/*- * ---license-start * keycloak-config-cli * --- * Copyright (C) 2017 - 2020 adorsys GmbH & Co. KG @ https://adorsys.de * --- * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. * ---license-end */ package de.adorsys.keycloak.config.repository; import de.adorsys.keycloak.config.exception.ImportProcessingException; import de.adorsys.keycloak.config.exception.KeycloakRepositoryException; import de.adorsys.keycloak.config.util.ResponseUtil; import org.keycloak.admin.client.resource.ClientResource; import org.keycloak.admin.client.resource.ClientsResource; import org.keycloak.admin.client.resource.ProtocolMappersResource; import org.keycloak.admin.client.resource.RealmResource; import org.keycloak.representations.idm.ClientRepresentation; import org.keycloak.representations.idm.ProtocolMapperRepresentation; import org.springframework.beans.factory.annotation.Autowired; import org.springframework.stereotype.Service; import javax.ws.rs.WebApplicationException; import javax.ws.rs.core.Response; import java.util.List; import java.util.Objects; import java.util.Optional; import java.util.Set; import java.util.stream.Collectors; @Service public class ClientRepository { private final RealmRepository realmRepository; @Autowired public ClientRepository(RealmRepository realmRepository) { this.realmRepository = realmRepository; } public Optional<ClientRepresentation> tryToFindClient(String realm, String clientId) { Optional<ClientRepresentation> maybeClient; RealmResource realmResource = realmRepository.loadRealm(realm); ClientsResource clients = realmResource.clients(); List<ClientRepresentation> foundClients = clients.findByClientId(clientId); if (foundClients.isEmpty()) { maybeClient = Optional.empty(); } else { maybeClient = Optional.of(foundClients.get(0)); } return maybeClient; } public ClientRepresentation getClientByClientId(String realm, String clientId) { return loadClientByClientId(realm, clientId); } public ClientRepresentation getClientById(String realm, String id) { return loadClientById(realm, id).toRepresentation(); } public String getClientSecret(String realm, String clientId) { ClientResource clientResource = getClientResource(realm, clientId); return clientResource.getSecret().getValue(); } public void create(String realm, ClientRepresentation clientToCreate) { RealmResource realmResource = realmRepository.loadRealm(realm); ClientsResource clientsResource = realmResource.clients(); Response response = clientsResource.create(clientToCreate); ResponseUtil.throwOnError(response); } public void update(String realm, ClientRepresentation clientToUpdate) { RealmResource realmResource = realmRepository.loadRealm(realm); ClientsResource clientsResource = realmResource.clients(); ClientResource clientResource = clientsResource.get(clientToUpdate.getId()); clientResource.update(clientToUpdate); } private ClientRepresentation loadClientByClientId(String realm, String clientId) { List<ClientRepresentation> foundClients = realmRepository.loadRealm(realm) .clients() .findByClientId(clientId); if (foundClients.isEmpty()) { throw new KeycloakRepositoryException("Cannot find client by clientId '" + clientId + "'"); } return foundClients.get(0); } private ClientResource loadClientById(String realm, String id) { ClientResource client = realmRepository.loadRealm(realm) .clients() .get(id); if (client == null) { throw new KeycloakRepositoryException("Cannot find client by id '" + id + "'"); } return client; } final ClientResource getClientResource(String realm, String clientId) { ClientRepresentation client = loadClientByClientId(realm, clientId); return realmRepository.loadRealm(realm) .clients() .get(client.getId()); } public final Set<String> getClientIds(String realm) { return realmRepository.loadRealm(realm) .clients() .findAll() .stream() .map(ClientRepresentation::getClientId) .collect(Collectors.toSet()); } public final List<ClientRepresentation> getClients(String realm) { return realmRepository.loadRealm(realm) .clients() .findAll(); } public void addProtocolMappers(String realm, String clientId, List<ProtocolMapperRepresentation> protocolMappers) { ClientResource clientResource = loadClientById(realm, clientId); ProtocolMappersResource protocolMappersResource = clientResource.getProtocolMappers(); for (ProtocolMapperRepresentation protocolMapper : protocolMappers) { Response response = protocolMappersResource.createMapper(protocolMapper); ResponseUtil.throwOnError(response); } } public void removeProtocolMappers(String realm, String clientId, List<ProtocolMapperRepresentation> protocolMappers) { ClientResource clientResource = loadClientById(realm, clientId); ProtocolMappersResource protocolMappersResource = clientResource.getProtocolMappers(); List<ProtocolMapperRepresentation> existingProtocolMappers = clientResource.getProtocolMappers().getMappers(); List<ProtocolMapperRepresentation> protocolMapperToRemove = existingProtocolMappers.stream().filter(em -> protocolMappers.stream().anyMatch(m -> Objects.equals(m.getName(), em.getName()))).collect(Collectors.toList()); for (ProtocolMapperRepresentation protocolMapper : protocolMapperToRemove) { protocolMappersResource.delete(protocolMapper.getId()); } } public void updateProtocolMappers(String realm, String clientId, List<ProtocolMapperRepresentation> protocolMappers) { ClientResource clientResource = loadClientById(realm, clientId); ProtocolMappersResource protocolMappersResource = clientResource.getProtocolMappers(); for (ProtocolMapperRepresentation protocolMapper : protocolMappers) { try { protocolMappersResource.update(protocolMapper.getId(), protocolMapper); } catch (WebApplicationException error) { String errorMessage = ResponseUtil.getErrorMessage(error); throw new ImportProcessingException( "Cannot update protocolMapper '" + protocolMapper.getName() + "' for client '" + clientResource.toRepresentation().getClientId() + "' for realm '" + realm + "'" + ": " + errorMessage, error ); } } } }