首页 \ 问答 \ 如何注册Keycloak密码哈希服务提供商SPI(How to Register Keycloak Password Hash Service Provider SPI)

如何注册Keycloak密码哈希服务提供商SPI(How to Register Keycloak Password Hash Service Provider SPI)

 背景  
 我需要将定制应用程序的用户数据库迁移到Keycloak。 我创建了一个成功导入用户的keycloak-add-user.json文件。 迁移的用户密码在原始系统中进行哈希处理，但是我实现了Keycloak Password Hash SPI服务类，该服务类使用现有算法来验证迁移用户的哈希值和salt值。 Hash SPI类从Keycloak SPI实现PasswordHashProviderFactory和PasswordHashProvider ，并基于`Pbkdf2PasswordHashProvider'。  
public class MyPasswordHashProvider implements PasswordHashProviderFactory, PasswordHashProvider {
public static final String ID = "XXXX";
 
 问题  
 当迁移的用户尝试使用keycloak进行身份验证时，org.keycloak.hash.PasswordHashManager会记录错误  
Could not find hash provider XXXX for password
 
 我的jar包含一个初始化文件META-INF/services/org.keycloak.models.PasswordHashProviderFactory ，其中一行包含HashProvider实现的完整类名。  
my.folder.MyPasswordHashProvider
 
 这是基于联邦SPI doco，但Keycloak Password Hash SPI的文档似乎不存在。 我错过了什么，或者我需要做些什么来注册和使用我的Hash Provider与Keycloak？ 

Background 
I need to migrate a user database for a bespoke app into Keycloak. I have created a keycloak-add-user.json file that imports the users successfully. Migrated user passwords are hashed in the original system, however I've implemented a Keycloak Password Hash SPI service class that uses the existing algorithm to validate the hash and salt value of a migrated user. The Hash SPI class implements PasswordHashProviderFactory and PasswordHashProvider from the Keycloak SPI and is based on `Pbkdf2PasswordHashProvider'.  
public class MyPasswordHashProvider implements PasswordHashProviderFactory, PasswordHashProvider {
public static final String ID = "XXXX";
 
The issue 
When a migrated user tries to authenticate with keycloak an error is logged by org.keycloak.hash.PasswordHashManager 
Could not find hash provider XXXX for password
 
My jar contains an initialisation file META-INF/services/org.keycloak.models.PasswordHashProviderFactory with a single line containing the full classname of the HashProvider implementation.  
my.folder.MyPasswordHashProvider
 
This was based on the Federation SPI doco, but documentation for the Keycloak Password Hash SPI seems to be non-existent. What am I missing, or what do I need to do to register and use my Hash Provider with Keycloak?

原文：https://stackoverflow.com/questions/38693674

更新时间：2023-11-23 14:11

最满意答案

 您可以利用sqlcmd的脚本变量 。 这些可以在脚本文件中使用，并用$()标记。 像这样，  
-- Sql script file
use $(db);
select someting from somewhere;
 
 调用sqlcmd ，使用-v参数分配变量。 像这样，  
sqlcmd -S server\instance -E -v db ="MyDatabase" -i s.sql
 
 编辑  
 设置变量时要注意Sql语法。 考虑下面的脚本：  
DECLARE @dbName varchar(255)
SET @dbName = $(db)
select 'val' = @dbName
 
 传递给Sql Server时，它看起来像这样（Profiler在这里帮助）：  
use master;

DECLARE @dbName varchar(255)
SET @dbName = foo
select 'val' = @dbName
 
 这显然是无效的语法，因为SET @dbName = foo没有多大意义。 价值应该在单引号内，像这样，  
sqlcmd -S server\instance -E -v db ="'foo'" -i s.sql

Just in case someone else needs to do this... here is a working example. 
Power Shell Script: 
sqlcmd -S uk-ldn-dt270 -U sa -P 1NetNasdf£! -v db = "'DatabaseNameHere'" -i $scriptFile -b | Tee-Object -filepath $sqlLog
 
Note the -v switch to assign the variables 
And here is the MS SQL: 
USE MASTER
GO

if db_id($(db)) is null

BEGIN
    EXEC('
    RESTORE DATABASE ' + $(db) + '
    FROM DISK = ''D:\DB Backup\EmptyLiveV5.bak''
    WITH MOVE ''LiveV5_Data'' TO ''C:\Program Files (x86)\Microsoft SQL Server\MSSQL11.MSSQLSERVER\MSSQL\DATA\LiveV5_' + $(db) + '.MDF'',
    MOVE ''LiveV5_Log'' To ''C:\Program Files (x86)\Microsoft SQL Server\MSSQL11.MSSQLSERVER\MSSQL\DATA\LiveV5_' + $(db) + '_log.LDF'', REPLACE,
    STATS =10')
END
 
Note: You do not have to assign the scripting varible to a normal sql varible like this. 
SET @dbName = $(db)
 
you can just use it in your sql code. - Happy coding.

如何注册Keycloak密码哈希服务提供商SPI(How to Register Keycloak Password Hash Service Provider SPI)

最满意答案

相关问答

PowerShell将参数传递给ArgumentList(PowerShell Pass Named parameters to ArgumentList)[2022-06-24]

如何在Powershell ISE中将需要的参数传递给脚本？(How to pass needed parameters to script in Powershell ISE?)[2023-07-09]

在PowerShell脚本中将参数传递给SVN(Passing parameters to SVN in a PowerShell script)[2023-06-02]

将参数从批处理文件传递给powershell脚本(Passing parameters to powershell script from batch file)[2022-04-09]

如何通过Powershell将参数传递给SQL脚本(How to pass parameters to SQL script via Powershell)[2023-03-26]

如何从命令行将带括号的参数传递给Powershell？(How to pass a parameter with parentheses to Powershell from command line?)[2024-01-05]

将参数从powershell脚本传递到另一个(passing parameters from powershell script to another)[2023-04-16]

使用Powershell -encoded命令传递参数(Using Powershell -encodedcommand to pass parameters)[2023-07-04]

将脚本参数传递给Powershell中的函数(Passing script parameters to a function in Powershell)[2022-04-08]

如何将参数传递给Powershell脚本并在远程计算机上运行它(how to pass parameters to Powershell script and run it on a remote computer)[2019-11-14]

相关文章

最新问答