Search in sources :

Example 11 with ManagementPermissionReference

use of org.keycloak.representations.idm.ManagementPermissionReference in project keycloak by keycloak.

the class RealmAdminResource method toUsersMgmtRef.

public static ManagementPermissionReference toUsersMgmtRef(AdminPermissionManagement permissions) {
    ManagementPermissionReference ref = new ManagementPermissionReference();
    ref.setEnabled(true);
    ref.setResource(permissions.users().resource().getId());
    Map<String, String> scopes = permissions.users().getPermissions();
    ref.setScopePermissions(scopes);
    return ref;
}
Also used : ManagementPermissionReference(org.keycloak.representations.idm.ManagementPermissionReference)

Example 12 with ManagementPermissionReference

use of org.keycloak.representations.idm.ManagementPermissionReference in project keycloak by keycloak.

the class RoleContainerResource method getManagementPermissions.

/**
 * Return object stating whether role Authorization permissions have been initialized or not and a reference
 *
 * @param roleName
 * @return
 */
@Path("{role-name}/management/permissions")
@GET
@Produces(MediaType.APPLICATION_JSON)
@NoCache
public ManagementPermissionReference getManagementPermissions(@PathParam("role-name") final String roleName) {
    auth.roles().requireView(roleContainer);
    RoleModel role = roleContainer.getRole(roleName);
    if (role == null) {
        throw new NotFoundException("Could not find role");
    }
    AdminPermissionManagement permissions = AdminPermissions.management(session, realm);
    if (!permissions.roles().isPermissionsEnabled(role)) {
        return new ManagementPermissionReference();
    }
    return RoleByIdResource.toMgmtRef(role, permissions);
}
Also used : NotFoundException(javax.ws.rs.NotFoundException) ManagementPermissionReference(org.keycloak.representations.idm.ManagementPermissionReference) RoleModel(org.keycloak.models.RoleModel) AdminPermissionManagement(org.keycloak.services.resources.admin.permissions.AdminPermissionManagement) Path(javax.ws.rs.Path) Produces(javax.ws.rs.Produces) GET(javax.ws.rs.GET) NoCache(org.jboss.resteasy.annotations.cache.NoCache)

Example 13 with ManagementPermissionReference

use of org.keycloak.representations.idm.ManagementPermissionReference in project keycloak by keycloak.

the class RoleByIdResource method setManagementPermissionsEnabled.

/**
 * Return object stating whether role Authoirzation permissions have been initialized or not and a reference
 *
 * @param id
 * @return initialized manage permissions reference
 */
@Path("{role-id}/management/permissions")
@PUT
@Produces(MediaType.APPLICATION_JSON)
@Consumes(MediaType.APPLICATION_JSON)
@NoCache
public ManagementPermissionReference setManagementPermissionsEnabled(@PathParam("role-id") final String id, ManagementPermissionReference ref) {
    RoleModel role = getRoleModel(id);
    auth.roles().requireManage(role);
    AdminPermissionManagement permissions = AdminPermissions.management(session, realm);
    permissions.roles().setPermissionsEnabled(role, ref.isEnabled());
    if (ref.isEnabled()) {
        return toMgmtRef(role, permissions);
    } else {
        return new ManagementPermissionReference();
    }
}
Also used : ManagementPermissionReference(org.keycloak.representations.idm.ManagementPermissionReference) RoleModel(org.keycloak.models.RoleModel) AdminPermissionManagement(org.keycloak.services.resources.admin.permissions.AdminPermissionManagement) Path(javax.ws.rs.Path) Produces(javax.ws.rs.Produces) Consumes(javax.ws.rs.Consumes) NoCache(org.jboss.resteasy.annotations.cache.NoCache) PUT(javax.ws.rs.PUT)

Example 14 with ManagementPermissionReference

use of org.keycloak.representations.idm.ManagementPermissionReference in project keycloak by keycloak.

the class IdentityProviderResource method getManagementPermissions.

/**
 * Return object stating whether client Authorization permissions have been initialized or not and a reference
 *
 * @return
 */
@Path("management/permissions")
@GET
@Produces(MediaType.APPLICATION_JSON)
@NoCache
public ManagementPermissionReference getManagementPermissions() {
    this.auth.realm().requireViewIdentityProviders();
    AdminPermissionManagement permissions = AdminPermissions.management(session, realm);
    if (!permissions.idps().isPermissionsEnabled(identityProviderModel)) {
        return new ManagementPermissionReference();
    }
    return toMgmtRef(identityProviderModel, permissions);
}
Also used : ManagementPermissionReference(org.keycloak.representations.idm.ManagementPermissionReference) AdminPermissionManagement(org.keycloak.services.resources.admin.permissions.AdminPermissionManagement) Path(javax.ws.rs.Path) Produces(javax.ws.rs.Produces) GET(javax.ws.rs.GET) NoCache(org.jboss.resteasy.annotations.cache.NoCache)

Example 15 with ManagementPermissionReference

use of org.keycloak.representations.idm.ManagementPermissionReference in project keycloak by keycloak.

the class RealmAdminResource method setUsersManagementPermissionsEnabled.

@PUT
@Produces(MediaType.APPLICATION_JSON)
@Consumes(MediaType.APPLICATION_JSON)
@NoCache
@Path("users-management-permissions")
public ManagementPermissionReference setUsersManagementPermissionsEnabled(ManagementPermissionReference ref) {
    auth.realm().requireManageRealm();
    AdminPermissionManagement permissions = AdminPermissions.management(session, realm);
    permissions.users().setPermissionsEnabled(ref.isEnabled());
    if (ref.isEnabled()) {
        return toUsersMgmtRef(permissions);
    } else {
        return new ManagementPermissionReference();
    }
}
Also used : ManagementPermissionReference(org.keycloak.representations.idm.ManagementPermissionReference) AdminPermissionManagement(org.keycloak.services.resources.admin.permissions.AdminPermissionManagement) Path(javax.ws.rs.Path) Produces(javax.ws.rs.Produces) Consumes(javax.ws.rs.Consumes) NoCache(org.jboss.resteasy.annotations.cache.NoCache) PUT(javax.ws.rs.PUT)

Aggregations

ManagementPermissionReference (org.keycloak.representations.idm.ManagementPermissionReference)17 Path (javax.ws.rs.Path)12 Produces (javax.ws.rs.Produces)12 NoCache (org.jboss.resteasy.annotations.cache.NoCache)12 AdminPermissionManagement (org.keycloak.services.resources.admin.permissions.AdminPermissionManagement)12 Consumes (javax.ws.rs.Consumes)6 GET (javax.ws.rs.GET)6 PUT (javax.ws.rs.PUT)6 RoleModel (org.keycloak.models.RoleModel)4 NotFoundException (javax.ws.rs.NotFoundException)2