public class KeycloakLoginFilter extends Object implements javax.servlet.Filter
Filter
that looks for a KeycloakPrincipal
(respectively an AccessToken
) in the current
HttpServletRequest
.
Prerequisites
KeycloakAuthenticatorValve
in the server's
context.xml
keycloak.json
must be present in WEB-INF
WEB-INF/web.xml
by removing the comments from the Keycloak related elements.
<security-constraint>
. The name of that role can be configured using
Platform.Property#KEYCLOAK_SECURITY_ROLE
.
KeycloakPrincipal
is found in the request (and there is no authenticated user), there are two possible
scenarios:
IDToken.getPreferredUsername()
.IDToken.getPreferredUsername()
with the
given groups.Platform.Property#KEYCLOAK_GROUP_PREFIX
)Platform.Property#KEYCLOAK_GROUP_CLAIM_NAME
)Constructor and Description |
---|
KeycloakLoginFilter() |
Modifier and Type | Method and Description |
---|---|
void |
destroy() |
void |
doFilter(javax.servlet.ServletRequest request,
javax.servlet.ServletResponse response,
javax.servlet.FilterChain chain) |
void |
init(javax.servlet.FilterConfig filterConfig) |
public void doFilter(javax.servlet.ServletRequest request, javax.servlet.ServletResponse response, javax.servlet.FilterChain chain) throws IOException, javax.servlet.ServletException
doFilter
in interface javax.servlet.Filter
IOException
javax.servlet.ServletException
public void init(javax.servlet.FilterConfig filterConfig) throws javax.servlet.ServletException
init
in interface javax.servlet.Filter
javax.servlet.ServletException
public void destroy()
destroy
in interface javax.servlet.Filter
Copyright © 2011–2023 aiticon GmbH. All rights reserved.