AccessToken (Red Hat Single Sign-On 7.1.0.Beta public API)

java.lang.Object
- org.keycloak.representations.JsonWebToken
- - org.keycloak.representations.IDToken
  - - org.keycloak.representations.AccessToken

All Implemented Interfaces:

Serializable

Direct Known Subclasses:

RefreshToken, TokenMetadataRepresentation
```
public class AccessToken
extends IDToken
```
Version:

$Revision: 1 $

Author:

Bill Burke

See Also:

Serialized Form

Nested Class Summary

Nested Classes
Modifier and Type Class and Description

static class AccessToken.Access

static class AccessToken.Authorization

Nested Classes
Modifier and Type	Class and Description
`static class`	`AccessToken.Access`
`static class`	`AccessToken.Authorization`

Field Summary

Fields
Modifier and Type	Field and Description
`protected Set<String>`	`allowedOrigins`
`protected AccessToken.Authorization`	`authorization`
`protected String`	`clientSession`
`protected AccessToken.Access`	`realmAccess`
`protected Map<String,AccessToken.Access>`	`resourceAccess`
`protected Set<String>`	`trustedCertificates`

Fields inherited from class org.keycloak.representations.IDToken
accessTokenHash, acr, ACR, address, ADDRESS, AT_HASH, AUTH_TIME, authTime, birthdate, BIRTHDATE, C_HASH, CLAIMS_LOCALES, claimsLocales, codeHash, email, EMAIL, EMAIL_VERIFIED, emailVerified, FAMILY_NAME, familyName, gender, GENDER, GIVEN_NAME, givenName, locale, LOCALE, MIDDLE_NAME, middleName, name, NAME, nickName, NICKNAME, nonce, NONCE, PHONE_NUMBER, PHONE_NUMBER_VERIFIED, phoneNumber, phoneNumberVerified, picture, PICTURE, PREFERRED_USERNAME, preferredUsername, profile, PROFILE, SESSION_STATE, sessionState, UPDATED_AT, updatedAt, website, WEBSITE, zoneinfo, ZONEINFO

Fields inherited from class org.keycloak.representations.JsonWebToken
audience, expiration, id, issuedAt, issuedFor, issuer, notBefore, otherClaims, subject, type

Constructor Summary

Constructors
Constructor and Description

AccessToken()

Constructors
Constructor and Description
`AccessToken()`

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`AccessToken.Access`	`addAccess(String service)`
`AccessToken`	`clientSession(String session)`
`AccessToken`	`expiration(int expiration)`
`Set<String>`	`getAllowedOrigins()`
`AccessToken.Authorization`	`getAuthorization()`
`String`	`getClientSession()`
`AccessToken.Access`	`getRealmAccess()`
`Map<String,AccessToken.Access>`	`getResourceAccess()`
`AccessToken.Access`	`getResourceAccess(String resource)`
`Set<String>`	`getTrustedCertificates()`
`AccessToken`	`id(String id)`
`AccessToken`	`issuedAt(int issuedAt)`
`AccessToken`	`issuedFor(String issuedFor)`
`AccessToken`	`issuer(String issuer)`
`boolean`	`isVerifyCaller()` Does the realm require verifying the caller?
`boolean`	`isVerifyCaller(String resource)` Does the resource override the requirement of verifying the caller?
`AccessToken`	`notBefore(int notBefore)`
`void`	`setAllowedOrigins(Set<String> allowedOrigins)`
`void`	`setAuthorization(AccessToken.Authorization authorization)`
`void`	`setRealmAccess(AccessToken.Access realmAccess)`
`void`	`setResourceAccess(Map<String,AccessToken.Access> resourceAccess)`
`void`	`setTrustedCertificates(Set<String> trustedCertificates)`
`AccessToken`	`subject(String subject)`
`AccessToken`	`type(String type)`

Methods inherited from class org.keycloak.representations.IDToken
getAccessTokenHash, getAcr, getAddress, getAuthTime, getBirthdate, getClaimsLocales, getCodeHash, getEmail, getEmailVerified, getFamilyName, getGender, getGivenName, getLocale, getMiddleName, getName, getNickName, getNonce, getPhoneNumber, getPhoneNumberVerified, getPicture, getPreferredUsername, getProfile, getSessionState, getUpdatedAt, getWebsite, getZoneinfo, setAccessTokenHash, setAcr, setAddress, setAuthTime, setBirthdate, setClaimsLocales, setCodeHash, setEmail, setEmailVerified, setFamilyName, setGender, setGivenName, setLocale, setMiddleName, setName, setNickName, setNonce, setPhoneNumber, setPhoneNumberVerified, setPicture, setPreferredUsername, setProfile, setSessionState, setUpdatedAt, setWebsite, setZoneinfo

Methods inherited from class org.keycloak.representations.JsonWebToken
audience, getAudience, getExpiration, getId, getIssuedAt, getIssuedFor, getIssuer, getNotBefore, getOtherClaims, getSubject, getType, hasAudience, isActive, isExpired, isNotBefore, issuedNow, setOtherClaims, setSubject

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

clientSession
```
protected String clientSession
```

trustedCertificates

protected Set<String> trustedCertificates

allowedOrigins
```
protected Set<String> allowedOrigins
```

realmAccess

protected AccessToken.Access realmAccess

resourceAccess

protected Map<String,AccessToken.Access> resourceAccess

authorization

protected AccessToken.Authorization authorization

Constructor Detail
- AccessToken
```
public AccessToken()
```

Method Detail

getResourceAccess

public Map<String,AccessToken.Access> getResourceAccess()

setResourceAccess

public void setResourceAccess(Map<String,AccessToken.Access> resourceAccess)

isVerifyCaller
```
public boolean isVerifyCaller()
```
Does the realm require verifying the caller?

Returns:

isVerifyCaller
```
public boolean isVerifyCaller(String resource)
```
Does the resource override the requirement of verifying the caller?

Parameters:

resource -

Returns:

getResourceAccess

public AccessToken.Access getResourceAccess(String resource)

getClientSession
```
public String getClientSession()
```

addAccess

public AccessToken.Access addAccess(String service)

clientSession

public AccessToken clientSession(String session)

id
```
public AccessToken id(String id)
```
Overrides:

id in class JsonWebToken

expiration

public AccessToken expiration(int expiration)

Overrides:: expiration in class JsonWebToken

notBefore

public AccessToken notBefore(int notBefore)

Overrides:: notBefore in class JsonWebToken

issuedAt

public AccessToken issuedAt(int issuedAt)

Overrides:: issuedAt in class JsonWebToken

issuer

public AccessToken issuer(String issuer)

Overrides:: issuer in class JsonWebToken

subject

public AccessToken subject(String subject)

Overrides:: subject in class JsonWebToken

type
```
public AccessToken type(String type)
```
Overrides:

type in class JsonWebToken

getAllowedOrigins

public Set<String> getAllowedOrigins()

setAllowedOrigins

public void setAllowedOrigins(Set<String> allowedOrigins)

getRealmAccess

public AccessToken.Access getRealmAccess()

setRealmAccess

public void setRealmAccess(AccessToken.Access realmAccess)

getTrustedCertificates

public Set<String> getTrustedCertificates()

setTrustedCertificates

public void setTrustedCertificates(Set<String> trustedCertificates)

issuedFor

public AccessToken issuedFor(String issuedFor)

Overrides:: issuedFor in class JsonWebToken

getAuthorization

public AccessToken.Authorization getAuthorization()

setAuthorization

public void setAuthorization(AccessToken.Authorization authorization)

Class AccessToken

Nested Class Summary

Field Summary

Fields inherited from class org.keycloak.representations.IDToken

Fields inherited from class org.keycloak.representations.JsonWebToken

Constructor Summary

Method Summary

Methods inherited from class org.keycloak.representations.IDToken

Methods inherited from class org.keycloak.representations.JsonWebToken

Methods inherited from class java.lang.Object

Field Detail

clientSession

trustedCertificates

allowedOrigins

realmAccess

resourceAccess

authorization

Constructor Detail

AccessToken

Method Detail

getResourceAccess

setResourceAccess

isVerifyCaller

isVerifyCaller

getResourceAccess

getClientSession

addAccess

clientSession

id

expiration

notBefore

issuedAt

issuer

subject

type

getAllowedOrigins

setAllowedOrigins

getRealmAccess

setRealmAccess

getTrustedCertificates

setTrustedCertificates

issuedFor

getAuthorization

setAuthorization