公開メンバ関数 | |
| String | toString () |
| String | getParamName () |
静的公開メンバ関数 | |
| static AuthorizationGrantType | fromString (String param) |
公開変数類 | |
| AUTHORIZATION_CODE =("authorization_code") | |
| IMPLICIT =("implicit") | |
| CLIENT_CREDENTIALS =("client_credentials") | |
| RESOURCE_OWNER_PASSWORD_CREDENTIALS =("resource_owner_password_credentials") | |
非公開メンバ関数 | |
| AuthorizationGrantType (String paramName) | |
非公開変数類 | |
| final String | paramName |
詳解
An authorization grant is a credential representing the resource owner's authorization (to access its protected resources) used by the client to obtain an access token. This specification defines four grant types: authorization code, implicit, resource owner password credentials, and client credentials.
構築子と解体子
◆ AuthorizationGrantType()
|
inlineprivate |
関数詳解
◆ fromString()
|
inlinestatic |
Returns the corresponding AuthorizationGrantType for a given parameter.
- 引数
-
param The parameter.
- 戻り値
- The corresponding authorization grant type if found, otherwise
null.
◆ getParamName()
|
inline |
org.xdi.oxauth.model.common.HasParamNameを実装しています。
◆ toString()
|
inline |
Returns a string representation of the object. In this case the parameter name for the authorization grant type parameter.
メンバ詳解
◆ AUTHORIZATION_CODE
| org.xdi.oxauth.model.common.AuthorizationGrantType.AUTHORIZATION_CODE =("authorization_code") |
The authorization code is obtained by using an authorization server as an intermediary between the client and resource owner. Instead of requesting authorization directly from the resource owner, the client directs the resource owner to an authorization server (via its user- agent as defined in [RFC2616]), which in turn directs the resource owner back to the client with the authorization code.
◆ CLIENT_CREDENTIALS
| org.xdi.oxauth.model.common.AuthorizationGrantType.CLIENT_CREDENTIALS =("client_credentials") |
The client credentials (or other forms of client authentication) can be used as an authorization grant when the authorization scope is limited to the protected resources under the control of the client, or to protected resources previously arranged with the authorization server. Client credentials are used as an authorization grant typically when the client is acting on its own behalf (the client is also the resource owner), or is requesting access to protected resources based on an authorization previously arranged with the authorization server.
◆ IMPLICIT
| org.xdi.oxauth.model.common.AuthorizationGrantType.IMPLICIT =("implicit") |
The implicit grant is a simplified authorization code flow optimized for clients implemented in a browser using a scripting language such as JavaScript. In the implicit flow, instead of issuing the client an authorization code, the client is issued an access token directly (as the result of the resource owner authorization). The grant type is implicit as no intermediate credentials (such as an authorization code) are issued (and later used to obtain an access token).
◆ paramName
|
private |
◆ RESOURCE_OWNER_PASSWORD_CREDENTIALS
| org.xdi.oxauth.model.common.AuthorizationGrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS =("resource_owner_password_credentials") |
The resource owner password credentials (i.e. username and password) can be used directly as an authorization grant to obtain an access token. The credentials should only be used when there is a high degree of trust between the resource owner and the client (e.g. its device operating system or a highly privileged application), and when other authorization grant types are not available (such as an authorization code).
次のファイルからこの列挙についての詳解を抽出しました:
- D:/AppData/OpenId/gluu/src/oxAuth/Server/src/main/java/org/xdi/oxauth/model/common/AuthorizationGrantType.java
