net.krotscheck.kangaroo.authz.oauth2.resource.authorize

Class AuthCodeHandler

java.lang.Object

net.krotscheck.kangaroo.authz.oauth2.resource.authorize.AuthCodeHandler

All Implemented Interfaces:

IAuthorizeHandler

public final class AuthCodeHandler
extends Object
implements IAuthorizeHandler

This handler is passed all authorization code requests.

Author:

Michael Krotscheck

Nested Class Summary

Nested Classes

Modifier and Type	Class and Description
static class	AuthCodeHandler.Binder HK2 Binder for our injector context.

Constructor Summary

Constructors

Constructor and Description
AuthCodeHandler(org.glassfish.jersey.internal.inject.InjectionManager injector, org.hibernate.Session session, javax.ws.rs.core.UriInfo uriInfo) Create a new handler.

Method Summary

Modifier and Type	Method and Description
javax.ws.rs.core.Response	callback(AuthenticatorState s, javax.servlet.http.HttpSession browserSession) Handle a callback response from the IdP (Authenticator).
IAuthenticator	getAuthenticator(AuthenticatorState state) Provided a stored intermediate authenticator state, attempt to resolve an instance of the associated authenticator implementation.
javax.ws.rs.core.Response	handle(javax.servlet.http.HttpSession browserSession, Authenticator auth, URI redirect, SortedMap<String,ApplicationScope> scopes, String state) Handle an authorization request using the Auth Code flow.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface net.krotscheck.kangaroo.authz.oauth2.resource.authorize.IAuthorizeHandler

buildCallback

Constructor Detail

AuthCodeHandler

@Inject
public AuthCodeHandler(org.glassfish.jersey.internal.inject.InjectionManager injector,
                               org.hibernate.Session session,
                               @Context
                               javax.ws.rs.core.UriInfo uriInfo)

Create a new handler.

Parameters:

injector - The injection manager.

session - The hibernate session.

uriInfo - The URI info for the current request.

Method Detail

getAuthenticator

public IAuthenticator getAuthenticator(AuthenticatorState state)

Provided a stored intermediate authenticator state, attempt to resolve an instance of the associated authenticator implementation.

Specified by:

getAuthenticator in interface IAuthorizeHandler

Parameters:

state - The state to resolve.

Returns:

An authenticator Impl, available from the injection context.

handle

public javax.ws.rs.core.Response handle(javax.servlet.http.HttpSession browserSession,
                                        Authenticator auth,
                                        URI redirect,
                                        SortedMap<String,ApplicationScope> scopes,
                                        String state)

Handle an authorization request using the Auth Code flow.

Specified by:

handle in interface IAuthorizeHandler

Parameters:

browserSession - The browser session, maintained via cookies.

auth - The authenticator to use to process this request.

redirect - The redirect (already validated) to which the response should be returned.

scopes - The (validated) list of scopes requested by the user.

state - The client's requested state ID.

Returns:

The response from the handler.

callback

public javax.ws.rs.core.Response callback(AuthenticatorState s,
                                          javax.servlet.http.HttpSession browserSession)

Handle a callback response from the IdP (Authenticator). Provided with the previously stored state, this method should return to the client either a valid token, or an appropriate error response.

Specified by:

callback in interface IAuthorizeHandler

Parameters:

s - The request state previously saved by the client.

browserSession - The browser session, maintained via cookies.

Returns:

A response entity indicating success or failure.