Package org.forgerock.openidconnect

Class OpenIdConnectAuthorizeRequestValidator

java.lang.Object

org.forgerock.openidconnect.OpenIdConnectAuthorizeRequestValidator

All Implemented Interfaces:

AuthorizeRequestValidator

public class OpenIdConnectAuthorizeRequestValidator
extends Object
implements AuthorizeRequestValidator

Implementation of the AuthorizeRequestValidator for OpenID Connect request validation.

Since:

12.0.0

Constructor Summary

Constructors

Constructor	Description
OpenIdConnectAuthorizeRequestValidator(ClientRegistrationStore clientRegistrationStore)	Constructs a new OpenIdConnectAuthorizeRequestValidator instance.

Method Summary

Modifier and Type	Method	Description
void	validateRequest(OAuth2Request request)	Validates that the OAuth2 request contains the valid parameters for the OAuth2 authorize endpoint.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

OpenIdConnectAuthorizeRequestValidator

@Inject
public OpenIdConnectAuthorizeRequestValidator(ClientRegistrationStore clientRegistrationStore)

Constructs a new OpenIdConnectAuthorizeRequestValidator instance.

Parameters:

clientRegistrationStore - An instance of the ClientRegistrationStore.

Method Detail

validateRequest

public void validateRequest(OAuth2Request request)
                     throws BadRequestException,
                            InvalidRequestException,
                            InvalidClientException,
                            InvalidScopeException,
                            NotFoundException

Validates that the OAuth2 request contains the valid parameters for the OAuth2 authorize endpoint.

Specified by:

validateRequest in interface AuthorizeRequestValidator

Parameters:

request - The OAuth2Request for the client requesting authorization. Must not be null.

Throws:

BadRequestException - If the request is malformed.

InvalidRequestException - If the request is missing any required parameters or is otherwise malformed.

InvalidClientException - If either the request does not contain the client's id or the client fails to be authenticated.

InvalidScopeException - If the requested scope is invalid, unknown, or malformed.

NotFoundException - If the realm does not have an OAuth 2.0 provider service.