mapper refactoring

saml/saml-protocol/src/main/java/org/keycloak/protocol/saml/SamlProtocolFactory.java

@@ -4,17 +4,29 @@
 import org.keycloak.events.EventBuilder;
 import org.keycloak.models.KeycloakSession;
 import org.keycloak.models.KeycloakSessionFactory;
+import org.keycloak.models.ProtocolMapperModel;
 import org.keycloak.models.RealmModel;
+import org.keycloak.protocol.AbstractLoginProtocolFactory;
 import org.keycloak.protocol.LoginProtocol;
 import org.keycloak.protocol.LoginProtocolFactory;
+import org.keycloak.protocol.oidc.OIDCLoginProtocol;
+import org.keycloak.protocol.oidc.mappers.OIDCAttributeMapperHelper;
+import org.keycloak.protocol.oidc.mappers.OIDCUserModelMapper;
+import org.keycloak.protocol.saml.mappers.AttributeStatementHelper;
+import org.keycloak.protocol.saml.mappers.UserAttributeBasicAttributeStatementMapper;
+import org.keycloak.protocol.saml.mappers.UserModelUriReferenceAttributeStatementMapper;
 import org.keycloak.services.managers.AuthenticationManager;
+import org.picketlink.identity.federation.core.saml.v2.constants.X500SAMLProfileConstants;
 import org.picketlink.identity.federation.core.sts.PicketLinkCoreSTS;
 
+import java.util.HashMap;
+import java.util.Map;
+
 /**
  * @author <a href="mailto:bill@burkecentral.com">Bill Burke</a>
  * @version $Revision: 1 $
  */
-public class SamlProtocolFactory implements LoginProtocolFactory {
+public class SamlProtocolFactory extends AbstractLoginProtocolFactory {
 
     @Override
     public Object createProtocolEndpoint(RealmModel realm, EventBuilder event, AuthenticationManager authManager) {
@@ -33,16 +45,28 @@ public void init(Config.Scope config) {
     }
 
     @Override
-    public void postInit(KeycloakSessionFactory factory) {
-
+    public String getId() {
+        return "saml";
     }
+
     @Override
-    public void close() {
+    protected void addDefaults(RealmModel realm) {
+       UserModelUriReferenceAttributeStatementMapper.addAttributeMapper(realm, "X500 email",
+                "email",
+                X500SAMLProfileConstants.EMAIL.get(), X500SAMLProfileConstants.EMAIL.getFriendlyName(),
+                true, "email",
+                false);
+        UserModelUriReferenceAttributeStatementMapper.addAttributeMapper(realm, "X500 givenName",
+                "firstName",
+                X500SAMLProfileConstants.GIVEN_NAME.get(), X500SAMLProfileConstants.GIVEN_NAME.getFriendlyName(),
+                true, "given name",
+                false);
+        UserModelUriReferenceAttributeStatementMapper.addAttributeMapper(realm, "X500 surname",
+                "lastName",
+                X500SAMLProfileConstants.SURNAME.get(), X500SAMLProfileConstants.SURNAME.getFriendlyName(),
+                true, "family name",
+                false);
 
     }
 
-    @Override
-    public String getId() {
-        return "saml";
-    }
 }

saml/saml-protocol/src/main/java/org/keycloak/protocol/saml/mappers/AttributeStatementHelper.java

@@ -1,46 +1,50 @@
 package org.keycloak.protocol.saml.mappers;
 
 import org.keycloak.models.ProtocolMapperModel;
+import org.keycloak.models.RealmModel;
 import org.keycloak.protocol.ProtocolMapper;
+import org.keycloak.protocol.ProtocolMapperUtils;
+import org.keycloak.protocol.saml.SamlProtocol;
 import org.picketlink.common.constants.JBossSAMLURIConstants;
 import org.picketlink.identity.federation.saml.v2.assertion.AttributeStatementType;
 import org.picketlink.identity.federation.saml.v2.assertion.AttributeType;
 
+import java.util.HashMap;
 import java.util.List;
+import java.util.Map;
 
 /**
  * @author <a href="mailto:bill@burkecentral.com">Bill Burke</a>
  * @version $Revision: 1 $
  */
 public class AttributeStatementHelper {
+    public static final String SAML_ATTRIBUTE_NAME = "SAML Attribute Name";
     public static final String ATTRIBUTE_STATEMENT_CATEGORY = "AttributeStatement Mapper";
-    public static final String URI_REFERENCE = "URI Reference";
+    public static final String URI_REFERENCE_LABEL = "URI Reference";
     public static final String URI_REFERENCE_HELP_TEXT = "Attribute name for the SAML URI Reference attribute name format";
-    public static final String BASIC = "Basic name";
+    public static final String BASIC_LABEL = "Basic name";
     public static final String BASIC_HELP_TEXT = "Attribute name for the SAML Basic attribute name format";
     public static final String FRIENDLY_NAME = "Friendly Name";
     public static final String FRIENDLY_NAME_HELP_TEXT = "Standard SAML attribute setting.  An optional, more human-readable form of the attribute's name that can be provided if the actual attribute name is cryptic.";
 
-    public static void addUriReferenceAttribute(AttributeStatementType attributeStatement, ProtocolMapperModel mappingModel, String attributeValue) {
-        String attributeName = mappingModel.getConfig().get(URI_REFERENCE);
+    public static void addAttribute(AttributeStatementType attributeStatement, ProtocolMapperModel mappingModel,
+                                    String attributeNameFormat, String attributeValue) {
+        String attributeName = mappingModel.getConfig().get(SAML_ATTRIBUTE_NAME);
         AttributeType attribute = new AttributeType(attributeName);
-        attribute.setNameFormat(JBossSAMLURIConstants.ATTRIBUTE_FORMAT_URI.get());
+        attribute.setNameFormat(attributeNameFormat);
         String friendlyName = mappingModel.getConfig().get(FRIENDLY_NAME);
-        if (friendlyName != null && friendlyName.trim().equals("")) friendlyName = null;
-        if (friendlyName != null) attribute.setFriendlyName(friendlyName);
+        if (friendlyName != null && !friendlyName.trim().equals("")) attribute.setFriendlyName(friendlyName);
         attribute.addAttributeValue(attributeValue);
         attributeStatement.addAttribute(new AttributeStatementType.ASTChoiceType(attribute));
     }
 
+    public static void addUriReferenceAttribute(AttributeStatementType attributeStatement, ProtocolMapperModel mappingModel, String attributeValue) {
+        String attributeNameFormat = JBossSAMLURIConstants.ATTRIBUTE_FORMAT_URI.get();
+        addAttribute(attributeStatement, mappingModel, attributeNameFormat, attributeValue);
+    }
+
     public static void addBasicAttribute(AttributeStatementType attributeStatement, ProtocolMapperModel mappingModel, String attributeValue) {
-        String attributeName = mappingModel.getConfig().get(BASIC);
-        AttributeType attribute = new AttributeType(attributeName);
-        attribute.setNameFormat(JBossSAMLURIConstants.ATTRIBUTE_FORMAT_BASIC.get());
-        String friendlyName = mappingModel.getConfig().get(FRIENDLY_NAME);
-        if (friendlyName != null && friendlyName.trim().equals("")) friendlyName = null;
-        if (friendlyName != null) attribute.setFriendlyName(friendlyName);
-        attribute.addAttributeValue(attributeValue);
-        attributeStatement.addAttribute(new AttributeStatementType.ASTChoiceType(attribute));
+        addAttribute(attributeStatement, mappingModel, JBossSAMLURIConstants.ATTRIBUTE_FORMAT_BASIC.get(), attributeValue);
     }
 
     protected static void addUriReferenceProperties(List<ProtocolMapper.ConfigProperty> configProperties) {
@@ -51,8 +55,8 @@ protected static void addUriReferenceProperties(List<ProtocolMapper.ConfigProper
         property.setHelpText(FRIENDLY_NAME_HELP_TEXT);
         configProperties.add(property);
         property = new ProtocolMapper.ConfigProperty();
-        property.setName(URI_REFERENCE);
-        property.setLabel(URI_REFERENCE);
+        property.setName(SAML_ATTRIBUTE_NAME);
+        property.setLabel(URI_REFERENCE_LABEL);
         property.setHelpText(URI_REFERENCE_HELP_TEXT);
         configProperties.add(property);
     }
@@ -64,9 +68,29 @@ protected static void addBasicProperties(List<ProtocolMapper.ConfigProperty> con
         property.setHelpText(FRIENDLY_NAME_HELP_TEXT);
         configProperties.add(property);
         property = new ProtocolMapper.ConfigProperty();
-        property.setName(BASIC);
-        property.setLabel(BASIC);
+        property.setName(SAML_ATTRIBUTE_NAME);
+        property.setLabel(BASIC_LABEL);
         property.setHelpText(BASIC_HELP_TEXT);
         configProperties.add(property);
     }
+
+    public static void addAttributeMapper(RealmModel realm, String name, String userAttribute, String samlAttributeName, String friendlyName, boolean consentRequired, String consentText, boolean appliedByDefault, String mapperId) {
+        ProtocolMapperModel mapper = realm.getProtocolMapperByName(SamlProtocol.LOGIN_PROTOCOL, name);
+        if (mapper != null) return;
+        mapper = new ProtocolMapperModel();
+        mapper.setName(name);
+        mapper.setProtocolMapper(mapperId);
+        mapper.setProtocol(SamlProtocol.LOGIN_PROTOCOL);
+        mapper.setConsentRequired(consentRequired);
+        mapper.setConsentText(consentText);
+        mapper.setAppliedByDefault(appliedByDefault);
+        Map<String, String> config = new HashMap<String, String>();
+        config.put(ProtocolMapperUtils.USER_ATTRIBUTE, userAttribute);
+        config.put(SAML_ATTRIBUTE_NAME, samlAttributeName);
+        if (friendlyName != null) {
+            config.put(FRIENDLY_NAME, friendlyName);
+        }
+        mapper.setConfig(config);
+        realm.addProtocolMapper(mapper);
+    }
 }

saml/saml-protocol/src/main/java/org/keycloak/protocol/saml/mappers/UserAttributeBasicAttributeStatementMapper.java

@@ -3,6 +3,7 @@
 import org.keycloak.models.ClientSessionModel;
 import org.keycloak.models.KeycloakSession;
 import org.keycloak.models.ProtocolMapperModel;
+import org.keycloak.models.RealmModel;
 import org.keycloak.models.UserModel;
 import org.keycloak.models.UserSessionModel;
 import org.keycloak.protocol.ProtocolMapperUtils;
@@ -23,8 +24,8 @@ public class UserAttributeBasicAttributeStatementMapper extends AbstractSAMLProt
     static {
         ConfigProperty property;
         property = new ConfigProperty();
-        property.setName(ProtocolMapperUtils.USER_MODEL_ATTRIBUTE_NAME);
-        property.setLabel(ProtocolMapperUtils.USER_MODEL_ATTRIBUTE_NAME);
+        property.setName(ProtocolMapperUtils.USER_ATTRIBUTE);
+        property.setLabel(ProtocolMapperUtils.USER_MODEL_ATTRIBUTE_LABEL);
         property.setHelpText(ProtocolMapperUtils.USER_MODEL_ATTRIBUTE_HELP_TEXT);
         configProperties.add(property);
         AttributeStatementHelper.addBasicProperties(configProperties);
@@ -60,10 +61,21 @@ public String getHelpText() {
     @Override
     public void transformAttributeStatement(AttributeStatementType attributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionModel clientSession) {
         UserModel user = userSession.getUser();
-        String attributeName = mappingModel.getConfig().get(ProtocolMapperUtils.USER_MODEL_ATTRIBUTE_NAME);
+        String attributeName = mappingModel.getConfig().get(ProtocolMapperUtils.USER_ATTRIBUTE);
         String attributeValue = user.getAttribute(attributeName);
         AttributeStatementHelper.addBasicAttribute(attributeStatement, mappingModel, attributeValue);
 
     }
 
+    public static void addAttributeMapper(RealmModel realm, String name,
+                                         String userAttribute,
+                                         String samlAttributeName,
+                                         String friendlyName,
+                                         boolean consentRequired, String consentText,
+                                         boolean appliedByDefault) {
+        String mapperId = PROVIDER_ID;
+        AttributeStatementHelper.addAttributeMapper(realm, name, userAttribute, samlAttributeName, friendlyName, consentRequired, consentText, appliedByDefault, mapperId);
+
+    }
+
 }

saml/saml-protocol/src/main/java/org/keycloak/protocol/saml/mappers/UserAttributeUriReferenceAttributeStatementMapper.java

@@ -3,6 +3,7 @@
 import org.keycloak.models.ClientSessionModel;
 import org.keycloak.models.KeycloakSession;
 import org.keycloak.models.ProtocolMapperModel;
+import org.keycloak.models.RealmModel;
 import org.keycloak.models.UserModel;
 import org.keycloak.models.UserSessionModel;
 import org.keycloak.protocol.ProtocolMapperUtils;
@@ -23,8 +24,8 @@ public class UserAttributeUriReferenceAttributeStatementMapper extends AbstractS
     static {
         ConfigProperty property;
         property = new ConfigProperty();
-        property.setName(ProtocolMapperUtils.USER_MODEL_ATTRIBUTE_NAME);
-        property.setLabel(ProtocolMapperUtils.USER_MODEL_ATTRIBUTE_NAME);
+        property.setName(ProtocolMapperUtils.USER_ATTRIBUTE);
+        property.setLabel(ProtocolMapperUtils.USER_MODEL_ATTRIBUTE_LABEL);
         property.setHelpText(ProtocolMapperUtils.USER_MODEL_ATTRIBUTE_HELP_TEXT);
         configProperties.add(property);
         AttributeStatementHelper.addUriReferenceProperties(configProperties);
@@ -60,10 +61,20 @@ public String getHelpText() {
     @Override
     public void transformAttributeStatement(AttributeStatementType attributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionModel clientSession) {
         UserModel user = userSession.getUser();
-        String attributeName = mappingModel.getConfig().get(ProtocolMapperUtils.USER_MODEL_ATTRIBUTE_NAME);
+        String attributeName = mappingModel.getConfig().get(ProtocolMapperUtils.USER_MODEL_ATTRIBUTE_LABEL);
         String attributeValue = user.getAttribute(attributeName);
         AttributeStatementHelper.addUriReferenceAttribute(attributeStatement, mappingModel, attributeValue);
 
     }
+    public static void addAttributeMapper(RealmModel realm, String name,
+                                          String userAttribute,
+                                          String samlAttributeName,
+                                          String friendlyName,
+                                          boolean consentRequired, String consentText,
+                                          boolean appliedByDefault) {
+        String mapperId = PROVIDER_ID;
+        AttributeStatementHelper.addAttributeMapper(realm, name, userAttribute, samlAttributeName, friendlyName, consentRequired, consentText, appliedByDefault, mapperId);
+
+    }
 
 }

saml/saml-protocol/src/main/java/org/keycloak/protocol/saml/mappers/UserModelBasicAttributeStatementMapper.java

@@ -3,6 +3,7 @@
 import org.keycloak.models.ClientSessionModel;
 import org.keycloak.models.KeycloakSession;
 import org.keycloak.models.ProtocolMapperModel;
+import org.keycloak.models.RealmModel;
 import org.keycloak.models.UserModel;
 import org.keycloak.models.UserSessionModel;
 import org.keycloak.protocol.ProtocolMapperUtils;
@@ -23,8 +24,8 @@ public class UserModelBasicAttributeStatementMapper extends AbstractSAMLProtocol
     static {
         ConfigProperty property;
         property = new ConfigProperty();
-        property.setName(ProtocolMapperUtils.USER_MODEL_PROPERTY);
-        property.setLabel(ProtocolMapperUtils.USER_MODEL_PROPERTY);
+        property.setName(ProtocolMapperUtils.USER_ATTRIBUTE);
+        property.setLabel(ProtocolMapperUtils.USER_MODEL_PROPERTY_LABEL);
         property.setHelpText(ProtocolMapperUtils.USER_MODEL_PROPERTY_HELP_TEXT);
         configProperties.add(property);
         AttributeStatementHelper.addBasicProperties(configProperties);
@@ -60,10 +61,20 @@ public String getHelpText() {
     @Override
     public void transformAttributeStatement(AttributeStatementType attributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionModel clientSession) {
         UserModel user = userSession.getUser();
-        String propertyName = mappingModel.getConfig().get(ProtocolMapperUtils.USER_MODEL_PROPERTY);
+        String propertyName = mappingModel.getConfig().get(ProtocolMapperUtils.USER_MODEL_PROPERTY_LABEL);
         String propertyValue = ProtocolMapperUtils.getUserModelValue(user, propertyName);
         AttributeStatementHelper.addBasicAttribute(attributeStatement, mappingModel, propertyValue);
 
     }
 
+    public static void addAttributeMapper(RealmModel realm, String name,
+                                          String userAttribute,
+                                          String samlAttributeName,
+                                          String friendlyName,
+                                          boolean consentRequired, String consentText,
+                                          boolean appliedByDefault) {
+        String mapperId = PROVIDER_ID;
+        AttributeStatementHelper.addAttributeMapper(realm, name, userAttribute, samlAttributeName, friendlyName, consentRequired, consentText, appliedByDefault, mapperId);
+
+    }
 }

saml/saml-protocol/src/main/java/org/keycloak/protocol/saml/mappers/UserModelUriReferenceAttributeStatementMapper.java

@@ -3,6 +3,7 @@
 import org.keycloak.models.ClientSessionModel;
 import org.keycloak.models.KeycloakSession;
 import org.keycloak.models.ProtocolMapperModel;
+import org.keycloak.models.RealmModel;
 import org.keycloak.models.UserModel;
 import org.keycloak.models.UserSessionModel;
 import org.keycloak.protocol.ProtocolMapperUtils;
@@ -23,8 +24,8 @@ public class UserModelUriReferenceAttributeStatementMapper extends AbstractSAMLP
     static {
         ConfigProperty property;
         property = new ConfigProperty();
-        property.setName(ProtocolMapperUtils.USER_MODEL_PROPERTY);
-        property.setLabel(ProtocolMapperUtils.USER_MODEL_PROPERTY);
+        property.setName(ProtocolMapperUtils.USER_ATTRIBUTE);
+        property.setLabel(ProtocolMapperUtils.USER_MODEL_PROPERTY_LABEL);
         property.setHelpText(ProtocolMapperUtils.USER_MODEL_PROPERTY_HELP_TEXT);
         configProperties.add(property);
         AttributeStatementHelper.addUriReferenceProperties(configProperties);
@@ -60,10 +61,20 @@ public String getHelpText() {
     @Override
     public void transformAttributeStatement(AttributeStatementType attributeStatement, ProtocolMapperModel mappingModel, KeycloakSession session, UserSessionModel userSession, ClientSessionModel clientSession) {
         UserModel user = userSession.getUser();
-        String propertyName = mappingModel.getConfig().get(ProtocolMapperUtils.USER_MODEL_PROPERTY);
+        String propertyName = mappingModel.getConfig().get(ProtocolMapperUtils.USER_MODEL_PROPERTY_LABEL);
         String propertyValue = ProtocolMapperUtils.getUserModelValue(user, propertyName);
         AttributeStatementHelper.addUriReferenceAttribute(attributeStatement, mappingModel, propertyValue);
 
     }
 
+    public static void addAttributeMapper(RealmModel realm, String name,
+                                          String userAttribute,
+                                          String samlAttributeName,
+                                          String friendlyName,
+                                          boolean consentRequired, String consentText,
+                                          boolean appliedByDefault) {
+        String mapperId = PROVIDER_ID;
+        AttributeStatementHelper.addAttributeMapper(realm, name, userAttribute, samlAttributeName, friendlyName, consentRequired, consentText, appliedByDefault, mapperId);
+
+    }
 }