public class DefaultJWTRequestResponseHandler extends Object implements JWTRequestResponseHandler
| Modifier and Type | Field and Description |
|---|---|
protected String |
cookiePath |
protected String |
jwtCookieParameter |
protected String |
jwtModeRequestHeaderParameter |
protected String |
jwtRequestHeaderParameter |
protected String |
jwtResponseHeaderParameter |
protected boolean |
secureCookie |
static String |
SPRING_SECURITY_JWT_COOKIE_JWT_PARAMETER |
static String |
SPRING_SECURITY_JWT_COOKIE_XSRF_PARAMETER |
static String |
SPRING_SECURITY_JWT_REQUEST_HEADER_JWT |
static String |
SPRING_SECURITY_JWT_REQUEST_HEADER_JWT_MODE |
static String |
SPRING_SECURITY_JWT_REQUEST_HEADER_JWT_MODE_VALUE_APP |
static String |
SPRING_SECURITY_JWT_REQUEST_HEADER_JWT_MODE_VALUE_WEB |
static String |
SPRING_SECURITY_JWT_REQUEST_HEADER_XSRF |
static String |
SPRING_SECURITY_JWT_RESPONSE_HEADER_JWT |
static String |
SPRING_SECURITY_JWT_RESPONSE_HEADER_XSRF |
protected String |
xsrfCookieParameter |
protected String |
xsrfRequestHeaderParameter |
protected String |
xsrfResponseHeaderParameter |
| Constructor and Description |
|---|
DefaultJWTRequestResponseHandler() |
| Modifier and Type | Method and Description |
|---|---|
protected String |
getJWTModeFromHeader(javax.servlet.http.HttpServletRequest request) |
protected String |
getJWTTokenFromCookie(javax.servlet.http.HttpServletRequest request) |
protected String |
getJWTTokenFromHeader(javax.servlet.http.HttpServletRequest request) |
protected String |
getJWTTokenFromRequest(javax.servlet.http.HttpServletRequest request) |
Parameters |
getParametersFromRequest(javax.servlet.http.HttpServletRequest request)
Extract
Parameters from HTTP request. |
TokenContainer |
getTokenFromRequest(javax.servlet.http.HttpServletRequest request)
Extract tokens from HTTP request.
|
protected String |
getXSRFTokenFromHeader(javax.servlet.http.HttpServletRequest request) |
protected boolean |
isJWTRequestedInAppMode(javax.servlet.http.HttpServletRequest request) |
protected boolean |
istJWTInAppMode(String jwtMode) |
void |
putTokenToResponse(javax.servlet.http.HttpServletRequest request,
javax.servlet.http.HttpServletResponse response,
TokenContainer tokenContainer)
Attach tokens to HTTP response.
|
void |
setCookiePath(String cookiePath) |
void |
setJwtCookieParameter(String jwtCookieParameter) |
void |
setJwtModeRequestHeaderParameter(String jwtModeRequestHeaderParameter) |
void |
setJwtRequestHeaderParameter(String jwtRequestHeaderParameter) |
void |
setJwtResponseHeaderParameter(String jwtResponseHeaderParameter) |
void |
setSecureCookie(boolean secureCookie) |
void |
setXsrfCookieParameter(String xsrfCookieParameter) |
void |
setXsrfRequestHeaderParameter(String xsrfRequestHeaderParameter) |
void |
setXsrfResponseHeaderParameter(String xsrfResponseHeaderParameter) |
public static final String SPRING_SECURITY_JWT_COOKIE_JWT_PARAMETER
public static final String SPRING_SECURITY_JWT_COOKIE_XSRF_PARAMETER
public static final String SPRING_SECURITY_JWT_RESPONSE_HEADER_XSRF
public static final String SPRING_SECURITY_JWT_REQUEST_HEADER_XSRF
public static final String SPRING_SECURITY_JWT_REQUEST_HEADER_JWT
public static final String SPRING_SECURITY_JWT_REQUEST_HEADER_JWT_MODE
public static final String SPRING_SECURITY_JWT_RESPONSE_HEADER_JWT
public static final String SPRING_SECURITY_JWT_REQUEST_HEADER_JWT_MODE_VALUE_WEB
public static final String SPRING_SECURITY_JWT_REQUEST_HEADER_JWT_MODE_VALUE_APP
protected String jwtCookieParameter
protected String jwtRequestHeaderParameter
protected String jwtResponseHeaderParameter
protected String jwtModeRequestHeaderParameter
protected String xsrfCookieParameter
protected String xsrfResponseHeaderParameter
protected String xsrfRequestHeaderParameter
protected String cookiePath
protected boolean secureCookie
public TokenContainer getTokenFromRequest(javax.servlet.http.HttpServletRequest request)
JWTRequestResponseHandlergetTokenFromRequest in interface JWTRequestResponseHandlerrequest - HTTP request.TokenContainer object which contains all relevant
tokens.public Parameters getParametersFromRequest(javax.servlet.http.HttpServletRequest request)
JWTRequestResponseHandlerParameters from HTTP request. The content of the returned
Parameters object may vary depending on the underlying
implementation.getParametersFromRequest in interface JWTRequestResponseHandlerrequest - HTTP request.Parameters object extracted from HTTP request. This value
may be null.public void putTokenToResponse(javax.servlet.http.HttpServletRequest request,
javax.servlet.http.HttpServletResponse response,
TokenContainer tokenContainer)
JWTRequestResponseHandlerputTokenToResponse in interface JWTRequestResponseHandlerrequest - HTTP request.response - HTTP response.tokenContainer - A TokenContainer object which contains all relevant
tokens.public void setJwtCookieParameter(String jwtCookieParameter)
public void setJwtRequestHeaderParameter(String jwtRequestHeaderParameter)
public void setJwtModeRequestHeaderParameter(String jwtModeRequestHeaderParameter)
public void setJwtResponseHeaderParameter(String jwtResponseHeaderParameter)
public void setXsrfResponseHeaderParameter(String xsrfResponseHeaderParameter)
public void setXsrfCookieParameter(String xsrfCookieParameter)
public void setXsrfRequestHeaderParameter(String xsrfRequestHeaderParameter)
public void setCookiePath(String cookiePath)
public void setSecureCookie(boolean secureCookie)
protected String getJWTTokenFromRequest(javax.servlet.http.HttpServletRequest request)
protected String getJWTTokenFromCookie(javax.servlet.http.HttpServletRequest request)
protected String getJWTTokenFromHeader(javax.servlet.http.HttpServletRequest request)
protected String getXSRFTokenFromHeader(javax.servlet.http.HttpServletRequest request)
protected String getJWTModeFromHeader(javax.servlet.http.HttpServletRequest request)
protected boolean isJWTRequestedInAppMode(javax.servlet.http.HttpServletRequest request)
protected boolean istJWTInAppMode(String jwtMode)
Copyright © 2017 S&C Software. All rights reserved.