| Package | Description |
|---|---|
| org.forgerock.oauth2.core |
Defines the core classes to implement OAuth2 for OpenAM.
|
| org.forgerock.oauth2.core.exceptions | |
| org.forgerock.oauth2.resources | |
| org.forgerock.oauth2.restlet | |
| org.forgerock.openam.oauth2 | |
| org.forgerock.openam.oauth2.resources | |
| org.forgerock.openam.oauth2.saml2.core | |
| org.forgerock.openam.uma | |
| org.forgerock.openam.uma.audit | |
| org.forgerock.openidconnect | |
| org.forgerock.openidconnect.restlet |
| Modifier and Type | Method and Description |
|---|---|
void |
AgentOAuth2ProviderSettings.additionalDataToReturnFromTokenEndpoint(AccessToken accessToken,
OAuth2Request request) |
void |
OAuth2ProviderSettings.additionalDataToReturnFromTokenEndpoint(AccessToken accessToken,
OAuth2Request request)
Provided as an extension point to allow the OAuth2 provider to return additional data from an access token
request.
|
void |
ScopeValidator.additionalDataToReturnFromTokenEndpoint(AccessToken accessToken,
OAuth2Request request)
Provided as an extension point to allow the OAuth2 provider to return additional data from an access token
request.
|
void |
RealmOAuth2ProviderSettings.additionalDataToReturnFromTokenEndpoint(AccessToken accessToken,
OAuth2Request request) |
ResourceOwner |
ResourceOwnerAuthenticator.authenticate(OAuth2Request request)
Authenticates a resource owner by extracting the resource owner's credentials from the request and authenticating
against the OAuth2 provider's internal user store.
|
ClientRegistration |
ClientAuthenticator.authenticate(OAuth2Request request,
String endpoint)
Authenticates the client making the OAuth2 request by extracting the client's id and secret from the request
and authenticating against the OAuth2 providers client registrations.
|
AuthorizationToken |
AuthorizationService.authorize(OAuth2Request request)
Handles an initial authorization request from a OAuth2 client, validates the request is valid and contains
the required parameters, checks the resource owner has authenticated and given their consent for the client to
be authorized before issuing an AuthorizationToken.
|
AuthorizationToken |
AuthorizationService.authorize(OAuth2Request request,
boolean consentGiven,
boolean saveConsent)
Handles an authorization request from a OAuth2 client, validates the request is valid and contains the required
parameters, checks the resource owner has authenticated and given their consent for the client to be authorized
before issuing an AuthorizationToken.
|
AccessToken |
TokenStore.createAccessToken(String grantType,
String accessTokenType,
String authorizationCode,
String resourceOwnerId,
String clientId,
String redirectUri,
Set<String> scope,
RefreshToken refreshToken,
String nonce,
String claims,
OAuth2Request request)
Creates an Access Token and stores it in the OAuth2 Provider's store.
|
AccessToken |
TokenStore.createAccessToken(String grantType,
String accessTokenType,
String authorizationCode,
String resourceOwnerId,
String clientId,
String redirectUri,
Set<String> scope,
RefreshToken refreshToken,
String nonce,
String claims,
OAuth2Request request,
long authTime)
Creates an Access Token and stores it in the OAuth2 Provider's store.
|
AuthorizationCode |
TokenStore.createAuthorizationCode(Set<String> scope,
ResourceOwner resourceOwner,
String clientId,
String redirectUri,
String nonce,
OAuth2Request request,
String codeChallenge,
String codeChallengeMethod)
Creates an Authorization Code and stores it in the OAuth2 Provider's store.
|
DeviceCode |
TokenStore.createDeviceCode(Set<String> scope,
ResourceOwner resourceOwner,
String clientId,
String nonce,
String responseType,
String state,
String acrValues,
String prompt,
String uiLocales,
String loginHint,
Integer maxAge,
String claims,
OAuth2Request request,
String codeChallenge,
String codeChallengeMethod)
Creates a new device code token.
|
RefreshToken |
TokenStore.createRefreshToken(String grantType,
String clientId,
String resourceOwnerId,
String redirectUri,
Set<String> scope,
OAuth2Request request)
Creates a Refresh Token and stores it in the OAuth2 Provider's store.
|
RefreshToken |
TokenStore.createRefreshToken(String grantType,
String clientId,
String resourceOwnerId,
String redirectUri,
Set<String> scope,
OAuth2Request request,
String validatedClaims)
Creates a Refresh Token and stores it in the OAuth2 Provider's store.
|
RefreshToken |
TokenStore.createRefreshToken(String grantType,
String clientId,
String resourceOwnerId,
String redirectUri,
Set<String> scope,
OAuth2Request request,
String validatedClaims,
long authTime)
Creates a Refresh Token and stores it in the OAuth2 Provider's store.
|
RefreshToken |
TokenStore.createRefreshToken(String grantType,
String clientId,
String resourceOwnerId,
String redirectUri,
Set<String> scope,
OAuth2Request request,
String validatedClaims,
String authGrantId)
Creates a Refresh Token and stores it in the OAuth2 Provider's store.
|
RefreshToken |
TokenStore.createRefreshToken(String grantType,
String clientId,
String resourceOwnerId,
String redirectUri,
Set<String> scope,
OAuth2Request request,
String validatedClaims,
String authGrantId,
long authTime)
Creates a Refresh Token and stores it in the OAuth2 Provider's store.
|
void |
TokenStore.delete(String realm,
String tokenId)
Deletes the Token from the OAuth2 Provider's store with the specified identifier.
|
void |
TokenStore.deleteAccessToken(OAuth2Request request,
String accessTokenId)
Deletes an Access Token from the OAuth2 Provider's store.
|
void |
TokenStore.deleteAuthorizationCode(OAuth2Request request,
String authorizationCode)
Deletes an Authorization Code from the OAuth2 Provider's store.
|
void |
TokenStore.deleteDeviceCode(String clientId,
String code,
OAuth2Request request)
Deletes a device code token.
|
void |
TokenStore.deleteRefreshToken(OAuth2Request request,
String refreshTokenId)
Deletes a Refresh Token from the OAuth2 Provider's store.
|
AccessToken |
GrantTypeAccessTokenGenerator.generateAccessToken(OAuth2ProviderSettings providerSettings,
String grantType,
String clientId,
String resourceOwnerId,
String redirectUri,
Set<String> scope,
String validatedClaims,
String authorizationCode,
String nonce,
OAuth2Request request) |
OAuth2ProviderSettings |
OAuth2ProviderSettingsFactory.get(org.forgerock.services.context.Context context)
Gets the instance of the OAuth2ProviderSettings.
|
OAuth2ProviderSettings |
OAuth2ProviderSettingsFactory.get(OAuth2Request request)
Gets the instance of the OAuth2ProviderSettings
|
ClientRegistration |
ClientRegistrationStore.get(String clientId,
OAuth2Request request)
Gets the client registration for the given client id.
|
ClientRegistration |
ClientRegistrationStore.get(String clientId,
String realm,
org.forgerock.services.context.Context context)
Gets the client registration for the given client id.
|
protected IntrospectableToken |
OAuth2TokenIntrospectionHandler.getIntrospectableToken(OAuth2Request request,
String tokenType,
String tokenId) |
OAuth2ProviderSettings |
OAuth2ProviderSettingsFactory.getRealmProviderSettings(String realm)
Gets the instance of the OAuth2ProviderSettings defined in the realm.
|
org.forgerock.json.JsonValue |
TokenInfoService.getTokenInfo(OAuth2Request request)
Returns a Json representation of the token's information that is on the OAuth2 request.
|
UserInfoClaims |
AgentOAuth2ProviderSettings.getUserInfo(ClientRegistration clientRegistration,
AccessToken token,
OAuth2Request request) |
UserInfoClaims |
OAuth2ProviderSettings.getUserInfo(ClientRegistration clientRegistration,
AccessToken token,
OAuth2Request request)
Gets the resource owners information based on an issued access token or request.
|
UserInfoClaims |
ScopeValidator.getUserInfo(ClientRegistration clientRegistration,
AccessToken token,
OAuth2Request request)
Gets the resource owners information based on an issued access token.
|
UserInfoClaims |
RealmOAuth2ProviderSettings.getUserInfo(ClientRegistration clientRegistration,
AccessToken token,
OAuth2Request request) |
AccessToken |
GrantTypeHandler.handle(OAuth2Request request)
Handles an access token request for a specific OAuth2 grant type.
|
AccessToken |
ClientCredentialsGrantTypeHandler.handle(OAuth2Request request,
ClientRegistration clientRegistration,
OAuth2ProviderSettings providerSettings) |
AccessToken |
PasswordCredentialsGrantTypeHandler.handle(OAuth2Request request,
ClientRegistration clientRegistration,
OAuth2ProviderSettings providerSettings) |
AccessToken |
AuthorizationCodeGrantTypeHandler.handle(OAuth2Request request,
ClientRegistration clientRegistration,
OAuth2ProviderSettings providerSettings) |
protected AccessToken |
DeviceCodeGrantTypeHandler.handle(OAuth2Request request,
ClientRegistration client,
OAuth2ProviderSettings providerSettings) |
protected abstract AccessToken |
GrantTypeHandler.handle(OAuth2Request request,
ClientRegistration clientRegistration,
OAuth2ProviderSettings providerSettings) |
AccessToken |
JwtBearerGrantTypeHandler.handle(OAuth2Request request,
ClientRegistration clientRegistration,
OAuth2ProviderSettings providerSettings) |
Map.Entry<String,Token> |
ResponseTypeHandler.handle(String tokenType,
Set<String> scope,
ResourceOwner resourceOwner,
String clientId,
String redirectUri,
String nonce,
OAuth2Request request,
String codeChallenge,
String codeChallengeMethod)
Handles the creating of a Token instance and storing the Token in the OAuth2 provider
TokenStore. |
Map.Entry<String,Token> |
AuthorizationCodeResponseTypeHandler.handle(String tokenType,
Set<String> scope,
ResourceOwner resourceOwner,
String clientId,
String redirectUri,
String nonce,
OAuth2Request request,
String codeChallenge,
String codeChallengeMethod)
Handles the creating of a Token instance and storing the Token in the OAuth2 provider
TokenStore. |
Map.Entry<String,Token> |
TokenResponseTypeHandler.handle(String tokenType,
Set<String> scope,
ResourceOwner resourceOwner,
String clientId,
String redirectUri,
String nonce,
OAuth2Request request,
String codeChallenge,
String codeChallengeMethod)
Handles the creating of a Token instance and storing the Token in the OAuth2 provider
TokenStore. |
org.forgerock.json.JsonValue |
TokenIntrospectionService.introspect(OAuth2Request request)
Allows introspection of a (refresh or access) token according to the
OAuth 2.0 Token Introspection
standard.
|
org.forgerock.json.JsonValue |
TokenIntrospectionHandler.introspect(OAuth2Request request,
String clientId,
String tokenType,
String tokenId)
Look for a token of a particular type, with a given ID, and return its introspected representation.
|
org.forgerock.json.JsonValue |
OAuth2TokenIntrospectionHandler.introspect(OAuth2Request request,
String clientId,
String tokenType,
String tokenId) |
void |
TokenInvalidator.invalidateTokens(OAuth2Request request,
String clientId,
String userName,
String authGrantId)
Invalidates all tokens associated with same auth grant, client and resource owner.
|
AuthorizationToken |
AuthorizationTokenIssuer.issueTokens(OAuth2Request request,
ClientRegistration clientRegistration,
ResourceOwner resourceOwner,
Set<String> authorizationScope,
OAuth2ProviderSettings providerSettings)
Issues tokens for the OAuth2 authorize request.
|
org.forgerock.json.JsonValue |
TokenStore.queryForToken(String realm,
org.forgerock.util.query.QueryFilter<CoreTokenField> queryFilter)
Queries the OAuth2 Provider's store for tokens.
|
org.forgerock.json.JsonValue |
TokenStore.read(String tokenId)
Reads the Token from the OAuth2 Provider's store with the specified identifier.
|
AccessToken |
TokenStore.readAccessToken(OAuth2Request request,
String tokenId)
Reads an Access Token from the OAuth2 Provider's store with the specified identifier.
|
AuthorizationCode |
TokenStore.readAuthorizationCode(OAuth2Request request,
String code)
Creates an Authorization Code and stores it in the OAuth2 Provider's store.
|
DeviceCode |
TokenStore.readDeviceCode(String userCode,
OAuth2Request request)
Reads a device code token.
|
DeviceCode |
TokenStore.readDeviceCode(String clientId,
String code,
OAuth2Request request)
Reads a device code token.
|
RefreshToken |
TokenStore.readRefreshToken(OAuth2Request request,
String tokenId)
Reads a Refresh Token from the OAuth2 Provider's store with the specified identifier.
|
AccessToken |
AccessTokenService.refreshToken(OAuth2Request request)
Handles a request to refresh an already issued access token for a OAuth2 client, validates that the request is
valid and contains the required parameters, checks that the refresh token on the request is valid and has not
expired, or been previously used to refresh an access token.
|
AccessToken |
AccessTokenService.requestAccessToken(OAuth2Request request)
Handles a request for access token(s) by a OAuth2 client, validates that the request is valid and contains the
required parameters, checks that the authorization code on the request is valid and has not expired, or been
previously used.
|
String |
RedirectUriResolver.resolve(OAuth2Request request)
Resolves the redirect URI
|
void |
TokenStore.updateAccessToken(OAuth2Request request,
AccessToken accessToken)
Updates an Access Token.
|
void |
TokenStore.updateAuthorizationCode(OAuth2Request request,
AuthorizationCode authorizationCode)
Updates an Authorization Code.
|
void |
TokenStore.updateDeviceCode(DeviceCode code,
OAuth2Request request)
Updates a device code token.
|
ResourceOwner |
ResourceOwnerSessionValidator.validate(OAuth2Request request)
Checks if the request contains valid resource owner session.
|
void |
DuplicateRequestParameterValidator.validateRequest(OAuth2Request request)
Validates that the OAuth2 request contains the valid parameters for the OAuth2 authorize endpoint.
|
void |
AuthorizeRequestValidator.validateRequest(OAuth2Request request)
Validates that the OAuth2 request contains the valid parameters for the OAuth2 authorize endpoint.
|
void |
AuthorizeRequestValidatorImpl.validateRequest(OAuth2Request request)
Validates that the OAuth2 request contains the valid parameters for the OAuth2 authorize endpoint.
|
| Modifier and Type | Class and Description |
|---|---|
class |
OAuth2ProviderNotFoundException
Thrown when the oauth2 provider is not found.
|
| Modifier and Type | Method and Description |
|---|---|
void |
ResourceSetStore.create(OAuth2Request request,
ResourceSetDescription resourceSetDescription)
Create a
ResourceSetDescription. |
void |
ResourceSetStore.delete(String resourceSetId,
String resourceOwnerId)
Remove a
ResourceSetDescription with the given ID from the store. |
ResourceSetDescription |
ResourceSetStore.read(String resourceSetId,
ResourceSetFilter filter)
Reads a
ResourceSetDescription out of the store using its OpenAM Unique ID. |
ResourceSetDescription |
ResourceSetStore.read(String resourceSetId,
String resourceOwnerId)
Reads a
ResourceSetDescription out of the store using its OpenAM Unique ID. |
void |
ResourceSetStore.update(ResourceSetDescription resourceSetDescription)
Update a given
ResourceSetDescription instance. |
| Modifier and Type | Method and Description |
|---|---|
org.restlet.representation.Representation |
DeviceCodeVerificationResource.userCodeForm()
Handles GET requests to the OAuth2 device/user endpoint, returning a form to allow the user to submit their
user code
|
org.restlet.representation.Representation |
DeviceCodeVerificationResource.verify(org.restlet.representation.Representation body)
Handles POST requests to the OAuth2 device/user endpoint.
|
| Modifier and Type | Method and Description |
|---|---|
void |
OpenAMScopeValidator.additionalDataToReturnFromTokenEndpoint(AccessToken accessToken,
OAuth2Request request)
Provided as an extension point to allow the OAuth2 provider to return additional data from an access token
request.
|
AccessToken |
OpenAMTokenStore.createAccessToken(String grantType,
String accessTokenType,
String authorizationCode,
String resourceOwnerId,
String clientId,
String redirectUri,
Set<String> scope,
RefreshToken refreshToken,
String nonce,
String claims,
OAuth2Request request) |
AccessToken |
StatelessTokenStore.createAccessToken(String grantType,
String accessTokenType,
String authorizationCode,
String resourceOwnerId,
String clientId,
String redirectUri,
Set<String> scope,
RefreshToken refreshToken,
String nonce,
String claims,
OAuth2Request request) |
AccessToken |
StatefulTokenStore.createAccessToken(String grantType,
String accessTokenType,
String authorizationCode,
String resourceOwnerId,
String clientId,
String redirectUri,
Set<String> scope,
RefreshToken refreshToken,
String nonce,
String claims,
OAuth2Request request)
Creates an Access Token and stores it in the OAuth2 Provider's store.
|
AccessToken |
OpenAMTokenStore.createAccessToken(String grantType,
String accessTokenType,
String authorizationCode,
String resourceOwnerId,
String clientId,
String redirectUri,
Set<String> scope,
RefreshToken refreshToken,
String nonce,
String claims,
OAuth2Request request,
long authTime) |
AccessToken |
StatelessTokenStore.createAccessToken(String grantType,
String accessTokenType,
String authorizationCode,
String resourceOwnerId,
String clientId,
String redirectUri,
Set<String> scope,
RefreshToken refreshToken,
String nonce,
String claims,
OAuth2Request request,
long authTime) |
AccessToken |
StatefulTokenStore.createAccessToken(String grantType,
String accessTokenType,
String authorizationCode,
String resourceOwnerId,
String clientId,
String redirectUri,
Set<String> scope,
RefreshToken refreshToken,
String nonce,
String claims,
OAuth2Request request,
long authTime)
Creates an Access Token and stores it in the OAuth2 Provider's store.
|
AuthorizationCode |
OpenAMTokenStore.createAuthorizationCode(Set<String> scope,
ResourceOwner resourceOwner,
String clientId,
String redirectUri,
String nonce,
OAuth2Request request,
String codeChallenge,
String codeChallengeMethod) |
AuthorizationCode |
StatelessTokenStore.createAuthorizationCode(Set<String> scope,
ResourceOwner resourceOwner,
String clientId,
String redirectUri,
String nonce,
OAuth2Request request,
String codeChallenge,
String codeChallengeMethod) |
AuthorizationCode |
StatefulTokenStore.createAuthorizationCode(Set<String> scope,
ResourceOwner resourceOwner,
String clientId,
String redirectUri,
String nonce,
OAuth2Request request,
String codeChallenge,
String codeChallengeMethod)
Creates an Authorization Code and stores it in the OAuth2 Provider's store.
|
DeviceCode |
OpenAMTokenStore.createDeviceCode(Set<String> scope,
ResourceOwner resourceOwner,
String clientId,
String nonce,
String responseType,
String state,
String acrValues,
String prompt,
String uiLocales,
String loginHint,
Integer maxAge,
String claims,
OAuth2Request request,
String codeChallenge,
String codeChallengeMethod) |
DeviceCode |
StatelessTokenStore.createDeviceCode(Set<String> scope,
ResourceOwner resourceOwner,
String clientId,
String nonce,
String responseType,
String state,
String acrValues,
String prompt,
String uiLocales,
String loginHint,
Integer maxAge,
String claims,
OAuth2Request request,
String codeChallenge,
String codeChallengeMethod) |
DeviceCode |
StatefulTokenStore.createDeviceCode(Set<String> scope,
ResourceOwner resourceOwner,
String clientId,
String nonce,
String responseType,
String state,
String acrValues,
String prompt,
String uiLocales,
String loginHint,
Integer maxAge,
String claims,
OAuth2Request request,
String codeChallenge,
String codeChallengeMethod)
Creates a new device code token.
|
OpenIdConnectToken |
OpenAMTokenStore.createOpenIDToken(ResourceOwner resourceOwner,
String clientId,
String authorizationParty,
String nonce,
String ops,
OAuth2Request request) |
OpenIdConnectToken |
StatefulTokenStore.createOpenIDToken(ResourceOwner resourceOwner,
String clientId,
String authorizationParty,
String nonce,
String ops,
OAuth2Request request)
Creates an OpenId Connect token and stores it in the OpenId Connect Provider's store.
|
RefreshToken |
OpenAMTokenStore.createRefreshToken(String grantType,
String clientId,
String resourceOwnerId,
String redirectUri,
Set<String> scope,
OAuth2Request request) |
RefreshToken |
StatelessTokenStore.createRefreshToken(String grantType,
String clientId,
String resourceOwnerId,
String redirectUri,
Set<String> scope,
OAuth2Request request) |
RefreshToken |
StatefulTokenStore.createRefreshToken(String grantType,
String clientId,
String resourceOwnerId,
String redirectUri,
Set<String> scope,
OAuth2Request request) |
RefreshToken |
OpenAMTokenStore.createRefreshToken(String grantType,
String clientId,
String resourceOwnerId,
String redirectUri,
Set<String> scope,
OAuth2Request request,
String validatedClaims) |
RefreshToken |
StatelessTokenStore.createRefreshToken(String grantType,
String clientId,
String resourceOwnerId,
String redirectUri,
Set<String> scope,
OAuth2Request request,
String validatedClaims) |
RefreshToken |
StatefulTokenStore.createRefreshToken(String grantType,
String clientId,
String resourceOwnerId,
String redirectUri,
Set<String> scope,
OAuth2Request request,
String validatedClaims) |
RefreshToken |
OpenAMTokenStore.createRefreshToken(String grantType,
String clientId,
String resourceOwnerId,
String redirectUri,
Set<String> scope,
OAuth2Request request,
String validatedClaims,
long authTime) |
RefreshToken |
StatelessTokenStore.createRefreshToken(String grantType,
String clientId,
String resourceOwnerId,
String redirectUri,
Set<String> scope,
OAuth2Request request,
String validatedClaims,
long authTime) |
RefreshToken |
StatefulTokenStore.createRefreshToken(String grantType,
String clientId,
String resourceOwnerId,
String redirectUri,
Set<String> scope,
OAuth2Request request,
String validatedClaims,
long authTime) |
RefreshToken |
OpenAMTokenStore.createRefreshToken(String grantType,
String clientId,
String resourceOwnerId,
String redirectUri,
Set<String> scope,
OAuth2Request request,
String validatedClaims,
String authGrantId) |
RefreshToken |
StatelessTokenStore.createRefreshToken(String grantType,
String clientId,
String resourceOwnerId,
String redirectUri,
Set<String> scope,
OAuth2Request request,
String validatedClaims,
String authGrantId) |
RefreshToken |
StatefulTokenStore.createRefreshToken(String grantType,
String clientId,
String resourceOwnerId,
String redirectUri,
Set<String> scope,
OAuth2Request request,
String validatedClaims,
String authGrantId) |
RefreshToken |
OpenAMTokenStore.createRefreshToken(String grantType,
String clientId,
String resourceOwnerId,
String redirectUri,
Set<String> scope,
OAuth2Request request,
String validatedClaims,
String authGrantId,
long authTime) |
RefreshToken |
StatelessTokenStore.createRefreshToken(String grantType,
String clientId,
String resourceOwnerId,
String redirectUri,
Set<String> scope,
OAuth2Request request,
String validatedClaims,
String authGrantId,
long authTime) |
RefreshToken |
StatefulTokenStore.createRefreshToken(String grantType,
String clientId,
String resourceOwnerId,
String redirectUri,
Set<String> scope,
OAuth2Request request,
String validatedClaims,
String authGrantId,
long authTime) |
void |
OpenAMTokenStore.delete(String realm,
String tokenId) |
void |
StatelessTokenStore.delete(String realm,
String tokenId) |
void |
StatefulTokenStore.delete(String realm,
String tokenId) |
void |
OpenAMTokenStore.deleteAccessToken(OAuth2Request request,
String accessTokenId) |
void |
OpenAMTokenStore.deleteAuthorizationCode(OAuth2Request request,
String authorizationCode) |
void |
StatelessTokenStore.deleteAuthorizationCode(OAuth2Request request,
String authorizationCode) |
void |
OpenAMTokenStore.deleteDeviceCode(String clientId,
String code,
OAuth2Request request) |
void |
StatelessTokenStore.deleteDeviceCode(String clientId,
String code,
OAuth2Request request) |
void |
StatefulTokenStore.deleteDeviceCode(String clientId,
String code,
OAuth2Request request) |
void |
OpenAMTokenStore.deleteRefreshToken(OAuth2Request request,
String refreshTokenId) |
ClientCredentials |
ClientCredentialsReader.extractCredentials(OAuth2Request request,
String endpoint)
Extracts the client's credentials from the OAuth2 request.
|
OAuth2Uris |
OAuth2UrisFactory.get(org.forgerock.services.context.Context context,
Realm realm)
Gets a OAuth2Uris instance.
|
OAuth2Uris |
OAuth2UrisFactory.get(OAuth2Request request)
Gets a OAuth2Uris instance.
|
OAuth2Uris |
OAuth2UrisFactory.get(OAuth2Request oAuth2Request,
Realm realm) |
OpenIdConnectClientRegistration |
OpenAMClientRegistrationStore.get(String clientId,
OAuth2Request request)
Gets the client registration for the given client id.
|
OpenIdConnectClientRegistration |
OpenAMClientRegistrationStore.get(String clientId,
String realm,
org.forgerock.services.context.Context context)
Gets the client registration for the given client id.
|
UserInfoClaims |
OpenAMScopeValidator.getUserInfo(ClientRegistration clientRegistration,
AccessToken token,
OAuth2Request request)
Gets the resource owners information based on an issued access token.
|
org.forgerock.json.JsonValue |
OpenAMTokenStore.queryForToken(String realm,
org.forgerock.util.query.QueryFilter<CoreTokenField> queryFilter) |
org.forgerock.json.JsonValue |
StatelessTokenStore.queryForToken(String realm,
org.forgerock.util.query.QueryFilter<CoreTokenField> queryFilter) |
org.forgerock.json.JsonValue |
StatefulTokenStore.queryForToken(String realm,
org.forgerock.util.query.QueryFilter<CoreTokenField> queryFilter) |
org.forgerock.json.JsonValue |
OpenAMTokenStore.read(String tokenId) |
AccessToken |
OpenAMTokenStore.readAccessToken(OAuth2Request request,
String tokenId) |
AccessToken |
StatelessTokenStore.readAccessToken(OAuth2Request request,
String jwtString) |
AccessToken |
StatefulTokenStore.readAccessToken(OAuth2Request request,
String tokenId)
Reads an Access Token from the OAuth2 Provider's store with the specified identifier.
|
AuthorizationCode |
OpenAMTokenStore.readAuthorizationCode(OAuth2Request request,
String code) |
AuthorizationCode |
StatelessTokenStore.readAuthorizationCode(OAuth2Request request,
String code) |
AuthorizationCode |
StatefulTokenStore.readAuthorizationCode(OAuth2Request request,
String code)
Creates an Authorization Code and stores it in the OAuth2 Provider's store.
|
DeviceCode |
OpenAMTokenStore.readDeviceCode(String userCode,
OAuth2Request request) |
DeviceCode |
StatelessTokenStore.readDeviceCode(String userCode,
OAuth2Request request) |
DeviceCode |
StatefulTokenStore.readDeviceCode(String userCode,
OAuth2Request request) |
DeviceCode |
OpenAMTokenStore.readDeviceCode(String clientId,
String code,
OAuth2Request request) |
DeviceCode |
StatelessTokenStore.readDeviceCode(String clientId,
String code,
OAuth2Request request) |
DeviceCode |
StatefulTokenStore.readDeviceCode(String clientId,
String code,
OAuth2Request request) |
RefreshToken |
OpenAMTokenStore.readRefreshToken(OAuth2Request request,
String tokenId) |
RefreshToken |
StatelessTokenStore.readRefreshToken(OAuth2Request request,
String jwtString) |
RefreshToken |
StatefulTokenStore.readRefreshToken(OAuth2Request request,
String tokenId)
Reads a Refresh Token from the OAuth2 Provider's store with the specified identifier.
|
void |
OpenAMTokenStore.updateAccessToken(OAuth2Request request,
AccessToken accessToken) |
void |
OpenAMTokenStore.updateAuthorizationCode(OAuth2Request request,
AuthorizationCode authorizationCode) |
void |
StatelessTokenStore.updateAuthorizationCode(OAuth2Request request,
AuthorizationCode authorizationCode) |
void |
OpenAMTokenStore.updateDeviceCode(DeviceCode code,
OAuth2Request request) |
void |
StatelessTokenStore.updateDeviceCode(DeviceCode code,
OAuth2Request request) |
void |
StatefulTokenStore.updateDeviceCode(DeviceCode code,
OAuth2Request request) |
protected void |
StatelessTokenStore.validateTokenRealm(String tokenRealm,
OAuth2Request request) |
protected void |
StatefulTokenStore.validateTokenRealm(String tokenRealm,
OAuth2Request request) |
| Modifier and Type | Method and Description |
|---|---|
void |
OpenAMResourceSetStore.create(OAuth2Request request,
ResourceSetDescription resourceSetDescription) |
org.restlet.representation.Representation |
ResourceSetRegistrationEndpoint.createResourceSet(org.restlet.ext.json.JsonRepresentation entity)
Creates or updates a resource set description.
|
void |
OpenAMResourceSetStore.delete(String resourceSetId,
String resourceOwnerId) |
org.restlet.representation.Representation |
ResourceSetRegistrationEndpoint.deleteResourceSet()
Deletes the resource set description for the request resource set id as long as the If-Match header matches
the current version of the resource set.
|
ResourceSetDescription |
OpenAMResourceSetStore.read(String resourceSetId,
ResourceSetFilter filter) |
ResourceSetDescription |
OpenAMResourceSetStore.read(String resourceSetId,
String resourceOwnerId) |
org.restlet.representation.Representation |
ResourceSetRegistrationEndpoint.readOrListResourceSet()
Reads the requested resource set description or queries all the client's (resource server's) resource sets.
|
void |
OpenAMResourceSetStore.update(ResourceSetDescription resourceSetDescription) |
org.restlet.representation.Representation |
ResourceSetRegistrationEndpoint.updateResourceSet(org.restlet.ext.json.JsonRepresentation entity) |
| Modifier and Type | Method and Description |
|---|---|
AccessToken |
Saml2GrantTypeHandler.handle(OAuth2Request request) |
| Modifier and Type | Method and Description |
|---|---|
void |
UmaTokenStore.deletePermissionTicket(String id) |
void |
UmaTokenStore.deleteRPT(String id) |
UmaUris |
UmaUrisFactory.get(org.forgerock.services.context.Context context,
Realm realm)
Gets the instance of the UmaProviderSettings.
|
UmaUris |
UmaUrisFactory.get(OAuth2Request request) |
UmaProviderSettings |
UmaProviderSettingsFactory.get(OAuth2Request request) |
UmaUris |
UmaUrisFactory.get(OAuth2Request oAuth2Request,
Realm realm)
Gets the instance of the UmaUris.
|
UmaProviderSettings |
UmaProviderSettingsFactory.get(String realm)
Gets the instance of the UmaProviderSettings.
|
org.restlet.representation.Representation |
UmaWellKnownConfigurationEndpoint.getConfiguration()
Gets the configuration for the configured UMA provider for the realm.
|
PermissionTicket |
UmaTokenStore.readPermissionTicket(String id) |
RequestingPartyToken |
UmaTokenStore.readRPT(String id) |
UmaToken |
UmaTokenStore.readToken(String ticketId,
JavaBeanAdapter<? extends UmaToken> adapter) |
org.restlet.representation.Representation |
PermissionRequestEndpoint.registerPermissionRequest(org.restlet.ext.json.JsonRepresentation entity)
Registers the permission that the client requires for it to be able to access a protected resource.
|
org.restlet.representation.Representation |
AuthorizationRequestEndpoint.requestAuthorization(org.restlet.ext.json.JsonRepresentation entity) |
| Constructor and Description |
|---|
UmaSettingsImpl(String realm) |
| Modifier and Type | Method and Description |
|---|---|
String |
UmaAuditLogger.getResourceName(String resourceSetId,
org.restlet.Request request) |
| Modifier and Type | Method and Description |
|---|---|
OpenIdConnectToken |
OpenIdConnectTokenStore.createOpenIDToken(ResourceOwner resourceOwner,
String clientId,
String authorizationParty,
String nonce,
String ops,
OAuth2Request request)
Creates an OpenId Connect token and stores it in the OpenId Connect Provider's store.
|
org.forgerock.json.JsonValue |
OpenIdConnectClientRegistrationService.createRegistration(String accessToken,
String deploymentUrl,
OAuth2Request request)
Creates an OpenId Connect client registration in the OAuth2 provider.
|
Map<String,Object> |
OpenIDConnectProviderDiscovery.discover(String resource,
String rel,
String deploymentUrl,
OAuth2Request request)
Returns the response to a request to discover the OpenId Connect provider.
|
OpenIdConnectClientRegistration |
OpenIdConnectClientRegistrationStore.get(String clientId,
OAuth2Request request)
Gets the client registration for the given client id.
|
OpenIdConnectClientRegistration |
OpenIdConnectClientRegistrationStore.get(String clientId,
String realm,
org.forgerock.services.context.Context context)
Gets the client registration for the given client id.
|
String |
CheckSession.getClientSessionURI(javax.servlet.http.HttpServletRequest request)
Get the URL the postMessage must be coming from (registered in client) to process the message.
|
Map.Entry<String,Token> |
IdTokenResponseTypeHandler.handle(String tokenType,
Set<String> scope,
ResourceOwner resourceOwner,
String clientId,
String redirectUri,
String nonce,
OAuth2Request request,
String codeChallenge,
String codeChallengeMethod)
Handles the creating of a Token instance and storing the Token in the OAuth2 provider
TokenStore. |
Map.Entry<String,String> |
OpenIDTokenIssuer.issueToken(AccessToken accessToken,
OAuth2Request request)
Issues an OpenId Connect token, using the details of the access token.
|
void |
OpenIdConnectAuthorizeRequestValidator.validateRequest(OAuth2Request request)
Validates that the OAuth2 request contains the valid parameters for the OAuth2 authorize endpoint.
|
void |
ClaimsParameterValidator.validateRequest(OAuth2Request request) |
void |
CodeVerifierValidator.validateRequest(OAuth2Request request) |
void |
SubjectTypeValidator.validateRequest(OAuth2Request request) |
| Modifier and Type | Method and Description |
|---|---|
protected Map<String,Object> |
OpenIDConnectCheckSessionEndpoint.getDataModel(OAuth2Request oAuth2Request) |
Copyright © 2010–2025 Open Identity Platform Community. All rights reserved.