@Override public RoleModel getRole(String name) { if (updated != null) return updated.getRole(name); String id = cached.getRealmRoles().get(name); if (id == null) return null; return cacheSession.getRoleById(id, this); }
role = realm.getRole(roleName);
realm.setOfflineSessionIdleTimeout(Constants.DEFAULT_OFFLINE_SESSION_IDLE_TIMEOUT); if (realm.getRole(Constants.OFFLINE_ACCESS_ROLE) == null) { for (RoleModel realmRole : realm.getRoles()) { realmRole.setScopeParamRequired(false); RoleModel role = realm.getRole(Constants.OFFLINE_ACCESS_ROLE); role.setScopeParamRequired(false); client.getRealm().getRole(AdminRoles.ADMIN).addCompositeRole(role);
public static Set<RoleModel> getDefaultRoles(RealmModel realm) { Set<RoleModel> set = new HashSet<>(); for (String r : realm.getDefaultRoles()) { set.add(realm.getRole(r)); } for (ClientModel application : realm.getClients()) { for (String r : application.getDefaultRoles()) { set.add(application.getRole(r)); } } return set; } public static void addDefaultRoles(RealmModel realm, UserModel userModel) {
public static RoleModel getRoleFromString(RealmModel realm, String roleName) { String[] parsedRole = parseRole(roleName); RoleModel role = null; if (parsedRole[0] == null) { role = realm.getRole(parsedRole[1]); } else { ClientModel client = realm.getClientByClientId(parsedRole[0]); if (client != null) { role = client.getRole(parsedRole[1]); } } return role; }
public static void createRoleMappings(UserRepresentation userRep, UserModel user, RealmModel realm) { if (userRep.getRealmRoles() != null) { for (String roleString : userRep.getRealmRoles()) { RoleModel role = realm.getRole(roleString.trim()); if (role == null) { role = realm.addRole(roleString.trim()); } user.grantRole(role); } } if (userRep.getClientRoles() != null) { Map<String, ClientModel> clientMap = realm.getClientNameMap(); for (Map.Entry<String, List<String>> entry : userRep.getClientRoles().entrySet()) { ClientModel client = clientMap.get(entry.getKey()); if (client == null) { throw new RuntimeException("Unable to find client role mappings for client: " + entry.getKey()); } createClientRoleMappings(client, user, entry.getValue()); } } }
public static void setupOfflineTokens(RealmModel realm) { if (realm.getRole(Constants.OFFLINE_ACCESS_ROLE) == null) { RoleModel role = realm.addRole(Constants.OFFLINE_ACCESS_ROLE); role.setDescription("${role_offline-access}"); role.setScopeParamRequired(true); realm.addDefaultRole(Constants.OFFLINE_ACCESS_ROLE); } }
private void addMasterAdminRoles(RealmManager manager, RealmModel realm) { RealmModel master = manager.getRealmByName(Config.getAdminRealm()); RoleModel admin = master.getRole(AdminRoles.ADMIN); ClientModel client = realm.getMasterAdminClient(); addRoles(client, admin); }
public static void setupMasterRealmRole(RealmProvider model, RealmModel realm) { RealmModel adminRealm; RoleModel adminRole; if (realm.getName().equals(Config.getAdminRealm())) { adminRealm = realm; adminRole = realm.getRole(AdminRoles.ADMIN); } else { adminRealm = model.getRealmByName(Config.getAdminRealm()); adminRole = adminRealm.getRole(AdminRoles.ADMIN); } ClientModel realmAdminApp = adminRealm.getClientByClientId(KeycloakModelUtils.getMasterRealmAdminApplicationClientId(realm.getName())); if (realmAdminApp.getRole(IMPERSONATION_ROLE) != null) return; RoleModel impersonationRole = realmAdminApp.addRole(IMPERSONATION_ROLE); impersonationRole.setDescription("${role_" + IMPERSONATION_ROLE + "}"); impersonationRole.setScopeParamRequired(false); adminRole.addCompositeRole(impersonationRole); }
RoleModel role = realm.getRole(roleString.trim()); if (role == null) { role = realm.addRole(roleString.trim());
private static void addComposites(RoleModel role, RoleRepresentation roleRep, RealmModel realm) { if (roleRep.getComposites() == null) return; if (roleRep.getComposites().getRealm() != null) { for (String roleStr : roleRep.getComposites().getRealm()) { RoleModel realmRole = realm.getRole(roleStr); if (realmRole == null) throw new RuntimeException("Unable to find composite realm role: " + roleStr); role.addCompositeRole(realmRole); } } if (roleRep.getComposites().getClient() != null) { for (Map.Entry<String, List<String>> entry : roleRep.getComposites().getClient().entrySet()) { ClientModel client = realm.getClientByClientId(entry.getKey()); if (client == null) { throw new RuntimeException("App doesn't exist in role definitions: " + roleRep.getName()); } for (String roleStr : entry.getValue()) { RoleModel clientRole = client.getRole(roleStr); if (clientRole == null) throw new RuntimeException("Unable to find composite client role: " + roleStr); role.addCompositeRole(clientRole); } } } }
RoleModel role = newRealm.getRole(roleName); if (role == null) { throw new RuntimeException("Unable to find realm role referenced in consent mappings of user. Role name: " + roleName);
RoleModel role = realm.getRole(roleRep.getName()); addComposites(role, roleRep, realm);
@Override public UserAdapter addUser(RealmModel realm, String id, String username, boolean addDefaultRoles, boolean addDefaultRequiredActions) { UserAdapter userModel = addUserEntity(realm, id, username.toLowerCase()); if (addDefaultRoles) { for (String r : realm.getDefaultRoles()) { userModel.grantRole(realm.getRole(r)); } for (ClientModel application : realm.getClients()) { for (String r : application.getDefaultRoles()) { userModel.grantRole(application.getRole(r)); } } for (GroupModel g : realm.getDefaultGroups()) { userModel.joinGroup(g); } } if (addDefaultRequiredActions) { for (RequiredActionProviderModel r : realm.getRequiredActionProviders()) { if (r.isEnabled() && r.isDefaultAction()) { userModel.addRequiredAction(r.getAlias()); } } } return userModel; }
RoleModel role = newRealm.getRole(roleString.trim()); if (role == null) { role = newRealm.addRole(roleString.trim());