org.apache.cxf.rs.security.oauth2.services

Class AbstractImplicitGrantService

java.lang.Object

org.apache.cxf.rs.security.oauth2.services.AbstractOAuthService

org.apache.cxf.rs.security.oauth2.services.RedirectionBasedGrantService

org.apache.cxf.rs.security.oauth2.services.AbstractImplicitGrantService

Direct Known Subclasses:

ImplicitConfidentialGrantService, ImplicitGrantService

public abstract class AbstractImplicitGrantService
extends RedirectionBasedGrantService

Field Summary

Fields inherited from class org.apache.cxf.rs.security.oauth2.services.AbstractOAuthService

LOG

Constructor Summary

Constructors

Modifier	Constructor and Description
protected	AbstractImplicitGrantService(Set<String> supportedResponseTypes, String supportedGrantType)
protected	AbstractImplicitGrantService(String supportedResponseType, String supportedGrantType)

Method Summary

Modifier and Type	Method and Description
protected boolean	canRedirectUriBeEmpty(Client c)
protected boolean	canSupportPublicClient(Client c)
protected javax.ws.rs.core.Response	createErrorResponse(String state, String redirectUri, String error)
protected javax.ws.rs.core.Response	createGrant(OAuthRedirectionState state, Client client, List<String> requestedScope, List<String> approvedScope, UserSubject userSubject, ServerAccessToken preAuthorizedToken)
protected AccessTokenRegistration	createTokenRegistration(OAuthRedirectionState state, Client client, List<String> requestedScope, List<String> approvedScope, UserSubject userSubject)
protected void	finalizeResponse(StringBuilder sb, OAuthRedirectionState state)
protected ClientAccessToken	getClientAccessToken(OAuthRedirectionState state, Client client, List<String> requestedScope, List<String> approvedScope, UserSubject userSubject, ServerAccessToken preAuthorizedToken)
protected StringBuilder	getUriWithFragment(String redirectUri)
protected AbstractFormImplicitResponse	prepareFormResponse(OAuthRedirectionState state, Client client, List<String> requestedScope, List<String> approvedScope, UserSubject userSubject, ServerAccessToken preAuthorizedToken)
protected StringBuilder	prepareRedirectResponse(OAuthRedirectionState state, Client client, List<String> requestedScope, List<String> approvedScope, UserSubject userSubject, ServerAccessToken preAuthorizedToken)
protected void	processClientAccessToken(ClientAccessToken clientToken, ServerAccessToken serverToken)
protected void	processRefreshToken(StringBuilder sb, String refreshToken)
void	setReportClientId(boolean reportClientId)
void	setResponseFilter(AccessTokenResponseFilter responseHandler)
void	setResponseFilters(List<AccessTokenResponseFilter> handlers)

Methods inherited from class org.apache.cxf.rs.security.oauth2.services.RedirectionBasedGrantService

authorize, authorizeDecision, authorizeDecisionForm, authorizePost, canAccessTokenBeReturned, canAuthorizationBeSkipped, completeAuthorization, createAuthorizationData, createErrorResponse, createHtmlResponse, createUserSubject, getAndValidateSecurityContext, getApprovedScope, getClient, getSupportedGrantType, getSupportedResponseTypes, isFormResponse, isRevokePreauthorizedTokenOnApproval, noConsentForRequestedScopes, personalizeData, recreateRedirectionStateFromParams, recreateRedirectionStateFromSession, setAuthorizationFilter, setHidePreauthorizedScopesInForm, setMatchRedirectUriWithApplicationUri, setMaxDefaultSessionInterval, setPartialMatchScopeValidation, setResourceOwnerNameProvider, setRevokePreauthorizedTokenOnApproval, setScopesRequiringNoConsent, setSessionAuthenticityTokenProvider, setSubjectCreator, setSupportSinglePageApplications, setUseAllClientScopes, setUseRegisteredRedirectUriIfPossible, startAuthorization, startAuthorization, validateRedirectUri

Methods inherited from class org.apache.cxf.rs.security.oauth2.services.AbstractOAuthService

checkTransportSecurity, getDataProvider, getMessageContext, getQueryParameters, getValidClient, getValidClient, injectContextIntoOAuthProviders, isWriteOptionalParameters, reportInvalidRequestError, reportInvalidRequestError, reportInvalidRequestError, reportInvalidRequestError, setBlockUnsecureRequests, setDataProvider, setMessageContext, setWriteOptionalParameters

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

AbstractImplicitGrantService

protected AbstractImplicitGrantService(String supportedResponseType,
                                       String supportedGrantType)

AbstractImplicitGrantService

protected AbstractImplicitGrantService(Set<String> supportedResponseTypes,
                                       String supportedGrantType)

Method Detail

createGrant

protected javax.ws.rs.core.Response createGrant(OAuthRedirectionState state,
                                                Client client,
                                                List<String> requestedScope,
                                                List<String> approvedScope,
                                                UserSubject userSubject,
                                                ServerAccessToken preAuthorizedToken)

Specified by:

createGrant in class RedirectionBasedGrantService

prepareRedirectResponse

protected StringBuilder prepareRedirectResponse(OAuthRedirectionState state,
                                                Client client,
                                                List<String> requestedScope,
                                                List<String> approvedScope,
                                                UserSubject userSubject,
                                                ServerAccessToken preAuthorizedToken)

prepareFormResponse

protected AbstractFormImplicitResponse prepareFormResponse(OAuthRedirectionState state,
                                                           Client client,
                                                           List<String> requestedScope,
                                                           List<String> approvedScope,
                                                           UserSubject userSubject,
                                                           ServerAccessToken preAuthorizedToken)

getClientAccessToken

protected ClientAccessToken getClientAccessToken(OAuthRedirectionState state,
                                                 Client client,
                                                 List<String> requestedScope,
                                                 List<String> approvedScope,
                                                 UserSubject userSubject,
                                                 ServerAccessToken preAuthorizedToken)

createTokenRegistration

protected AccessTokenRegistration createTokenRegistration(OAuthRedirectionState state,
                                                          Client client,
                                                          List<String> requestedScope,
                                                          List<String> approvedScope,
                                                          UserSubject userSubject)

finalizeResponse

protected void finalizeResponse(StringBuilder sb,
                                OAuthRedirectionState state)

processRefreshToken

protected void processRefreshToken(StringBuilder sb,
                                   String refreshToken)

processClientAccessToken

protected void processClientAccessToken(ClientAccessToken clientToken,
                                        ServerAccessToken serverToken)

createErrorResponse

protected javax.ws.rs.core.Response createErrorResponse(String state,
                                                        String redirectUri,
                                                        String error)

Specified by:

createErrorResponse in class RedirectionBasedGrantService

getUriWithFragment

protected StringBuilder getUriWithFragment(String redirectUri)

setReportClientId

public void setReportClientId(boolean reportClientId)

setResponseFilters

public void setResponseFilters(List<AccessTokenResponseFilter> handlers)

setResponseFilter

public void setResponseFilter(AccessTokenResponseFilter responseHandler)

canRedirectUriBeEmpty

protected boolean canRedirectUriBeEmpty(Client c)

Specified by:

canRedirectUriBeEmpty in class RedirectionBasedGrantService

canSupportPublicClient

protected boolean canSupportPublicClient(Client c)

Specified by:

canSupportPublicClient in class RedirectionBasedGrantService