keycloak-group-by-domain/src/main/java/com/github/thomasdarimont/keycloak/auth/RegistrationProfileWithDomainBlock.java

package com.github.thomasdarimont.keycloak.auth;

import org.keycloak.authentication.FormContext;
import org.keycloak.forms.login.LoginFormsProvider;
import org.keycloak.provider.ProviderConfigProperty;
import org.keycloak.models.AuthenticatorConfigModel;

import java.util.ArrayList;
import java.util.Arrays;
import java.util.List;

public class RegistrationProfileWithDomainBlock extends RegistrationProfileDomainValidation {

   public static final String PROVIDER_ID = "registration-domain-block-action";

   private static final List<ProviderConfigProperty> CONFIG_PROPERTIES = new ArrayList<>();

   public static String domainListConfigName = "invalidDomains";

   static {
      ProviderConfigProperty property;
      property = new ProviderConfigProperty();
      property.setName(domainListConfigName);
      property.setLabel("Invalid domain for emails");
      property.setType(ProviderConfigProperty.STRING_TYPE);
      property.setHelpText("List mail domains not authorized to register, separated by '##'");
      CONFIG_PROPERTIES.add(property);
   }

   @Override
   public String getDisplayType() {
        return "Profile Validation with domain block";
   }

   @Override
   public String getId() {
      return PROVIDER_ID;
   }

   @Override
   public String getHelpText() {
      return "Adds validation of not accepted domain emails for registration";
   }

   @Override
   public List<ProviderConfigProperty> getConfigProperties() {
      return CONFIG_PROPERTIES;
   }

   @Override
   public void buildPage(FormContext context, LoginFormsProvider form) {
      List<String> unauthorizedMailDomains = Arrays.asList(
         context.getAuthenticatorConfig().getConfig().getOrDefault(domainListConfigName, DEFAULT_DOMAIN_LIST).split(DOMAIN_LIST_SEPARATOR));
      form.setAttribute("unauthorizedMailDomains", unauthorizedMailDomains);
   }

   @Override
   public String[] getDomainList(AuthenticatorConfigModel mailDomainConfig) {
      return mailDomainConfig.getConfig().getOrDefault(domainListConfigName, DEFAULT_DOMAIN_LIST).split(DOMAIN_LIST_SEPARATOR);
   }

   @Override
   public boolean isEmailValid(String email, String[] domains) {
      for (String domain : domains) {
         if (email.endsWith("@" + domain) || email.equals(domain) || globmatches(email, "*@" + domain)) {
            return false;
         }
      }

      return true;
   }
}
wip???? 2023-12-08 14:23:25 +00:00			`package com.github.thomasdarimont.keycloak.auth;`
feat: create form action to block list of domains 2023-04-17 18:29:02 +00:00
			`import org.keycloak.authentication.FormContext;`
			`import org.keycloak.forms.login.LoginFormsProvider;`
			`import org.keycloak.provider.ProviderConfigProperty;`
feat: adding support for Keycloak 22 2023-09-14 23:41:35 +00:00			`import org.keycloak.models.AuthenticatorConfigModel;`

			`import java.util.ArrayList;`
			`import java.util.Arrays;`
			`import java.util.List;`
feat: create form action to block list of domains 2023-04-17 18:29:02 +00:00
feat: add RegistrationProfileWithDomainBlock 2023-04-19 01:29:40 +00:00			`public class RegistrationProfileWithDomainBlock extends RegistrationProfileDomainValidation {`
feat: create form action to block list of domains 2023-04-17 18:29:02 +00:00
			`public static final String PROVIDER_ID = "registration-domain-block-action";`
feat: adding support for Keycloak 22 2023-09-14 23:41:35 +00:00
feat: add RegistrationProfileWithDomainBlock 2023-04-19 01:29:40 +00:00			`private static final List<ProviderConfigProperty> CONFIG_PROPERTIES = new ArrayList<>();`

feat: adding support for Keycloak 22 2023-09-14 23:41:35 +00:00			`public static String domainListConfigName = "invalidDomains";`
feat: add RegistrationProfileWithDomainBlock 2023-04-19 01:29:40 +00:00
feat: adding support for Keycloak 22 2023-09-14 23:41:35 +00:00			`static {`
feat: add RegistrationProfileWithDomainBlock 2023-04-19 01:29:40 +00:00			`ProviderConfigProperty property;`
			`property = new ProviderConfigProperty();`
			`property.setName(domainListConfigName);`
			`property.setLabel("Invalid domain for emails");`
			`property.setType(ProviderConfigProperty.STRING_TYPE);`
			`property.setHelpText("List mail domains not authorized to register, separated by '##'");`
			`CONFIG_PROPERTIES.add(property);`
			`}`
feat: create form action to block list of domains 2023-04-17 18:29:02 +00:00
			`@Override`
feat: adding support for Keycloak 22 2023-09-14 23:41:35 +00:00			`public String getDisplayType() {`
feat: create form action to block list of domains 2023-04-17 18:29:02 +00:00			`return "Profile Validation with domain block";`
			`}`

			`@Override`
			`public String getId() {`
			`return PROVIDER_ID;`
			`}`

			`@Override`
			`public String getHelpText() {`
			`return "Adds validation of not accepted domain emails for registration";`
			`}`

			`@Override`
			`public List<ProviderConfigProperty> getConfigProperties() {`
			`return CONFIG_PROPERTIES;`
			`}`

			`@Override`
feat: add RegistrationProfileWithDomainBlock 2023-04-19 01:29:40 +00:00			`public void buildPage(FormContext context, LoginFormsProvider form) {`
			`List<String> unauthorizedMailDomains = Arrays.asList(`
			`context.getAuthenticatorConfig().getConfig().getOrDefault(domainListConfigName, DEFAULT_DOMAIN_LIST).split(DOMAIN_LIST_SEPARATOR));`
			`form.setAttribute("unauthorizedMailDomains", unauthorizedMailDomains);`
			`}`
feat: create form action to block list of domains 2023-04-17 18:29:02 +00:00
feat: adding support for Keycloak 22 2023-09-14 23:41:35 +00:00			`@Override`
			`public String[] getDomainList(AuthenticatorConfigModel mailDomainConfig) {`
			`return mailDomainConfig.getConfig().getOrDefault(domainListConfigName, DEFAULT_DOMAIN_LIST).split(DOMAIN_LIST_SEPARATOR);`
			`}`

feat: add RegistrationProfileWithDomainBlock 2023-04-19 01:29:40 +00:00			`@Override`
			`public boolean isEmailValid(String email, String[] domains) {`
feat: create form action to block list of domains 2023-04-17 18:29:02 +00:00			`for (String domain : domains) {`
feat: add RegistrationProfileWithDomainBlock 2023-04-19 01:29:40 +00:00			`if (email.endsWith("@" + domain) \|\| email.equals(domain) \|\| globmatches(email, "*@" + domain)) {`
			`return false;`
feat: create form action to block list of domains 2023-04-17 18:29:02 +00:00			`}`
			`}`

feat: add RegistrationProfileWithDomainBlock 2023-04-19 01:29:40 +00:00			`return true;`
feat: create form action to block list of domains 2023-04-17 18:29:02 +00:00			`}`
			`}`