org.apache.cxf.rs.security.oidc.idp

Class OidcImplicitService

java.lang.Object

org.apache.cxf.rs.security.oauth2.services.AbstractOAuthService

org.apache.cxf.rs.security.oauth2.services.RedirectionBasedGrantService

org.apache.cxf.rs.security.oauth2.services.AbstractImplicitGrantService

org.apache.cxf.rs.security.oauth2.services.ImplicitGrantService

org.apache.cxf.rs.security.oidc.idp.OidcImplicitService

Direct Known Subclasses:

OidcHybridService

public class OidcImplicitService
extends org.apache.cxf.rs.security.oauth2.services.ImplicitGrantService

Field Summary

Fields inherited from class org.apache.cxf.rs.security.oauth2.services.AbstractOAuthService

LOG

Constructor Summary

Constructors

Modifier	Constructor and Description
	OidcImplicitService()
protected	OidcImplicitService(Set<String> supportedResponseTypes, String supportedGrantType)

Method Summary

Modifier and Type	Method and Description
protected boolean	canAccessTokenBeReturned(String responseType)
protected boolean	canAuthorizationBeSkipped(javax.ws.rs.core.MultivaluedMap<String,String> params, org.apache.cxf.rs.security.oauth2.common.Client client, org.apache.cxf.rs.security.oauth2.common.UserSubject userSubject, List<String> requestedScope, List<org.apache.cxf.rs.security.oauth2.common.OAuthPermission> permissions)
protected org.apache.cxf.rs.security.oauth2.common.AbstractFormImplicitResponse	prepareFormResponse(org.apache.cxf.rs.security.oauth2.common.OAuthRedirectionState state, org.apache.cxf.rs.security.oauth2.common.Client client, List<String> requestedScope, List<String> approvedScope, org.apache.cxf.rs.security.oauth2.common.UserSubject userSubject, org.apache.cxf.rs.security.oauth2.common.ServerAccessToken preAuthorizedToken)
protected StringBuilder	prepareRedirectResponse(org.apache.cxf.rs.security.oauth2.common.OAuthRedirectionState state, org.apache.cxf.rs.security.oauth2.common.Client client, List<String> requestedScope, List<String> approvedScope, org.apache.cxf.rs.security.oauth2.common.UserSubject userSubject, org.apache.cxf.rs.security.oauth2.common.ServerAccessToken preAuthorizedToken)
protected String	processIdToken(org.apache.cxf.rs.security.oauth2.common.OAuthRedirectionState state, IdToken idToken)
protected org.apache.cxf.rs.security.oauth2.common.OAuthRedirectionState	recreateRedirectionStateFromParams(javax.ws.rs.core.MultivaluedMap<String,String> params)
void	setIdTokenJoseHandler(org.apache.cxf.rs.security.oauth2.provider.OAuthJoseJwtProducer idTokenJoseHandler)
void	setIdTokenProvider(IdTokenProvider idTokenProvider)
void	setSkipAuthorizationWithOidcScope(boolean skipAuthorizationWithOidcScope)
protected javax.ws.rs.core.Response	startAuthorization(javax.ws.rs.core.MultivaluedMap<String,String> params, org.apache.cxf.rs.security.oauth2.common.UserSubject userSubject, org.apache.cxf.rs.security.oauth2.common.Client client, String redirectUri)

Methods inherited from class org.apache.cxf.rs.security.oauth2.services.ImplicitGrantService

createAuthorizationData

Methods inherited from class org.apache.cxf.rs.security.oauth2.services.AbstractImplicitGrantService

canRedirectUriBeEmpty, canSupportPublicClient, createErrorResponse, createGrant, createTokenRegistration, finalizeResponse, getClientAccessToken, getUriWithFragment, processClientAccessToken, processRefreshToken, setReportClientId, setResponseFilter, setResponseFilters

Methods inherited from class org.apache.cxf.rs.security.oauth2.services.RedirectionBasedGrantService

authorize, authorizeDecision, authorizeDecisionForm, authorizePost, completeAuthorization, createErrorResponse, createHtmlResponse, createUserSubject, getAndValidateSecurityContext, getApprovedScope, getClient, getSupportedGrantType, getSupportedResponseTypes, isFormResponse, isRevokePreauthorizedTokenOnApproval, noConsentForRequestedScopes, personalizeData, recreateRedirectionStateFromSession, setAuthorizationFilter, setHidePreauthorizedScopesInForm, setMatchRedirectUriWithApplicationUri, setMaxDefaultSessionInterval, setPartialMatchScopeValidation, setResourceOwnerNameProvider, setRevokePreauthorizedTokenOnApproval, setScopesRequiringNoConsent, setSessionAuthenticityTokenProvider, setSubjectCreator, setSupportSinglePageApplications, setUseAllClientScopes, setUseRegisteredRedirectUriIfPossible, startAuthorization, validateRedirectUri

Methods inherited from class org.apache.cxf.rs.security.oauth2.services.AbstractOAuthService

checkTransportSecurity, getDataProvider, getMessageContext, getQueryParameters, getValidClient, getValidClient, injectContextIntoOAuthProviders, isWriteOptionalParameters, reportInvalidRequestError, reportInvalidRequestError, reportInvalidRequestError, reportInvalidRequestError, setBlockUnsecureRequests, setDataProvider, setMessageContext, setWriteOptionalParameters

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

OidcImplicitService

public OidcImplicitService()

OidcImplicitService

protected OidcImplicitService(Set<String> supportedResponseTypes,
                              String supportedGrantType)

Method Detail

canAccessTokenBeReturned

protected boolean canAccessTokenBeReturned(String responseType)

Overrides:

canAccessTokenBeReturned in class org.apache.cxf.rs.security.oauth2.services.RedirectionBasedGrantService

startAuthorization

protected javax.ws.rs.core.Response startAuthorization(javax.ws.rs.core.MultivaluedMap<String,String> params,
                                                       org.apache.cxf.rs.security.oauth2.common.UserSubject userSubject,
                                                       org.apache.cxf.rs.security.oauth2.common.Client client,
                                                       String redirectUri)

Overrides:

startAuthorization in class org.apache.cxf.rs.security.oauth2.services.RedirectionBasedGrantService

canAuthorizationBeSkipped

protected boolean canAuthorizationBeSkipped(javax.ws.rs.core.MultivaluedMap<String,String> params,
                                            org.apache.cxf.rs.security.oauth2.common.Client client,
                                            org.apache.cxf.rs.security.oauth2.common.UserSubject userSubject,
                                            List<String> requestedScope,
                                            List<org.apache.cxf.rs.security.oauth2.common.OAuthPermission> permissions)

Overrides:

canAuthorizationBeSkipped in class org.apache.cxf.rs.security.oauth2.services.RedirectionBasedGrantService

setSkipAuthorizationWithOidcScope

public void setSkipAuthorizationWithOidcScope(boolean skipAuthorizationWithOidcScope)

prepareRedirectResponse

protected StringBuilder prepareRedirectResponse(org.apache.cxf.rs.security.oauth2.common.OAuthRedirectionState state,
                                                org.apache.cxf.rs.security.oauth2.common.Client client,
                                                List<String> requestedScope,
                                                List<String> approvedScope,
                                                org.apache.cxf.rs.security.oauth2.common.UserSubject userSubject,
                                                org.apache.cxf.rs.security.oauth2.common.ServerAccessToken preAuthorizedToken)

Overrides:

prepareRedirectResponse in class org.apache.cxf.rs.security.oauth2.services.AbstractImplicitGrantService

prepareFormResponse

protected org.apache.cxf.rs.security.oauth2.common.AbstractFormImplicitResponse prepareFormResponse(org.apache.cxf.rs.security.oauth2.common.OAuthRedirectionState state,
                                                                                                    org.apache.cxf.rs.security.oauth2.common.Client client,
                                                                                                    List<String> requestedScope,
                                                                                                    List<String> approvedScope,
                                                                                                    org.apache.cxf.rs.security.oauth2.common.UserSubject userSubject,
                                                                                                    org.apache.cxf.rs.security.oauth2.common.ServerAccessToken preAuthorizedToken)

Overrides:

prepareFormResponse in class org.apache.cxf.rs.security.oauth2.services.AbstractImplicitGrantService

recreateRedirectionStateFromParams

protected org.apache.cxf.rs.security.oauth2.common.OAuthRedirectionState recreateRedirectionStateFromParams(javax.ws.rs.core.MultivaluedMap<String,String> params)

Overrides:

recreateRedirectionStateFromParams in class org.apache.cxf.rs.security.oauth2.services.RedirectionBasedGrantService

processIdToken

protected String processIdToken(org.apache.cxf.rs.security.oauth2.common.OAuthRedirectionState state,
                                IdToken idToken)

setIdTokenJoseHandler

public void setIdTokenJoseHandler(org.apache.cxf.rs.security.oauth2.provider.OAuthJoseJwtProducer idTokenJoseHandler)

setIdTokenProvider

public void setIdTokenProvider(IdTokenProvider idTokenProvider)