public class JWTRequestResponseHandler extends Object
| Modifier and Type | Field and Description |
|---|---|
protected String |
cookiePath |
protected String |
jwtCookieParameterName |
protected String |
jwtModeRequestHeaderParameterName |
protected String |
jwtRequestHeaderParameterName |
protected String |
jwtResponseHeaderParameterName |
protected boolean |
secureCookie |
static String |
SPRING_SECURITY_JWT_COOKIE_JWT_PARAMETER |
static String |
SPRING_SECURITY_JWT_COOKIE_XSRF_PARAMETER |
static String |
SPRING_SECURITY_JWT_REQUEST_HEADER_JWT |
static String |
SPRING_SECURITY_JWT_REQUEST_HEADER_JWT_MODE |
static String |
SPRING_SECURITY_JWT_REQUEST_HEADER_JWT_MODE_VALUE_APP |
static String |
SPRING_SECURITY_JWT_REQUEST_HEADER_JWT_MODE_VALUE_WEB |
static String |
SPRING_SECURITY_JWT_REQUEST_HEADER_XSRF |
static String |
SPRING_SECURITY_JWT_RESPONSE_HEADER_JWT |
static String |
SPRING_SECURITY_JWT_RESPONSE_HEADER_XSRF |
protected String |
xsrfCookieParameterName |
protected String |
xsrfRequestHeaderParameterName |
protected String |
xsrfResponseHeaderParameterName |
| Constructor and Description |
|---|
JWTRequestResponseHandler() |
| Modifier and Type | Method and Description |
|---|---|
String |
getCookiePath() |
String |
getJwtCookieParameterName() |
protected String |
getJWTModeFromHeader(javax.servlet.http.HttpServletRequest request) |
String |
getJwtModeRequestHeaderParameterName() |
String |
getJwtRequestHeaderParameterName() |
String |
getJwtResponseHeaderParameterName() |
protected String |
getJWTTokenFromCookie(javax.servlet.http.HttpServletRequest request) |
protected String |
getJWTTokenFromHeader(javax.servlet.http.HttpServletRequest request) |
protected String |
getJWTTokenFromRequest(javax.servlet.http.HttpServletRequest request) |
Parameters |
getParametersFromRequest(javax.servlet.http.HttpServletRequest request) |
TokenContainer |
getTokenFromRequest(javax.servlet.http.HttpServletRequest request) |
String |
getXsrfCookieParameterName() |
String |
getXsrfRequestHeaderParameterName() |
String |
getXsrfResponseHeaderParameterName() |
protected String |
getXSRFTokenFromHeader(javax.servlet.http.HttpServletRequest request) |
protected boolean |
isJWTRequestedInAppMode(javax.servlet.http.HttpServletRequest request) |
boolean |
isSecureCookie() |
protected boolean |
istJWTInAppMode(String jwtMode) |
void |
putTokenToResponse(javax.servlet.http.HttpServletRequest request,
javax.servlet.http.HttpServletResponse response,
TokenContainer tokenContainer) |
void |
setCookiePath(String cookiePath) |
void |
setJwtCookieParameterName(String jwtCookieParameterName) |
void |
setJwtModeRequestHeaderParameterName(String jwtModeRequestHeaderParameterName) |
void |
setJwtRequestHeaderParameterName(String jwtRequestHeaderParameterName) |
void |
setJwtResponseHeaderParameterName(String jwtResponseHeaderParameterName) |
void |
setSecureCookie(boolean secureCookie) |
void |
setXsrfCookieParameterName(String xsrfCookieParameterName) |
void |
setXsrfRequestHeaderParameterName(String xsrfRequestHeaderParameterName) |
void |
setXsrfResponseHeaderParameterName(String xsrfResponseHeaderParameterName) |
public static final String SPRING_SECURITY_JWT_COOKIE_JWT_PARAMETER
public static final String SPRING_SECURITY_JWT_COOKIE_XSRF_PARAMETER
public static final String SPRING_SECURITY_JWT_RESPONSE_HEADER_XSRF
public static final String SPRING_SECURITY_JWT_REQUEST_HEADER_XSRF
public static final String SPRING_SECURITY_JWT_REQUEST_HEADER_JWT
public static final String SPRING_SECURITY_JWT_REQUEST_HEADER_JWT_MODE
public static final String SPRING_SECURITY_JWT_RESPONSE_HEADER_JWT
public static final String SPRING_SECURITY_JWT_REQUEST_HEADER_JWT_MODE_VALUE_WEB
public static final String SPRING_SECURITY_JWT_REQUEST_HEADER_JWT_MODE_VALUE_APP
protected String jwtCookieParameterName
protected String jwtRequestHeaderParameterName
protected String jwtResponseHeaderParameterName
protected String jwtModeRequestHeaderParameterName
protected String xsrfCookieParameterName
protected String xsrfResponseHeaderParameterName
protected String xsrfRequestHeaderParameterName
protected String cookiePath
protected boolean secureCookie
public TokenContainer getTokenFromRequest(javax.servlet.http.HttpServletRequest request)
public Parameters getParametersFromRequest(javax.servlet.http.HttpServletRequest request)
public void putTokenToResponse(javax.servlet.http.HttpServletRequest request,
javax.servlet.http.HttpServletResponse response,
TokenContainer tokenContainer)
public String getCookiePath()
public void setCookiePath(String cookiePath)
public boolean isSecureCookie()
public void setSecureCookie(boolean secureCookie)
public String getJwtCookieParameterName()
public void setJwtCookieParameterName(String jwtCookieParameterName)
public String getJwtRequestHeaderParameterName()
public void setJwtRequestHeaderParameterName(String jwtRequestHeaderParameterName)
public String getJwtResponseHeaderParameterName()
public void setJwtResponseHeaderParameterName(String jwtResponseHeaderParameterName)
public String getJwtModeRequestHeaderParameterName()
public void setJwtModeRequestHeaderParameterName(String jwtModeRequestHeaderParameterName)
public String getXsrfCookieParameterName()
public void setXsrfCookieParameterName(String xsrfCookieParameterName)
public String getXsrfResponseHeaderParameterName()
public void setXsrfResponseHeaderParameterName(String xsrfResponseHeaderParameterName)
public String getXsrfRequestHeaderParameterName()
public void setXsrfRequestHeaderParameterName(String xsrfRequestHeaderParameterName)
protected String getJWTTokenFromRequest(javax.servlet.http.HttpServletRequest request)
protected String getJWTTokenFromCookie(javax.servlet.http.HttpServletRequest request)
protected String getJWTTokenFromHeader(javax.servlet.http.HttpServletRequest request)
protected String getXSRFTokenFromHeader(javax.servlet.http.HttpServletRequest request)
protected String getJWTModeFromHeader(javax.servlet.http.HttpServletRequest request)
protected boolean isJWTRequestedInAppMode(javax.servlet.http.HttpServletRequest request)
protected boolean istJWTInAppMode(String jwtMode)
Copyright © 2019 S&C Software. All rights reserved.