MasterAccessTokenValidator
@ThreadSafe public class BasicAccessTokenValidator extends Object
MasterAccessTokenValidator.ErrorResponse
Modifier and Type | Field | Description |
---|---|---|
protected List<byte[]> |
expectedTokenHashes |
The expected access token hashes, empty list if access to the web
API is disabled.
|
protected byte[] |
hashSalt |
Optional salt for computing the SHA-256 hashes.
|
protected org.apache.logging.log4j.Logger |
log |
Optional logger.
|
INVALID_BEARER_TOKEN, MISSING_BEARER_TOKEN, WEB_API_DISABLED
Constructor | Description |
---|---|
BasicAccessTokenValidator(com.nimbusds.oauth2.sdk.token.BearerAccessToken accessToken) |
Creates a new basic access token validator.
|
BasicAccessTokenValidator(com.nimbusds.oauth2.sdk.token.BearerAccessToken... accessTokens) |
Creates a new basic access token validator.
|
Modifier and Type | Method | Description |
---|---|---|
boolean |
accessIsDisabled() |
Returns
true if access is disabled (no access token
configured). |
org.apache.logging.log4j.Logger |
getLogger() |
Gets the optional logger.
|
boolean |
isValid(com.nimbusds.oauth2.sdk.token.BearerAccessToken accessToken) |
Returns
true if the specified bearer access token is valid. |
void |
setLogger(org.apache.logging.log4j.Logger log) |
Sets the optional logger.
|
void |
validateBearerAccessToken(String authzHeader) |
Validates a bearer access token passed in the specified HTTP
Authorization header value.
|
boolean |
validateBearerAccessToken(javax.servlet.http.HttpServletRequest servletRequest,
javax.servlet.http.HttpServletResponse servletResponse) |
Validates a bearer access token passed in the specified HTTP servlet
request.
|
protected final List<byte[]> expectedTokenHashes
protected byte[] hashSalt
protected org.apache.logging.log4j.Logger log
public BasicAccessTokenValidator(com.nimbusds.oauth2.sdk.token.BearerAccessToken accessToken)
accessToken
- The Bearer access token. If null
access
to the web API will be disabled.public BasicAccessTokenValidator(com.nimbusds.oauth2.sdk.token.BearerAccessToken... accessTokens)
accessTokens
- The Bearer access tokens. If null
access
to the web API will be disabled.public boolean accessIsDisabled()
MasterAccessTokenValidator
true
if access is disabled (no access token
configured).accessIsDisabled
in interface MasterAccessTokenValidator
true
if access is disabled, else false
.public org.apache.logging.log4j.Logger getLogger()
MasterAccessTokenValidator
getLogger
in interface MasterAccessTokenValidator
null
if not specified.public void setLogger(org.apache.logging.log4j.Logger log)
MasterAccessTokenValidator
setLogger
in interface MasterAccessTokenValidator
log
- The logger, null
if not specified.public void validateBearerAccessToken(String authzHeader) throws javax.ws.rs.WebApplicationException
MasterAccessTokenValidator
authzHeader
- The HTTP Authorization header value, null
if not specified.javax.ws.rs.WebApplicationException
- If the header value is null
,
the web API is disabled, or the
Bearer access token is missing or
invalid.public boolean validateBearerAccessToken(javax.servlet.http.HttpServletRequest servletRequest, javax.servlet.http.HttpServletResponse servletResponse) throws IOException
MasterAccessTokenValidator
servletRequest
- The HTTP servlet request. Must not be
null
.servletResponse
- The HTTP servlet response. Must not be
null
.true
if the bearer access token was successfully
validated, false
.IOException
- If the response couldn't be written.public boolean isValid(com.nimbusds.oauth2.sdk.token.BearerAccessToken accessToken)
MasterAccessTokenValidator
true
if the specified bearer access token is valid.isValid
in interface MasterAccessTokenValidator
accessToken
- The bearer access token to check, null
if
not specified.true
if the specified bearer access token is valid,
else false
.Copyright © 2018 Connect2id. All rights reserved.