Example 26 with ProtocolMappersResource
use of org.keycloak.admin.client.resource.ProtocolMappersResource in project keycloak by keycloak.
the class OIDCProtocolMappersTest method testGroupAttributeUserOneGroupNoMultivalueNoAggregate.
@Test
public void testGroupAttributeUserOneGroupNoMultivalueNoAggregate() throws Exception {
// get the user
UserResource userResource = findUserByUsernameId(adminClient.realm("test"), "test-user@localhost");
UserRepresentation user = userResource.toRepresentation();
user.setAttributes(new HashMap<>());
user.getAttributes().put("group-value", Arrays.asList("user-value1", "user-value2"));
userResource.update(user);
// create a group1 with two values
GroupRepresentation group1 = new GroupRepresentation();
group1.setName("group1");
group1.setAttributes(new HashMap<>());
group1.getAttributes().put("group-value", Arrays.asList("value1", "value2"));
adminClient.realm("test").groups().add(group1);
group1 = adminClient.realm("test").getGroupByPath("/group1");
userResource.joinGroup(group1.getId());
// create the attribute mapper
ProtocolMappersResource protocolMappers = findClientResourceByClientId(adminClient.realm("test"), "test-app").getProtocolMappers();
protocolMappers.createMapper(createClaimMapper("group-value", "group-value", "group-value", "String", true, true, false, false)).close();
try {
// test it
OAuthClient.AccessTokenResponse response = browserLogin("password", "test-user@localhost", "password");
IDToken idToken = oauth.verifyIDToken(response.getIdToken());
assertNotNull(idToken.getOtherClaims());
assertNotNull(idToken.getOtherClaims().get("group-value"));
assertTrue(idToken.getOtherClaims().get("group-value") instanceof String);
assertTrue("user-value1".equals(idToken.getOtherClaims().get("group-value")) || "user-value2".equals(idToken.getOtherClaims().get("group-value")));
} finally {
// revert
user.getAttributes().remove("group-value");
userResource.update(user);
userResource.leaveGroup(group1.getId());
adminClient.realm("test").groups().group(group1.getId()).remove();
deleteMappers(protocolMappers);
}
}
Also used :
GroupRepresentation(org.keycloak.representations.idm.GroupRepresentation)
OAuthClient(org.keycloak.testsuite.util.OAuthClient)
UserResource(org.keycloak.admin.client.resource.UserResource)
IDToken(org.keycloak.representations.IDToken)
Matchers.isEmptyOrNullString(org.hamcrest.Matchers.isEmptyOrNullString)
ProtocolMappersResource(org.keycloak.admin.client.resource.ProtocolMappersResource)
UserRepresentation(org.keycloak.representations.idm.UserRepresentation)
AbstractKeycloakTest(org.keycloak.testsuite.AbstractKeycloakTest)
Test(org.junit.Test)
Example 27 with ProtocolMappersResource
use of org.keycloak.admin.client.resource.ProtocolMappersResource in project keycloak by keycloak.
the class UserInfoTest method switchIncludeRolesInUserInfoEndpoint.
private void switchIncludeRolesInUserInfoEndpoint(boolean includeRoles) {
ClientScopesResource clientScopesResource = adminClient.realm("test").clientScopes();
ClientScopeRepresentation rolesClientScope = clientScopesResource.findAll().stream().filter(clientScope -> "roles".equals(clientScope.getName())).findAny().get();
ProtocolMappersResource protocolMappersResource = clientScopesResource.get(rolesClientScope.getId()).getProtocolMappers();
ProtocolMapperRepresentation realmRolesMapper = protocolMappersResource.getMappers().stream().filter(mapper -> "realm roles".equals(mapper.getName())).findAny().get();
realmRolesMapper.getConfig().put(INCLUDE_IN_USERINFO, String.valueOf(includeRoles));
ProtocolMapperRepresentation clientRolesMapper = protocolMappersResource.getMappers().stream().filter(mapper -> "client roles".equals(mapper.getName())).findAny().get();
clientRolesMapper.getConfig().put(INCLUDE_IN_USERINFO, String.valueOf(includeRoles));
protocolMappersResource.update(realmRolesMapper.getId(), realmRolesMapper);
protocolMappersResource.update(clientRolesMapper.getId(), clientRolesMapper);
}
Also used :
ProtocolMapperRepresentation(org.keycloak.representations.idm.ProtocolMapperRepresentation)
ClientScopeRepresentation(org.keycloak.representations.idm.ClientScopeRepresentation)
ClientScopesResource(org.keycloak.admin.client.resource.ClientScopesResource)
ProtocolMappersResource(org.keycloak.admin.client.resource.ProtocolMappersResource)
Aggregations
ProtocolMappersResource (org.keycloak.admin.client.resource.ProtocolMappersResource)27
Test (org.junit.Test)25
IDToken (org.keycloak.representations.IDToken)18
OAuthClient (org.keycloak.testsuite.util.OAuthClient)18
AbstractKeycloakTest (org.keycloak.testsuite.AbstractKeycloakTest)17
GroupRepresentation (org.keycloak.representations.idm.GroupRepresentation)14
ProtocolMapperRepresentation (org.keycloak.representations.idm.ProtocolMapperRepresentation)12
HashMap (java.util.HashMap)11
Matchers.isEmptyOrNullString (org.hamcrest.Matchers.isEmptyOrNullString)11
UserResource (org.keycloak.admin.client.resource.UserResource)10
List (java.util.List)8
Map (java.util.Map)8
ClientResource (org.keycloak.admin.client.resource.ClientResource)7
LinkedHashMap (java.util.LinkedHashMap)5
AbstractSamlTest (org.keycloak.testsuite.saml.AbstractSamlTest)5
Response (javax.ws.rs.core.Response)3
ClientScopeRepresentation (org.keycloak.representations.idm.ClientScopeRepresentation)3
UserRepresentation (org.keycloak.representations.idm.UserRepresentation)3
ClientRepresentation (org.keycloak.representations.idm.ClientRepresentation)2
AuthServerContainerExclude (org.keycloak.testsuite.arquillian.annotation.AuthServerContainerExclude)2
