mirror of https://github.com/jacekkow/keycloak-protocol-cas
blame | history | raw
Matthias Piepkorn
2017-01-27 7f7e0cce1b38b199d9a8c22a5e85e18e5c37c7c5 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124

package org.keycloak.protocol.cas;


 


import org.jboss.logging.Logger;


import org.keycloak.events.EventBuilder;


import org.keycloak.models.*;


import org.keycloak.protocol.AbstractLoginProtocolFactory;


import org.keycloak.protocol.LoginProtocol;


import org.keycloak.protocol.ProtocolMapperUtils;


import org.keycloak.protocol.cas.mappers.FullNameMapper;


import org.keycloak.protocol.cas.mappers.UserAttributeMapper;


import org.keycloak.protocol.cas.mappers.UserPropertyMapper;


import org.keycloak.representations.idm.ClientRepresentation;


import org.keycloak.representations.idm.ClientTemplateRepresentation;


 


import java.util.ArrayList;


import java.util.HashMap;


import java.util.List;


import java.util.Map;


 


import static org.keycloak.protocol.oidc.mappers.OIDCAttributeMapperHelper.JSON_TYPE;


import static org.keycloak.protocol.oidc.mappers.OIDCAttributeMapperHelper.TOKEN_CLAIM_NAME;


 


public class CASLoginProtocolFactory extends AbstractLoginProtocolFactory {


    private static final Logger logger = Logger.getLogger(CASLoginProtocolFactory.class);


 


    public static final String EMAIL = "email";


    public static final String EMAIL_VERIFIED = "email verified";


    public static final String GIVEN_NAME = "given name";


    public static final String FAMILY_NAME = "family name";


    public static final String FULL_NAME = "full name";


    public static final String LOCALE = "locale";


 


    public static final String EMAIL_CONSENT_TEXT = "${email}";


    public static final String EMAIL_VERIFIED_CONSENT_TEXT = "${emailVerified}";


    public static final String GIVEN_NAME_CONSENT_TEXT = "${givenName}";


    public static final String FAMILY_NAME_CONSENT_TEXT = "${familyName}";


    public static final String FULL_NAME_CONSENT_TEXT = "${fullName}";


    public static final String LOCALE_CONSENT_TEXT = "${locale}";


 


    @Override


    public LoginProtocol create(KeycloakSession session) {


        return new CASLoginProtocol().setSession(session);


    }


 


    @Override


    public List<ProtocolMapperModel> getBuiltinMappers() {


        return builtins;


    }


 


    @Override


    public List<ProtocolMapperModel> getDefaultBuiltinMappers() {


        return defaultBuiltins;


    }


 


    static List<ProtocolMapperModel> builtins = new ArrayList<>();


    static List<ProtocolMapperModel> defaultBuiltins = new ArrayList<>();


 


    static {


        ProtocolMapperModel model;


 


        model = UserPropertyMapper.create(EMAIL, "email", "mail", "String",


                true, EMAIL_CONSENT_TEXT);


        builtins.add(model);


        defaultBuiltins.add(model);


        model = UserPropertyMapper.create(GIVEN_NAME, "firstName", "givenName", "String",


                true, GIVEN_NAME_CONSENT_TEXT);


        builtins.add(model);


        defaultBuiltins.add(model);


        model = UserPropertyMapper.create(FAMILY_NAME, "lastName", "sn", "String",


                true, FAMILY_NAME_CONSENT_TEXT);


        builtins.add(model);


        defaultBuiltins.add(model);


        model = UserPropertyMapper.create(EMAIL_VERIFIED,


                "emailVerified",


                "emailVerified", "boolean",


                false, EMAIL_VERIFIED_CONSENT_TEXT);


        builtins.add(model);


        model = UserAttributeMapper.create(LOCALE,


                "locale",


                "locale", "String",


                false, LOCALE_CONSENT_TEXT,


                false);


        builtins.add(model);


 


        model = FullNameMapper.create(FULL_NAME, "cn",


                true, FULL_NAME_CONSENT_TEXT);


        builtins.add(model);


        defaultBuiltins.add(model);


    }


 


    @Override


    protected void addDefaults(ClientModel client) {


        for (ProtocolMapperModel model : defaultBuiltins) client.addProtocolMapper(model);


    }


 


    @Override


    public Object createProtocolEndpoint(RealmModel realm, EventBuilder event) {


        return new CASLoginProtocolService(realm, event);


    }


 


    @Override


    public String getId() {


        return CASLoginProtocol.LOGIN_PROTOCOL;


    }


 


    @Override


    public void setupClientDefaults(ClientRepresentation rep, ClientModel newClient) {


        if (rep.getRootUrl() != null && (rep.getRedirectUris() == null || rep.getRedirectUris().isEmpty())) {


            String root = rep.getRootUrl();


            if (root.endsWith("/")) root = root + "*";


            else root = root + "/*";


            newClient.addRedirectUri(root);


        }


 


        if (rep.getAdminUrl() == null && rep.getRootUrl() != null) {


            newClient.setManagementUrl(rep.getRootUrl());


        }


    }


 


    @Override


    public void setupTemplateDefaults(ClientTemplateRepresentation clientRep, ClientTemplateModel newClient) {


 


    }


}