Class OAuthRequestFilter
java.lang.Object
org.apache.cxf.rs.security.oauth2.services.AbstractAccessTokenValidator
org.apache.cxf.rs.security.oauth2.filters.OAuthRequestFilter
- All Implemented Interfaces:
jakarta.ws.rs.container.ContainerRequestFilter
- Direct Known Subclasses:
OAuthRequestInterceptor
@Provider
@PreMatching
@Priority(1000)
public class OAuthRequestFilter
extends AbstractAccessTokenValidator
implements jakarta.ws.rs.container.ContainerRequestFilter
JAX-RS OAuth2 filter which can be used to protect the end-user endpoints
-
Field Summary
Fields inherited from class org.apache.cxf.rs.security.oauth2.services.AbstractAccessTokenValidator
realm, supportedSchemes -
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionprotected booleancheckHttpVerb(jakarta.servlet.http.HttpServletRequest req, List<String> verbs) protected booleancheckRequestURI(jakarta.servlet.http.HttpServletRequest request, List<String> uris, Message m) protected booleancheckScopeProperty(String scope) protected SecurityContextcreateSecurityContext(jakarta.servlet.http.HttpServletRequest request, AccessTokenValidation accessTokenV) voidfilter(jakarta.ws.rs.container.ContainerRequestContext context) protected String[]protected StringgetTokenFromFormData(Message message) booleanprotected booleanvoidsetAllPermissionsMatch(boolean allPermissionsMatch) voidsetAudience(String audience) voidsetAudienceIsEndpointAddress(boolean audienceIsEndpointAddress) voidsetBlockPublicClients(boolean blockPublicClients) voidsetCheckFormData(boolean checkFormData) voidsetCompleteAudienceMatch(boolean completeAudienceMatch) voidvoidsetRequiredScopes(List<String> requiredScopes) voidvoidsetUseUserSubject(boolean useUserSubject) protected StringvalidateAudiences(List<String> audiences) protected voidMethods inherited from class org.apache.cxf.rs.security.oauth2.services.AbstractAccessTokenValidator
findTokenValidator, getAccessTokenValidation, getJwtTokenConsumer, getMessageContext, isPersistJwtEncoding, removeAccessToken, setDataProvider, setJwtTokenConsumer, setMaxValidationDataCacheSize, setMessageContext, setPersistJwtEncoding, setRealm, setTokenValidator, setTokenValidators
-
Constructor Details
-
OAuthRequestFilter
public OAuthRequestFilter()
-
-
Method Details
-
filter
public void filter(jakarta.ws.rs.container.ContainerRequestContext context) - Specified by:
filterin interfacejakarta.ws.rs.container.ContainerRequestFilter
-
validateRequest
-
checkHttpVerb
-
checkRequestURI
-
checkScopeProperty
-
setUseUserSubject
public void setUseUserSubject(boolean useUserSubject) -
createSecurityContext
protected SecurityContext createSecurityContext(jakarta.servlet.http.HttpServletRequest request, AccessTokenValidation accessTokenV) -
isCorsRequest
-
validateAudiences
-
setCheckFormData
public void setCheckFormData(boolean checkFormData) -
getAuthorizationParts
-
getTokenFromFormData
-
setRequiredScopes
-
setAllPermissionsMatch
public void setAllPermissionsMatch(boolean allPermissionsMatch) -
setBlockPublicClients
public void setBlockPublicClients(boolean blockPublicClients) -
setTokenSubjectAuthenticationMethod
-
getAudience
-
setAudience
-
isCompleteAudienceMatch
public boolean isCompleteAudienceMatch() -
setCompleteAudienceMatch
public void setCompleteAudienceMatch(boolean completeAudienceMatch) -
setAudienceIsEndpointAddress
public void setAudienceIsEndpointAddress(boolean audienceIsEndpointAddress) -
setIssuer
-