AbstractUser.java example

Explorer

keycloak-dropwizard-integration-master
- domain
  - src
    - main
      - java
        de
        ahus1
        lottery
        domain
        Draw.java
        DrawingService.java
    - test
      - java
        domain
        DrawingServiceTest.java
- keycloak-dropwizard-bearer
  - src
    - main
      - java
        de
        ahus1
        lottery
        adapter
        dropwizard
        LotteryApplication.java
        LotteryConfiguration.java
        resource
        DrawRequest.java
        DrawResponse.java
        DrawRessource.java
        util
        DropwizardBearerTokenFilterImpl.java
    - test
      - java
        de
        ahus1
        lottery
        adapter
        dropwizard
        LotteryApplicationTest.java
        pages
        DrawPage.java
        LoginPage.java
        Page.java
        StartPage.java
- keycloak-dropwizard-bearermodule
  - src
    - main
      - java
        de
        ahus1
        lottery
        adapter
        dropwizard
        LotteryApplication.java
        LotteryConfiguration.java
        resource
        DrawRequest.java
        DrawResponse.java
        DrawRessource.java
        util
        DropwizardBearerTokenFilterImpl.java
    - test
      - java
        de
        ahus1
        lottery
        adapter
        dropwizard
        LotteryApplicationTest.java
        pages
        DrawPage.java
        LoginPage.java
        Page.java
        StartPage.java
        state
        DrawRessourceState.java
- keycloak-dropwizard-jaxrs
  - src
    - main
      - java
        de
        ahus1
        keycloak
        dropwizard
        AbstractKeycloakAuthenticator.java
        AbstractUser.java
        JaxrsHttpFacade.java
        KeycloakAuthFilter.java
        KeycloakAuthenticator.java
        KeycloakBundle.java
        KeycloakConfiguration.java
        KeycloakDropwizardAuthenticator.java
        KeycloakResource.java
        User.java
        UserAuthorizer.java
- keycloak-dropwizard-jaxrs-example
  - src
    - main
      - java
        de
        ahus1
        lottery
        adapter
        dropwizard
        LotteryApplication.java
        LotteryConfiguration.java
        resource
        DrawBean.java
        DrawRessource.java
        DrawView.java
        LogoutView.java
    - test
      - java
        de
        ahus1
        lottery
        adapter
        dropwizard
        LotteryApplicationTest.java
        pages
        DrawPage.java
        LoginPage.java
        LogoutPage.java
        StartPage.java
- keycloak-dropwizard-jetty
  - src
    - main
      - java
        de
        ahus1
        lottery
        adapter
        dropwizard
        LotteryApplication.java
        LotteryConfiguration.java
        resource
        DrawBean.java
        DrawRessource.java
        DrawView.java
        LogoutView.java
    - test
      - java
        de
        ahus1
        lottery
        adapter
        dropwizard
        LotteryApplicationTest.java
        pages
        DrawPage.java
        LoginPage.java
        LogoutPage.java
        StartPage.java
- keycloak-war
  - src
    - main
      - java
        de
        ahus1
        lottery
        adapter
        servlet
        DrawServlet.java
        LogoutServlet.java
- simple-war
  - src
    - main
      - java
        de
        ahus1
        lottery
        adapter
        servlet
        DrawServlet.java

package de.ahus1.keycloak.dropwizard;

import org.keycloak.KeycloakSecurityContext;
import org.keycloak.representations.AccessToken;

import javax.servlet.ServletException;
import javax.servlet.http.HttpServletRequest;
import java.security.Principal;
import java.util.Collections;
import java.util.HashSet;
import java.util.Set;

/**
 * This is a base class you can use for your own applications authentication. Feel free to
 * roll your own, as I don't want to impose any class dependencies on your (domain) model.
 */
public abstract class AbstractUser implements Principal {
    protected HttpServletRequest request;
    protected KeycloakSecurityContext securityContext;
    private final Set<String> roles;

    public AbstractUser(HttpServletRequest request, KeycloakSecurityContext securityContext, KeycloakConfiguration keycloakConfiguration) {
        this.request = request;
        this.securityContext = securityContext;

        this.roles = selectRolesToApply(keycloakConfiguration);
    }

	/**
     * The configuration parameter use-resource-role-mappings define if the module should use Realm roles OR Resources roles.
     * Resources roles correspond to the role given by the client in keycloak
     *
     * @param keycloakConfiguration
     * @return list of user's roles.
     */
    private Set<String> selectRolesToApply(KeycloakConfiguration keycloakConfiguration) {
        if (keycloakConfiguration.isUseResourceRoleMappings()) {
            return this.selectResourceRoles(new KeycloakResource(keycloakConfiguration.getResource()));
        }
        return this.selectRealmRoles();
    }

    private Set<String> selectResourceRoles(KeycloakResource keycloakResource) {
        Set<String> roles = new HashSet<>();

        AccessToken.Access resourceAccess = securityContext.getToken().getResourceAccess(keycloakResource.getResource());
        if (resourceAccess != null && resourceAccess.getRoles() != null) {
            roles.addAll(resourceAccess.getRoles());
        }
        return Collections.unmodifiableSet(roles);
    }

    private Set<String> selectRealmRoles() {
        Set<String> roles = new HashSet<>();

        AccessToken.Access realmAccess = securityContext.getToken().getRealmAccess();
        if (realmAccess != null && realmAccess.getRoles() != null) {
            roles.addAll(realmAccess.getRoles());
        }
        return Collections.unmodifiableSet(roles);
    }

    public Set<String> getRoles() {
        return roles;
    }

    public void logout() throws ServletException {
        if(request.getUserPrincipal() != null) {
            request.logout();
        }
    }
}