public class OA2AuthorizedServletUtil extends Object
Created by Jeff Gaynor
on 5/14/18 at 12:14 PM
Modifier and Type | Field and Description |
---|---|
protected MyProxyDelegationServlet |
servlet |
Constructor and Description |
---|
OA2AuthorizedServletUtil(MyProxyDelegationServlet servlet) |
Modifier and Type | Method and Description |
---|---|
protected OA2ServiceTransaction |
CheckIdTokenHint(javax.servlet.http.HttpServletRequest httpServletRequest,
javax.servlet.http.HttpServletResponse httpServletResponse,
String callback)
In this case, a previous request to the token endpoint returned an ID token.
|
protected void |
checkPrompts(Map<String,String> map)
Basically, if the prompt parameter is there, we only support the login option.
|
protected OA2ServiceTransaction |
createNewTransaction(AuthorizationGrant grant) |
OA2ServiceTransaction |
doDelegation(javax.servlet.http.HttpServletRequest req,
javax.servlet.http.HttpServletResponse resp)
Main entry point for this class.
|
protected OA2ServiceTransaction |
doIt(javax.servlet.http.HttpServletRequest httpServletRequest,
javax.servlet.http.HttpServletResponse httpServletResponse)
Note the at the entry point for this is the
doIt(HttpServletRequest, HttpServletResponse) method
if authorization is done elsewhere (so the assumption is that authorization has already happened),
vs. |
protected Collection<String> |
intersection(Collection<String> x,
Collection<String> y)
Utility call to return the intersection of two lists of strings.
|
void |
postprocess(TransactionState state) |
void |
preprocess(TransactionState state) |
protected Collection<String> |
resolveScopes(OA2ServiceTransaction st,
Map<String,String> params,
String state,
String givenRedirect)
This method will take the scopes that the client sends in its request and inspect the scopes that it is allowed
to request.
|
protected ServiceTransaction |
verifyAndGet(IssuerResponse iResponse) |
protected MyProxyDelegationServlet servlet
public OA2AuthorizedServletUtil(MyProxyDelegationServlet servlet)
public OA2ServiceTransaction doDelegation(javax.servlet.http.HttpServletRequest req, javax.servlet.http.HttpServletResponse resp) throws Throwable
OA2AuthorizationServer.createRedirect(HttpServletRequest, HttpServletResponse, ServiceTransaction)
which is the last possible point to do it.req
- resp
- Throwable
protected OA2ServiceTransaction doIt(javax.servlet.http.HttpServletRequest httpServletRequest, javax.servlet.http.HttpServletResponse httpServletResponse) throws Throwable
doIt(HttpServletRequest, HttpServletResponse)
method
if authorization is done elsewhere (so the assumption is that authorization has already happened),
vs. the doDelegation call that is invoked by the OA4MP Authorize servlet. The difference is
that the two paths will invoke the OA2ClaimsUtil
at different points.httpServletRequest
- httpServletResponse
- Throwable
protected OA2ServiceTransaction CheckIdTokenHint(javax.servlet.http.HttpServletRequest httpServletRequest, javax.servlet.http.HttpServletResponse httpServletResponse, String callback)
httpServletRequest
- httpServletResponse
- callback
- protected ServiceTransaction verifyAndGet(IssuerResponse iResponse) throws UnsupportedEncodingException
UnsupportedEncodingException
protected OA2ServiceTransaction createNewTransaction(AuthorizationGrant grant)
protected Collection<String> resolveScopes(OA2ServiceTransaction st, Map<String,String> params, String state, String givenRedirect)
st
- params
- state
- givenRedirect
- protected Collection<String> intersection(Collection<String> x, Collection<String> y)
x
- y
- protected void checkPrompts(Map<String,String> map)
map
- public void preprocess(TransactionState state) throws Throwable
Throwable
public void postprocess(TransactionState state) throws Throwable
Throwable
Copyright © 2019. All Rights Reserved.