Class ConfirmationKeyVerifierAccessTokenResolver
java.lang.Object
org.forgerock.openig.filter.oauth2.cnf.ConfirmationKeyVerifierAccessTokenResolver
- All Implemented Interfaces:
AccessTokenResolver
public class ConfirmationKeyVerifierAccessTokenResolver
extends Object
implements AccessTokenResolver
A
ConfirmationKeyVerifierAccessTokenResolver
is responsible of validating
confirmation keys bound to the access_token (such as certificate thumbprint).
If the presented token has no confirmation key, then we continue the processing (strict checking is only required when confirmation key is presented).
-
Nested Class Summary
Modifier and TypeClassDescriptionstatic class
Creates and initializes a Confirmation Key Verifier access_token resolver in the heap environment. -
Method Summary
Modifier and TypeMethodDescriptionResolves a given access token against an authorization server.Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
Methods inherited from interface org.forgerock.http.oauth2.AccessTokenResolver
resolve
-
Method Details
-
resolve
public Promise<AccessTokenInfo,AccessTokenException> resolve(Context context, Supplier<Request, IOException> request, String token) Description copied from interface:AccessTokenResolver
Resolves a given access token against an authorization server.- Specified by:
resolve
in interfaceAccessTokenResolver
- Parameters:
context
- Context chain used to keep a relationship between requests (tracking)request
- a supplier for the HTTP request the access token was presented on. The request should be defensively copied by the caller in case the resolver needs to consume the entity.token
- token identifier to be resolved- Returns:
- a promise completed either with a valid
AccessTokenInfo
(well-formed, known by the server), or by an exception
-