Package org.forgerock.openidconnect

Class CodeVerifierValidator

java.lang.Object

org.forgerock.openidconnect.CodeVerifierValidator

All Implemented Interfaces:

AuthorizeRequestValidator

public class CodeVerifierValidator
extends Object
implements AuthorizeRequestValidator

Checks whether Proof Key for Code Exchange is enabled and validates accordingly

Since:

13.0.0

Constructor Summary

Constructors

Constructor	Description
CodeVerifierValidator(OAuth2ProviderSettingsFactory providerSettingsFactory)

Method Summary

Modifier and Type	Method	Description
void	validateRequest(OAuth2Request request)	Validates that the OAuth2 request contains the valid parameters for the OAuth2 authorize endpoint.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

CodeVerifierValidator

@Inject
public CodeVerifierValidator(OAuth2ProviderSettingsFactory providerSettingsFactory)

Method Detail

validateRequest

public void validateRequest(OAuth2Request request)
                     throws InvalidClientException,
                            InvalidRequestException,
                            RedirectUriMismatchException,
                            UnsupportedResponseTypeException,
                            ServerException,
                            BadRequestException,
                            InvalidScopeException,
                            NotFoundException

Description copied from interface: AuthorizeRequestValidator

Validates that the OAuth2 request contains the valid parameters for the OAuth2 authorize endpoint.

Specified by:

validateRequest in interface AuthorizeRequestValidator

Parameters:

request - The OAuth2Request for the client requesting authorization. Must not be null.

Throws:

InvalidClientException - If either the request does not contain the client's id or the client fails to be authenticated.

InvalidRequestException - If the request is missing any required parameters or is otherwise malformed.

RedirectUriMismatchException - If the redirect uri on the request does not match the redirect uri registered for the client.

UnsupportedResponseTypeException - If the requested response type is not supported by either the client or the OAuth2 provider.

ServerException - If any internal server error occurs.

BadRequestException - If the request is malformed.

InvalidScopeException - If the requested scope is invalid, unknown, or malformed.

NotFoundException - If the realm does not have an OAuth 2.0 provider service.