- java.lang.Object
-
- net.trajano.ms.authz.RevocationResource
-
@Configuration @Component @Path(value="/revoke") @PermitAll public class RevocationResource extends Object
Revocation endpoint resource.- Author:
- Archimedes Trajano
-
-
Field Summary
Fields Modifier and Type Field and Description private ClientValidatorclientValidatorprivate intjwtMaximumLifetimeInSecondsMaximum life of a JWT token.private static org.slf4j.LoggerLOGprivate StringrealmNameprivate TokenCachetokenCache
-
Constructor Summary
Constructors Constructor and Description RevocationResource()
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method and Description com.google.gson.JsonObjectrevoke(String token, String tokenTypeHint, String authorization)Performs client credential validation then invokes the revocation process from the token cache.
-
-
-
Field Detail
-
LOG
private static final org.slf4j.Logger LOG
-
clientValidator
@Autowired private ClientValidator clientValidator
-
jwtMaximumLifetimeInSeconds
@Value(value="${token.jwtMaximumLifetime:86400}") private int jwtMaximumLifetimeInSecondsMaximum life of a JWT token. Past that period, it is expected to no longer be used.
-
realmName
@Value(value="${realmName:client_credentials}") private String realmName
-
tokenCache
@Autowired private TokenCache tokenCache
-
-
Method Detail
-
revoke
@POST @Consumes(value="application/x-www-form-urlencoded") @Produces(value="application/json") public com.google.gson.JsonObject revoke(@FormParam(value="token") String token, @FormParam(value="token_type_hint") String tokenTypeHint, @HeaderParam(value="Authorization") String authorization)Performs client credential validation then invokes the revocation process from the token cache.
-
-