Class AbstractTokenService
- java.lang.Object
-
- org.apache.cxf.rs.security.oauth2.services.AbstractOAuthService
-
- org.apache.cxf.rs.security.oauth2.services.AbstractTokenService
-
- Direct Known Subclasses:
AccessTokenService,TokenRevocationService
public class AbstractTokenService extends AbstractOAuthService
-
-
Field Summary
-
Fields inherited from class org.apache.cxf.rs.security.oauth2.services.AbstractOAuthService
LOG
-
-
Constructor Summary
Constructors Constructor Description AbstractTokenService()
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description protected ClientauthenticateClientIfNeeded(javax.ws.rs.core.MultivaluedMap<String,String> params)Make sure the client is authenticatedprotected voidcheckCertificateBinding(Client client, TLSSessionInfo tlsSessionInfo)protected voidcompareTlsCertificates(TLSSessionInfo tlsInfo, List<String> base64EncodedCerts)protected javax.ws.rs.core.ResponsecreateErrorResponse(javax.ws.rs.core.MultivaluedMap<String,String> params, String error)protected javax.ws.rs.core.ResponsecreateErrorResponseFromBean(OAuthError errorBean)protected javax.ws.rs.core.ResponsecreateErrorResponseFromErrorCode(String error)protected ClientgetAndValidateClientFromIdAndSecret(String clientId, String providedClientSecret, javax.ws.rs.core.MultivaluedMap<String,String> params)protected ClientgetClient(String clientId, String clientSecret, javax.ws.rs.core.MultivaluedMap<String,String> params)protected ClientgetClient(String clientId, javax.ws.rs.core.MultivaluedMap<String,String> params)Get theClientreferenceprotected ClientgetClientFromBasicAuthScheme(javax.ws.rs.core.MultivaluedMap<String,String> params)protected ClientgetClientFromTLSCertificates(javax.ws.rs.core.SecurityContext sc, TLSSessionInfo tlsSessionInfo, javax.ws.rs.core.MultivaluedMap<String,String> params)protected javax.ws.rs.core.ResponsehandleException(OAuthServiceException ex, String error)booleanisCanSupportPublicClients()protected booleanisConfidenatialClientSecretValid(Client client, String providedClientSecret)protected booleanisValidPublicClient(Client client, String clientId)protected voidreportInvalidClient()protected voidreportInvalidClient(OAuthError error)protected StringretrieveClientId(javax.ws.rs.core.MultivaluedMap<String,String> params)voidsetCanSupportPublicClients(boolean support)voidsetClientIdProvider(ClientIdProvider clientIdProvider)voidsetClientSecretVerifier(ClientSecretVerifier clientSecretVerifier)voidsetWriteCustomErrors(boolean writeCustomErrors)protected voidvalidateClientAuthenticationMethod(Client c, String authMethod)-
Methods inherited from class org.apache.cxf.rs.security.oauth2.services.AbstractOAuthService
checkTransportSecurity, getDataProvider, getMessageContext, getQueryParameters, getValidClient, getValidClient, injectContextIntoOAuthProviders, isWriteOptionalParameters, reportInvalidRequestError, reportInvalidRequestError, reportInvalidRequestError, reportInvalidRequestError, setBlockUnsecureRequests, setDataProvider, setMessageContext, setWriteOptionalParameters
-
-
-
-
Method Detail
-
authenticateClientIfNeeded
protected Client authenticateClientIfNeeded(javax.ws.rs.core.MultivaluedMap<String,String> params)
Make sure the client is authenticated
-
validateClientAuthenticationMethod
protected void validateClientAuthenticationMethod(Client c, String authMethod)
-
retrieveClientId
protected String retrieveClientId(javax.ws.rs.core.MultivaluedMap<String,String> params)
-
getAndValidateClientFromIdAndSecret
protected Client getAndValidateClientFromIdAndSecret(String clientId, String providedClientSecret, javax.ws.rs.core.MultivaluedMap<String,String> params)
-
isConfidenatialClientSecretValid
protected boolean isConfidenatialClientSecretValid(Client client, String providedClientSecret)
-
getClientFromBasicAuthScheme
protected Client getClientFromBasicAuthScheme(javax.ws.rs.core.MultivaluedMap<String,String> params)
-
checkCertificateBinding
protected void checkCertificateBinding(Client client, TLSSessionInfo tlsSessionInfo)
-
getClientFromTLSCertificates
protected Client getClientFromTLSCertificates(javax.ws.rs.core.SecurityContext sc, TLSSessionInfo tlsSessionInfo, javax.ws.rs.core.MultivaluedMap<String,String> params)
-
compareTlsCertificates
protected void compareTlsCertificates(TLSSessionInfo tlsInfo, List<String> base64EncodedCerts)
-
handleException
protected javax.ws.rs.core.Response handleException(OAuthServiceException ex, String error)
-
createErrorResponse
protected javax.ws.rs.core.Response createErrorResponse(javax.ws.rs.core.MultivaluedMap<String,String> params, String error)
-
createErrorResponseFromErrorCode
protected javax.ws.rs.core.Response createErrorResponseFromErrorCode(String error)
-
createErrorResponseFromBean
protected javax.ws.rs.core.Response createErrorResponseFromBean(OAuthError errorBean)
-
getClient
protected Client getClient(String clientId, javax.ws.rs.core.MultivaluedMap<String,String> params)
Get theClientreference- Parameters:
clientId- the provided client id- Returns:
- Client the client reference
-
getClient
protected Client getClient(String clientId, String clientSecret, javax.ws.rs.core.MultivaluedMap<String,String> params)
-
reportInvalidClient
protected void reportInvalidClient()
-
reportInvalidClient
protected void reportInvalidClient(OAuthError error)
-
setCanSupportPublicClients
public void setCanSupportPublicClients(boolean support)
-
isCanSupportPublicClients
public boolean isCanSupportPublicClients()
-
setWriteCustomErrors
public void setWriteCustomErrors(boolean writeCustomErrors)
-
setClientIdProvider
public void setClientIdProvider(ClientIdProvider clientIdProvider)
-
setClientSecretVerifier
public void setClientSecretVerifier(ClientSecretVerifier clientSecretVerifier)
-
-