TofuUserApprovalHandler (MITREid Connect MITREid Connect v. 1.3.2)

java.lang.Object
- org.mitre.openid.connect.token.TofuUserApprovalHandler

All Implemented Interfaces:

org.springframework.security.oauth2.provider.approval.UserApprovalHandler
```
@Component(value="tofuUserApprovalHandler")
public class TofuUserApprovalHandler
extends Object
implements org.springframework.security.oauth2.provider.approval.UserApprovalHandler
```
Custom User Approval Handler implementation which uses a concept of a whitelist, blacklist, and greylist. Blacklisted sites will be caught and handled before this point. Whitelisted sites will be automatically approved, and an ApprovedSite entry will be created for the site the first time a given user access it. All other sites fall into the greylist - the user will be presented with the user approval page upon their first visit

Author:

aanganes

Constructor Summary

Constructors
Constructor and Description

TofuUserApprovalHandler()

Constructors
Constructor and Description
`TofuUserApprovalHandler()`

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`org.springframework.security.oauth2.provider.AuthorizationRequest`	`checkForPreApproval(org.springframework.security.oauth2.provider.AuthorizationRequest authorizationRequest, org.springframework.security.core.Authentication userAuthentication)` Check if the user has already stored a positive approval decision for this site; or if the site is whitelisted, approve it automatically.
`Map<String,Object>`	`getUserApprovalRequest(org.springframework.security.oauth2.provider.AuthorizationRequest authorizationRequest, org.springframework.security.core.Authentication userAuthentication)`
`boolean`	`isApproved(org.springframework.security.oauth2.provider.AuthorizationRequest authorizationRequest, org.springframework.security.core.Authentication userAuthentication)` Check if the user has already stored a positive approval decision for this site; or if the site is whitelisted, approve it automatically.
`org.springframework.security.oauth2.provider.AuthorizationRequest`	`updateAfterApproval(org.springframework.security.oauth2.provider.AuthorizationRequest authorizationRequest, org.springframework.security.core.Authentication userAuthentication)`

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Constructor Detail
  - TofuUserApprovalHandler
```
public TofuUserApprovalHandler()
```
- Method Detail
  - isApproved
```
public boolean isApproved(org.springframework.security.oauth2.provider.AuthorizationRequest authorizationRequest,
                          org.springframework.security.core.Authentication userAuthentication)
```
    Check if the user has already stored a positive approval decision for this site; or if the site is whitelisted, approve it automatically. Otherwise, return false so that the user will see the approval page and can make their own decision.
    
    Specified by:
    
    isApproved in interface org.springframework.security.oauth2.provider.approval.UserApprovalHandler
    
    Parameters:
    
    authorizationRequest - the incoming authorization request
    
    userAuthentication - the Principal representing the currently-logged-in user
    
    Returns:
    
    true if the site is approved, false otherwise
  - checkForPreApproval
```
public org.springframework.security.oauth2.provider.AuthorizationRequest checkForPreApproval(org.springframework.security.oauth2.provider.AuthorizationRequest authorizationRequest,
                                                                                             org.springframework.security.core.Authentication userAuthentication)
```
    Check if the user has already stored a positive approval decision for this site; or if the site is whitelisted, approve it automatically. Otherwise the user will be directed to the approval page and can make their own decision.
    
    Specified by:
    
    checkForPreApproval in interface org.springframework.security.oauth2.provider.approval.UserApprovalHandler
    
    Parameters:
    
    authorizationRequest - the incoming authorization request
    
    userAuthentication - the Principal representing the currently-logged-in user
    
    Returns:
    
    the updated AuthorizationRequest
  - updateAfterApproval
```
public org.springframework.security.oauth2.provider.AuthorizationRequest updateAfterApproval(org.springframework.security.oauth2.provider.AuthorizationRequest authorizationRequest,
                                                                                             org.springframework.security.core.Authentication userAuthentication)
```
    Specified by:
    
    updateAfterApproval in interface org.springframework.security.oauth2.provider.approval.UserApprovalHandler
  - getUserApprovalRequest
```
public Map<String,Object> getUserApprovalRequest(org.springframework.security.oauth2.provider.AuthorizationRequest authorizationRequest,
                                                 org.springframework.security.core.Authentication userAuthentication)
```
    Specified by:
    
    getUserApprovalRequest in interface org.springframework.security.oauth2.provider.approval.UserApprovalHandler

Class TofuUserApprovalHandler

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Detail

TofuUserApprovalHandler

Method Detail

isApproved

checkForPreApproval

updateAfterApproval

getUserApprovalRequest