org.forgerock.oauth2.core

Class AuthorizeRequestValidatorImpl

java.lang.Object

org.forgerock.oauth2.core.AuthorizeRequestValidatorImpl

All Implemented Interfaces:

AuthorizeRequestValidator

@Singleton
public class AuthorizeRequestValidatorImpl
extends Object
implements AuthorizeRequestValidator

Implementation of the request validator for the OAuth2 authorize endpoint.

Since:

12.0.0

Constructor Summary

Constructors

Constructor and Description
AuthorizeRequestValidatorImpl(ClientRegistrationStore clientRegistrationStore, RedirectUriValidator redirectUriValidator, OAuth2ProviderSettingsFactory providerSettingsFactory, ResponseTypeValidator responseTypeValidator) Constructs a new AuthorizeRequestValidatorImpl instance.

Method Summary

Modifier and Type	Method and Description
void	validateRequest(OAuth2Request request) Validates that the OAuth2 request contains the valid parameters for the OAuth2 authorize endpoint.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

AuthorizeRequestValidatorImpl

@Inject
public AuthorizeRequestValidatorImpl(ClientRegistrationStore clientRegistrationStore,
                                             RedirectUriValidator redirectUriValidator,
                                             OAuth2ProviderSettingsFactory providerSettingsFactory,
                                             ResponseTypeValidator responseTypeValidator)

Constructs a new AuthorizeRequestValidatorImpl instance.

Parameters:

clientRegistrationStore - An instance of the ClientRegistrationStore.

redirectUriValidator - An instance of the RedirectUriValidator.

providerSettingsFactory - An instance of the OAuth2ProviderSettingsFactory.

responseTypeValidator - An instance of the ResponseTypeValidator.

Method Detail

validateRequest

public void validateRequest(OAuth2Request request)
                     throws InvalidClientException,
                            InvalidRequestException,
                            RedirectUriMismatchException,
                            UnsupportedResponseTypeException,
                            ServerException,
                            NotFoundException

Validates that the OAuth2 request contains the valid parameters for the OAuth2 authorize endpoint.

Specified by:

validateRequest in interface AuthorizeRequestValidator

Parameters:

request - The OAuth2Request for the client requesting authorization. Must not be null.

Throws:

InvalidClientException - If either the request does not contain the client's id or the client fails to be authenticated.

InvalidRequestException - If the request is missing any required parameters or is otherwise malformed.

RedirectUriMismatchException - If the redirect uri on the request does not match the redirect uri registered for the client.

UnsupportedResponseTypeException - If the requested response type is not supported by either the client or the OAuth2 provider.

ServerException - If any internal server error occurs.

NotFoundException - If the realm does not have an OAuth 2.0 provider service.