Skip to content

Commit

Permalink
getAll() organization and organization members only returns the first…
Browse files Browse the repository at this point in the history
… 10 items

Closes keycloak#34975

Signed-off-by: Martin Kanis <[email protected]>
  • Loading branch information
martin-kanis committed Nov 21, 2024
1 parent 7626963 commit 7e3e46d
Show file tree
Hide file tree
Showing 13 changed files with 96 additions and 38 deletions.
5 changes: 5 additions & 0 deletions docs/documentation/release_notes/topics/26_1_0.adoc
Original file line number Diff line number Diff line change
Expand Up @@ -23,6 +23,11 @@ by the LDAP provider.

{project_name} now uses by default its database to discover other nodes of the same cluster, which removes the need of additional network related configurations. It is also a default that will work out-of-the-box in cloud environments.

= Deprecating `getAll()` methods in `Organizations` and `OrganizationMembers` APIs

`getAll()` methods in `Organizations` and `OrganizationMembers` APIs are now deprecated and will be removed in the next minor release.
Instead, use corresponding `list(first, max)` methods in `Organizations` and `OrganizationMembers` APIs.

For information on how to migrate, see the link:{upgradingguide_link}[{upgradingguide_name}], and the https://www.keycloak.org/server/caching[Configuring distributed caches] guide.


Original file line number Diff line number Diff line change
Expand Up @@ -43,11 +43,27 @@ public interface OrganizationMembersResource {
* Return all members in the organization.
*
* @return a list containing the organization members.
* @Deprecated Use {@link org.keycloak.admin.client.resource.OrganizationMembersResource#list} instead.
*/
@Deprecated
@GET
@Produces(MediaType.APPLICATION_JSON)
List<MemberRepresentation> getAll();

/**
* Return members in the organization.
*
* @param first index of the first element (pagination offset).
* @param max the maximum number of results.
* @return a list containing organization members.
*/
@GET
@Produces(MediaType.APPLICATION_JSON)
List<MemberRepresentation> list(
@QueryParam("first") Integer firstResult,
@QueryParam("max") Integer maxResults
);

/**
* Return all organization members that match the specified filters.
*
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -48,11 +48,27 @@ public interface OrganizationsResource {
* Returns all organizations in the realm.
*
* @return a list containing the organizations.
* @Deprecated Use {@link org.keycloak.admin.client.resource.OrganizationsResource#list} instead.
*/
@Deprecated
@GET
@Produces(MediaType.APPLICATION_JSON)
List<OrganizationRepresentation> getAll();

/**
* Returns organizations in the realm.
*
* @param first index of the first element (pagination offset).
* @param max the maximum number of results.
* @return a list containing the organizations.
*/
@GET
@Produces(MediaType.APPLICATION_JSON)
List<OrganizationRepresentation> list(
@QueryParam("first") Integer firstResult,
@QueryParam("max") Integer maxResults
);

/**
* Returns all organizations that match the specified filter.
*
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -129,7 +129,7 @@ public void testEventDetails() {
orgRep.setAlias(orgRep.getName());
orgRep.addDomain(new OrganizationDomainRepresentation(orgRep.getName()));
testRealmResource().organizations().create(orgRep).close();
orgRep = testRealmResource().organizations().getAll().get(0);
orgRep = testRealmResource().organizations().list(-1, -1).get(0);
testRealmResource().organizations().get(orgRep.getId()).members().addMember(userId).close();
List<AdminEventRepresentation> events = events();
assertThat(events().size(), is(equalTo(4)));
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -134,7 +134,7 @@ public void testOrganizationGroupsNotAvailableFromGroupAPI() {
orgIds.add(createOrganization("org-" + i).getId());
}

assertEquals(orgIds.size(), testRealm().organizations().getAll().size());
assertEquals(orgIds.size(), testRealm().organizations().list(-1, -1).size());
assertTrue(testRealm().groups().groups().stream().map(GroupRepresentation::getId).noneMatch(orgIds::contains));
}

Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -292,7 +292,7 @@ private void registerUser(OrganizationResource organization, String email) throw
private void registerUser(OrganizationResource organization, String expectedEmail, String email) throws MessagingException, IOException {
String link = getInvitationLinkFromEmail();
driver.navigate().to(link);
Assert.assertFalse(organization.members().getAll().stream().anyMatch(actual -> email.equals(actual.getEmail())));
Assert.assertFalse(organization.members().list(-1, -1).stream().anyMatch(actual -> email.equals(actual.getEmail())));
registerPage.assertCurrent(organizationName);
assertThat(registerPage.getEmail(), equalTo(expectedEmail));
registerPage.register("firstName", "lastName", email,
Expand All @@ -307,7 +307,7 @@ private void acceptInvitation(OrganizationResource organization, UserRepresentat
String link = getInvitationLinkFromEmail(user.getFirstName(), user.getLastName());
driver.navigate().to(link);
// not yet a member
Assert.assertFalse(organization.members().getAll().stream().anyMatch(actual -> user.getId().equals(actual.getId())));
Assert.assertFalse(organization.members().list(-1, -1).stream().anyMatch(actual -> user.getId().equals(actual.getId())));
// confirm the intent of membership
assertThat(driver.getPageSource(), containsString("You are about to join organization " + organizationName));
assertThat(infoPage.getInfo(), containsString("By clicking on the link below, you will become a member of the " + organizationName + " organization:"));
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -21,7 +21,6 @@
import static org.hamcrest.Matchers.containsInAnyOrder;
import static org.hamcrest.Matchers.empty;
import static org.hamcrest.Matchers.equalTo;
import static org.hamcrest.Matchers.hasEntry;
import static org.hamcrest.Matchers.hasSize;
import static org.hamcrest.Matchers.is;
import static org.hamcrest.Matchers.not;
Expand All @@ -34,6 +33,7 @@
import static org.junit.Assert.fail;

import java.util.ArrayList;
import java.util.Collection;
import java.util.Comparator;
import java.util.HashMap;
import java.util.List;
Expand All @@ -47,6 +47,7 @@

import java.io.IOException;
import java.util.stream.IntStream;
import java.util.stream.Stream;

import org.junit.Assert;
import org.junit.Test;
Expand Down Expand Up @@ -107,17 +108,25 @@ public void testGet() {
public void testGetAll() {
List<OrganizationRepresentation> expected = new ArrayList<>();

for (int i = 0; i < 5; i++) {
for (int i = 0; i < 15; i++) {
OrganizationRepresentation organization = createOrganization("kc.org." + i);
expected.add(organization);
organization.setAttributes(Map.of("foo", List.of("foo")));
testRealm().organizations().get(organization.getId()).update(organization).close();
}

List<OrganizationRepresentation> existing = testRealm().organizations().getAll();
List<OrganizationRepresentation> existing = testRealm().organizations().list(-1, -1);
assertFalse(existing.isEmpty());
assertThat(expected, containsInAnyOrder(existing.toArray()));
assertThat(existing, containsInAnyOrder(expected.toArray()));
Assert.assertTrue(existing.stream().map(OrganizationRepresentation::getAttributes).filter(Objects::nonNull).findAny().isEmpty());

List<OrganizationRepresentation> concatenatedList = Stream.of(
testRealm().organizations().list(0, 5),
testRealm().organizations().list(5, 5),
testRealm().organizations().list(10, 5))
.flatMap(Collection::stream).toList();

assertThat(concatenatedList, containsInAnyOrder(expected.toArray()));
}

@Test
Expand Down Expand Up @@ -424,7 +433,7 @@ public void testDisabledOrganizationProvider() throws IOException {
assertEquals(Status.NOT_FOUND.getStatusCode(), response.getStatus());
}
try {
testRealm().organizations().getAll();
testRealm().organizations().list(-1, -1);
fail("Expected NotFoundException");
} catch (NotFoundException expected) {
}
Expand Down Expand Up @@ -457,7 +466,7 @@ public void testDeleteRealm() {

createOrganization(realmRes, "test-org", "test.org");

List<OrganizationRepresentation> orgs = realmRes.organizations().getAll();
List<OrganizationRepresentation> orgs = realmRes.organizations().list(-1, -1);
assertThat(orgs, hasSize(1));

IdentityProviderRepresentation broker = bc.setUpIdentityProvider();
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -160,14 +160,14 @@ public void testManageRealmRole() throws Exception {
//get members
try {
//we should get 403, not 400 or 404 etc.
realmUserResource.organizations().get("non-existing").members().getAll();
realmUserResource.organizations().get("non-existing").members().list(-1, -1);
fail("Expected ForbiddenException");
} catch (ForbiddenException expected) {}
try {
realmUserResource.organizations().get(orgId).members().getAll();
realmUserResource.organizations().get(orgId).members().list(-1, -1);
fail("Expected ForbiddenException");
} catch (ForbiddenException expected) {}
assertThat(realmAdminResource.organizations().get(orgId).members().getAll(), Matchers.notNullValue());
assertThat(realmAdminResource.organizations().get(orgId).members().list(-1, -1), Matchers.notNullValue());

//get member
try {
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -619,7 +619,7 @@ public void testRealmLevelBrokerNotImpactedByOrganizationFlow() {

loginOrgIdp("external", bc.getUserEmail(), true, true);

assertThat(organization.members().getAll(), Matchers.empty());
assertThat(organization.members().list(-1, -1), Matchers.empty());

UserRepresentation user = testRealm().users().searchByEmail(bc.getUserEmail(), true).get(0);
testRealm().users().get(user.getId()).remove();
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -300,8 +300,8 @@ public void testCacheIDPByOrg() {
getCleanup().addCleanup(testRealm().identityProviders().get("alias")::remove);
}

String orgaId = testRealm().organizations().getAll().get(0).getId();
String orgbId = testRealm().organizations().getAll().get(1).getId();
String orgaId = testRealm().organizations().list(-1, -1).get(0).getId();
String orgbId = testRealm().organizations().list(-1, -1).get(1).getId();

for (int i = 0; i < 5; i++) {
final String aliasA = "org-idp-" + i;
Expand Down Expand Up @@ -376,7 +376,7 @@ public void testCacheIDPForLogin() {
getCleanup().addCleanup(testRealm().identityProviders().get("alias")::remove);
}

String orgaId = testRealm().organizations().getAll().get(0).getId();
String orgaId = testRealm().organizations().list(-1, -1).get(0).getId();
for (int i = 10; i < 20; i++) {
testRealm().organizations().get(orgaId).identityProviders().addIdentityProvider("idp-alias-" + i);
}
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -117,7 +117,7 @@ public void testExport() {

assertTrue(importedRealm.isOrganizationsEnabled());

List<OrganizationRepresentation> organizations = testRealm().organizations().getAll();
List<OrganizationRepresentation> organizations = testRealm().organizations().list(-1, -1);
assertEquals(expectedOrganizations.size(), organizations.size());
// id, name, alias, description and redirectUrl should have all been preserved.
assertThat(organizations.stream().map(OrganizationRepresentation::getId).toList(),
Expand Down Expand Up @@ -145,7 +145,7 @@ public void testExport() {

for (OrganizationRepresentation orgRep : organizations) {
OrganizationResource organization = testRealm().organizations().get(orgRep.getId());
List<String> members = organization.members().getAll().stream().map(UserRepresentation::getEmail).toList();
List<String> members = organization.members().list(-1, -1).stream().map(UserRepresentation::getEmail).toList();
assertEquals(members.size(), expectedUnmanagedMembers.get(orgRep.getName()).size() + expectedManagedMembers.get(orgRep.getName()).size());
assertTrue(members.containsAll(expectedUnmanagedMembers.get(orgRep.getName())));
assertTrue(members.containsAll(expectedManagedMembers.get(orgRep.getName())));
Expand All @@ -172,14 +172,14 @@ public void testExportImportEmptyOrg() {
try (Response response = testRealm().organizations().create(orgRep)) {
assertEquals(Response.Status.CREATED.getStatusCode(), response.getStatus());
}
List<OrganizationRepresentation> orgs = testRealm().organizations().getAll();
List<OrganizationRepresentation> orgs = testRealm().organizations().list(-1, -1);
assertEquals(1, orgs.size());

RealmRepresentation importedRealm = exportRemoveImportRealm();

assertTrue(importedRealm.isOrganizationsEnabled());

orgs = testRealm().organizations().getAll();
orgs = testRealm().organizations().list(-1, -1);
assertEquals(1, orgs.size());
assertEquals("acme", orgs.get(0).getName());
}
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -89,8 +89,8 @@ public void testPasswordGrantType() throws Exception {

orgb.members().addMember(member.getId()).close();

Assert.assertTrue(orga.members().getAll().stream().map(UserRepresentation::getId).anyMatch(member.getId()::equals));
Assert.assertTrue(orgb.members().getAll().stream().map(UserRepresentation::getId).anyMatch(member.getId()::equals));
Assert.assertTrue(orga.members().list(-1, -1).stream().map(UserRepresentation::getId).anyMatch(member.getId()::equals));
Assert.assertTrue(orgb.members().list(-1, -1).stream().map(UserRepresentation::getId).anyMatch(member.getId()::equals));

oauth.clientId("direct-grant");
oauth.scope("openid organization:*");
Expand Down
Loading

0 comments on commit 7e3e46d

Please sign in to comment.