org.apache.cxf.rs.security.oauth2.grants.code

Class JwtRequestCodeFilter

java.lang.Object

org.apache.cxf.rs.security.jose.common.AbstractJoseConsumer

org.apache.cxf.rs.security.jose.jwt.JoseJwtConsumer

org.apache.cxf.rs.security.oauth2.provider.OAuthJoseJwtConsumer

org.apache.cxf.rs.security.oauth2.grants.code.JwtRequestCodeFilter

All Implemented Interfaces:

AuthorizationRequestFilter

public class JwtRequestCodeFilter
extends OAuthJoseJwtConsumer
implements AuthorizationRequestFilter

Field Summary

Fields

Modifier and Type	Field and Description
protected static Logger	LOG

Constructor Summary

Constructors

Constructor and Description
JwtRequestCodeFilter()

Method Summary

Modifier and Type	Method and Description
protected JwsSignatureVerifier	getInitializedSigVerifier(Client c)
protected boolean	isRequestUriValid(Client client, String requestUri) This method must be overridden to support request_uri.
javax.ws.rs.core.MultivaluedMap<String,String>	process(javax.ws.rs.core.MultivaluedMap<String,String> params, UserSubject endUser, Client client)
void	setIssuer(String issuer)
void	setVerifyWithClientCertificates(boolean verifyWithClientCertificates)

Methods inherited from class org.apache.cxf.rs.security.oauth2.provider.OAuthJoseJwtConsumer

getInitializedDecryptionProvider, getInitializedSignatureVerifier, getJwtToken, isDecryptWithClientSecret, isVerifyWithClientSecret, setDecryptWithClientSecret, setVerifyWithClientSecret

Methods inherited from class org.apache.cxf.rs.security.jose.jwt.JoseJwtConsumer

getClockOffset, getInitializedSignatureVerifier, getJwtToken, getJwtToken, getTtl, setClockOffset, setTtl, validateToken

Methods inherited from class org.apache.cxf.rs.security.jose.common.AbstractJoseConsumer

checkProcessRequirements, getInitializedDecryptionProvider, getInitializedSignatureVerifier, getJweDecryptor, getJwsVerifier, isJweRequired, isJwsRequired, setJweDecryptor, setJweRequired, setJwsRequired, setJwsVerifier

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

LOG

protected static final Logger LOG

Constructor Detail

JwtRequestCodeFilter

public JwtRequestCodeFilter()

Method Detail

process

public javax.ws.rs.core.MultivaluedMap<String,String> process(javax.ws.rs.core.MultivaluedMap<String,String> params,
                                                              UserSubject endUser,
                                                              Client client)

Specified by:

process in interface AuthorizationRequestFilter

isRequestUriValid

protected boolean isRequestUriValid(Client client,
                                    String requestUri)

This method must be overridden to support request_uri. Take care to validate the request_uri properly, as otherwise it could lead to a security problem (https://tools.ietf.org/html/draft-ietf-oauth-jwsreq-30#section-10.4)

Parameters:

client - the Client object

requestUri - the request_uri parameter to validate

Returns:

whether the requestUri is permitted or not

getInitializedSigVerifier

protected JwsSignatureVerifier getInitializedSigVerifier(Client c)

setIssuer

public void setIssuer(String issuer)

setVerifyWithClientCertificates

public void setVerifyWithClientCertificates(boolean verifyWithClientCertificates)