ConfirmationKeyVerifierAccessTokenResolver (IG Aggregated Javadoc 7.2.0-SNAPSHOT Documentation)

java.lang.Object
- org.forgerock.openig.filter.oauth2.cnf.ConfirmationKeyVerifierAccessTokenResolver

All Implemented Interfaces:

AccessTokenResolver
```
public class ConfirmationKeyVerifierAccessTokenResolver
extends Object
implements AccessTokenResolver
```
A ConfirmationKeyVerifierAccessTokenResolver is responsible of validating confirmation keys bound to the access_token (such as certificate thumbprint).
If the presented token has no confirmation key, then we continue the processing (strict checking is only required when confirmation key is presented).

See Also:

OAuth 2.0 Mutual TLS Client Authentication and Certificate Bound Access Tokens

Nested Class Summary

Nested Classes
Modifier and Type	Class	Description
`static class`	`ConfirmationKeyVerifierAccessTokenResolver.Heaplet`	Creates and initializes a Confirmation Key Verifier access_token resolver in the heap environment.

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method	Description
`Promise<AccessTokenInfo,AccessTokenException>`	`resolve(Context context, Supplier<Request,IOException> request, String token)`	Resolves a given access token against an authorization server.

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface org.forgerock.http.oauth2.AccessTokenResolver
resolve

- Method Detail
  - resolve
```
public Promise<AccessTokenInfo,AccessTokenException> resolve(Context context,
                                                                   Supplier<Request,IOException> request,
                                                                   String token)
```
    Description copied from interface: AccessTokenResolver
    
    Resolves a given access token against an authorization server.
    
    Specified by:
    
    resolve in interface AccessTokenResolver
    
    Parameters:
    
    context - Context chain used to keep a relationship between requests (tracking)
    
    request - a supplier for the HTTP request the access token was presented on. The request should be defensively copied by the caller in case the resolver needs to consume the entity.
    
    token - token identifier to be resolved
    
    Returns:
    
    a promise completed either with a valid AccessTokenInfo (well-formed, known by the server), or by an exception