warricksothr
/
python-keycloak
forked from Mirror/python-keycloak
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
356 Commits
5 Branches
0 Tags
420 KiB
Tree: 7510cdbf5e
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7510cdbf5e'
${ noResults }
python-keycloak/docs/source/index.rst

294 lines
11 KiB
Raw Normal View History

Updated docs
7 years ago
Updated docs.
7 years ago
Updated docs
7 years ago
Moved repository.
5 years ago
Updated docs
7 years ago
Added contributors Agrines.
7 years ago
Fixed README and setup.py. Updated docs.
6 years ago
Added Martin Devlin.
7 years ago
Release 0.11.0
7 years ago
Fixed README and setup.py. Updated docs.
6 years ago
Release 0.13.3
6 years ago
Added contributors Agrines.
7 years ago
Updated docs
7 years ago
Added groups functions and client functions. Added Changedlog
6 years ago
Updated docs.
7 years ago
Updated docs
7 years ago
Updated docs.
7 years ago
Updated docs
7 years ago
Add get_idps
6 years ago
Updated docs
7 years ago
[Feature] add custom headers. Closes #38
5 years ago
Updated docs
7 years ago
Updated docs.
7 years ago
Updated docs
7 years ago
Updated docs.
7 years ago
add an example on how to get a token with user+password+totp
6 years ago
Updated docs
7 years ago
Updated docs.
7 years ago
Updated docs
7 years ago
Added groups functions and client functions. Added Changedlog
6 years ago
Updated docs
7 years ago
Updated docs.
7 years ago
Updated docs
7 years ago
Updated docs.
7 years ago
Updated docs
7 years ago
Updated docs.
7 years ago
Updated docs
7 years ago
Added Instropect RPT and Token.
7 years ago
Release 0.11.0
7 years ago
Added Instropect RPT and Token.
7 years ago
Fixed docs.
7 years ago
Updated docs.
7 years ago
Updated docs
7 years ago
Updated docs.
7 years ago
fix wrong param in example from readme
4 years ago
Updated docs.
7 years ago
Updated docs.
7 years ago
Updated docs.
7 years ago
Updated docs.
7 years ago
Updated docs with verify field.
7 years ago
Release 0.11.0
7 years ago
Updated docs.
7 years ago
[Feature] add custom headers. Closes #38
5 years ago
Add support for Client Credentials Grant in KeycloakAdmin
4 years ago
[Feature] add custom headers. Closes #38
5 years ago
Updated docs.
7 years ago
Added groups functions and client functions. Added Changedlog
6 years ago
Updated docs.
7 years ago
Added groups functions and client functions. Added Changedlog
6 years ago
Updated docs.
7 years ago
Added groups functions and client functions. Added Changedlog
6 years ago
Updated docs.
7 years ago
Updated docs.
7 years ago
Updated docs.
7 years ago
Added groups functions and client functions. Added Changedlog
6 years ago
Updated docs.
7 years ago
Added groups functions and client functions. Added Changedlog
6 years ago
Updated docs.
7 years ago
Added groups functions and client functions. Added Changedlog
6 years ago
Updated docs.
7 years ago
Added groups functions and client functions. Added Changedlog
6 years ago
Updated docs.
7 years ago
Added groups functions and client functions. Added Changedlog
6 years ago
Updated docs.
7 years ago
Added groups functions and client functions. Added Changedlog
6 years ago
Fixed the create_client_role and delete_client_role.
6 years ago
Updated docs.
7 years ago
Add get_idps
6 years ago
Updated docs.
7 years ago
Added groups functions and client functions. Added Changedlog
6 years ago
Implement assign_realm_roles method Increment package version Update docstring Remove client_id from path params Fix raw_post with correct url
5 years ago
Added groups functions and client functions. Added Changedlog
6 years ago
Add get_idps
6 years ago
Added groups functions and client functions. Added Changedlog
6 years ago
feat: add components
4 years ago
fixes + add get_keys
4 years ago
feat: add components
4 years ago
fixes + add get_keys
4 years ago
feat: add components
4 years ago
fixes + add get_keys
4 years ago
feat: add components
4 years ago
fixes + add get_keys
4 years ago
feat: add components
4 years ago
fixes + add get_keys
4 years ago
  1. .. python-keycloak documentation master file, created by
  2. sphinx-quickstart on Tue Aug 15 11:02:59 2017.
  3. You can adapt this file completely to your liking, but it should at least
  4. contain the root `toctree` directive.
  6. .. toctree::
  7. :maxdepth: 2
  8. :caption: Contents:
  11. Indices and tables
  12. ==================
  14. * :ref:`genindex`
  15. * :ref:`modindex`
  16. * :ref:`search`
  18. .. image:: https://readthedocs.org/projects/python-keycloak/badge/?version=latest
  19. :target: http://python-keycloak.readthedocs.io/en/latest/?badge=latest
  22. Welcome to python-keycloak's documentation!
  23. ===========================================
  25. **python-keycloak** is a Python package providing access to the Keycloak API.
  27. Installation
  28. ==================
  30. Via Pypi Package::
  32. $ pip install python-keycloak
  34. Manually::
  36. $ python setup.py install
  38. Dependencies
  39. ==================
  41. python-keycloak depends on:
  43. * Python 3
  44. * `requests <http://docs.python-requests.org/en/master/>`_
  45. * `python-jose <http://python-jose.readthedocs.io/en/latest/>`_
  47. Tests Dependencies
  48. ------------------
  50. * unittest
  51. * `httmock <https://github.com/patrys/httmock>`_
  53. Bug reports
  54. ==================
  56. Please report bugs and feature requests at
  57. `https://github.com/marcospereirampj/python-keycloak/issues <https://github.com/marcospereirampj/python-keycloak/issues>`_
  59. Documentation
  60. ==================
  62. The documentation for python-keycloak is available on `readthedocs <http://python-keycloak.readthedocs.io>`_.
  64. Contributors
  65. ==================
  67. * `Agriness Team <http://www.agriness.com/pt/>`_
  68. * `Marcos Pereira <marcospereira.mpj@gmail.com>`_
  69. * `Martin Devlin <martin.devlin@pearson.com>`_
  70. * `Shon T. Urbas <shon.urbas@gmail.com>`_
  71. * `Markus Spanier <https://bitbucket.org/spanierm/>`_
  72. * `Remco Kranenburg <https://bitbucket.org/Remco47/>`_
  73. * `Armin <https://bitbucket.org/arminfelder/>`_
  74. * `Njordr <https://bitbucket.org/njordr/>`_
  75. * `Josha Inglis <https://bitbucket.org/joshainglis/>`_
  76. * `Alex <https://bitbucket.org/alex_zel/>`_
  77. * `Ewan Jone <https://bitbucket.org/kisamoto/>`_
  79. Usage
  80. =====
  82. Main methods::
  84. # KEYCLOAK OPENID
  86. from keycloak import KeycloakOpenID
  88. # Configure client
  89. keycloak_openid = KeycloakOpenID(server_url="http://localhost:8080/auth/",
  90. client_id="example_client",
  91. realm_name="example_realm",
  92. client_secret_key="secret",
  93. verify=True)
  95. # Optionally, you can pass custom headers that will be added to all HTTP calls
  96. # keycloak_openid = KeycloakOpenID(server_url="http://localhost:8080/auth/",
  97. # client_id="example_client",
  98. # realm_name="example_realm",
  99. # client_secret_key="secret",
  100. # verify=True,
  101. # custom_headers={'CustomHeader': 'value'})
  103. # Get WellKnow
  104. config_well_know = keycloak_openid.well_know()
  106. # Get Token
  107. token = keycloak_openid.token("user", "password")
  108. token = keycloak_openid.token("user", "password", totp="012345")
  110. # Get Userinfo
  111. userinfo = keycloak_openid.userinfo(token['access_token'])
  113. # Refresh token
  114. token = keycloak_openid.refresh_token(token['refresh_token'])
  116. # Logout
  117. keycloak_openid.logout(token['refresh_token'])
  119. # Get Certs
  120. certs = keycloak_openid.certs()
  122. # Get RPT (Entitlement)
  123. token = keycloak_openid.token("user", "password")
  124. rpt = keycloak_openid.entitlement(token['access_token'], "resource_id")
  126. # Instropect RPT
  127. token_rpt_info = keycloak_openid.introspect(keycloak_openid.introspect(token['access_token'], rpt=rpt['rpt'],
  128. token_type_hint="requesting_party_token"))
  130. # Introspect Token
  131. token_info = keycloak_openid.introspect(token['access_token']))
  133. # Decode Token
  134. KEYCLOAK_PUBLIC_KEY = "secret"
  135. options = {"verify_signature": True, "verify_aud": True, "verify_exp": True}
  136. token_info = keycloak_openid.decode_token(token['access_token'], key=KEYCLOAK_PUBLIC_KEY, options=options)
  138. # Get permissions by token
  139. token = keycloak_openid.token("user", "password")
  140. keycloak_openid.load_authorization_config("example-authz-config.json")
  141. policies = keycloak_openid.get_policies(token['access_token'], method_token_info='decode', key=KEYCLOAK_PUBLIC_KEY)
  142. permissions = keycloak_openid.get_permissions(token['access_token'], method_token_info='introspect')
  144. # KEYCLOAK ADMIN
  146. from keycloak import KeycloakAdmin
  148. keycloak_admin = KeycloakAdmin(server_url="http://localhost:8080/auth/",
  149. username='example-admin',
  150. password='secret',
  151. realm_name="example_realm",
  152. verify=True)
  154. # Optionally, you can pass custom headers that will be added to all HTTP calls
  155. #keycloak_admin = KeycloakAdmin(server_url="http://localhost:8080/auth/",
  156. # username='example-admin',
  157. # password='secret',
  158. # realm_name="example_realm",
  159. # verify=True,
  160. # custom_headers={'CustomHeader': 'value'})
  161. #
  162. # You can also authenticate with client_id and client_secret
  163. #keycloak_admin = KeycloakAdmin(server_url="http://localhost:8080/auth/",
  164. # client_id="example_client",
  165. # client_secret_key="secret",
  166. # realm_name="example_realm",
  167. # verify=True,
  168. # custom_headers={'CustomHeader': 'value'})
  170. # Add user
  171. new_user = keycloak_admin.create_user({"email": "example@example.com",
  172. "username": "example@example.com",
  173. "enabled": True,
  174. "firstName": "Example",
  175. "lastName": "Example",
  176. "realmRoles": ["user_default", ],
  177. "attributes": {"example": "1,2,3,3,"}})
  180. # Add user and set password
  181. new_user = keycloak_admin.create_user({"email": "example@example.com",
  182. "username": "example@example.com",
  183. "enabled": True,
  184. "firstName": "Example",
  185. "lastName": "Example",
  186. "credentials": [{"value": "secret","type": "password",}],
  187. "realmRoles": ["user_default", ],
  188. "attributes": {"example": "1,2,3,3,"}})
  190. # User counter
  191. count_users = keycloak_admin.users_count()
  193. # Get users Returns a list of users, filtered according to query parameters
  194. users = keycloak_admin.get_users({})
  196. # Get user ID from name
  197. user-id-keycloak = keycloak_admin.get_user_id("example@example.com")
  199. # Get User
  200. user = keycloak_admin.get_user("user-id-keycloak")
  202. # Update User
  203. response = keycloak_admin.update_user(user_id="user-id-keycloak",
  204. payload={'firstName': 'Example Update'})
  206. # Update User Password
  207. response = set_user_password(user_id="user-id-keycloak", password="secret", temporary=True)
  209. # Delete User
  210. response = keycloak_admin.delete_user(user_id="user-id-keycloak")
  212. # Get consents granted by the user
  213. consents = keycloak_admin.consents_user(user_id="user-id-keycloak")
  215. # Send User Action
  216. response = keycloak_admin.send_update_account(user_id="user-id-keycloak",
  217. payload=json.dumps(['UPDATE_PASSWORD']))
  219. # Send Verify Email
  220. response = keycloak_admin.send_verify_email(user_id="user-id-keycloak")
  222. # Get sessions associated with the user
  223. sessions = keycloak_admin.get_sessions(user_id="user-id-keycloak")
  225. # Get themes, social providers, auth providers, and event listeners available on this server
  226. server_info = keycloak_admin.get_server_info()
  228. # Get clients belonging to the realm Returns a list of clients belonging to the realm
  229. clients = keycloak_admin.get_clients()
  231. # Get client - id (not client-id) from client by name
  232. client_id=keycloak_admin.get_client_id("my-client")
  234. # Get representation of the client - id of client (not client-id)
  235. client = keycloak_admin.get_client(client_id="client_id")
  237. # Get all roles for the realm or client
  238. realm_roles = keycloak_admin.get_realm_roles()
  240. # Get all roles for the client
  241. client_roles = keycloak_admin.get_client_roles(client_id="client_id")
  243. # Get client role
  244. role = keycloak_admin.get_client_role(client_id="client_id", role_name="role_name")
  246. # Warning: Deprecated
  247. # Get client role id from name
  248. role_id = keycloak_admin.get_client_role_id(client_id="client_id", role_name="test")
  250. # Create client role
  251. keycloak_admin.create_client_role(client_id="client_id", {'name': 'roleName', 'clientRole': True})
  253. # Get client role id from name
  254. role_id = keycloak_admin.get_client_role_id(client_id=client_id, role_name="test")
  256. # Get all roles for the realm or client
  257. realm_roles = keycloak_admin.get_roles()
  259. # Assign client role to user. Note that BOTH role_name and role_id appear to be required.
  260. keycloak_admin.assign_client_role(client_id="client_id", user_id="user_id", role_id="role_id", role_name="test")
  262. # Assign realm roles to user. Note that BOTH role_name and role_id appear to be required.
  263. keycloak_admin.assign_realm_roles(client_id="client_id", user_id="user_id", roles=[{"roles_representation"}])
  265. # Create new group
  266. group = keycloak_admin.create_group(name="Example Group")
  268. # Get all groups
  269. groups = keycloak_admin.get_groups()
  271. # Get group
  272. group = keycloak_admin.get_group(group_id='group_id')
  274. # Get group by path
  275. group = keycloak_admin.get_group_by_path(path='/group/subgroup', search_in_subgroups=True)
  277. # Function to trigger user sync from provider
  278. sync_users(storage_id="storage_di", action="action")
  280. # List public RSA keys
  281. components = keycloak_admin.keys
  283. # List all keys
  284. components = keycloak_admin.get_components(query={"parent":"example_realm", "type":"org.keycloak.keys.KeyProvider"})
  286. # Create a new RSA key
  287. component = keycloak_admin.create_component({"name":"rsa-generated","providerId":"rsa-generated","providerType":"org.keycloak.keys.KeyProvider","parentId":"example_realm","config":{"priority":["100"],"enabled":["true"],"active":["true"],"algorithm":["RS256"],"keySize":["2048"]}})
  289. # Update the key
  290. component_details['config']['active'] = ["false"]
  291. keycloak_admin.update_component(component['id'])
  293. # Delete the key
  294. keycloak_admin.delete_component(component['id'])