Package io.inversion.action.security

Class AuthAction.JwtUserDao

java.lang.Object

io.inversion.action.security.AuthAction.JwtUserDao

All Implemented Interfaces:

AuthAction.UserDao

Enclosing class:

AuthAction

public static class AuthAction.JwtUserDao
extends Object
implements AuthAction.UserDao

Nested Class Summary

Nested Classes

Modifier and Type	Class	Description
static interface	AuthAction.JwtUserDao.RevokedTokenCache

Constructor Summary

Constructors

Constructor	Description
JwtUserDao()

Method Summary

Modifier and Type	Method	Description
protected void	addPermsToUser(User user, com.auth0.jwt.interfaces.Claim c)
protected User	createUserFromValidJwt(com.auth0.jwt.interfaces.DecodedJWT jwt)
protected List<String>	getJwtSecrets(AuthAction action, String apiName, String tenant)	Looks gwt signing secrets up as environment vars or sysprops.
AuthAction.JwtUserDao.RevokedTokenCache	getRevokedTokenCache()
User	getUser(AuthAction action, String token, String apiName, String tenant)
User	getUser(AuthAction action, String username, String password, String apiName, String tenant)
String	signJwt(com.auth0.jwt.JWTCreator.Builder jwtBuilder, AuthAction action, String apiName, String tenant)
AuthAction.JwtUserDao	withRevokedTokenCache(AuthAction.JwtUserDao.RevokedTokenCache revokedTokenCache)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface io.inversion.action.security.AuthAction.UserDao

getGuest

Constructor Details

JwtUserDao

public JwtUserDao()

Method Details

getUser

public User getUser(AuthAction action,
 String username,
 String password,
 String apiName,
 String tenant)
             throws ApiException

Specified by:

getUser in interface AuthAction.UserDao

Throws:

ApiException

getUser

public User getUser(AuthAction action,
 String token,
 String apiName,
 String tenant)
             throws ApiException

Specified by:

getUser in interface AuthAction.UserDao

Throws:

ApiException

createUserFromValidJwt

protected User createUserFromValidJwt(com.auth0.jwt.interfaces.DecodedJWT jwt)

addPermsToUser

protected void addPermsToUser(User user,
 com.auth0.jwt.interfaces.Claim c)

getJwtSecrets

protected List<String> getJwtSecrets(AuthAction action,
 String apiName,
 String tenant)

Looks gwt signing secrets up as environment vars or sysprops.

Finds the most specific keys keys first.

Parameters:

action - the action requesting the secrets

apiName - the name of the parent api

tenant - the tenant if there is one

Returns:

any jwt secrets found

signJwt

public String signJwt(com.auth0.jwt.JWTCreator.Builder jwtBuilder,
 AuthAction action,
 String apiName,
 String tenant)
               throws IllegalArgumentException,
com.auth0.jwt.exceptions.JWTCreationException,
UnsupportedEncodingException

Throws:

IllegalArgumentException

com.auth0.jwt.exceptions.JWTCreationException

UnsupportedEncodingException

getRevokedTokenCache

public AuthAction.JwtUserDao.RevokedTokenCache getRevokedTokenCache()

withRevokedTokenCache

public AuthAction.JwtUserDao withRevokedTokenCache(AuthAction.JwtUserDao.RevokedTokenCache revokedTokenCache)