O2ClientBodyFilter (kangaroo-server-authz 1.2.2 API)

Skip navigation links

All Classes

Summary:
Nested |
Field |
Constr |
Method

Detail:
Field |
Constr |
Method

java.lang.Object
- net.krotscheck.kangaroo.authz.oauth2.authn.authn.AbstractO2AuthenticationFilter
- - net.krotscheck.kangaroo.authz.oauth2.authn.authn.O2ClientBodyFilter

All Implemented Interfaces:

javax.ws.rs.container.ContainerRequestFilter
```
@Priority(value=1000)
public final class O2ClientBodyFilter
extends AbstractO2AuthenticationFilter
```
This filter's job is to detect whether the request is attempting Client Authorization, via a client_id and client_secret in the form body. If it does not find both, it presumes that some other method of authentication was used, and defers evaluation of the credentials to the (eventual) authorization filter.

Author:

Michael Krotscheck

Constructor Summary

Constructors
Constructor and Description
`O2ClientBodyFilter(javax.inject.Provider<org.glassfish.jersey.server.ContainerRequest> requestProvider, javax.inject.Provider<org.hibernate.Session> sessionProvider, Boolean permitPrivate, Boolean permitPublic)` Create a new instance of this filter.

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`void`	`filter(javax.ws.rs.container.ContainerRequestContext context)` Attempt to extract a client ID and/or secret from the form body.

Methods inherited from class net.krotscheck.kangaroo.authz.oauth2.authn.authn.AbstractO2AuthenticationFilter
convertCredentials, setPrincipal

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Constructor Detail
  - O2ClientBodyFilter
```
public O2ClientBodyFilter(javax.inject.Provider<org.glassfish.jersey.server.ContainerRequest> requestProvider,
                          javax.inject.Provider<org.hibernate.Session> sessionProvider,
                          Boolean permitPrivate,
                          Boolean permitPublic)
```
    Create a new instance of this filter.
    
    Parameters:
    
    requestProvider - The request provider.
    
    sessionProvider - The session provider.
    
    permitPrivate - Whether to permit private clients.
    
    permitPublic - Whether to permit public clients.
- Method Detail
  - filter
```
public void filter(javax.ws.rs.container.ContainerRequestContext context)
```
    Attempt to extract a client ID and/or secret from the form body. If the form body is not available, then don't parse it. Note that if the resolved client contains a client_secret, then passing this in either the form body or in the authorization header is required.
    
    Parameters:
    
    context - The request context.

Skip navigation links

All Classes

Summary:
Nested |
Field |
Constr |
Method

Detail:
Field |
Constr |
Method

Copyright © 2018 krotscheck.net. All rights reserved.