org.mitre.openid.connect.service.impl

Class DefaultOIDCTokenService

java.lang.Object

org.mitre.openid.connect.service.impl.DefaultOIDCTokenService

All Implemented Interfaces:

OIDCTokenService

@Service
public class DefaultOIDCTokenService
extends Object
implements OIDCTokenService

Default implementation of service to create specialty OpenID Connect tokens.

Author:

Amanda Anganes

Constructor Summary

Constructors

Constructor and Description
DefaultOIDCTokenService()

Method Summary

Modifier and Type	Method and Description
protected void	addCustomIdTokenClaims(com.nimbusds.jwt.JWTClaimsSet.Builder idClaims, ClientDetailsEntity client, org.springframework.security.oauth2.provider.OAuth2Request request, String sub, OAuth2AccessTokenEntity accessToken) Hook for subclasses that allows adding custom claims to the JWT that will be used as id token.
com.nimbusds.jwt.JWT	createIdToken(ClientDetailsEntity client, org.springframework.security.oauth2.provider.OAuth2Request request, Date issueTime, String sub, OAuth2AccessTokenEntity accessToken) Create an id token with the information provided.
OAuth2AccessTokenEntity	createRegistrationAccessToken(ClientDetailsEntity client) Create a registration access token for the given client.
OAuth2AccessTokenEntity	createResourceAccessToken(ClientDetailsEntity client) Create a resource access token for the given client (protected resource).
AuthenticationHolderRepository	getAuthenticationHolderRepository()
ConfigurationPropertiesBean	getConfigBean()
JWTSigningAndValidationService	getJwtService()
OAuth2AccessTokenEntity	rotateRegistrationAccessTokenForClient(ClientDetailsEntity client) Rotate the registration or resource token for a client
void	setAuthenticationHolderRepository(AuthenticationHolderRepository authenticationHolderRepository)
void	setConfigBean(ConfigurationPropertiesBean configBean)
void	setJwtService(JWTSigningAndValidationService jwtService)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

DefaultOIDCTokenService

public DefaultOIDCTokenService()

Method Detail

createIdToken

public com.nimbusds.jwt.JWT createIdToken(ClientDetailsEntity client,
                                          org.springframework.security.oauth2.provider.OAuth2Request request,
                                          Date issueTime,
                                          String sub,
                                          OAuth2AccessTokenEntity accessToken)

Description copied from interface: OIDCTokenService

Create an id token with the information provided.

Specified by:

createIdToken in interface OIDCTokenService

Returns:

createRegistrationAccessToken

public OAuth2AccessTokenEntity createRegistrationAccessToken(ClientDetailsEntity client)

Description copied from interface: OIDCTokenService

Create a registration access token for the given client.

Specified by:

createRegistrationAccessToken in interface OIDCTokenService

Parameters:

client -

Returns:

Throws:

org.springframework.security.core.AuthenticationException

createResourceAccessToken

public OAuth2AccessTokenEntity createResourceAccessToken(ClientDetailsEntity client)

Description copied from interface: OIDCTokenService

Create a resource access token for the given client (protected resource).

Specified by:

createResourceAccessToken in interface OIDCTokenService

Parameters:

client -

Returns:

rotateRegistrationAccessTokenForClient

public OAuth2AccessTokenEntity rotateRegistrationAccessTokenForClient(ClientDetailsEntity client)

Description copied from interface: OIDCTokenService

Rotate the registration or resource token for a client

Specified by:

rotateRegistrationAccessTokenForClient in interface OIDCTokenService

Returns:

getConfigBean

public ConfigurationPropertiesBean getConfigBean()

Returns:

the configBean

setConfigBean

public void setConfigBean(ConfigurationPropertiesBean configBean)

Parameters:

configBean - the configBean to set

getJwtService

public JWTSigningAndValidationService getJwtService()

Returns:

the jwtService

setJwtService

public void setJwtService(JWTSigningAndValidationService jwtService)

Parameters:

jwtService - the jwtService to set

getAuthenticationHolderRepository

public AuthenticationHolderRepository getAuthenticationHolderRepository()

Returns:

the authenticationHolderRepository

setAuthenticationHolderRepository

public void setAuthenticationHolderRepository(AuthenticationHolderRepository authenticationHolderRepository)

Parameters:

authenticationHolderRepository - the authenticationHolderRepository to set

addCustomIdTokenClaims

protected void addCustomIdTokenClaims(com.nimbusds.jwt.JWTClaimsSet.Builder idClaims,
                                      ClientDetailsEntity client,
                                      org.springframework.security.oauth2.provider.OAuth2Request request,
                                      String sub,
                                      OAuth2AccessTokenEntity accessToken)

Hook for subclasses that allows adding custom claims to the JWT that will be used as id token.

Parameters:

idClaims - the builder holding the current claims

client - information about the requesting client

request - request that caused the id token to be created

sub - subject auf the id token

accessToken - the access token

authentication - current authentication