org.mitre.oauth2.introspectingfilter

Class IntrospectingTokenService

java.lang.Object

org.mitre.oauth2.introspectingfilter.IntrospectingTokenService

All Implemented Interfaces:

org.springframework.security.oauth2.provider.token.ResourceServerTokenServices

public class IntrospectingTokenService
extends Object
implements org.springframework.security.oauth2.provider.token.ResourceServerTokenServices

This ResourceServerTokenServices implementation introspects incoming tokens at a server's introspection endpoint URL and passes an Authentication object along based on the response from the introspection endpoint.

Author:

jricher

Constructor Summary

Constructors

Constructor and Description
IntrospectingTokenService()
IntrospectingTokenService(org.apache.http.client.HttpClient httpClient)

Method Summary

Modifier and Type	Method and Description
int	getDefaultExpireTime() get the default cache expire time in milliseconds
IntrospectionAuthorityGranter	getIntrospectionAuthorityGranter()
IntrospectionConfigurationService	getIntrospectionConfigurationService()
boolean	isCacheNonExpiringTokens() Are non-expiring tokens cached using the default cache time
boolean	isCacheTokens() Is the service caching tokens, or is it hitting the introspection end point every time
boolean	isForceCacheExpireTime() check if forcing a cache expire time maximum value
org.springframework.security.oauth2.provider.OAuth2Authentication	loadAuthentication(String accessToken)
org.springframework.security.oauth2.common.OAuth2AccessToken	readAccessToken(String accessToken)
void	setCacheNonExpiringTokens(boolean cacheNonExpiringTokens) should non-expiring tokens be cached using the default cache timeout
void	setCacheTokens(boolean cacheTokens) Configure if the client should cache tokens locally or not
void	setDefaultExpireTime(int defaultExpireTime) set the default cache expire time in milliseconds
void	setForceCacheExpireTime(boolean forceCacheExpireTime) set forcing a cache expire time maximum value
void	setIntrospectionAuthorityGranter(IntrospectionAuthorityGranter introspectionAuthorityGranter)
void	setIntrospectionConfigurationService(IntrospectionConfigurationService introspectionUrlProvider)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

IntrospectingTokenService

public IntrospectingTokenService()

IntrospectingTokenService

public IntrospectingTokenService(org.apache.http.client.HttpClient httpClient)

Method Detail

getIntrospectionConfigurationService

public IntrospectionConfigurationService getIntrospectionConfigurationService()

Returns:

the introspectionConfigurationService

setIntrospectionConfigurationService

public void setIntrospectionConfigurationService(IntrospectionConfigurationService introspectionUrlProvider)

Parameters:

introspectionConfigurationService - the introspectionConfigurationService to set

setIntrospectionAuthorityGranter

public void setIntrospectionAuthorityGranter(IntrospectionAuthorityGranter introspectionAuthorityGranter)

Parameters:

introspectionAuthorityGranter - the introspectionAuthorityGranter to set

getIntrospectionAuthorityGranter

public IntrospectionAuthorityGranter getIntrospectionAuthorityGranter()

Returns:

the introspectionAuthorityGranter

getDefaultExpireTime

public int getDefaultExpireTime()

get the default cache expire time in milliseconds

Returns:

setDefaultExpireTime

public void setDefaultExpireTime(int defaultExpireTime)

set the default cache expire time in milliseconds

Parameters:

defaultExpireTime -

isForceCacheExpireTime

public boolean isForceCacheExpireTime()

check if forcing a cache expire time maximum value

Returns:

the forceCacheExpireTime setting

setForceCacheExpireTime

public void setForceCacheExpireTime(boolean forceCacheExpireTime)

set forcing a cache expire time maximum value

Parameters:

forceCacheExpireTime -

isCacheNonExpiringTokens

public boolean isCacheNonExpiringTokens()

Are non-expiring tokens cached using the default cache time

Returns:

state of cacheNonExpiringTokens

setCacheNonExpiringTokens

public void setCacheNonExpiringTokens(boolean cacheNonExpiringTokens)

should non-expiring tokens be cached using the default cache timeout

Parameters:

cacheNonExpiringTokens -

isCacheTokens

public boolean isCacheTokens()

Is the service caching tokens, or is it hitting the introspection end point every time

Returns:

true is caching tokens locally, false hits the introspection end point every time

setCacheTokens

public void setCacheTokens(boolean cacheTokens)

Configure if the client should cache tokens locally or not

Parameters:

cacheTokens -

loadAuthentication

public org.springframework.security.oauth2.provider.OAuth2Authentication loadAuthentication(String accessToken)
                                                                                     throws org.springframework.security.core.AuthenticationException

Specified by:

loadAuthentication in interface org.springframework.security.oauth2.provider.token.ResourceServerTokenServices

Throws:

org.springframework.security.core.AuthenticationException

readAccessToken

public org.springframework.security.oauth2.common.OAuth2AccessToken readAccessToken(String accessToken)

Specified by:

readAccessToken in interface org.springframework.security.oauth2.provider.token.ResourceServerTokenServices