Package org.forgerock.oauth2.restlet
Class RestletHeaderAccessTokenVerifier
- java.lang.Object
-
- org.forgerock.oauth2.core.AccessTokenVerifier
-
- org.forgerock.oauth2.restlet.RestletHeaderAccessTokenVerifier
-
@Singleton public class RestletHeaderAccessTokenVerifier extends AccessTokenVerifier
Verifies that a OAuth2 request that is made to one of the protected endpoints on the OAuth2 provider, (i.e. tokeninfo, userinfo) contains a valid access token specified in the request header.- Since:
- 12.0.0
-
-
Nested Class Summary
-
Nested classes/interfaces inherited from class org.forgerock.oauth2.core.AccessTokenVerifier
AccessTokenVerifier.TokenState
-
-
Field Summary
-
Fields inherited from class org.forgerock.oauth2.core.AccessTokenVerifier
FORM_BODY, HEADER, logger, QUERY_PARAM, REALM_AGNOSTIC_FORM_BODY, REALM_AGNOSTIC_HEADER, REALM_AGNOSTIC_QUERY_PARAM
-
-
Constructor Summary
Constructors Constructor Description RestletHeaderAccessTokenVerifier(TokenStore tokenStore)
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description org.restlet.data.ChallengeResponsegetChallengeResponse(org.restlet.Request request)Returns the authentication response sent by a client to an origin server instead of org.restlet.engine.adapter.HttpRequest.protected StringobtainTokenId(OAuth2Request request)Obtain the token ID from the request.-
Methods inherited from class org.forgerock.oauth2.core.AccessTokenVerifier
verify
-
-
-
-
Constructor Detail
-
RestletHeaderAccessTokenVerifier
@Inject public RestletHeaderAccessTokenVerifier(TokenStore tokenStore)
-
-
Method Detail
-
obtainTokenId
protected String obtainTokenId(OAuth2Request request)
Obtain the token ID from the request.- Specified by:
obtainTokenIdin classAccessTokenVerifier- Parameters:
request- The OAuth2 request. Must not benull.- Returns:
- The String access token ID.
-
getChallengeResponse
public org.restlet.data.ChallengeResponse getChallengeResponse(org.restlet.Request request)
Returns the authentication response sent by a client to an origin server instead of org.restlet.engine.adapter.HttpRequest.- Returns:
- The authentication response sent by a client to an origin server.
-
-