[keycloak-user] How to correctly use REST API? delete user through REST API for example

Thu Jan 14 03:55:05 EST 2016

Hi Thomas,

Thank¹s for the recommendation. However, I bumped into some clossloader
issue when I tried it on my EAP 6.4+ Keycloak 1.1.7.Final environment.

I keep get the class not found error against RestEasy Client,
"java.lang.NoClassDefFoundError:
org/jboss/resteasy/client/jaxrs/ResteasyClientBuilder². Although I¹d setup
my jboss-deployment-structure.xml in my project under /WEB-INF/. The setting
is like below:

<jboss-deployment-structure>
    <deployment>
        <dependencies>
            <module name="org.jboss.resteasy.resteasy-jaxrs"
services="import"/>
        </dependencies>
    </deployment>
</jboss-deployment-structure>

Thank you and best regards,
‹ 
Jason Peng
Solution Architect, Taiwan
Ret Hat Limited
TEL: +886-2-7743-2972
FAX: +886-2-7743-2974
Mobile: +886-988-836-827
EMAIL: hpeng at redhat.com

From:  Thomas Darimont <thomas.darimont at googlemail.com>
Date:  Wednesday, January 13, 2016 at 3:26 AM
To:  JasonMacAir <hpeng at redhat.com>
Cc:  keycloak-user <keycloak-user at lists.jboss.org>
Subject:  Re: [keycloak-user] How to correctly use REST API? delete user
through REST API for example

Hi Jason,

do you really need to use the raw REST API or would it be an option to use
the keycloak-admin-client API?

here is an example for creating and deleting a user via the admin-client
API:

package de.tdlabs.training.keycloak;

import static java.util.Arrays.asList;

import javax.ws.rs.core.Response;

import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
import org.keycloak.admin.client.Keycloak;
import org.keycloak.admin.client.KeycloakBuilder;
import org.keycloak.representations.idm.CredentialRepresentation;
import org.keycloak.representations.idm.UserRepresentation;

public class KeycloakAdminClientExample {

public static void main(String[] args) throws Exception {

Keycloak kc = KeycloakBuilder.builder() //
.serverUrl("http://localhost:8081/auth") //
.realm("rest-example")//
.username("rest-user-admin") //
.password("password") //
.clientId("admin-cli") //
.resteasyClient(new ResteasyClientBuilder().connectionPoolSize(10).build())
//
.build();

CredentialRepresentation credential = new CredentialRepresentation();
credential.setType(CredentialRepresentation.PASSWORD);
credential.setValue("test123");
credential.setTemporary(false);

UserRepresentation user = new UserRepresentation();
user.setUsername("testuser");
user.setFirstName("Test");
user.setLastName("User");
user.setCredentials(asList(credential));
user.setEnabled(true);
user.setRealmRoles(asList("admin"));

// Create testuser
Response result = kc.realm("rest-example").users().create(user);
if (result.getStatus() != 201) {
System.err.println("Couldn't create user.");
System.exit(0);
}
System.out.println("Testuser created.... verify in keycloak!");

System.out.println("Press any key...");
System.in.read();

// Delete testuser
String locationHeader = result.getHeaderString("Location");
String userId = locationHeader.replaceAll(".*/(.*)$", "$1");
kc.realm("rest-example").users().get(userId).remove();
}
}

https://gist.github.com/thomasdarimont/43689aefb37540624e35

Cheers,
Thomas

2016-01-12 19:05 GMT+01:00 JasonPeng <hpeng at redhat.com>:
> Hi there,
> 
> Can someone give me some hint about how to correctly setup a client that can
> accept REST request from a httpclient in keycloak?
> For example, I use the admin-access example from keycloak source project and
> modify it to do a DELETE action through REST API, however I keep getting the
> request Forbidden 403 from keycloak server. I don¹t change any setting of the
> admin-client imported from the json file and my code snippet of deleting user
> as below:
> 
> public static void deleteUser(HttpServletRequest request, AccessTokenResponse
> res) throws Failure {
> HttpClient client = new DefaultHttpClient();
> String userId = "e20277f8-2ebe-4e5e-aa00-0cee9c578249";
> try {
> HttpDelete delete = new HttpDelete(getBaseUrl(request) +
> "/admin/realms/demo/users/" + userId);
> delete.addHeader("Authorization", "Bearer " + res.getToken());
> HttpResponse response = client.execute(delete);
> System.out.println(response.getStatusLine().getReasonPhrase());
> if (response.getStatusLine().getStatusCode() != 200) {
> throw new Failure(response.getStatusLine().getStatusCode());
> }
> HttpEntity entity = response.getEntity();
> InputStream is = entity.getContent();
> if (is != null)
> is.close();
> } catch (IOException e) {
> throw new RuntimeException(e);
> } finally {
> client.getConnectionManager().shutdown();
> }
> }
> 
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20160114/d62c8213/attachment.html 