| Package | Description |
|---|---|
| org.forgerock.oauth2.core |
Defines the core classes to implement OAuth2 for OpenAM.
|
| org.forgerock.openam.oauth2 | |
| org.forgerock.openam.oauth2.saml2.core | |
| org.forgerock.openam.oauth2.validation | |
| org.forgerock.openidconnect |
| Modifier and Type | Method and Description |
|---|---|
ClientRegistration |
ClientAuthenticator.authenticate(OAuth2Request request,
String endpoint)
Authenticates the client making the OAuth2 request by extracting the client's id and secret from the request
and authenticating against the OAuth2 providers client registrations.
|
AuthorizationToken |
AuthorizationService.authorize(OAuth2Request request)
Handles an initial authorization request from a OAuth2 client, validates the request is valid and contains
the required parameters, checks the resource owner has authenticated and given their consent for the client to
be authorized before issuing an AuthorizationToken.
|
AuthorizationToken |
AuthorizationService.authorize(OAuth2Request request,
boolean consentGiven,
boolean saveConsent)
Handles an authorization request from a OAuth2 client, validates the request is valid and contains the required
parameters, checks the resource owner has authenticated and given their consent for the client to be authorized
before issuing an AuthorizationToken.
|
void |
TokenStore.deleteRefreshToken(OAuth2Request request,
String refreshTokenId)
Deletes a Refresh Token from the OAuth2 Provider's store.
|
org.forgerock.json.JsonValue |
TokenInfoService.getTokenInfo(OAuth2Request request)
Returns a Json representation of the token's information that is on the OAuth2 request.
|
AccessToken |
GrantTypeHandler.handle(OAuth2Request request)
Handles an access token request for a specific OAuth2 grant type.
|
AccessToken |
ClientCredentialsGrantTypeHandler.handle(OAuth2Request request,
ClientRegistration clientRegistration,
OAuth2ProviderSettings providerSettings) |
AccessToken |
PasswordCredentialsGrantTypeHandler.handle(OAuth2Request request,
ClientRegistration clientRegistration,
OAuth2ProviderSettings providerSettings) |
AccessToken |
AuthorizationCodeGrantTypeHandler.handle(OAuth2Request request,
ClientRegistration clientRegistration,
OAuth2ProviderSettings providerSettings) |
protected AccessToken |
DeviceCodeGrantTypeHandler.handle(OAuth2Request request,
ClientRegistration client,
OAuth2ProviderSettings providerSettings) |
protected abstract AccessToken |
GrantTypeHandler.handle(OAuth2Request request,
ClientRegistration clientRegistration,
OAuth2ProviderSettings providerSettings) |
AccessToken |
JwtBearerGrantTypeHandler.handle(OAuth2Request request,
ClientRegistration clientRegistration,
OAuth2ProviderSettings providerSettings) |
org.forgerock.json.JsonValue |
TokenIntrospectionService.introspect(OAuth2Request request)
Allows introspection of a (refresh or access) token according to the
OAuth 2.0 Token Introspection
standard.
|
AccessToken |
AccessTokenService.refreshToken(OAuth2Request request)
Handles a request to refresh an already issued access token for a OAuth2 client, validates that the request is
valid and contains the required parameters, checks that the refresh token on the request is valid and has not
expired, or been previously used to refresh an access token.
|
AccessToken |
AccessTokenService.requestAccessToken(OAuth2Request request)
Handles a request for access token(s) by a OAuth2 client, validates that the request is valid and contains the
required parameters, checks that the authorization code on the request is valid and has not expired, or been
previously used.
|
String |
RedirectUriResolver.resolve(OAuth2Request request)
Resolves the redirect URI
|
void |
ResponseTypeValidator.validate(ClientRegistration clientRegistration,
Set<String> requestedResponseTypes,
OAuth2ProviderSettings providerSettings,
OAuth2Request request)
Validates that the requested response types are valid and supported by both the OAuth2 client and provider.
|
void |
RedirectUriValidator.validate(ClientRegistration clientRegistration,
String redirectUri)
Validates that the requested redirect uri matches against one of the pre-registered redirect uris on the
client's registration.
|
void |
DuplicateRequestParameterValidator.validateRequest(OAuth2Request request)
Validates that the OAuth2 request contains the valid parameters for the OAuth2 authorize endpoint.
|
void |
AuthorizeRequestValidator.validateRequest(OAuth2Request request)
Validates that the OAuth2 request contains the valid parameters for the OAuth2 authorize endpoint.
|
void |
AuthorizeRequestValidatorImpl.validateRequest(OAuth2Request request)
Validates that the OAuth2 request contains the valid parameters for the OAuth2 authorize endpoint.
|
void |
AuthorizationCodeRequestValidator.validateRequest(OAuth2Request request,
ClientRegistration clientRegistration)
Validates that the OAuth2 request contains the valid parameters for the OAuth2 authorization code grant.
|
void |
ClientCredentialsRequestValidator.validateRequest(OAuth2Request request,
ClientRegistration clientRegistration)
Validates that the OAuth2 request contains the valid parameters for the OAuth2 client credentials grant.
|
void |
AuthorizationCodeRequestValidatorImpl.validateRequest(OAuth2Request request,
ClientRegistration clientRegistration)
Validates that the OAuth2 request contains the valid parameters for the OAuth2 authorization code grant.
|
void |
PasswordCredentialsRequestValidator.validateRequest(OAuth2Request request,
ClientRegistration clientRegistration)
Validates that the OAuth2 request contains the valid parameters for the OAuth2 password credentials grant.
|
String |
AgentOAuth2ProviderSettings.validateRequestedClaims(String requestedClaims) |
String |
OAuth2ProviderSettings.validateRequestedClaims(String requestedClaims)
Validates that the requested claims are appropriate to be requested by the given client.
|
String |
RealmOAuth2ProviderSettings.validateRequestedClaims(String requestedClaims) |
| Modifier and Type | Method and Description |
|---|---|
void |
OpenAMTokenStore.deleteRefreshToken(OAuth2Request request,
String refreshTokenId) |
void |
StatelessTokenStore.deleteRefreshToken(OAuth2Request request,
String jwtString) |
void |
StatefulTokenStore.deleteRefreshToken(OAuth2Request request,
String refreshTokenId)
Deletes a Refresh Token from the OAuth2 Provider's store.
|
ClientCredentials |
ClientCredentialsReader.extractCredentials(OAuth2Request request,
String endpoint)
Extracts the client's credentials from the OAuth2 request.
|
| Modifier and Type | Method and Description |
|---|---|
AccessToken |
Saml2GrantTypeHandler.handle(OAuth2Request request) |
| Modifier and Type | Method and Description |
|---|---|
void |
ConfirmationKeyValidator.validateRequest(OAuth2Request request) |
void |
ConfirmationKeyValidator.validateRequest(OAuth2Request request,
ClientRegistration clientRegistration) |
| Modifier and Type | Method and Description |
|---|---|
org.forgerock.json.JsonValue |
OpenIdConnectClientRegistrationService.getRegistration(String clientId,
String accessToken,
OAuth2Request request)
Gets an OpenId Connect client registration from the OAuth2 provider.
|
void |
OpenIdConnectAuthorizeRequestValidator.validateRequest(OAuth2Request request)
Validates that the OAuth2 request contains the valid parameters for the OAuth2 authorize endpoint.
|
void |
ClaimsParameterValidator.validateRequest(OAuth2Request request) |
void |
CodeVerifierValidator.validateRequest(OAuth2Request request) |
Copyright © 2010–2025 Open Identity Platform Community. All rights reserved.