Package org.forgerock.http.oauth2
package org.forgerock.http.oauth2
This package provides APIs for OAuth 2.0 services implementations.
Included in the package is an OAuth 2.0 token validation filter that acts as an OAuth 2 Resource Server.
- It ensures that there is an existing bearer access token in the request's headers.
- It resolves the token against an Authorization Server (using a
AccessTokenResolverimplementation). - It performs the token validation: checking expiration time and required scopes compliance.
-
ClassDescriptionRepresents an exception whilst retrieving an OAuth2 access token.Represents an OAuth2 Access Token.Resolves a given token against a dedicated OAuth2 Identity Provider (OpenAM, Google, Facebook, ...).Deprecated.since 26.2.A
Filterimplementation to add the credentials to request body for authenticating as per the OAuth 2.0 Authorization Framework specification.AFilterimplementation to add the client credentials to request as signed then encrypted private key jwt as per the OpenID Connect Client Authentication specification.Builder class for creating the Encrypted PrivateKey Jwt ClientAuthentication Filter.OAuth2 utility class.AnOAuth2Contextcould be used to store and retrieve anAccessTokenInfo.Describes an error which occurred during an OAuth 2.0 authorization request or when performing an authorized request.AFilterimplementation for adding the client credentials to request as signed private key jwt as per the OpenID Connect Client Authentication specification.PrivateKeyJwtClientAuthenticationFilter.Builder<T extends PrivateKeyJwtClientAuthenticationFilter.Builder<T>>Builder class for creating the PrivateKey Jwt ClientAuthentication Filter.AResourceAccessencapsulates the logic of required scope selection.Validates aRequestthat contains an OAuth 2.0 access token.