Package io.quarkus.keycloak.pep.runtime

Interface KeycloakPolicyEnforcerTenantConfig.KeycloakConfigPolicyEnforcer

Enclosing interface:
KeycloakPolicyEnforcerTenantConfig
public static interface KeycloakPolicyEnforcerTenantConfig.KeycloakConfigPolicyEnforcer

  • Method Details

    • enforcementMode

      @WithDefault("enforcing") org.keycloak.representations.adapters.config.PolicyEnforcerConfig.EnforcementMode enforcementMode()
      Specifies how policies are enforced.

    • paths

      Map<String,KeycloakPolicyEnforcerTenantConfig.KeycloakConfigPolicyEnforcer.PathConfig> paths()
      Specifies the paths to protect.

    • pathCache

      KeycloakPolicyEnforcerTenantConfig.KeycloakConfigPolicyEnforcer.PathCacheConfig pathCache()
      Defines how the policy enforcer should track associations between paths in your application and resources defined in Keycloak. The cache is needed to avoid unnecessary requests to a Keycloak server by caching associations between paths and protected resources

    • lazyLoadPaths

      @WithDefault("true") boolean lazyLoadPaths()
      Specifies how the adapter should fetch the server for resources associated with paths in your application. If true, the policy enforcer is going to fetch resources on-demand accordingly with the path being requested

    • claimInformationPoint

      KeycloakPolicyEnforcerTenantConfig.KeycloakConfigPolicyEnforcer.ClaimInformationPointConfig claimInformationPoint()
      Defines a set of one or more claims that must be resolved and pushed to the Keycloak server in order to make these claims available to policies

    • httpMethodAsScope

      @WithDefault("false") boolean httpMethodAsScope()
      Specifies how scopes should be mapped to HTTP methods. If set to true, the policy enforcer will use the HTTP method from the current request to check whether access should be granted