Module org.glassfish.soteria

Package org.glassfish.soteria.mechanisms

Class OpenIdAuthenticationMechanism

java.lang.Object

org.glassfish.soteria.mechanisms.OpenIdAuthenticationMechanism

All Implemented Interfaces:

jakarta.security.enterprise.authentication.mechanism.http.HttpAuthenticationMechanism

@ApplicationScoped
@Typed(OpenIdAuthenticationMechanism.class)
public class OpenIdAuthenticationMechanism
extends Object
implements jakarta.security.enterprise.authentication.mechanism.http.HttpAuthenticationMechanism

The AuthenticationMechanism used to authenticate users using the OpenId Connect protocol
Specification Implemented : http://openid.net/specs/openid-connect-core-1_0.html

Author:

Gaurav Gupta, Rudy De Busscher, Arjan Tijms

Field Summary

Fields

Modifier and Type	Field	Description
static String	ORIGINAL_REQUEST_DATA_JSON

Constructor Summary

Constructors

Constructor	Description
OpenIdAuthenticationMechanism()

Method Summary

Modifier and Type	Method	Description
void	cleanSubject(jakarta.servlet.http.HttpServletRequest request, jakarta.servlet.http.HttpServletResponse response, jakarta.security.enterprise.authentication.mechanism.http.HttpMessageContext httpMessageContext)
jakarta.security.enterprise.AuthenticationStatus	validateRequest(jakarta.servlet.http.HttpServletRequest request, jakarta.servlet.http.HttpServletResponse response, jakarta.security.enterprise.authentication.mechanism.http.HttpMessageContext httpContext)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface jakarta.security.enterprise.authentication.mechanism.http.HttpAuthenticationMechanism

secureResponse

Field Detail

ORIGINAL_REQUEST_DATA_JSON

public static final String ORIGINAL_REQUEST_DATA_JSON

See Also:

Constant Field Values

Constructor Detail

OpenIdAuthenticationMechanism

public OpenIdAuthenticationMechanism()

Method Detail

validateRequest

public jakarta.security.enterprise.AuthenticationStatus validateRequest(jakarta.servlet.http.HttpServletRequest request,
                                                                        jakarta.servlet.http.HttpServletResponse response,
                                                                        jakarta.security.enterprise.authentication.mechanism.http.HttpMessageContext httpContext)
                                                                 throws jakarta.security.enterprise.AuthenticationException

Specified by:

validateRequest in interface jakarta.security.enterprise.authentication.mechanism.http.HttpAuthenticationMechanism

Throws:

jakarta.security.enterprise.AuthenticationException

cleanSubject

public void cleanSubject(jakarta.servlet.http.HttpServletRequest request,
                         jakarta.servlet.http.HttpServletResponse response,
                         jakarta.security.enterprise.authentication.mechanism.http.HttpMessageContext httpMessageContext)

Specified by:

cleanSubject in interface jakarta.security.enterprise.authentication.mechanism.http.HttpAuthenticationMechanism