected() {
- return realm.isBruteForceProtected();
- }
-
- @Override
- public void setBruteForceProtected(boolean value) {
- realm.setBruteForceProtected(value);
- }
-
- @Override
- public int getMaxFailureWaitSeconds() {
- return realm.getMaxFailureWaitSeconds();
- }
-
- @Override
- public void setMaxFailureWaitSeconds(int val) {
- realm.setMaxFailureWaitSeconds(val);
- }
-
- @Override
- public int getWaitIncrementSeconds() {
- return realm.getWaitIncrementSeconds();
- }
-
- @Override
- public void setWaitIncrementSeconds(int val) {
- realm.setWaitIncrementSeconds(val);
- }
-
- @Override
- public long getQuickLoginCheckMilliSeconds() {
- return realm.getQuickLoginCheckMilliSeconds();
- }
-
- @Override
- public void setQuickLoginCheckMilliSeconds(long val) {
- realm.setQuickLoginCheckMilliSeconds(val);
- }
-
- @Override
- public int getMinimumQuickLoginWaitSeconds() {
- return realm.getMinimumQuickLoginWaitSeconds();
- }
-
- @Override
- public void setMinimumQuickLoginWaitSeconds(int val) {
- realm.setMinimumQuickLoginWaitSeconds(val);
- }
-
- @Override
- public int getMaxDeltaTimeSeconds() {
- return realm.getMaxDeltaTimeSeconds();
- }
-
- @Override
- public void setMaxDeltaTimeSeconds(int val) {
- realm.setMaxDeltaTimeSeconds(val);
- }
-
- @Override
- public int getFailureFactor() {
- return realm.getFailureFactor();
- }
-
- @Override
- public void setFailureFactor(int failureFactor) {
- realm.setFailureFactor(failureFactor);
- }
-
- @Override
- public boolean isVerifyEmail() {
- return realm.isVerifyEmail();
- }
-
- @Override
- public void setVerifyEmail(boolean verifyEmail) {
- realm.setVerifyEmail(verifyEmail);
- em.flush();
- }
-
- @Override
- public boolean isResetPasswordAllowed() {
- return realm.isResetPasswordAllowed();
- }
-
- @Override
- public void setResetPasswordAllowed(boolean resetPasswordAllowed) {
- realm.setResetPasswordAllowed(resetPasswordAllowed);
- em.flush();
- }
-
- @Override
- public int getNotBefore() {
- return realm.getNotBefore();
- }
-
- @Override
- public void setNotBefore(int notBefore) {
- realm.setNotBefore(notBefore);
- }
-
- @Override
- public int getAccessTokenLifespan() {
- return realm.getAccessTokenLifespan();
- }
-
- @Override
- public void setAccessTokenLifespan(int tokenLifespan) {
- realm.setAccessTokenLifespan(tokenLifespan);
- em.flush();
- }
-
- @Override
- public int getSsoSessionIdleTimeout() {
- return realm.getSsoSessionIdleTimeout();
- }
-
- @Override
- public void setSsoSessionIdleTimeout(int seconds) {
- realm.setSsoSessionIdleTimeout(seconds);
- }
-
- @Override
- public int getSsoSessionMaxLifespan() {
- return realm.getSsoSessionMaxLifespan();
- }
-
- @Override
- public void setSsoSessionMaxLifespan(int seconds) {
- realm.setSsoSessionMaxLifespan(seconds);
- }
-
- @Override
- public int getAccessCodeLifespan() {
- return realm.getAccessCodeLifespan();
- }
-
- @Override
- public void setAccessCodeLifespan(int accessCodeLifespan) {
- realm.setAccessCodeLifespan(accessCodeLifespan);
- em.flush();
- }
-
- @Override
- public int getAccessCodeLifespanUserAction() {
- return realm.getAccessCodeLifespanUserAction();
- }
-
- @Override
- public void setAccessCodeLifespanUserAction(int accessCodeLifespanUserAction) {
- realm.setAccessCodeLifespanUserAction(accessCodeLifespanUserAction);
- em.flush();
- }
-
- @Override
- public String getPublicKeyPem() {
- return realm.getPublicKeyPem();
- }
-
- @Override
- public void setPublicKeyPem(String publicKeyPem) {
- realm.setPublicKeyPem(publicKeyPem);
- em.flush();
- }
-
- @Override
- public String getPrivateKeyPem() {
- return realm.getPrivateKeyPem();
- }
-
- @Override
- public void setPrivateKeyPem(String privateKeyPem) {
- realm.setPrivateKeyPem(privateKeyPem);
- em.flush();
- }
-
- @Override
- public PublicKey getPublicKey() {
- if (publicKey != null) return publicKey;
- publicKey = KeycloakModelUtils.getPublicKey(getPublicKeyPem());
- return publicKey;
- }
-
- @Override
- public void setPublicKey(PublicKey publicKey) {
- this.publicKey = publicKey;
- String publicKeyPem = KeycloakModelUtils.getPemFromKey(publicKey);
- setPublicKeyPem(publicKeyPem);
- }
-
- @Override
- public PrivateKey getPrivateKey() {
- if (privateKey != null) return privateKey;
- privateKey = KeycloakModelUtils.getPrivateKey(getPrivateKeyPem());
- return privateKey;
- }
-
- @Override
- public void setPrivateKey(PrivateKey privateKey) {
- this.privateKey = privateKey;
- String privateKeyPem = KeycloakModelUtils.getPemFromKey(privateKey);
- setPrivateKeyPem(privateKeyPem);
- }
-
- protected RequiredCredentialModel initRequiredCredentialModel(String type) {
- RequiredCredentialModel model = RequiredCredentialModel.BUILT_IN.get(type);
- if (model == null) {
- throw new RuntimeException("Unknown credential type " + type);
- }
- return model;
- }
-
- @Override
- public void addRequiredCredential(String type) {
- RequiredCredentialModel model = initRequiredCredentialModel(type);
- addRequiredCredential(model);
- em.flush();
- }
-
- public void addRequiredCredential(RequiredCredentialModel model) {
- RequiredCredentialEntity entity = new RequiredCredentialEntity();
- entity.setInput(model.isInput());
- entity.setSecret(model.isSecret());
- entity.setType(model.getType());
- entity.setFormLabel(model.getFormLabel());
- em.persist(entity);
- realm.getRequiredCredentials().add(entity);
- em.flush();
- }
-
- @Override
- public void updateRequiredCredentials(Set creds) {
- Collection relationships = realm.getRequiredCredentials();
- if (relationships == null) relationships = new ArrayList();
-
- Set already = new HashSet();
- List remove = new ArrayList();
- for (RequiredCredentialEntity rel : relationships) {
- if (!creds.contains(rel.getType())) {
- remove.add(rel);
- } else {
- already.add(rel.getType());
- }
- }
- for (RequiredCredentialEntity entity : remove) {
- relationships.remove(entity);
- em.remove(entity);
- }
- for (String cred : creds) {
- if (!already.contains(cred)) {
- addRequiredCredential(cred);
- }
- }
- em.flush();
- }
-
-
- @Override
- public List getRequiredCredentials() {
- List requiredCredentialModels = new ArrayList();
- Collection entities = realm.getRequiredCredentials();
- if (entities == null) return requiredCredentialModels;
- for (RequiredCredentialEntity entity : entities) {
- RequiredCredentialModel model = new RequiredCredentialModel();
- model.setFormLabel(entity.getFormLabel());
- model.setType(entity.getType());
- model.setSecret(entity.isSecret());
- model.setInput(entity.isInput());
- requiredCredentialModels.add(model);
- }
- return requiredCredentialModels; //To change body of implemented methods use File | Settings | File Templates.
- }
-
- @Override
- public List getDefaultRoles() {
- Collection entities = realm.getDefaultRoles();
- List roles = new ArrayList();
- if (entities == null) return roles;
- for (RoleEntity entity : entities) {
- roles.add(entity.getName());
- }
- return roles;
- }
-
- @Override
- public void addDefaultRole(String name) {
- Role role = getRole(name);
- Collection entities = realm.getDefaultRoles();
- for (RoleEntity entity : entities) {
- if (entity.getId().equals(role.getId())) {
- return;
- }
- }
- realm.getDefaultRoles().add(((RoleAdapter) role).getRole());
- em.flush();
- }
-
- public static boolean contains(String str, String[] array) {
- for (String s : array) {
- if (str.equals(s)) return true;
- }
- return false;
- }
-
- @Override
- public void updateDefaultRoles(String[] defaultRoles) {
- Collection entities = realm.getDefaultRoles();
- Set already = new HashSet();
- List remove = new ArrayList();
- for (RoleEntity rel : entities) {
- if (!contains(rel.getName(), defaultRoles)) {
- remove.add(rel);
- } else {
- already.add(rel.getName());
- }
- }
- for (RoleEntity entity : remove) {
- entities.remove(entity);
- }
- em.flush();
- for (String roleName : defaultRoles) {
- if (!already.contains(roleName)) {
- addDefaultRole(roleName);
- }
- }
- em.flush();
- }
-
- @Override
- public Client findClient(String clientId) {
- Client model = getApplicationByName(clientId);
- if (model != null) return model;
- return getOAuthClient(clientId);
- }
-
- @Override
- public Map getApplicationNameMap() {
- Map map = new HashMap();
- for (Application app : getApplications()) {
- map.put(app.getName(), app);
- }
- return map; //To change body of implemented methods use File | Settings | File Templates.
- }
-
- @Override
- public List getApplications() {
- List list = new ArrayList();
- if (realm.getApplications() == null) return list;
- for (ApplicationEntity entity : realm.getApplications()) {
- list.add(new ApplicationAdapter(provider, em, entity));
- }
- return list;
- }
-
- @Override
- public Application addApplication(String id, String name) {
- ApplicationEntity applicationData = new ApplicationEntity();
- applicationData.setId(id);
- applicationData.setName(name);
- applicationData.setEnabled(true);
- applicationData.setRealm(realm);
- realm.getApplications().add(applicationData);
- em.persist(applicationData);
- em.flush();
- Application resource = new ApplicationAdapter(provider, em, applicationData);
- em.flush();
- return resource;
- }
-
- @Override
- public boolean removeApplication(Application application) {
- for (Role role : application.getRoles()) {
- application.removeRole(role);
- }
-
- ApplicationEntity applicationEntity = null;
- Iterator it = realm.getApplications().iterator();
- while (it.hasNext()) {
- ApplicationEntity ae = it.next();
- if (ae.getId().equals(application.getId())) {
- applicationEntity = ae;
- it.remove();
- break;
- }
- }
- for (ApplicationEntity a : realm.getApplications()) {
- if (a.getId().equals(application.getId())) {
- applicationEntity = a;
- }
- }
- if (application == null) {
- return false;
- }
- em.remove(applicationEntity);
- em.createQuery("delete from " + ScopeMappingEntity.class.getSimpleName() + " where client = :client").setParameter("client", applicationEntity).executeUpdate();
-
- return true;
- }
-
- @Override
- public Application getApplicationByName(String name) {
- return getApplicationNameMap().get(name);
- }
-
- @Override
- public boolean isSocial() {
- return realm.isSocial();
- }
-
- @Override
- public void setSocial(boolean social) {
- realm.setSocial(social);
- em.flush();
- }
-
- @Override
- public boolean isUpdateProfileOnInitialSocialLogin() {
- return realm.isUpdateProfileOnInitialSocialLogin();
- }
-
- @Override
- public void setUpdateProfileOnInitialSocialLogin(boolean updateProfileOnInitialSocialLogin) {
- realm.setUpdateProfileOnInitialSocialLogin(updateProfileOnInitialSocialLogin);
- em.flush();
- }
-
- @Override
- public OAuthClient addOAuthClient(String id, String name) {
- OAuthClientEntity data = new OAuthClientEntity();
- data.setId(id);
- data.setEnabled(true);
- data.setName(name);
- data.setRealm(realm);
- em.persist(data);
- em.flush();
- return new OAuthClientAdapter(provider, data, em);
- }
-
- @Override
- public boolean removeOAuthClient(OAuthClient client) {
- em.createQuery("delete from " + ScopeMappingEntity.class.getSimpleName() + " where client = :client").setParameter("client", client).executeUpdate();
- em.remove(client);
- return true;
- }
-
-
- @Override
- public OAuthClient getOAuthClient(String name) {
- TypedQuery query = em.createNamedQuery("findOAuthClientByName", OAuthClientEntity.class);
- query.setParameter("name", name);
- query.setParameter("realm", realm);
- List entities = query.getResultList();
- if (entities.size() == 0) return null;
- return new OAuthClientAdapter(provider, entities.get(0), em);
- }
-
- @Override
- public List getOAuthClients() {
- TypedQuery query = em.createNamedQuery("findOAuthClientByRealm", OAuthClientEntity.class);
- query.setParameter("realm", realm);
- List entities = query.getResultList();
- List list = new ArrayList();
- for (OAuthClientEntity entity : entities) list.add(new OAuthClientAdapter(provider, entity, em));
- return list;
- }
-
- @Override
- public Map getSmtpConfig() {
- return realm.getSmtpConfig();
- }
-
- @Override
- public void setSmtpConfig(Map smtpConfig) {
- realm.setSmtpConfig(smtpConfig);
- em.flush();
- }
-
- @Override
- public Map getSocialConfig() {
- return realm.getSocialConfig();
- }
-
- @Override
- public void setSocialConfig(Map socialConfig) {
- realm.setSocialConfig(socialConfig);
- em.flush();
- }
-
- @Override
- public Map getLdapServerConfig() {
- return realm.getLdapServerConfig();
- }
-
- @Override
- public void setLdapServerConfig(Map ldapServerConfig) {
- realm.setLdapServerConfig(ldapServerConfig);
- em.flush();
- }
-
- @Override
- public List getAuthenticationProviders() {
- List entities = realm.getAuthenticationProviders();
- List copy = new ArrayList();
- for (AuthenticationProviderEntity entity : entities) {
- copy.add(entity);
-
- }
- Collections.sort(copy, new Comparator() {
-
- @Override
- public int compare(AuthenticationProviderEntity o1, AuthenticationProviderEntity o2) {
- return o1.getPriority() - o2.getPriority();
- }
-
- });
- List result = new ArrayList();
- for (AuthenticationProviderEntity entity : copy) {
- result.add(new AuthenticationProviderModel(entity.getProviderName(), entity.isPasswordUpdateSupported(), entity.getConfig()));
- }
-
- return result;
- }
-
- @Override
- public void setAuthenticationProviders(List authenticationProviders) {
- List newEntities = new ArrayList();
- int counter = 1;
- for (AuthenticationProviderModel model : authenticationProviders) {
- AuthenticationProviderEntity entity = new AuthenticationProviderEntity();
- entity.setProviderName(model.getProviderName());
- entity.setPasswordUpdateSupported(model.isPasswordUpdateSupported());
- entity.setConfig(model.getConfig());
- entity.setPriority(counter++);
- newEntities.add(entity);
- }
-
- // Remove all existing first
- Collection existing = realm.getAuthenticationProviders();
- Collection