org.forgerock.openidconnect

Class ClaimsParameterValidator

java.lang.Object

org.forgerock.openidconnect.ClaimsParameterValidator

All Implemented Interfaces:

AuthorizeRequestValidator

public class ClaimsParameterValidator
extends Object
implements AuthorizeRequestValidator

Implements OIDC Spec, Section 5.5 -- ensures that any values sent in as the claims parameter is legal.

Constructor Summary

Constructors

Constructor and Description
ClaimsParameterValidator(OAuth2ProviderSettingsFactory providerSettingsFactory)

Method Summary

Modifier and Type	Method and Description
void	validateRequest(OAuth2Request request) Validates that the OAuth2 request contains the valid parameters for the OAuth2 authorize endpoint.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

ClaimsParameterValidator

@Inject
public ClaimsParameterValidator(OAuth2ProviderSettingsFactory providerSettingsFactory)

Method Detail

validateRequest

public void validateRequest(OAuth2Request request)
                     throws InvalidClientException,
                            InvalidRequestException,
                            RedirectUriMismatchException,
                            UnsupportedResponseTypeException,
                            ServerException,
                            BadRequestException,
                            InvalidScopeException,
                            NotFoundException

Description copied from interface: AuthorizeRequestValidator

Validates that the OAuth2 request contains the valid parameters for the OAuth2 authorize endpoint.

Specified by:

validateRequest in interface AuthorizeRequestValidator

Parameters:

request - The OAuth2Request for the client requesting authorization. Must not be null.

Throws:

InvalidClientException - If either the request does not contain the client's id or the client fails to be authenticated.

InvalidRequestException - If the request is missing any required parameters or is otherwise malformed.

RedirectUriMismatchException - If the redirect uri on the request does not match the redirect uri registered for the client.

UnsupportedResponseTypeException - If the requested response type is not supported by either the client or the OAuth2 provider.

ServerException - If any internal server error occurs.

BadRequestException - If the request is malformed.

InvalidScopeException - If the requested scope is invalid, unknown, or malformed.

NotFoundException - If the realm does not have an OAuth 2.0 provider service.