6:44 a.m.
Good morning,
I am trying to set up an application that uses:
1. Spring 3.2.x
I used to have spring security for the authentication of the users, and I could have a
logout listener, triggering the SessionDestroyedEvent like this (whenever a session was
destroyed) :
@Service
public class LogoutListener implements ApplicationListener<SessionDestroyedEvent> {
@Autowired
private SessionRegistryImpl sessionRegistry;
@Override
public void onApplicationEvent(SessionDestroyedEvent event) {
List<SecurityContext> lstSecurityContext = event.getSecurityContexts();
AuthenticateUser authenticateUser;
for (SecurityContext securityContext : lstSecurityContext) {
authenticateUser = (AuthenticateUser)
securityContext.getAuthentication().getPrincipal();
logger.trace("Current session destroyed from user [{}]",
authenticateUser.getEmail());
//Handle the session destruction event..
}
}
}
Is there any way I could have that functionality with Keycloak?
Thanks in advance,
Jason
6:59 a.m.
Hi,
We don't have a Spring adapter yet. If we did it would destroy the session on logout,
which would fire the SessionDestroyedEvent.
----- Original Message -----
From: "Jason Rodis" <jasrodis(a)gmail.com>
To: keycloak-user(a)lists.jboss.org
Sent: Monday, 13 October, 2014 1:44:48 PM
Subject: [keycloak-user] Session destruction listener
Good morning,
I am trying to set up an application that uses:
1. Spring 3.2.x
I used to have spring security for the authentication of the users, and I
could have a logout listener, triggering the SessionDestroyedEvent like this
(whenever a session was destroyed) :
@Service public class LogoutListener implements ApplicationListener <
SessionDestroyedEvent > { @Autowired private SessionRegistryImpl
sessionRegistry ; @Override public void onApplicationEvent (
SessionDestroyedEvent event ) { List < SecurityContext > lstSecurityContext
= event . getSecurityContexts (); AuthenticateUser authenticateUser ; for (
SecurityContext securityContext : lstSecurityContext ) { authenticateUser =
( AuthenticateUser ) securityContext . getAuthentication (). getPrincipal
(); logger . trace ( "Current session destroyed from user [{}]" ,
authenticateUser . getEmail ());
//Handle the session destruction event..
} }
}
Is there any way I could have that functionality with Keycloak?
Thanks in advance,
Jason
_______________________________________________
keycloak-user mailing list
keycloak-user(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user
7:02 a.m.
Hi,
Thanks for your quick reply!
Is it something that it’s going to be implemented? Is there any alternative with the rest
API that you offer?
Thanks again,
Jason
On Oct 13, 2014, at 2:44 PM, Jason Rodis <jasrodis(a)gmail.com> wrote:
Good morning,
I am trying to set up an application that uses:
1. Spring 3.2.x
I used to have spring security for the authentication of the users, and I could have a
logout listener, triggering the SessionDestroyedEvent like this (whenever a session was
destroyed) :
@Service
public class LogoutListener implements ApplicationListener<SessionDestroyedEvent>
{
@Autowired
private SessionRegistryImpl sessionRegistry;
@Override
public void onApplicationEvent(SessionDestroyedEvent event) {
List<SecurityContext> lstSecurityContext = event.getSecurityContexts();
AuthenticateUser authenticateUser;
for (SecurityContext securityContext : lstSecurityContext) {
authenticateUser = (AuthenticateUser)
securityContext.getAuthentication().getPrincipal();
logger.trace("Current session destroyed from user [{}]",
authenticateUser.getEmail());
//Handle the session destruction event..
}
}
}
Is there any way I could have that functionality with Keycloak?
Thanks in advance,
Jason
7:10 a.m.
Hi,
It's planned, but it's not scheduled. I can't tell you when it'll be
available other than it's most likely not going to be for a few months. Unless someone
from the community wants to step up and contribute it.
We provide the core OpenID Connect protocol (with SAML comming), so you can integrate with
Spring that way. For permissions you also have to decode the token to retrieve permitted
roles (this is not covered by the OpenID Connect specification).
----- Original Message -----
From: "Jason Rodis" <jasrodis(a)gmail.com>
To: keycloak-user(a)lists.jboss.org
Sent: Monday, 13 October, 2014 2:02:12 PM
Subject: Re: [keycloak-user] Session destruction listener
Hi,
Thanks for your quick reply!
Is it something that it’s going to be implemented? Is there any alternative
with the rest API that you offer?
Thanks again,
Jason
On Oct 13, 2014, at 2:44 PM, Jason Rodis < jasrodis(a)gmail.com > wrote:
Good morning,
I am trying to set up an application that uses:
1. Spring 3.2.x
I used to have spring security for the authentication of the users, and I
could have a logout listener, triggering the SessionDestroyedEvent like this
(whenever a session was destroyed) :
@Service public class LogoutListener implements ApplicationListener <
SessionDestroyedEvent > { @Autowired private SessionRegistryImpl
sessionRegistry ; @Override public void onApplicationEvent (
SessionDestroyedEvent event ) { List < SecurityContext > lstSecurityContext
= event . getSecurityContexts (); AuthenticateUser authenticateUser ; for (
SecurityContext securityContext : lstSecurityContext ) { authenticateUser =
( AuthenticateUser ) securityContext . getAuthentication (). getPrincipal
(); logger . trace ( "Current session destroyed from user [{}]" ,
authenticateUser . getEmail ());
//Handle the session destruction event..
} }
}
Is there any way I could have that functionality with Keycloak?
Thanks in advance,
Jason
_______________________________________________
keycloak-user mailing list
keycloak-user(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user
3722
days inactive
3722
days old
3 comments
2 participants
participants (2)
-
Jason Rodis -
Stian Thorgersen