Class FapiParRequestValidationFilter
java.lang.Object
org.forgerock.openig.fapi.authorization.AbstractFapiAuthorizeRequestValidationFilter
org.forgerock.openig.fapi.authorization.par.validation.FapiParRequestValidationFilter
- All Implemented Interfaces:
Filter
Validates that a request made to the OAuth2.0
/par (Pushed Authorization Request) endpoint is FAPI compliant.
For more details on /par requests see:
OAuth 2.0 Pushed
Authorization Requests.
-
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionprotected voidcheckEndpointSpecificClaims(JwtClaimsSet requestJwtClaimSet) For the PAR endpoint we need to check that the CODE_CHALLENGE_METHOD is S256.protected AuthorizationRequestcreateAuthorizationRequest(Request request) Create a specificAuthorizationRequestfor the endpoint.Methods inherited from class org.forgerock.openig.fapi.authorization.AbstractFapiAuthorizeRequestValidationFilter
errorResponse, filter
-
Constructor Details
-
FapiParRequestValidationFilter
public FapiParRequestValidationFilter()Default constructor forFapiParRequestValidationFilter.
-
-
Method Details
-
createAuthorizationRequest
Description copied from class:AbstractFapiAuthorizeRequestValidationFilterCreate a specificAuthorizationRequestfor the endpoint.- Specified by:
createAuthorizationRequestin classAbstractFapiAuthorizeRequestValidationFilter- Parameters:
request- the request to use- Returns:
- the
AuthorizationRequestcreated
-
checkEndpointSpecificClaims
protected void checkEndpointSpecificClaims(JwtClaimsSet requestJwtClaimSet) throws AuthorizationRequestException For the PAR endpoint we need to check that the CODE_CHALLENGE_METHOD is S256.- Specified by:
checkEndpointSpecificClaimsin classAbstractFapiAuthorizeRequestValidationFilter- Parameters:
requestJwtClaimSet- the claims found in the JAR object- Throws:
AuthorizationRequestException
-