Package org.apache.cxf.rs.security.oauth2.provider

Class JoseSessionTokenProvider

java.lang.Object

org.apache.cxf.rs.security.oauth2.provider.JoseSessionTokenProvider

All Implemented Interfaces:

SessionAuthenticityTokenProvider

public class JoseSessionTokenProvider
extends Object
implements SessionAuthenticityTokenProvider

Constructor Summary

Constructors

Constructor	Description
JoseSessionTokenProvider()

Method Summary

Modifier and Type	Method	Description
protected String	convertStateToString(OAuthRedirectionState secData)
String	createSessionToken(MessageContext mc, jakarta.ws.rs.core.MultivaluedMap<String,String> params, UserSubject subject, OAuthRedirectionState secData)	Create a new session token and stores it
protected JweDecryptionProvider	getInitializedDecryptionProvider()
protected JweEncryptionProvider	getInitializedEncryptionProvider()
protected JwsSignatureProvider	getInitializedSigProvider()
protected JwsSignatureVerifier	getInitializedSigVerifier()
OAuthRedirectionState	getSessionState(MessageContext messageContext, String sessionToken, UserSubject subject)	Expand the session token
String	getSessionToken(MessageContext mc, jakarta.ws.rs.core.MultivaluedMap<String,String> params, UserSubject subject)	Retrieve the stored session token
String	removeSessionToken(MessageContext mc, jakarta.ws.rs.core.MultivaluedMap<String,String> params, UserSubject subject)	Remove the stored session token
void	setJweDecryptor(JweDecryptionProvider jweDecryptor)
void	setJweEncryptor(JweEncryptionProvider jweEncryptor)
void	setJweRequired(boolean jweRequired)
void	setJwsProvider(JwsSignatureProvider jwsProvider)
void	setJwsRequired(boolean jwsRequired)
void	setJwsVerifier(JwsSignatureVerifier jwsVerifier)
void	setMaxDefaultSessionInterval(int maxDefaultSessionInterval)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

JoseSessionTokenProvider

public JoseSessionTokenProvider()

Method Details

createSessionToken

public String createSessionToken(MessageContext mc,
 jakarta.ws.rs.core.MultivaluedMap<String,String> params,
 UserSubject subject,
 OAuthRedirectionState secData)

Description copied from interface: SessionAuthenticityTokenProvider

Create a new session token and stores it

Specified by:

createSessionToken in interface SessionAuthenticityTokenProvider

Parameters:

mc - the MessageContext of this request

params - redirection-based grant request parameters

subject - authenticated end user

Returns:

the created session token

getSessionToken

public String getSessionToken(MessageContext mc,
 jakarta.ws.rs.core.MultivaluedMap<String,String> params,
 UserSubject subject)

Description copied from interface: SessionAuthenticityTokenProvider

Retrieve the stored session token

Specified by:

getSessionToken in interface SessionAuthenticityTokenProvider

Parameters:

mc - the MessageContext of this request

params - grant authorization parameters

subject - authenticated end user

Returns:

the stored token

removeSessionToken

public String removeSessionToken(MessageContext mc,
 jakarta.ws.rs.core.MultivaluedMap<String,String> params,
 UserSubject subject)

Description copied from interface: SessionAuthenticityTokenProvider

Remove the stored session token

Specified by:

removeSessionToken in interface SessionAuthenticityTokenProvider

Parameters:

mc - the MessageContext of this request

params - grant authorization parameters

subject - authenticated end user

getSessionState

public OAuthRedirectionState getSessionState(MessageContext messageContext,
 String sessionToken,
 UserSubject subject)

Description copied from interface: SessionAuthenticityTokenProvider

Expand the session token

Specified by:

getSessionState in interface SessionAuthenticityTokenProvider

Parameters:

messageContext - the MessageContext of this request

sessionToken - the token

subject - authenticated end user

Returns:

the expanded token or null

setJwsProvider

public void setJwsProvider(JwsSignatureProvider jwsProvider)

setJwsVerifier

public void setJwsVerifier(JwsSignatureVerifier jwsVerifier)

setJweEncryptor

public void setJweEncryptor(JweEncryptionProvider jweEncryptor)

setJweDecryptor

public void setJweDecryptor(JweDecryptionProvider jweDecryptor)

getInitializedSigProvider

protected JwsSignatureProvider getInitializedSigProvider()

getInitializedEncryptionProvider

protected JweEncryptionProvider getInitializedEncryptionProvider()

setJwsRequired

public void setJwsRequired(boolean jwsRequired)

setJweRequired

public void setJweRequired(boolean jweRequired)

getInitializedDecryptionProvider

protected JweDecryptionProvider getInitializedDecryptionProvider()

getInitializedSigVerifier

protected JwsSignatureVerifier getInitializedSigVerifier()

convertStateToString

protected String convertStateToString(OAuthRedirectionState secData)

setMaxDefaultSessionInterval

public void setMaxDefaultSessionInterval(int maxDefaultSessionInterval)