org.mitre.oauth2.web

Class AuthenticationUtilities

java.lang.Object

org.mitre.oauth2.web.AuthenticationUtilities

public abstract class AuthenticationUtilities
extends Object

Utility class to enforce OAuth scopes in authenticated requests.

Author:

jricher

Constructor Summary

Constructors

Constructor and Description
AuthenticationUtilities()

Method Summary

Modifier and Type	Method and Description
static void	ensureOAuthScope(org.springframework.security.core.Authentication auth, String scope) Makes sure the authentication contains the given scope, throws an exception otherwise
static boolean	hasRole(org.springframework.security.core.Authentication auth, String role)
static boolean	isAdmin(org.springframework.security.core.Authentication auth) Check to see if the given auth object has ROLE_ADMIN assigned to it or not

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

AuthenticationUtilities

public AuthenticationUtilities()

Method Detail

ensureOAuthScope

public static void ensureOAuthScope(org.springframework.security.core.Authentication auth,
                                    String scope)

Makes sure the authentication contains the given scope, throws an exception otherwise

Parameters:

auth - the authentication object to check

scope - the scope to look for

Throws:

org.springframework.security.oauth2.common.exceptions.InsufficientScopeException - if the authentication does not contain that scope

isAdmin

public static boolean isAdmin(org.springframework.security.core.Authentication auth)

Check to see if the given auth object has ROLE_ADMIN assigned to it or not

Parameters:

auth -

Returns:

hasRole

public static boolean hasRole(org.springframework.security.core.Authentication auth,
                              String role)