Package org.forgerock.openig.filter.oauth2

This package contains the OAuth2 Token validation filter that acts as an OAuth 2 Resource Server.

See: Description

Class Summary

Class	Description
OAuth2ClassAliasResolver	Register all the aliases supported by the openig-oauth2 module.
OAuth2ResourceServerFilterHeaplet	Validates a Request that contains an OAuth 2.0 access token.
ScriptableAccessTokenResolver	A Scriptable access token resolver.
ScriptableAccessTokenResolver.Heaplet	Creates and initializes a scriptable access token resolver in a heap environment.

Package org.forgerock.openig.filter.oauth2 Description

This package contains the OAuth2 Token validation filter that acts as an OAuth 2 Resource Server.

• It ensure that there is an existing bearer access token in the request's headers.
• It resolves it against a given Authorization Server (that must provide a token-info endpoint).
  • Produced AccessTokenInfo are cached for future re-use.
  • Produced AccessTokenInfo are stored in the AttributesContext for downstream handlers/filters.
• It performs token validation: checking expiration time and required scopes compliance.