Skip navigation links
A B C D E F G H I J L N O R S T V W X 

A

AbstractToken - Class in com.sap.cloud.security.token
Decodes and parses encoded JSON Web Token (JWT) and provides access to token header parameters and claims.
AbstractToken(DecodedJwt) - Constructor for class com.sap.cloud.security.token.AbstractToken
 
AbstractToken(String) - Constructor for class com.sap.cloud.security.token.AbstractToken
Creates a Token object for simple access to the header parameters and its claims.
AbstractTokenAuthenticator - Class in com.sap.cloud.security.servlet
 
AbstractTokenAuthenticator() - Constructor for class com.sap.cloud.security.servlet.AbstractTokenAuthenticator
 
afterPropertiesSet() - Method in class com.sap.cloud.security.adapter.spring.SAPOfflineTokenServicesCloud
 
authenticated(Token) - Method in class com.sap.cloud.security.servlet.AbstractTokenAuthenticator
 
authenticated(Token) - Method in class com.sap.cloud.security.servlet.XsuaaTokenAuthenticator
 

B

build() - Method in class com.sap.cloud.security.token.validation.validators.JwtValidatorBuilder
Builds the validators with the applied parameters.

C

checkLocalScope(String) - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
checkScope(String) - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
clear() - Static method in class com.sap.cloud.security.adapter.spring.SpringSecurityContext
Clears the context value from the current thread.
clearCache() - Method in class com.sap.cloud.security.token.validation.validators.OidcConfigurationServiceWithCache
 
com.sap.cloud.security.adapter.spring - package com.sap.cloud.security.adapter.spring
 
com.sap.cloud.security.adapter.xs - package com.sap.cloud.security.adapter.xs
 
com.sap.cloud.security.servlet - package com.sap.cloud.security.servlet
 
com.sap.cloud.security.token - package com.sap.cloud.security.token
 
com.sap.cloud.security.token.validation - package com.sap.cloud.security.token.validation
 
com.sap.cloud.security.token.validation.validators - package com.sap.cloud.security.token.validation.validators
 
com.sap.cloud.security.x509 - package com.sap.cloud.security.x509
 
CombiningValidator<T> - Class in com.sap.cloud.security.token.validation
This is a special validator that combines several validators into one.
CombiningValidator(List<Validator<T>>) - Constructor for class com.sap.cloud.security.token.validation.CombiningValidator
 
CombiningValidator(Validator<T>...) - Constructor for class com.sap.cloud.security.token.validation.CombiningValidator
 
configureAnotherServiceInstance(OAuth2ServiceConfiguration) - Method in class com.sap.cloud.security.token.validation.validators.JwtValidatorBuilder
Allows to provide another service configuration, e.g.
convert(Collection<String>) - Method in interface com.sap.cloud.security.token.ScopeConverter
 
convert(Collection<String>) - Method in class com.sap.cloud.security.token.XsuaaScopeConverter
 
create(String) - Method in class com.sap.cloud.security.servlet.HybridTokenFactory
Determines whether the JWT token is issued by XSUAA or IAS identity service, and creates a Token for it.
createInvalid(String) - Static method in class com.sap.cloud.security.token.validation.ValidationResults
Creates an invalid ValidationResult that contains an error description.
createInvalid(String, Object...) - Static method in class com.sap.cloud.security.token.validation.ValidationResults
Works just like ValidationResults.createInvalid(String) but accepts a template string with placeholders "{}" that are substituted with the given arguments.
createPrincipalByName(String) - Method in class com.sap.cloud.security.token.AbstractToken
 
createValid() - Static method in class com.sap.cloud.security.token.validation.ValidationResults
Creates a valid ValidationResult, which is a ValidationResult that contains no errors.

D

disableTenantIdCheck() - Method in class com.sap.cloud.security.token.validation.validators.JwtValidatorBuilder
Disables tenant id check for JwtSignatureValidator.

E

equals(Object) - Method in class com.sap.cloud.security.token.AbstractToken
 
extractFromHeader(String) - Method in class com.sap.cloud.security.servlet.AbstractTokenAuthenticator
Extracts the Token from the authorization header.
extractFromHeader(String) - Method in class com.sap.cloud.security.servlet.IasTokenAuthenticator
 
extractFromHeader(String) - Method in class com.sap.cloud.security.servlet.XsuaaTokenAuthenticator
 

F

fromType(String) - Static method in enum com.sap.cloud.security.token.validation.validators.JwtSignatureAlgorithm
 
fromValue(String) - Static method in enum com.sap.cloud.security.token.validation.validators.JwtSignatureAlgorithm
 

G

getAccessToken() - Static method in class com.sap.cloud.security.adapter.spring.SpringSecurityContext
Returns the token using SecurityContextHolder.
getAdditionalAuthAttribute(String) - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
getAppTid() - Method in class com.sap.cloud.security.token.XsuaaToken
 
getAppToken() - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
getAttribute(String) - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
getClaimAsJsonObject(String) - Method in class com.sap.cloud.security.token.AbstractToken
 
getClaimAsString(String) - Method in class com.sap.cloud.security.token.AbstractToken
 
getClaimAsStringList(String) - Method in class com.sap.cloud.security.token.AbstractToken
 
getClaims() - Method in class com.sap.cloud.security.token.AbstractToken
 
getClientId() - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
getClientId() - Method in class com.sap.cloud.security.token.XsuaaToken
 
getCloneServiceInstanceId() - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
getCnfX509Thumbprint() - Method in class com.sap.cloud.security.token.SapIdToken
 
getDBToken() - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
getEmail() - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
getErrorDescription() - Method in interface com.sap.cloud.security.token.validation.ValidationResult
The validation error that have been found.
getExpiration() - Method in class com.sap.cloud.security.token.AbstractToken
 
getFamilyName() - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
getGivenName() - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
getGrantType() - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
getGrantType() - Method in class com.sap.cloud.security.token.XsuaaToken
 
getHdbToken() - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
getHeaderParameterAsString(String) - Method in class com.sap.cloud.security.token.AbstractToken
 
getHeaders() - Method in class com.sap.cloud.security.token.AbstractToken
 
getIdentityZone() - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
getInstance(OAuth2ServiceConfiguration) - Static method in class com.sap.cloud.security.token.validation.validators.JwtValidatorBuilder
Creates a builder instance that can be configured further.
getInstance() - Static method in class com.sap.cloud.security.token.validation.validators.OidcConfigurationServiceWithCache
Creates a new instance.
getIssuer() - Method in class com.sap.cloud.security.token.SapIdToken
 
getJsonValue(String) - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
getLogonName() - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
Loading the token from the security context like this is not supported! XSUserInfoAdapter() { Authentication auth = SecurityContextHolder.getContext().getAuthentication(); if (auth instanceof OAuth2Authentication) { SAPAuthorizationExtension extension = (SAPAuthorizationExtension) ((OAuth2Authentication) auth).getOAuth2Request().getExtensions().get("sap"); if (extension != null) { this.foreignMode = extension.isForeignMode(); } } }
getNotBefore() - Method in class com.sap.cloud.security.token.AbstractToken
 
getOrigin() - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
getOrRetrieveEndpoints(URI) - Method in class com.sap.cloud.security.token.validation.validators.OidcConfigurationServiceWithCache
Returns the cached key by id and type or requests the keys from the jwks URI of the identity service.
getOtherServiceConfiguration() - Method in class com.sap.cloud.security.servlet.AbstractTokenAuthenticator
Return other configured service configurations or null if not configured.
getOtherServiceConfiguration() - Method in class com.sap.cloud.security.servlet.IasTokenAuthenticator
 
getOtherServiceConfiguration() - Method in class com.sap.cloud.security.servlet.XsuaaTokenAuthenticator
 
getPrincipal() - Method in class com.sap.cloud.security.token.SapIdToken
 
getPrincipal() - Method in class com.sap.cloud.security.token.XsuaaToken
 
getScopes() - Method in class com.sap.cloud.security.token.XsuaaToken
 
getService() - Method in class com.sap.cloud.security.token.SapIdToken
 
getService() - Method in class com.sap.cloud.security.token.XsuaaToken
 
getServiceConfiguration() - Method in class com.sap.cloud.security.servlet.AbstractTokenAuthenticator
Return configured service configuration or Environments.getCurrent() if not configured.
getServiceConfiguration() - Method in class com.sap.cloud.security.servlet.IasTokenAuthenticator
 
getServiceConfiguration() - Method in class com.sap.cloud.security.servlet.XsuaaTokenAuthenticator
 
getSubaccountId() - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
getSubaccountId() - Method in class com.sap.cloud.security.token.XsuaaToken
 
getSubdomain() - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
getSubdomain() - Method in class com.sap.cloud.security.token.XsuaaToken
Returns the value of the subdomain (zdn) from the external attribute ext_attr (ext_attr) claim.
getSubjectDN() - Method in class com.sap.cloud.security.x509.X509Certificate
 
getSubjectDNMap() - Method in class com.sap.cloud.security.x509.X509Certificate
 
getSystemAttribute(String) - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
getThumbprint() - Method in class com.sap.cloud.security.x509.X509Certificate
 
getToken() - Static method in class com.sap.cloud.security.adapter.spring.SpringSecurityContext
Returns the token using SecurityContextHolder.
getToken(String, String) - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
getTokenValue() - Method in class com.sap.cloud.security.token.AbstractToken
 
getTrustedClientIds() - Method in class com.sap.cloud.security.token.validation.validators.JwtAudienceValidator
 
getValidators() - Method in class com.sap.cloud.security.token.validation.CombiningValidator
 
getZoneId() - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
getZoneId() - Method in class com.sap.cloud.security.token.XsuaaToken
 

H

hasAttributes() - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
hasClaim(String) - Method in class com.sap.cloud.security.token.AbstractToken
 
hashCode() - Method in class com.sap.cloud.security.token.AbstractToken
 
hasHeaderParameter(String) - Method in class com.sap.cloud.security.token.AbstractToken
 
hasLocalScope(String) - Method in class com.sap.cloud.security.token.XsuaaToken
Check if a local scope is available in the authentication token.
hasScope(String) - Method in class com.sap.cloud.security.token.XsuaaToken
 
httpClient - Variable in class com.sap.cloud.security.servlet.AbstractTokenAuthenticator
 
HybridTokenFactory - Class in com.sap.cloud.security.servlet
Creates a Token instance.
HybridTokenFactory() - Constructor for class com.sap.cloud.security.servlet.HybridTokenFactory
 

I

IasTokenAuthenticator - Class in com.sap.cloud.security.servlet
 
IasTokenAuthenticator() - Constructor for class com.sap.cloud.security.servlet.IasTokenAuthenticator
 
isErroneous() - Method in interface com.sap.cloud.security.token.validation.ValidationResult
Returns true if there is a validation error, false otherwise.
isExpired() - Method in class com.sap.cloud.security.token.AbstractToken
 
isInForeignMode() - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
Check if a token issued for another OAuth client has been forwarded to a different client, This method does not support checking if the token can be accepted by Audience Validation.
isValid() - Method in interface com.sap.cloud.security.token.validation.ValidationResult
Returns true if there is no validation error, false otherwise.
isXsuaaToken() - Method in class com.sap.cloud.security.token.AbstractToken
 

J

javaSignature() - Method in enum com.sap.cloud.security.token.validation.validators.JwtSignatureAlgorithm
 
JwtAudienceValidator - Class in com.sap.cloud.security.token.validation.validators
Validates if the jwt access token is intended for the OAuth2 client of this application.
JwtSignatureAlgorithm - Enum in com.sap.cloud.security.token.validation.validators
This is represented by "kty" (Key Type) Parameter.
JwtValidatorBuilder - Class in com.sap.cloud.security.token.validation.validators
Class used to build a token validator for an OAuth service configuration OAuth2ServiceConfiguration.
JwtX5tValidator - Class in com.sap.cloud.security.token.validation.validators
Validates if the jwt access token is intended for the OAuth2 client of this application, in certificate based authentication scenario.
JwtX5tValidator(OAuth2ServiceConfiguration) - Constructor for class com.sap.cloud.security.token.validation.validators.JwtX5tValidator
 

L

loadAuthentication(String) - Method in class com.sap.cloud.security.adapter.spring.SAPOfflineTokenServicesCloud
 

N

newCertificate(String) - Static method in class com.sap.cloud.security.x509.X509Certificate
Creates a new instance of X.509 certificate.

O

OidcConfigurationServiceWithCache - Class in com.sap.cloud.security.token.validation.validators
Decorates OidcConfigurationService with a cache, which gets looked up before the identity service is requested via http.
onValidationError(ValidationResult) - Method in interface com.sap.cloud.security.token.validation.ValidationListener
 
onValidationSuccess() - Method in interface com.sap.cloud.security.token.validation.ValidationListener
 

R

readAccessToken(String) - Method in class com.sap.cloud.security.adapter.spring.SAPOfflineTokenServicesCloud
 
registerValidationListener(ValidationListener) - Method in class com.sap.cloud.security.token.validation.CombiningValidator
Components that are interested in the result of the token validation can register a validation listener which is called whenever a token is validated.
removeValidationListener(ValidationListener) - Method in class com.sap.cloud.security.token.validation.CombiningValidator
Use this method to remove a registered listener so that it is not called anymore.
requestToken(XSTokenRequest) - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
requestTokenForClient(String, String, String) - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
requestTokenForUser(String, String, String) - Method in class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 

S

SapIdToken - Class in com.sap.cloud.security.token
You can get further token claims from here: TokenClaims.
SapIdToken(DecodedJwt) - Constructor for class com.sap.cloud.security.token.SapIdToken
 
SapIdToken(String) - Constructor for class com.sap.cloud.security.token.SapIdToken
 
SAPOfflineTokenServicesCloud - Class in com.sap.cloud.security.adapter.spring
This constructor requires a dependency to spring-security-oauth2, which is deprecated.
SAPOfflineTokenServicesCloud() - Constructor for class com.sap.cloud.security.adapter.spring.SAPOfflineTokenServicesCloud
Constructs an instance which is preconfigured for XSUAA service configuration from SAP CP Environment.
SAPOfflineTokenServicesCloud(OAuth2ServiceConfiguration) - Constructor for class com.sap.cloud.security.adapter.spring.SAPOfflineTokenServicesCloud
Deprecated.
In favor of {SAPOfflineTokenServicesCloud.SAPOfflineTokenServicesCloud(OAuth2ServiceConfiguration, RestOperations)} gets removed with the version 3.0.0, does not support certificate based authentication
SAPOfflineTokenServicesCloud(OAuth2ServiceConfiguration, RestOperations) - Constructor for class com.sap.cloud.security.adapter.spring.SAPOfflineTokenServicesCloud
Constructs an instance with custom configuration and rest template.
ScopeConverter - Interface in com.sap.cloud.security.token
 
serviceConfiguration - Variable in class com.sap.cloud.security.servlet.AbstractTokenAuthenticator
 
setLocalScopeAsAuthorities(boolean) - Method in class com.sap.cloud.security.adapter.spring.SAPOfflineTokenServicesCloud
This method allows to overwrite the default behavior of the authorities converter implementation.
SpringSecurityContext - Class in com.sap.cloud.security.adapter.spring
This is an alternative way of accessing jwt tokens of type Token or AccessToken in context of an application using spring-security-oauth2.

T

tokenBody - Variable in class com.sap.cloud.security.token.AbstractToken
 
tokenHeader - Variable in class com.sap.cloud.security.token.AbstractToken
 
toString() - Method in class com.sap.cloud.security.token.AbstractToken
 
toString() - Method in class com.sap.cloud.security.token.validation.CombiningValidator
 
type() - Method in enum com.sap.cloud.security.token.validation.validators.JwtSignatureAlgorithm
 

V

validate(T) - Method in class com.sap.cloud.security.token.validation.CombiningValidator
 
validate(T) - Method in interface com.sap.cloud.security.token.validation.Validator
Validates the given object.
validate(Token) - Method in class com.sap.cloud.security.token.validation.validators.JwtAudienceValidator
 
validate(Token) - Method in class com.sap.cloud.security.token.validation.validators.JwtX5tValidator
Validates the cnf thumbprint of X509 certificate against trusted certificate's thumbprint.
validateRequest(ServletRequest, ServletResponse) - Method in class com.sap.cloud.security.servlet.AbstractTokenAuthenticator
 
validateRequest(ServletRequest, ServletResponse) - Method in class com.sap.cloud.security.servlet.IasTokenAuthenticator
 
validateRequest(ServletRequest, ServletResponse) - Method in class com.sap.cloud.security.servlet.XsuaaTokenAuthenticator
 
ValidationListener - Interface in com.sap.cloud.security.token.validation
Implement this interface to register custom validation listener to the CombiningValidator.
ValidationResult - Interface in com.sap.cloud.security.token.validation
Captures the result of a validation.
ValidationResults - Class in com.sap.cloud.security.token.validation
This is a factory class to easily create ValidationResult objects.
Validator<T> - Interface in com.sap.cloud.security.token.validation
Generic validator interface over type T.
value() - Method in enum com.sap.cloud.security.token.validation.validators.JwtSignatureAlgorithm
 
valueOf(String) - Static method in enum com.sap.cloud.security.token.validation.validators.JwtSignatureAlgorithm
Returns the enum constant of this type with the specified name.
values() - Static method in enum com.sap.cloud.security.token.validation.validators.JwtSignatureAlgorithm
Returns an array containing the constants of this enum type, in the order they are declared.

W

with(Validator<Token>) - Method in class com.sap.cloud.security.token.validation.validators.JwtValidatorBuilder
Adds a custom validator to the validation chain.
withAnotherServiceConfiguration(OAuth2ServiceConfiguration) - Method in class com.sap.cloud.security.adapter.spring.SAPOfflineTokenServicesCloud
Configure another XSUAA instance, e.g.
withAudienceValidator(Validator<Token>) - Method in class com.sap.cloud.security.token.validation.validators.JwtValidatorBuilder
Sets / overwrites the default audience validator.
withCacheConfiguration(CacheConfiguration) - Method in class com.sap.cloud.security.servlet.AbstractTokenAuthenticator
Use to configure the token key cache.
withCacheConfiguration(CacheConfiguration) - Method in class com.sap.cloud.security.token.validation.validators.JwtValidatorBuilder
Use to configure the token key cache.
withCacheSize(int) - Method in class com.sap.cloud.security.token.validation.validators.OidcConfigurationServiceWithCache
Caches the Json web keys.
withCacheTime(int) - Method in class com.sap.cloud.security.token.validation.validators.OidcConfigurationServiceWithCache
Caches the Json web keys.
withHttpClient(CloseableHttpClient) - Method in class com.sap.cloud.security.servlet.AbstractTokenAuthenticator
Use to configure the HttpClient that is used to retrieve token keys or to perform a token-exchange.
withHttpClient(CloseableHttpClient) - Method in class com.sap.cloud.security.servlet.XsuaaTokenAuthenticator
 
withHttpClient(CloseableHttpClient) - Method in class com.sap.cloud.security.token.validation.validators.JwtValidatorBuilder
In case you want to configure the OidcConfigurationService and the OAuth2TokenKeyService with your own Rest client.
withOAuth2TokenKeyService(OAuth2TokenKeyService) - Method in class com.sap.cloud.security.token.validation.validators.JwtValidatorBuilder
Deprecated.
for internal use only
withOidcConfigurationService(OidcConfigurationService) - Method in class com.sap.cloud.security.token.validation.validators.JwtValidatorBuilder
Deprecated.
for internal use only
withOidcConfigurationService(OidcConfigurationService) - Method in class com.sap.cloud.security.token.validation.validators.OidcConfigurationServiceWithCache
Overwrites the service to be used to request the oidc configuration.
withScopeConverter(ScopeConverter) - Method in class com.sap.cloud.security.token.XsuaaToken
Configures a scope converter, e.g.
withServiceConfiguration(OAuth2ServiceConfiguration) - Method in class com.sap.cloud.security.servlet.AbstractTokenAuthenticator
Use to override the service configuration used.
withServiceConfiguration(OAuth2ServiceConfiguration) - Method in class com.sap.cloud.security.servlet.XsuaaTokenAuthenticator
 
withValidationListener(ValidationListener) - Method in class com.sap.cloud.security.servlet.AbstractTokenAuthenticator
Adds the validation listener to the jwt validator that is being used by the authenticator to validate the tokens.
withValidatorListener(ValidationListener) - Method in class com.sap.cloud.security.token.validation.validators.JwtValidatorBuilder
Adds the validation listener to the jwt validator that is being built.

X

X509Certificate - Class in com.sap.cloud.security.x509
The X.509 certificate
XsuaaScopeConverter - Class in com.sap.cloud.security.token
This utility class translates XSUAA scopes that are specified in global form and prefixed with the "appId.", to local ones.
XsuaaScopeConverter(String) - Constructor for class com.sap.cloud.security.token.XsuaaScopeConverter
Creates an instance of the converter.
XsuaaToken - Class in com.sap.cloud.security.token
Decodes and parses encoded access token (JWT) for the Xsuaa identity service and provides access to token header parameters and claims.
XsuaaToken(DecodedJwt) - Constructor for class com.sap.cloud.security.token.XsuaaToken
Creates an instance.
XsuaaToken(String) - Constructor for class com.sap.cloud.security.token.XsuaaToken
Creates an instance.
XsuaaTokenAuthenticator - Class in com.sap.cloud.security.servlet
 
XsuaaTokenAuthenticator() - Constructor for class com.sap.cloud.security.servlet.XsuaaTokenAuthenticator
 
XSUserInfoAdapter - Class in com.sap.cloud.security.adapter.xs
This class implements the XSUserInfo interface by wrapping and delegating calls to an AccessToken.
XSUserInfoAdapter(Object) - Constructor for class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
XSUserInfoAdapter(AccessToken) - Constructor for class com.sap.cloud.security.adapter.xs.XSUserInfoAdapter
 
A B C D E F G H I J L N O R S T V W X 
Skip navigation links

Copyright © 2024. All rights reserved.