Package org.forgerock.openig.filter.oauth2
This package contains the OAuth2 Token validation filter that acts as an OAuth 2 Resource Server.
- It ensure that there is an existing bearer access token in the request's headers.
- It resolves it against a given Authorization Server (that must provide a token-info
endpoint).
- Produced
AccessTokenInfo
are cached for future re-use. - Produced
AccessTokenInfo
are stored in theAttributesContext
for downstream handlers/filters.
- Produced
- It performs token validation: checking expiration time and required scopes compliance.
-
Class Summary Class Description CacheAccessTokenResolverTypeProvider Provide aTypeDefinitionProvider
for CacheAccessTokenResolver.CaffeineCacheAccessTokenResolver ACaffeineCacheAccessTokenResolver
is a delegatingAccessTokenResolver
that uses a write-throughCaffeine
cache to enable fastAccessTokenInfo
resolution.CaffeineCacheAccessTokenResolver.Builder Builder ofCaffeineCacheAccessTokenResolver
.CaffeineCacheAccessTokenResolver.Heaplet Creates and initializes anCaffeineCacheAccessTokenResolver
in the heap environment.OAuth2ClassAliasResolver Register all the aliases supported by the openig-oauth2 module.OAuth2FailureContext Context
implementation to hold OAuth2 error details, should a failure occur during OAuth2 scenarios.OAuth2ResourceServerFilterHeaplet Validates aRequest
that contains an OAuth 2.0 access token.OAuth2ResourceServerFilterTypeProvider Provide aTypeDefinitionProvider
for OAuth2ResourceServer.OAuth2TokenExchangeContext Context
supporting OAuth2 token exchange scenarios, this manages the resulting exchange token.OAuth2TokenExchangeFilter Filter
supporting OAuth2 token exchange scenarios.OAuth2TokenExchangeFilter.Heaplet Creates and initialises anOAuth2TokenExchangeFilter
in a heap environment.OpenAmAccessTokenResolverHeaplet Deprecated. in 7.0.ScriptableAccessTokenResolver A Scriptable access token resolver.ScriptableAccessTokenResolver.Heaplet Creates and initializes a scriptable access token resolver in a heap environment.ScriptableResourceAccess A scriptable resource access.ScriptableResourceAccess.Heaplet Creates and initializes a scriptable object in a heap environment.StatelessAccessTokenResolver AStatelessAccessTokenResolver
that locally resolves and validates stateless access_tokens issued by AM.StatelessAccessTokenResolver.Heaplet Creates and initializes a stateless access token resolver in the heap environment.TokenIntrospectionAccessTokenResolverHeaplet Creates and initializes anTokenIntrospectionAccessTokenResolver
in a heap environment.TokenIntrospectionAccessTokenResolverTypeDefinitionProvider ProvideTokenIntrospectionAccessTokenResolverHeaplet
'sTypeDefinition
.