public class PasswordGrantAuthorization extends GrantAuthorization
PasswordGrantHandler
.
The minimum details it contains is the identifier of the authenticated subject (end-user) and the authorised scope values. The other parameters are optional or have suitable defaults.
Constructor and Description |
---|
PasswordGrantAuthorization(com.nimbusds.oauth2.sdk.id.Subject subject,
Date authTime,
com.nimbusds.openid.connect.sdk.claims.ACR acr,
List<com.nimbusds.openid.connect.sdk.claims.AMR> amrList,
com.nimbusds.oauth2.sdk.Scope scope,
List<com.nimbusds.oauth2.sdk.id.Audience> audList,
boolean longLived,
AccessTokenSpec accessTokenSpec,
RefreshTokenSpec refreshTokenSpec,
IDTokenSpec idTokenSpec,
ClaimsSpec claimsSpec,
net.minidev.json.JSONObject data)
Creates a new OpenID Connect / OAuth 2.0 authorisation response from
a
PasswordGrantHandler . |
PasswordGrantAuthorization(com.nimbusds.oauth2.sdk.id.Subject subject,
com.nimbusds.oauth2.sdk.Scope scope,
List<com.nimbusds.oauth2.sdk.id.Audience> audList,
boolean longLived,
AccessTokenSpec accessTokenSpec,
RefreshTokenSpec refreshTokenSpec,
net.minidev.json.JSONObject data)
Creates a new OAuth 2.0 - only authorisation response from a
PasswordGrantHandler . |
Modifier and Type | Method and Description |
---|---|
com.nimbusds.openid.connect.sdk.claims.ACR |
getACR()
Returns the Authentication Context Class Reference (ACR).
|
List<com.nimbusds.openid.connect.sdk.claims.AMR> |
getAMRList()
Returns The Authentication Methods Reference (AMR) list.
|
Date |
getAuthTime()
Returns the time of the subject authentication.
|
ClaimsSpec |
getClaimsSpec()
Returns the claims specification.
|
IDTokenSpec |
getIDTokenSpec()
Returns the ID token specification.
|
RefreshTokenSpec |
getRefreshTokenSpec()
Returns the refresh token specification.
|
com.nimbusds.oauth2.sdk.id.Subject |
getSubject()
Returns the authorised subject.
|
boolean |
isLongLived()
Returns the authorisation lifetime.
|
static PasswordGrantAuthorization |
parse(net.minidev.json.JSONObject o)
Parses an authorisation response from the specified JSON object
representation.
|
net.minidev.json.JSONObject |
toJSONObject()
Returns a JSON object representation of this authorisation response.
|
getAccessTokenSpec, getAudience, getData, getScope
public PasswordGrantAuthorization(com.nimbusds.oauth2.sdk.id.Subject subject, com.nimbusds.oauth2.sdk.Scope scope, List<com.nimbusds.oauth2.sdk.id.Audience> audList, boolean longLived, AccessTokenSpec accessTokenSpec, RefreshTokenSpec refreshTokenSpec, net.minidev.json.JSONObject data)
PasswordGrantHandler
.subject
- The identifier of the authorised
subject. Must not be null
.scope
- The authorised scope values. Must not be
null
.audList
- Explicit list of audiences for the access
token, null
if not specified.longLived
- Controls the authorisation lifetime.
true
for a long-lived
authorisation (implies persistence),
false
for a short-lived
(transient) one.accessTokenSpec
- The access token specification. Must not
be null
.refreshTokenSpec
- The refresh token specification. Must not
be null
.data
- Optional authorisation data as a JSON
object, null
if not specified.public PasswordGrantAuthorization(com.nimbusds.oauth2.sdk.id.Subject subject, Date authTime, com.nimbusds.openid.connect.sdk.claims.ACR acr, List<com.nimbusds.openid.connect.sdk.claims.AMR> amrList, com.nimbusds.oauth2.sdk.Scope scope, List<com.nimbusds.oauth2.sdk.id.Audience> audList, boolean longLived, AccessTokenSpec accessTokenSpec, RefreshTokenSpec refreshTokenSpec, IDTokenSpec idTokenSpec, ClaimsSpec claimsSpec, net.minidev.json.JSONObject data)
PasswordGrantHandler
.subject
- The identifier of the authorised
subject. Must not be null
.authTime
- The time of the subject authentication.
If null
it will be set to now.
Applies only if an ID token is issued.acr
- The Authentication Context Class
Reference (ACR), null
if not
specified. Applies only if an ID token
is issued.amrList
- The Authentication Methods Reference
(AMR) list, null
if not
specified. Applies only if an ID token
is issued.scope
- The authorised scope values. Must not be
null
.audList
- Explicit list of audiences for the
access token, null
if not
specified.longLived
- Controls the authorisation lifetime.
true
for a long-lived
authorisation (implies persistence),
false
for a short-lived one.accessTokenSpec
- The access token specification. Must not
be null
.refreshTokenSpec
- The refresh token specification. Must not
be null
.idTokenSpec
- The ID token specification. Must not be
null
.claimsSpec
- The claims specification.data
- Optional authorisation data as a JSON
object, null
if not specified.public com.nimbusds.oauth2.sdk.id.Subject getSubject()
public Date getAuthTime()
null
it
will be set to now. Applies only if an ID token is issued.public com.nimbusds.openid.connect.sdk.claims.ACR getACR()
null
if not specified. Applies only if an ID token
is issued.public List<com.nimbusds.openid.connect.sdk.claims.AMR> getAMRList()
null
if not specified. Applies only if an ID token
is issued.public boolean isLongLived()
true
for a long-lived authorisation (implies
persistence), false
for a short-lived one.public RefreshTokenSpec getRefreshTokenSpec()
public IDTokenSpec getIDTokenSpec()
public ClaimsSpec getClaimsSpec()
public net.minidev.json.JSONObject toJSONObject()
toJSONObject
in class GrantAuthorization
public static PasswordGrantAuthorization parse(net.minidev.json.JSONObject o) throws com.nimbusds.oauth2.sdk.ParseException
o
- The JSON object to parse. Must not be null
.com.nimbusds.oauth2.sdk.ParseException
- If parsing failed.Copyright © 2015 Connect2id Ltd.. All Rights Reserved.