Class Issuer
- java.lang.Object
-
- org.forgerock.openig.filter.oauth2.client.Issuer
-
public final class Issuer extends Object
A configuration for an OpenID Connect Issuer. Two approaches to create the Issuer:With an OpenId well-known end-point:
{ "wellKnownEndpoint" : uriExpression, [REQUIRED] "issuerHandler" : handler [OPTIONAL - by default it uses the 'ForgeRockClientHandler' provided in heap.] "supportedDomains" : [ patterns ] [OPTIONAL - if this issuer supports other domain names] }
GOOD: [ "openam.com", "openam.com:8092", "register.server.com", "allopenamdomains.*" ] BAD : [ "http://openam.com", "openam.com:8092/", "http://openam.com/" ]
For example, use this kind of configuration if the end-points are not known:
{ "name": "openam", "type": "Issuer", "config": { "wellKnownEndpoint": "http://openam.example.com:8081/openam/oauth2/.well-known/openid-configuration" "supportedDomains" : [ "openam.com", "openam.com:8092", "register.server.com" ] } }
Use this configuration if the end-points are known. The well-known end-point is optional as the value will be saved but no request will be performed on this end-point.
{ "authorizeEndpoint" : uriExpression, [REQUIRED] "tokenEndpoint" : uriExpression, [REQUIRED] "registrationEndpoint" : uriExpression, [OPTIONAL - allows dynamic client registration] "userInfoEndpoint" : uriExpression [OPTIONAL - default is no user info] "wellKnownEndpoint" : uriExpression [OPTIONAL] "supportedDomains" : [ patterns ] [OPTIONAL - if this issuer supports other domain names] }
{ "name": "openam", "type": "Issuer", "config": { "authorizeEndpoint": "http://openam.example.com:8081/openam/oauth2/authorize", "tokenEndpoint": "http://openam.example.com:8081/openam/oauth2/access_token", "userInfoEndpoint": "http://openam.example.com:8081/openam/oauth2/userinfo" } }
-
-
Nested Class Summary
Nested Classes Modifier and Type Class Description static class
Issuer.Heaplet
Creates and initializes an Issuer object in a heap environment.
-
Field Summary
Fields Modifier and Type Field Description static String
ISSUER_KEY
The key used to store this issuer in the context.
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description boolean
equals(Object obj)
URI
getAuthorizeEndpoint()
Returns the authorize end-point of this issuer.String
getName()
Returns the name of this issuer.URI
getRegistrationEndpoint()
Returns the registration end-point of this issuer.URI
getTokenEndpoint()
Returns the token end-point of this issuer.URI
getUserInfoEndpoint()
Returns the user end-point of this issuer.URI
getWellKnownEndpoint()
Returns the well-known end-point of this issuer.int
hashCode()
boolean
hasUserInfoEndpoint()
Returnstrue
if this issuer has a user info end-point.
-
-
-
Field Detail
-
ISSUER_KEY
public static final String ISSUER_KEY
The key used to store this issuer in the context.- See Also:
- Constant Field Values
-
-
Constructor Detail
-
Issuer
public Issuer(String name, JsonValue config)
Creates an issuer with the specified name and configuration.- Parameters:
name
- The name of this Issuer. When the issuer is created by discovery, the issuer name is given by the metadata "issuer", notnull
.config
- The configuration of this issuer, not null.
-
-
Method Detail
-
getName
public String getName()
Returns the name of this issuer.- Returns:
- the name of this issuer.
-
getAuthorizeEndpoint
public URI getAuthorizeEndpoint()
Returns the authorize end-point of this issuer.- Returns:
- the authorize end-point of this issuer.
-
getTokenEndpoint
public URI getTokenEndpoint()
Returns the token end-point of this issuer.- Returns:
- the token end-point of this issuer.
-
getRegistrationEndpoint
public URI getRegistrationEndpoint()
Returns the registration end-point of this issuer.- Returns:
- the registration end-point of this issuer.
-
getUserInfoEndpoint
public URI getUserInfoEndpoint()
Returns the user end-point of this issuer.- Returns:
- the user end-point of this issuer.
-
getWellKnownEndpoint
public URI getWellKnownEndpoint()
Returns the well-known end-point of this issuer.- Returns:
- the well-known end-point of this issuer.
-
hasUserInfoEndpoint
public boolean hasUserInfoEndpoint()
Returnstrue
if this issuer has a user info end-point.- Returns:
true
if this issuer has a user info end-point.
-
-