[keycloak-user] How to correctly use REST API? delete user through REST API for example
Thomas Darimont
thomas.darimont at googlemail.com
Tue Jan 12 14:26:08 EST 2016
Hi Jason,
do you really need to use the raw REST API or would it be an option to use
the keycloak-admin-client API?
here is an example for creating and deleting a user via the admin-client
API:
package de.tdlabs.training.keycloak;
import static java.util.Arrays.asList;
import javax.ws.rs.core.Response;
import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
import org.keycloak.admin.client.Keycloak;
import org.keycloak.admin.client.KeycloakBuilder;
import org.keycloak.representations.idm.CredentialRepresentation;
import org.keycloak.representations.idm.UserRepresentation;
public class KeycloakAdminClientExample {
public static void main(String[] args) throws Exception {
Keycloak kc = KeycloakBuilder.builder() //
.serverUrl("http://localhost:8081/auth") //
.realm("rest-example")//
.username("rest-user-admin") //
.password("password") //
.clientId("admin-cli") //
.resteasyClient(new ResteasyClientBuilder().connectionPoolSize(10).build())
//
.build();
CredentialRepresentation credential = new CredentialRepresentation();
credential.setType(CredentialRepresentation.PASSWORD);
credential.setValue("test123");
credential.setTemporary(false);
UserRepresentation user = new UserRepresentation();
user.setUsername("testuser");
user.setFirstName("Test");
user.setLastName("User");
user.setCredentials(asList(credential));
user.setEnabled(true);
user.setRealmRoles(asList("admin"));
// Create testuser
Response result = kc.realm("rest-example").users().create(user);
if (result.getStatus() != 201) {
System.err.println("Couldn't create user.");
System.exit(0);
}
System.out.println("Testuser created.... verify in keycloak!");
System.out.println("Press any key...");
System.in.read();
// Delete testuser
String locationHeader = result.getHeaderString("Location");
String userId = locationHeader.replaceAll(".*/(.*)$", "$1");
kc.realm("rest-example").users().get(userId).remove();
}
}
https://gist.github.com/thomasdarimont/43689aefb37540624e35
Cheers,
Thomas
2016-01-12 19:05 GMT+01:00 JasonPeng <hpeng at redhat.com>:
> Hi there,
>
> Can someone give me some hint about how to correctly setup a client that
> can accept REST request from a httpclient in keycloak?
> For example, I use the admin-access example from keycloak source project
> and modify it to do a DELETE action through REST API, however I keep
> getting the request Forbidden 403 from keycloak server. I don’t change any
> setting of the admin-client imported from the json file and my code snippet
> of deleting user as below:
>
> public static void deleteUser(HttpServletRequest request,
> AccessTokenResponse res) throws Failure {
> HttpClient client = new DefaultHttpClient();
> String userId = "e20277f8-2ebe-4e5e-aa00-0cee9c578249";
> try {
> HttpDelete delete = new HttpDelete(getBaseUrl(request) +
> "/admin/realms/demo/users/" + userId);
> delete.addHeader("Authorization", "Bearer " + res.getToken());
> HttpResponse response = client.execute(delete);
> System.out.println(response.getStatusLine().getReasonPhrase());
> if (response.getStatusLine().getStatusCode() != 200) {
> throw new Failure(response.getStatusLine().getStatusCode());
> }
> HttpEntity entity = response.getEntity();
> InputStream is = entity.getContent();
> if (is != null)
> is.close();
> } catch (IOException e) {
> throw new RuntimeException(e);
> } finally {
> client.getConnectionManager().shutdown();
> }
> }
>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20160112/d366d33f/attachment.html
More information about the keycloak-user
mailing list