org.xdi.oxauth.service.fido.u2f.ClientDataValidationService クラス

org.xdi.oxauth.service.fido.u2f.ClientDataValidationService 連携図

公開メンバ関数
void	checkContent (ClientData clientData, String[] types, String challenge, Set< String > facets) throws BadInputException

静的公開メンバ関数
static Set< String >	canonicalizeOrigins (Set< String > origins)
static String	canonicalizeOrigin (String url)

静的非公開メンバ関数
static void	verifyOrigin (String origin, Set< String > allowedOrigins) throws BadInputException

非公開変数類
Logger	log

詳解

Client data validation service

著者

Yuriy Movchan Date: 05/20/2015

関数詳解

canonicalizeOrigin()

static String org.xdi.oxauth.service.fido.u2f.ClientDataValidationService.canonicalizeOrigin ( String  url )

inlinestatic

                                                            {
                try {
                        URI uri = new URI(url);
                        if (uri.getAuthority() == null) {
                                return url;
                        }
                        return uri.getScheme() + "://" + uri.getAuthority();
                } catch (URISyntaxException e) {
                        throw new IllegalArgumentException("Specified bad origin", e);
                }
        }

canonicalizeOrigins()

static Set<String> org.xdi.oxauth.service.fido.u2f.ClientDataValidationService.canonicalizeOrigins ( Set< String >  origins )

inlinestatic

                                                                           {
                Set<String> result = new HashSet<String>();
                for (String origin : origins) {
                        result.add(canonicalizeOrigin(origin));
                }
                return result;
        }

checkContent()

void org.xdi.oxauth.service.fido.u2f.ClientDataValidationService.checkContent ( ClientData  clientData, String []  types, String  challenge, Set< String >  facets  ) throws BadInputException

inline

                                                                                                                                       {
                if (!ArrayUtils.contains(types, clientData.getTyp())) {
                        throw new BadInputException("Bad clientData: wrong typ " + clientData.getTyp());
                }

                if (!challenge.equals(clientData.getChallenge())) {
                        throw new BadInputException("Bad clientData: wrong challenge");
                }

                if (facets != null && !facets.isEmpty()) {
                        Set<String> allowedFacets = canonicalizeOrigins(facets);
                        String canonicalOrigin;
                        try {
                                canonicalOrigin = canonicalizeOrigin(clientData.getOrigin());
                        } catch (RuntimeException e) {
                                throw new BadInputException("Bad clientData: Malformed origin", e);
                        }
                        verifyOrigin(canonicalOrigin, allowedFacets);
                }
        }

verifyOrigin()

static void org.xdi.oxauth.service.fido.u2f.ClientDataValidationService.verifyOrigin ( String  origin, Set< String >  allowedOrigins  ) throws BadInputException

inlinestaticprivate

                                                                                                             {
                if (!allowedOrigins.contains(origin)) {
                        throw new BadInputException(origin + " is not a recognized facet for this application");
                }
        }

メンバ詳解

log

Logger org.xdi.oxauth.service.fido.u2f.ClientDataValidationService.log

private

---

このクラス詳解は次のファイルから抽出されました:

• D:/AppData/OpenId/gluu/src/oxAuth/Server/src/main/java/org/xdi/oxauth/service/fido/u2f/ClientDataValidationService.java