• Home
• io.phasetwo.keycloak
• keycloak-orgs
• 0.69
• source code
• HomeIdpDiscoveryConfigProperties.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

io.phasetwo.service.auth.idp.HomeIdpDiscoveryConfigProperties Maven / Gradle / Ivy

//package de.sventorben.keycloak.authentication.hidpd;
package io.phasetwo.service.auth.idp;

import org.keycloak.provider.ProviderConfigProperty;
import org.keycloak.provider.ProviderConfigurationBuilder;

import java.util.List;

import static io.phasetwo.service.auth.idp.HomeIdpDiscoveryConfig.REQUIRE_VERIFIED_EMAIL;
import static io.phasetwo.service.auth.idp.HomeIdpDiscoveryConfig.REQUIRE_VERIFIED_DOMAIN;
import static io.phasetwo.service.auth.idp.HomeIdpDiscoveryConfig.BYPASS_LOGIN_PAGE;
import static io.phasetwo.service.auth.idp.HomeIdpDiscoveryConfig.FORWARD_TO_LINKED_IDP;
import static io.phasetwo.service.auth.idp.HomeIdpDiscoveryConfig.FORWARD_TO_FIRST_MATCH;
import static io.phasetwo.service.auth.idp.HomeIdpDiscoveryConfig.USER_ATTRIBUTE;
import static org.keycloak.provider.ProviderConfigProperty.BOOLEAN_TYPE;
import static org.keycloak.provider.ProviderConfigProperty.STRING_TYPE;

final class HomeIdpDiscoveryConfigProperties {

    private static final ProviderConfigProperty REQUIRE_VERIFIED_EMAIL_PROPERTY =
      new ProviderConfigProperty(
          REQUIRE_VERIFIED_EMAIL,
          "Require a verified email",
          "Whether a verified email address for a user is required to forward to their identity provider.",
          BOOLEAN_TYPE,
          false,
          false);

    private static final ProviderConfigProperty REQUIRE_VERIFIED_DOMAIN_PROPERTY =
      new ProviderConfigProperty(
          REQUIRE_VERIFIED_DOMAIN,
          "Require a verified domain",
          "Whether a verified domain name for an organization is required to forward to their identity provider.",
          BOOLEAN_TYPE,
          false,
          false);

    private static final ProviderConfigProperty FORWARD_TO_LINKED_IDP_PROPERTY = new ProviderConfigProperty(
        FORWARD_TO_LINKED_IDP,
        "Forward to linked IdP",
        "Whether to forward existing user to a linked identity provider or not.",
        BOOLEAN_TYPE,
        false,
        false);

    private static final ProviderConfigProperty BYPASS_LOGIN_PAGE_PROPERTY = new ProviderConfigProperty(
        BYPASS_LOGIN_PAGE,
        "Bypass login page",
        "If OIDC login_hint parameter is present, whether to bypass the login page for managed domains or not.",
        BOOLEAN_TYPE,
        false,
        false);

    private static final ProviderConfigProperty FORWARD_TO_FIRST_MATCH_PROPERTY = new ProviderConfigProperty(
        FORWARD_TO_FIRST_MATCH,
        "Forward to first matched IdP",
        "When multiple IdPs match the domain, whether to forward to the first IdP found or let the user choose.",
        BOOLEAN_TYPE,
        true,
        false);

    private static final ProviderConfigProperty USER_ATTRIBUTE_PROPERTY = new ProviderConfigProperty(
        USER_ATTRIBUTE,
        "User attribute",
        "The user attribute used to lookup the email address of the user.",
        STRING_TYPE,
        "email",
        false);

    static final List CONFIG_PROPERTIES = ProviderConfigurationBuilder.create()
        .property(USER_ATTRIBUTE_PROPERTY)
        .property(REQUIRE_VERIFIED_EMAIL_PROPERTY)
        .property(REQUIRE_VERIFIED_DOMAIN_PROPERTY)
        .property(BYPASS_LOGIN_PAGE_PROPERTY)
        .property(FORWARD_TO_LINKED_IDP_PROPERTY)
        .property(FORWARD_TO_FIRST_MATCH_PROPERTY)
        .build();

}