Java Code Examples for org.keycloak.representations.idm.UserRepresentation#getAttributes()
The following examples show how to use
org.keycloak.representations.idm.UserRepresentation#getAttributes() .
You can vote up the ones you like or vote down the ones you don't like,
and go to the original project or source file by following the links above each example. You may check out the related API usage on the sidebar.
Example 1
Source File: KeyCloakServiceImpl.java From sunbird-lms-service with MIT License | 7 votes |
@Override public String getLastLoginTime(String userId) { String lastLoginTime = null; try { String fedUserId = getFederatedUserId(userId); UserResource resource = keycloak.realm(KeyCloakConnectionProvider.SSO_REALM).users().get(fedUserId); UserRepresentation ur = resource.toRepresentation(); Map<String, List<String>> map = ur.getAttributes(); if (map == null) { map = new HashMap<>(); } List<String> list = map.get(JsonKey.LAST_LOGIN_TIME); if (list != null && !list.isEmpty()) { lastLoginTime = list.get(0); } } catch (Exception e) { ProjectLogger.log(e.getMessage(), e); } return lastLoginTime; }
Example 2
Source File: KeyCloakServiceImpl.java From sunbird-lms-service with MIT License | 6 votes |
@Override public void setEmailVerifiedUpdatedFlag(String userId, String flag) { String fedUserId = getFederatedUserId(userId); UserResource resource = keycloak.realm(KeyCloakConnectionProvider.SSO_REALM).users().get(fedUserId); UserRepresentation user = resource.toRepresentation(); Map<String, List<String>> map = user.getAttributes(); List<String> list = new ArrayList<>(); list.add(flag); if (map == null) { map = new HashMap<>(); } map.put(JsonKey.EMAIL_VERIFIED_UPDATED, list); user.setAttributes(map); resource.update(user); }
Example 3
Source File: KeyCloakServiceImpl.java From sunbird-lms-service with MIT License | 6 votes |
@Override public String getEmailVerifiedUpdatedFlag(String userId) { String fedUserId = getFederatedUserId(userId); UserResource resource = keycloak.realm(KeyCloakConnectionProvider.SSO_REALM).users().get(fedUserId); UserRepresentation user = resource.toRepresentation(); Map<String, List<String>> map = user.getAttributes(); List<String> list = null; if (MapUtils.isNotEmpty(map)) { list = map.get(JsonKey.EMAIL_VERIFIED_UPDATED); } if (CollectionUtils.isNotEmpty(list)) { return list.get(0); } else { return ""; } }
Example 4
Source File: ImportUsersIT.java From keycloak-config-cli with Apache License 2.0 | 6 votes |
@Test @Order(0) void shouldCreateRealmWithUser() { doImport("00_create_realm_with_user.json"); RealmRepresentation createdRealm = keycloakProvider.get().realm(REALM_NAME).toRepresentation(); assertThat(createdRealm.getRealm(), is(REALM_NAME)); assertThat(createdRealm.isEnabled(), is(true)); UserRepresentation createdUser = keycloakRepository.getUser(REALM_NAME, "myuser"); assertThat(createdUser.getUsername(), is("myuser")); assertThat(createdUser.getEmail(), is("myuser@mail.de")); assertThat(createdUser.isEnabled(), is(true)); assertThat(createdUser.getFirstName(), is("My firstname")); assertThat(createdUser.getLastName(), is("My lastname")); Map<String, List<String>> createdUserAttributes = createdUser.getAttributes(); assertThat(createdUserAttributes, notNullValue()); assertThat(createdUserAttributes.get("locale"), contains("de")); }
Example 5
Source File: TermsAndConditionsTest.java From keycloak with Apache License 2.0 | 6 votes |
@Test public void termsDeclined() { loginPage.open(); loginPage.login("test-user@localhost", "password"); Assert.assertTrue(termsPage.isCurrent()); termsPage.declineTerms(); events.expectLogin().event(EventType.CUSTOM_REQUIRED_ACTION_ERROR).detail(Details.CUSTOM_REQUIRED_ACTION, TermsAndConditions.PROVIDER_ID) .error(Errors.REJECTED_BY_USER) .removeDetail(Details.CONSENT) .session(Matchers.nullValue(String.class)) .assertEvent(); // assert user attribute is properly removed UserRepresentation user = ActionUtil.findUserWithAdminClient(adminClient, "test-user@localhost"); Map<String,List<String>> attributes = user.getAttributes(); if (attributes != null) { assertNull("expected null for terms acceptance user attribute " + TermsAndConditions.USER_ATTRIBUTE, attributes.get(TermsAndConditions.USER_ATTRIBUTE)); } }
Example 6
Source File: KeyCloakServiceImpl.java From sunbird-lms-service with MIT License | 5 votes |
@Override public boolean addUserLoginTime(String userId) { boolean response = true; try { String fedUserId = getFederatedUserId(userId); UserResource resource = keycloak.realm(KeyCloakConnectionProvider.SSO_REALM).users().get(fedUserId); UserRepresentation ur = resource.toRepresentation(); Map<String, List<String>> map = ur.getAttributes(); List<String> list = new ArrayList<>(); if (map == null) { map = new HashMap<>(); } List<String> currentLogTime = map.get(JsonKey.CURRENT_LOGIN_TIME); if (currentLogTime == null || currentLogTime.isEmpty()) { currentLogTime = new ArrayList<>(); currentLogTime.add(Long.toString(System.currentTimeMillis())); } else { list.add(currentLogTime.get(0)); currentLogTime.clear(); currentLogTime.add(0, Long.toString(System.currentTimeMillis())); } map.put(JsonKey.CURRENT_LOGIN_TIME, currentLogTime); map.put(JsonKey.LAST_LOGIN_TIME, list); ur.setAttributes(map); resource.update(ur); } catch (Exception e) { ProjectLogger.log(e.getMessage(), e); response = false; } return response; }
Example 7
Source File: TermsAndConditionsTest.java From keycloak with Apache License 2.0 | 5 votes |
@Test public void termsAccepted() { loginPage.open(); loginPage.login("test-user@localhost", "password"); Assert.assertTrue(termsPage.isCurrent()); termsPage.acceptTerms(); events.expectRequiredAction(EventType.CUSTOM_REQUIRED_ACTION).removeDetail(Details.REDIRECT_URI).detail(Details.CUSTOM_REQUIRED_ACTION, TermsAndConditions.PROVIDER_ID).assertEvent(); Assert.assertEquals(RequestType.AUTH_RESPONSE, appPage.getRequestType()); events.expectLogin().assertEvent(); // assert user attribute is properly set UserRepresentation user = ActionUtil.findUserWithAdminClient(adminClient, "test-user@localhost"); Map<String,List<String>> attributes = user.getAttributes(); assertNotNull("timestamp for terms acceptance was not stored in user attributes", attributes); List<String> termsAndConditions = attributes.get(TermsAndConditions.USER_ATTRIBUTE); assertTrue("timestamp for terms acceptance was not stored in user attributes as " + TermsAndConditions.USER_ATTRIBUTE, termsAndConditions.size() == 1); String timestamp = termsAndConditions.get(0); assertNotNull("expected non-null timestamp for terms acceptance in user attribute " + TermsAndConditions.USER_ATTRIBUTE, timestamp); try { Integer.parseInt(timestamp); } catch (NumberFormatException e) { fail("timestamp for terms acceptance is not a valid integer: '" + timestamp + "'"); } }
Example 8
Source File: HardcodedUserAttributeMapperTest.java From keycloak with Apache License 2.0 | 5 votes |
protected UserRepresentation loginAsUserTwiceWithMapper( IdentityProviderMapperSyncMode syncMode, boolean createAfterFirstLogin) { final IdentityProviderRepresentation idp = setupIdentityProvider(); if (!createAfterFirstLogin) { createMapperInIdp(idp, syncMode); } createUserInProviderRealm(); logInAsUserInIDPForFirstTime(); UserRepresentation user = findUser(bc.consumerRealmName(), bc.getUserLogin(), bc.getUserEmail()); if (!createAfterFirstLogin) { assertThatAttributeHasBeenAssigned(user); } else { assertThatAttributeHasNotBeenAssigned(user); } if (createAfterFirstLogin) { createMapperInIdp(idp, syncMode); } logoutFromRealm(getConsumerRoot(), bc.consumerRealmName()); if (user.getAttributes() != null) { user.setAttributes(new HashMap<>()); } adminClient.realm(bc.consumerRealmName()).users().get(user.getId()).update(user); logInAsUserInIDP(); return findUser(bc.consumerRealmName(), bc.getUserLogin(), bc.getUserEmail()); }
Example 9
Source File: ImportUsersIT.java From keycloak-config-cli with Apache License 2.0 | 4 votes |
@Test @Order(1) void shouldUpdateRealmWithAddingClientUser() { doImport("01_update_realm_add_clientuser.json"); RealmRepresentation createdRealm = keycloakProvider.get().realm(REALM_NAME).toRepresentation(); assertThat(createdRealm.getRealm(), is(REALM_NAME)); assertThat(createdRealm.isEnabled(), is(true)); UserRepresentation updatedUser = keycloakRepository.getUser(REALM_NAME, "myuser"); assertThat(updatedUser.getUsername(), is("myuser")); assertThat(updatedUser.getEmail(), is("myuser@mail.de")); assertThat(updatedUser.isEnabled(), is(true)); assertThat(updatedUser.getFirstName(), is("My firstname")); assertThat(updatedUser.getLastName(), is("My lastname")); Map<String, List<String>> updatedUserAttributes = updatedUser.getAttributes(); assertThat(updatedUserAttributes, notNullValue()); assertThat(updatedUserAttributes.get("locale"), contains("de")); UserRepresentation createdUser = keycloakRepository.getUser(REALM_NAME, "myclientuser"); assertThat(createdUser.getUsername(), is("myclientuser")); assertThat(createdUser.getEmail(), is("myclientuser@mail.de")); assertThat(createdUser.isEnabled(), is(true)); assertThat(createdUser.getFirstName(), is("My clientuser's firstname")); assertThat(createdUser.getLastName(), is("My clientuser's lastname")); // check if login with password is successful AccessTokenResponse token = keycloakAuthentication.login( REALM_NAME, "moped-client", "my-special-client-secret", "myclientuser", "myclientuser123" ); assertThat(token.getToken(), notNullValue()); assertThat(token.getRefreshToken(), notNullValue()); assertThat(token.getExpiresIn(), is(greaterThan(0L))); assertThat(token.getRefreshExpiresIn(), is(greaterThan(0L))); assertThat(token.getTokenType(), is("bearer")); }
Example 10
Source File: ImportUsersIT.java From keycloak-config-cli with Apache License 2.0 | 4 votes |
@Test @Order(2) void shouldUpdateRealmWithChangedClientUserPassword() { doImport("02_update_realm_change_clientusers_password.json"); RealmRepresentation createdRealm = keycloakProvider.get().realm(REALM_NAME).toRepresentation(); assertThat(createdRealm.getRealm(), is(REALM_NAME)); assertThat(createdRealm.isEnabled(), is(true)); UserRepresentation updatedUser = keycloakRepository.getUser(REALM_NAME, "myuser"); assertThat(updatedUser.getUsername(), is("myuser")); assertThat(updatedUser.getEmail(), is("myuser@mail.de")); assertThat(updatedUser.isEnabled(), is(true)); assertThat(updatedUser.getFirstName(), is("My firstname")); assertThat(updatedUser.getLastName(), is("My lastname")); Map<String, List<String>> updatedUserAttributes = updatedUser.getAttributes(); assertThat(updatedUserAttributes, notNullValue()); assertThat(updatedUserAttributes.get("locale"), contains("de")); UserRepresentation user = keycloakRepository.getUser(REALM_NAME, "myclientuser"); assertThat(user.getUsername(), is("myclientuser")); assertThat(user.getEmail(), is("myclientuser@mail.de")); assertThat(user.isEnabled(), is(true)); assertThat(user.getFirstName(), is("My clientuser's firstname")); assertThat(user.getLastName(), is("My clientuser's lastname")); // check if login with old password fails assertThrows(KeycloakAuthentication.AuthenticationException.class, () -> keycloakAuthentication.login( REALM_NAME, "moped-client", "my-special-client-secret", "myclientuser", "myclientuser123" ) ); // check if login with new password is successful AccessTokenResponse token = keycloakAuthentication.login( REALM_NAME, "moped-client", "my-special-client-secret", "myclientuser", "changedclientuser123" ); assertThat(token.getToken(), notNullValue()); assertThat(token.getRefreshToken(), notNullValue()); assertThat(token.getExpiresIn(), is(greaterThan(0L))); assertThat(token.getRefreshExpiresIn(), is(greaterThan(0L))); assertThat(token.getTokenType(), is("bearer")); }
Example 11
Source File: RepresentationToModel.java From keycloak with Apache License 2.0 | 4 votes |
public static UserModel createUser(KeycloakSession session, RealmModel newRealm, UserRepresentation userRep) { convertDeprecatedSocialProviders(userRep); // Import users just to user storage. Don't federate UserModel user = session.userLocalStorage().addUser(newRealm, userRep.getId(), userRep.getUsername(), false, false); user.setEnabled(userRep.isEnabled() != null && userRep.isEnabled()); user.setCreatedTimestamp(userRep.getCreatedTimestamp()); user.setEmail(userRep.getEmail()); if (userRep.isEmailVerified() != null) user.setEmailVerified(userRep.isEmailVerified()); user.setFirstName(userRep.getFirstName()); user.setLastName(userRep.getLastName()); user.setFederationLink(userRep.getFederationLink()); if (userRep.getAttributes() != null) { for (Map.Entry<String, List<String>> entry : userRep.getAttributes().entrySet()) { List<String> value = entry.getValue(); if (value != null) { user.setAttribute(entry.getKey(), new ArrayList<>(value)); } } } if (userRep.getRequiredActions() != null) { for (String requiredAction : userRep.getRequiredActions()) { try { user.addRequiredAction(UserModel.RequiredAction.valueOf(requiredAction.toUpperCase())); } catch (IllegalArgumentException iae) { user.addRequiredAction(requiredAction); } } } createCredentials(userRep, session, newRealm, user, false); createFederatedIdentities(userRep, session, newRealm, user); createRoleMappings(userRep, user, newRealm); if (userRep.getClientConsents() != null) { for (UserConsentRepresentation consentRep : userRep.getClientConsents()) { UserConsentModel consentModel = toModel(newRealm, consentRep); session.users().addConsent(newRealm, user.getId(), consentModel); } } if (userRep.getNotBefore() != null) { session.users().setNotBeforeForUser(newRealm, user, userRep.getNotBefore()); } if (userRep.getServiceAccountClientId() != null) { String clientId = userRep.getServiceAccountClientId(); ClientModel client = newRealm.getClientByClientId(clientId); if (client == null) { throw new RuntimeException("Unable to find client specified for service account link. Client: " + clientId); } user.setServiceAccountClientLink(client.getId()); } createGroups(userRep, newRealm, user); return user; }
Example 12
Source File: RepresentationToModel.java From keycloak with Apache License 2.0 | 4 votes |
public static void importFederatedUser(KeycloakSession session, RealmModel newRealm, UserRepresentation userRep) { UserFederatedStorageProvider federatedStorage = session.userFederatedStorage(); if (userRep.getAttributes() != null) { for (Map.Entry<String, List<String>> entry : userRep.getAttributes().entrySet()) { String key = entry.getKey(); List<String> value = entry.getValue(); if (value != null) { federatedStorage.setAttribute(newRealm, userRep.getId(), key, new LinkedList<>(value)); } } } if (userRep.getRequiredActions() != null) { for (String action : userRep.getRequiredActions()) { federatedStorage.addRequiredAction(newRealm, userRep.getId(), action); } } if (userRep.getCredentials() != null) { for (CredentialRepresentation cred : userRep.getCredentials()) { federatedStorage.createCredential(newRealm, userRep.getId(), toModel(cred)); } } createFederatedRoleMappings(federatedStorage, userRep, newRealm); if (userRep.getGroups() != null) { for (String path : userRep.getGroups()) { GroupModel group = KeycloakModelUtils.findGroupByPath(newRealm, path); if (group == null) { throw new RuntimeException("Unable to find group specified by path: " + path); } federatedStorage.joinGroup(newRealm, userRep.getId(), group); } } if (userRep.getFederatedIdentities() != null) { for (FederatedIdentityRepresentation identity : userRep.getFederatedIdentities()) { FederatedIdentityModel mappingModel = new FederatedIdentityModel(identity.getIdentityProvider(), identity.getUserId(), identity.getUserName()); federatedStorage.addFederatedIdentity(newRealm, userRep.getId(), mappingModel); } } if (userRep.getClientConsents() != null) { for (UserConsentRepresentation consentRep : userRep.getClientConsents()) { UserConsentModel consentModel = toModel(newRealm, consentRep); federatedStorage.addConsent(newRealm, userRep.getId(), consentModel); } } if (userRep.getNotBefore() != null) { federatedStorage.setNotBeforeForUser(newRealm, userRep.getId(), userRep.getNotBefore()); } }
Example 13
Source File: HardcodedUserAttributeMapperTest.java From keycloak with Apache License 2.0 | 4 votes |
protected void assertThatAttributeHasNotBeenAssigned(UserRepresentation user) { if (user.getAttributes() != null) { assertThat(user.getAttributes().get(USER_ATTRIBUTE), not(contains(USER_ATTRIBUTE_VALUE))); } }