org.apache.cxf.rs.security.oauth2.provider

Class JoseSessionTokenProvider

java.lang.Object

org.apache.cxf.rs.security.oauth2.provider.JoseSessionTokenProvider

All Implemented Interfaces:

SessionAuthenticityTokenProvider

public class JoseSessionTokenProvider
extends Object
implements SessionAuthenticityTokenProvider

Constructor Summary

Constructors

Constructor and Description
JoseSessionTokenProvider()

Method Summary

Modifier and Type	Method and Description
protected String	convertStateToString(OAuthRedirectionState secData)
String	createSessionToken(org.apache.cxf.jaxrs.ext.MessageContext mc, javax.ws.rs.core.MultivaluedMap<String,String> params, UserSubject subject, OAuthRedirectionState secData) Create a new session token and stores it
protected org.apache.cxf.rs.security.jose.jwe.JweDecryptionProvider	getInitializedDecryptionProvider()
protected org.apache.cxf.rs.security.jose.jwe.JweEncryptionProvider	getInitializedEncryptionProvider()
protected org.apache.cxf.rs.security.jose.jws.JwsSignatureProvider	getInitializedSigProvider()
protected org.apache.cxf.rs.security.jose.jws.JwsSignatureVerifier	getInitializedSigVerifier()
OAuthRedirectionState	getSessionState(org.apache.cxf.jaxrs.ext.MessageContext messageContext, String sessionToken, UserSubject subject) Expand the session token
String	getSessionToken(org.apache.cxf.jaxrs.ext.MessageContext mc, javax.ws.rs.core.MultivaluedMap<String,String> params, UserSubject subject) Retrieve the stored session token
String	removeSessionToken(org.apache.cxf.jaxrs.ext.MessageContext mc, javax.ws.rs.core.MultivaluedMap<String,String> params, UserSubject subject) Remove the stored session token
void	setJweDecryptor(org.apache.cxf.rs.security.jose.jwe.JweDecryptionProvider jweDecryptor)
void	setJweEncryptor(org.apache.cxf.rs.security.jose.jwe.JweEncryptionProvider jweEncryptor)
void	setJweRequired(boolean jweRequired)
void	setJwsProvider(org.apache.cxf.rs.security.jose.jws.JwsSignatureProvider jwsProvider)
void	setJwsRequired(boolean jwsRequired)
void	setJwsVerifier(org.apache.cxf.rs.security.jose.jws.JwsSignatureVerifier jwsVerifier)
void	setMaxDefaultSessionInterval(int maxDefaultSessionInterval)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

JoseSessionTokenProvider

public JoseSessionTokenProvider()

Method Detail

createSessionToken

public String createSessionToken(org.apache.cxf.jaxrs.ext.MessageContext mc,
                                 javax.ws.rs.core.MultivaluedMap<String,String> params,
                                 UserSubject subject,
                                 OAuthRedirectionState secData)

Description copied from interface: SessionAuthenticityTokenProvider

Create a new session token and stores it

Specified by:

createSessionToken in interface SessionAuthenticityTokenProvider

Parameters:

mc - the MessageContext of this request

params - redirection-based grant request parameters

subject - authenticated end user

Returns:

the created session token

getSessionToken

public String getSessionToken(org.apache.cxf.jaxrs.ext.MessageContext mc,
                              javax.ws.rs.core.MultivaluedMap<String,String> params,
                              UserSubject subject)

Description copied from interface: SessionAuthenticityTokenProvider

Retrieve the stored session token

Specified by:

getSessionToken in interface SessionAuthenticityTokenProvider

Parameters:

mc - the MessageContext of this request

params - grant authorization parameters

subject - authenticated end user

Returns:

the stored token

removeSessionToken

public String removeSessionToken(org.apache.cxf.jaxrs.ext.MessageContext mc,
                                 javax.ws.rs.core.MultivaluedMap<String,String> params,
                                 UserSubject subject)

Description copied from interface: SessionAuthenticityTokenProvider

Remove the stored session token

Specified by:

removeSessionToken in interface SessionAuthenticityTokenProvider

Parameters:

mc - the MessageContext of this request

params - grant authorization parameters

subject - authenticated end user

getSessionState

public OAuthRedirectionState getSessionState(org.apache.cxf.jaxrs.ext.MessageContext messageContext,
                                             String sessionToken,
                                             UserSubject subject)

Description copied from interface: SessionAuthenticityTokenProvider

Expand the session token

Specified by:

getSessionState in interface SessionAuthenticityTokenProvider

Parameters:

messageContext - the MessageContext of this request

sessionToken - the token

subject - authenticated end user

Returns:

the expanded token or null

setJwsProvider

public void setJwsProvider(org.apache.cxf.rs.security.jose.jws.JwsSignatureProvider jwsProvider)

setJwsVerifier

public void setJwsVerifier(org.apache.cxf.rs.security.jose.jws.JwsSignatureVerifier jwsVerifier)

setJweEncryptor

public void setJweEncryptor(org.apache.cxf.rs.security.jose.jwe.JweEncryptionProvider jweEncryptor)

setJweDecryptor

public void setJweDecryptor(org.apache.cxf.rs.security.jose.jwe.JweDecryptionProvider jweDecryptor)

getInitializedSigProvider

protected org.apache.cxf.rs.security.jose.jws.JwsSignatureProvider getInitializedSigProvider()

getInitializedEncryptionProvider

protected org.apache.cxf.rs.security.jose.jwe.JweEncryptionProvider getInitializedEncryptionProvider()

setJwsRequired

public void setJwsRequired(boolean jwsRequired)

setJweRequired

public void setJweRequired(boolean jweRequired)

getInitializedDecryptionProvider

protected org.apache.cxf.rs.security.jose.jwe.JweDecryptionProvider getInitializedDecryptionProvider()

getInitializedSigVerifier

protected org.apache.cxf.rs.security.jose.jws.JwsSignatureVerifier getInitializedSigVerifier()

convertStateToString

protected String convertStateToString(OAuthRedirectionState secData)

setMaxDefaultSessionInterval

public void setMaxDefaultSessionInterval(int maxDefaultSessionInterval)