All Classes and Interfaces
Class
Description
Stateful per-request object
Mapper related to mapping of LDAP groups to keycloak model objects (either keycloak roles or keycloak groups)
A
Condition is used to specify how a specific query parameter
is defined in order to filter query results.Mapper useful for the LDAP deployments when some attribute (usually CN) is mapped to full name of user
IdentityStore representation providing minimal SPI
TODO: Rather remove this abstraction
Single RDN inside the DN.
An IdentityStore implementation backed by an LDAP directory
TODO: Possibly add "priority" instead of hardcoding behaviour
This class provides a set of operations to manage LDAP trees.
Configuration specific to
LDAPStorageProviderDefault IdentityQuery implementation.
TODO: LDAPStorageMapper should be divided into more interfaces and let the LDAPStorageMapperManager to check which operation (feature) is supported by which mapper implementation
Track which LDAP users were already enlisted during this transaction
Utility class for working with LDAP.
Allow to directly call some operations against LDAPIdentityStore.
User model delegate, which tracks what attributes were written to LDAP in this transaction.
Mapper specific to MSAD LDS.
Mapper specific to MSAD.
An implementation of the
LDAP Password Modify Extended Operation
client request.
Will be good to get rid of this class and use ReadOnlyUserModelDelegate, but it can't be done now due the backwards compatibility.
Map realm roles or roles of particular client to LDAP groups
See https://support.microsoft.com/en-us/kb/305144
Strategy for how to retrieve LDAP roles of user
Roles of user will be retrieved from "memberOf" attribute of our user
Roles of user will be retrieved by sending LDAP query to retrieve all roles where "member" is our user
Extension specific to Active Directory.