org.mitre.openid.connect.client.NamedAdminAuthoritiesMapper クラス

org.mitre.openid.connect.client.NamedAdminAuthoritiesMapper の継承関係図

org.mitre.openid.connect.client.NamedAdminAuthoritiesMapper 連携図

公開メンバ関数
Collection<? extends GrantedAuthority >	mapAuthorities (JWT idToken, UserInfo userInfo)
Set< SubjectIssuerGrantedAuthority >	getAdmins ()
void	setAdmins (Set< SubjectIssuerGrantedAuthority > admins)

非公開変数類
Set< SubjectIssuerGrantedAuthority >	admins = new HashSet<>()

静的非公開変数類
static Logger	logger = LoggerFactory.getLogger(NamedAdminAuthoritiesMapper.class)
static final SimpleGrantedAuthority	ROLE_ADMIN = new SimpleGrantedAuthority("ROLE_ADMIN")
static final SimpleGrantedAuthority	ROLE_USER = new SimpleGrantedAuthority("ROLE_USER")

詳解

Simple mapper that adds ROLE_USER to the authorities map for all queries, plus adds ROLE_ADMIN if the subject and issuer pair are found in the configurable "admins" set.

著者

jricher

関数詳解

getAdmins()

Set<SubjectIssuerGrantedAuthority> org.mitre.openid.connect.client.NamedAdminAuthoritiesMapper.getAdmins ( )

inline

戻り値

the admins

                                                              {
                return admins;
        }

mapAuthorities()

Collection<? extends GrantedAuthority> org.mitre.openid.connect.client.NamedAdminAuthoritiesMapper.mapAuthorities ( JWT  idToken, UserInfo  userInfo  )

inline

org.mitre.openid.connect.client.OIDCAuthoritiesMapperを実装しています。

                                                                                                     {

                Set<GrantedAuthority> out = new HashSet<>();
                try {
                        JWTClaimsSet claims = idToken.getJWTClaimsSet();

                        SubjectIssuerGrantedAuthority authority = new SubjectIssuerGrantedAuthority(claims.getSubject(), claims.getIssuer());
                        out.add(authority);

                        if (admins.contains(authority)) {
                                out.add(ROLE_ADMIN);
                        }

                        // everybody's a user by default
                        out.add(ROLE_USER);

                } catch (ParseException e) {
                        logger.error("Unable to parse ID Token inside of authorities mapper (huh?)");
                }
                return out;
        }

setAdmins()

void org.mitre.openid.connect.client.NamedAdminAuthoritiesMapper.setAdmins ( Set< SubjectIssuerGrantedAuthority >  admins )

inline

引数

admins

the admins to set

                                                                         {
                this.admins = admins;
        }

メンバ詳解

admins

Set<SubjectIssuerGrantedAuthority> org.mitre.openid.connect.client.NamedAdminAuthoritiesMapper.admins = new HashSet<>()

private

logger

Logger org.mitre.openid.connect.client.NamedAdminAuthoritiesMapper.logger = LoggerFactory.getLogger(NamedAdminAuthoritiesMapper.class)

staticprivate

ROLE_ADMIN

final SimpleGrantedAuthority org.mitre.openid.connect.client.NamedAdminAuthoritiesMapper.ROLE_ADMIN = new SimpleGrantedAuthority("ROLE_ADMIN")

staticprivate

ROLE_USER

final SimpleGrantedAuthority org.mitre.openid.connect.client.NamedAdminAuthoritiesMapper.ROLE_USER = new SimpleGrantedAuthority("ROLE_USER")

staticprivate

---

このクラス詳解は次のファイルから抽出されました:

• D:/AppData/OpenId/mitreid-connect/src/openid-connect-client/src/main/java/org/mitre/openid/connect/client/NamedAdminAuthoritiesMapper.java