keycloak.openid_connection
¶
Keycloak OpenID Connection Manager module.
The module contains mainly the implementation of KeycloakOpenIDConnection class. This is an extension of the ConnectionManager class, and handles the automatic refresh of openid tokens when required.
Module Contents¶
Classes¶
A class to help with OpenID connections which can auto refresh tokens. |
- class keycloak.openid_connection.KeycloakOpenIDConnection(server_url, username=None, password=None, token=None, totp=None, realm_name='master', client_id='admin-cli', verify=True, client_secret_key=None, custom_headers=None, user_realm_name=None, timeout=60)[source]¶
Bases:
keycloak.connection.ConnectionManager
A class to help with OpenID connections which can auto refresh tokens.
- Parameters:
object (_type_) – _description_
- property client_secret_key[source]¶
Get client secret key.
- Returns:
Client secret key
- Return type:
str
- property expires_at[source]¶
Get token expiry time.
- Returns:
Datetime at which the current token will expire
- Return type:
datetime
- property keycloak_openid: keycloak.keycloak_openid.KeycloakOpenID[source]¶
Get the KeycloakOpenID object.
The KeycloakOpenID is used to refresh tokens
- Returns:
KeycloakOpenID
- Return type:
- refresh_token()[source]¶
Refresh the token.
- Raises:
KeycloakPostError – In case the refresh token request failed.
- raw_get(*args, **kwargs)[source]¶
Call connection.raw_get.
If auto_refresh is set for get and access_token is expired, it will refresh the token and try get once more.
- Parameters:
args (tuple) – Additional arguments
kwargs (dict) – Additional keyword arguments
- Returns:
Response
- Return type:
Response
- raw_post(*args, **kwargs)[source]¶
Call connection.raw_post.
If auto_refresh is set for post and access_token is expired, it will refresh the token and try post once more.
- Parameters:
args (tuple) – Additional arguments
kwargs (dict) – Additional keyword arguments
- Returns:
Response
- Return type:
Response
- raw_put(*args, **kwargs)[source]¶
Call connection.raw_put.
If auto_refresh is set for put and access_token is expired, it will refresh the token and try put once more.
- Parameters:
args (tuple) – Additional arguments
kwargs (dict) – Additional keyword arguments
- Returns:
Response
- Return type:
Response
- raw_delete(*args, **kwargs)[source]¶
Call connection.raw_delete.
If auto_refresh is set for delete and access_token is expired, it will refresh the token and try delete once more.
- Parameters:
args (tuple) – Additional arguments
kwargs (dict) – Additional keyword arguments
- Returns:
Response
- Return type:
Response