org.mitre.oauth2.web.OAuthConfirmationController 連携図

公開メンバ関数
	OAuthConfirmationController ()

	OAuthConfirmationController (ClientDetailsEntityService clientService)

String	confimAccess (Map< String, Object > model, @ModelAttribute("authorizationRequest") AuthorizationRequest authRequest, Principal p)

ClientDetailsEntityService	getClientService ()

void	setClientService (ClientDetailsEntityService clientService)

非公開変数類
ClientDetailsEntityService	clientService

SystemScopeService	scopeService

ScopeClaimTranslationService	scopeClaimTranslationService

UserInfoService	userInfoService

StatsService	statsService

RedirectResolver	redirectResolver

静的非公開変数類
static final Logger	logger = LoggerFactory.getLogger(OAuthConfirmationController.class)

詳解

著者: jricher

構築子と解体子

◆ OAuthConfirmationController() [1/2]

org.mitre.oauth2.web.OAuthConfirmationController.OAuthConfirmationController ( )

inline

                                              {
 
         }

◆ OAuthConfirmationController() [2/2]

org.mitre.oauth2.web.OAuthConfirmationController.OAuthConfirmationController ( ClientDetailsEntityService clientService )

inline

                                                                                      {
                 this.clientService = clientService;
         }

関数詳解

◆ confimAccess()

String org.mitre.oauth2.web.OAuthConfirmationController.confimAccess	(	Map< String, Object >	model,
		@ModelAttribute("authorizationRequest") AuthorizationRequest	authRequest,
		Principal	p
	)

inline

                                      {
 
                 // Check the "prompt" parameter to see if we need to do special processing
 
                 String prompt = (String)authRequest.getExtensions().get(PROMPT);
                 List<String> prompts = Splitter.on(PROMPT_SEPARATOR).splitToList(Strings.nullToEmpty(prompt));
                 ClientDetailsEntity client = null;
 
                 try {
                         client = clientService.loadClientByClientId(authRequest.getClientId());
                 } catch (OAuth2Exception e) {
                         logger.error("confirmAccess: OAuth2Exception was thrown when attempting to load client", e);
                         model.put(HttpCodeView.CODE, HttpStatus.BAD_REQUEST);
                         return HttpCodeView.VIEWNAME;
                 } catch (IllegalArgumentException e) {
                         logger.error("confirmAccess: IllegalArgumentException was thrown when attempting to load client", e);
                         model.put(HttpCodeView.CODE, HttpStatus.BAD_REQUEST);
                         return HttpCodeView.VIEWNAME;
                 }
 
                 if (client == null) {
                         logger.error("confirmAccess: could not find client " + authRequest.getClientId());
                         model.put(HttpCodeView.CODE, HttpStatus.NOT_FOUND);
                         return HttpCodeView.VIEWNAME;
                 }
 
                 if (prompts.contains("none")) {
                         // if we've got a redirect URI then we'll send it
 
                         String url = redirectResolver.resolveRedirect(authRequest.getRedirectUri(), client);
 
                         try {
                                 URIBuilder uriBuilder = new URIBuilder(url);
 
                                 uriBuilder.addParameter("error", "interaction_required");
                                 if (!Strings.isNullOrEmpty(authRequest.getState())) {
                                         uriBuilder.addParameter("state", authRequest.getState()); // copy the state parameter if one was given
                                 }
 
                                 return "redirect:" + uriBuilder.toString();
 
                         } catch (URISyntaxException e) {
                                 logger.error("Can't build redirect URI for prompt=none, sending error instead", e);
                                 model.put("code", HttpStatus.FORBIDDEN);
                                 return HttpCodeView.VIEWNAME;
                         }
                 }
 
                 model.put("auth_request", authRequest);
                 model.put("client", client);
 
                 String redirect_uri = authRequest.getRedirectUri();
 
                 model.put("redirect_uri", redirect_uri);
 
 
                 // pre-process the scopes
                 Set<SystemScope> scopes = scopeService.fromStrings(authRequest.getScope());
 
                 Set<SystemScope> sortedScopes = new LinkedHashSet<>(scopes.size());
                 Set<SystemScope> systemScopes = scopeService.getAll();
 
                 // sort scopes for display based on the inherent order of system scopes
                 for (SystemScope s : systemScopes) {
                         if (scopes.contains(s)) {
                                 sortedScopes.add(s);
                         }
                 }
 
                 // add in any scopes that aren't system scopes to the end of the list
                 sortedScopes.addAll(Sets.difference(scopes, systemScopes));
 
                 model.put("scopes", sortedScopes);
 
                 // get the userinfo claims for each scope
                 UserInfo user = userInfoService.getByUsername(p.getName());
                 Map<String, Map<String, String>> claimsForScopes = new HashMap<>();
                 if (user != null) {
                         JsonObject userJson = user.toJson();
 
                         for (SystemScope systemScope : sortedScopes) {
                                 Map<String, String> claimValues = new HashMap<>();
 
                                 Set<String> claims = scopeClaimTranslationService.getClaimsForScope(systemScope.getValue());
                                 for (String claim : claims) {
                                         if (userJson.has(claim) && userJson.get(claim).isJsonPrimitive()) {
                                                 // TODO: this skips the address claim
                                                 claimValues.put(claim, userJson.get(claim).getAsString());
                                         }
                                 }
 
                                 claimsForScopes.put(systemScope.getValue(), claimValues);
                         }
                 }
 
                 model.put("claims", claimsForScopes);
 
                 // client stats
                 Integer count = statsService.getCountForClientId(client.getClientId()).getApprovedSiteCount();
                 model.put("count", count);
 
 
                 // contacts
                 if (client.getContacts() != null) {
                         String contacts = Joiner.on(", ").join(client.getContacts());
                         model.put("contacts", contacts);
                 }
 
                 // if the client is over a week old and has more than one registration, don't give such a big warning
                 // instead, tag as "Generally Recognized As Safe" (gras)
                 Date lastWeek = new Date(System.currentTimeMillis() - (60 * 60 * 24 * 7 * 1000));
                 if (count > 1 && client.getCreatedAt() != null && client.getCreatedAt().before(lastWeek)) {
                         model.put("gras", true);
                 } else {
                         model.put("gras", false);
                 }
 
                 return "approve";
         }

◆ getClientService()

ClientDetailsEntityService org.mitre.oauth2.web.OAuthConfirmationController.getClientService ( )

inline

戻り値: the clientService

                                                              {
                 return clientService;
         }

◆ setClientService()

void org.mitre.oauth2.web.OAuthConfirmationController.setClientService ( ClientDetailsEntityService clientService )

inline

引数

clientService the clientService to set

                                                                                {
                 this.clientService = clientService;
         }

メンバ詳解

◆ clientService

ClientDetailsEntityService org.mitre.oauth2.web.OAuthConfirmationController.clientService

private

◆ logger

final Logger org.mitre.oauth2.web.OAuthConfirmationController.logger = LoggerFactory.getLogger(OAuthConfirmationController.class)

staticprivate

Logger for this class

◆ redirectResolver

RedirectResolver org.mitre.oauth2.web.OAuthConfirmationController.redirectResolver

private

◆ scopeClaimTranslationService

ScopeClaimTranslationService org.mitre.oauth2.web.OAuthConfirmationController.scopeClaimTranslationService

private

◆ scopeService

SystemScopeService org.mitre.oauth2.web.OAuthConfirmationController.scopeService

private

◆ statsService

StatsService org.mitre.oauth2.web.OAuthConfirmationController.statsService

private

◆ userInfoService

UserInfoService org.mitre.oauth2.web.OAuthConfirmationController.userInfoService

private

このクラス詳解は次のファイルから抽出されました:

D:/AppData/OpenId/mitreid-connect/src/openid-connect-server/src/main/java/org/mitre/oauth2/web/OAuthConfirmationController.java

公開メンバ関数

非公開変数類

静的非公開変数類

詳解

構築子と解体子

◆ OAuthConfirmationController() [1/2]

◆ OAuthConfirmationController() [2/2]

関数詳解

◆ confimAccess()

◆ getClientService()

◆ setClientService()

メンバ詳解

◆ clientService

◆ logger

◆ redirectResolver

◆ scopeClaimTranslationService

◆ scopeService

◆ statsService

◆ userInfoService