Package org.apache.cxf.rs.security.oauth2.grants.code

Class JwtRequestCodeFilter

java.lang.Object

org.apache.cxf.rs.security.jose.common.AbstractJoseConsumer

org.apache.cxf.rs.security.jose.jwt.JoseJwtConsumer

org.apache.cxf.rs.security.oauth2.provider.OAuthJoseJwtConsumer

org.apache.cxf.rs.security.oauth2.grants.code.JwtRequestCodeFilter

All Implemented Interfaces:

AuthorizationRequestFilter

public class JwtRequestCodeFilter
extends OAuthJoseJwtConsumer
implements AuthorizationRequestFilter

Field Summary

Fields

Modifier and Type	Field	Description
protected static final Logger	LOG

Constructor Summary

Constructors

Constructor	Description
JwtRequestCodeFilter()

Method Summary

Modifier and Type	Method	Description
protected JwsSignatureVerifier	getInitializedSigVerifier(Client c)
protected boolean	isRequestUriValid(Client client, String requestUri)	This method must be overridden to support request_uri.
jakarta.ws.rs.core.MultivaluedMap<String,String>	process(jakarta.ws.rs.core.MultivaluedMap<String,String> params, UserSubject endUser, Client client)
void	setIssuer(String issuer)
void	setVerifyWithClientCertificates(boolean verifyWithClientCertificates)

Methods inherited from class org.apache.cxf.rs.security.oauth2.provider.OAuthJoseJwtConsumer

getInitializedDecryptionProvider, getInitializedSignatureVerifier, getJwtToken, isDecryptWithClientSecret, isVerifyWithClientSecret, setDecryptWithClientSecret, setVerifyWithClientSecret

Methods inherited from class org.apache.cxf.rs.security.jose.jwt.JoseJwtConsumer

getClockOffset, getInitializedSignatureVerifier, getJwtToken, getJwtToken, getTtl, setClockOffset, setTtl, validateToken

Methods inherited from class org.apache.cxf.rs.security.jose.common.AbstractJoseConsumer

checkProcessRequirements, getInitializedDecryptionProvider, getInitializedSignatureVerifier, getJweDecryptor, getJwsVerifier, isJweRequired, isJwsRequired, setJweDecryptor, setJweRequired, setJwsRequired, setJwsVerifier

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Details

LOG

protected static final Logger LOG

Constructor Details

JwtRequestCodeFilter

public JwtRequestCodeFilter()

Method Details

process

public jakarta.ws.rs.core.MultivaluedMap<String,String> process(jakarta.ws.rs.core.MultivaluedMap<String,String> params,
 UserSubject endUser,
 Client client)

Specified by:

process in interface AuthorizationRequestFilter

isRequestUriValid

protected boolean isRequestUriValid(Client client,
 String requestUri)

This method must be overridden to support request_uri. Take care to validate the request_uri properly, as otherwise it could lead to a security problem (https://tools.ietf.org/html/draft-ietf-oauth-jwsreq-30#section-10.4)

Parameters:

client - the Client object

requestUri - the request_uri parameter to validate

Returns:

whether the requestUri is permitted or not

getInitializedSigVerifier

protected JwsSignatureVerifier getInitializedSigVerifier(Client c)

setIssuer

public void setIssuer(String issuer)

setVerifyWithClientCertificates

public void setVerifyWithClientCertificates(boolean verifyWithClientCertificates)