org.apache.cxf.rs.security.oauth2.filters
Class OAuthRequestFilter
java.lang.Object
org.apache.cxf.rs.security.oauth2.services.AbstractAccessTokenValidator
org.apache.cxf.rs.security.oauth2.filters.OAuthRequestFilter
- All Implemented Interfaces:
- RequestHandler
- Direct Known Subclasses:
- OAuthRequestInterceptor
@Provider
public class OAuthRequestFilter
- extends AbstractAccessTokenValidator
- implements RequestHandler
JAX-RS OAuth2 filter which can be used to protect the end-user endpoints
| Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
OAuthRequestFilter
public OAuthRequestFilter()
handleRequest
public javax.ws.rs.core.Response handleRequest(Message m,
ClassResourceInfo resourceClass)
- Specified by:
handleRequest in interface RequestHandler
validateRequest
protected void validateRequest(Message m)
checkHttpVerb
protected boolean checkHttpVerb(javax.servlet.http.HttpServletRequest req,
List<String> verbs)
checkRequestURI
protected boolean checkRequestURI(javax.servlet.http.HttpServletRequest request,
List<String> uris)
setUseUserSubject
public void setUseUserSubject(boolean useUserSubject)
createSecurityContext
protected SecurityContext createSecurityContext(javax.servlet.http.HttpServletRequest request,
AccessTokenValidation accessTokenV)
isCorsRequest
protected boolean isCorsRequest(Message m)
validateAudience
protected boolean validateAudience(String audience)
- Overrides:
validateAudience in class AbstractAccessTokenValidator
setAudienceIsEndpointAddress
public void setAudienceIsEndpointAddress(boolean audienceIsEndpointAddress)
setCheckFormData
public void setCheckFormData(boolean checkFormData)
getAuthorizationParts
protected String[] getAuthorizationParts(Message m)
getTokenFromFormData
protected String getTokenFromFormData(Message message)
Apache CXF