org.mitre.uma.service.impl.DefaultUmaTokenService クラス

org.mitre.uma.service.impl.DefaultUmaTokenService の継承関係図

org.mitre.uma.service.impl.DefaultUmaTokenService 連携図

公開メンバ関数
OAuth2AccessTokenEntity	createRequestingPartyToken (OAuth2Authentication o2auth, PermissionTicket ticket, Policy policy)

非公開変数類
AuthenticationHolderRepository	authenticationHolderRepository
OAuth2TokenEntityService	tokenService
ClientDetailsEntityService	clientService
ConfigurationPropertiesBean	config
JWTSigningAndValidationService	jwtService

詳解

著者

jricher

関数詳解

createRequestingPartyToken()

OAuth2AccessTokenEntity org.mitre.uma.service.impl.DefaultUmaTokenService.createRequestingPartyToken ( OAuth2Authentication  o2auth, PermissionTicket  ticket, Policy  policy  )

inline

org.mitre.uma.service.UmaTokenServiceを実装しています。

                                                                                                                                       {
                OAuth2AccessTokenEntity token = new OAuth2AccessTokenEntity();
                AuthenticationHolderEntity authHolder = new AuthenticationHolderEntity();
                authHolder.setAuthentication(o2auth);
                authHolder = authenticationHolderRepository.save(authHolder);

                token.setAuthenticationHolder(authHolder);

                ClientDetailsEntity client = clientService.loadClientByClientId(o2auth.getOAuth2Request().getClientId());
                token.setClient(client);

                Set<String> ticketScopes = ticket.getPermission().getScopes();
                Set<String> policyScopes = policy.getScopes();

                Permission perm = new Permission();
                perm.setResourceSet(ticket.getPermission().getResourceSet());
                perm.setScopes(new HashSet<>(Sets.intersection(ticketScopes, policyScopes)));

                token.setPermissions(Sets.newHashSet(perm));

                JWTClaimsSet.Builder claims = new JWTClaimsSet.Builder();

                claims.audience(Lists.newArrayList(ticket.getPermission().getResourceSet().getId().toString()));
                claims.issuer(config.getIssuer());
                claims.jwtID(UUID.randomUUID().toString());

                if (config.getRqpTokenLifeTime() != null) {
                        Date exp = new Date(System.currentTimeMillis() + config.getRqpTokenLifeTime() * 1000L);

                        claims.expirationTime(exp);
                        token.setExpiration(exp);
                }


                JWSAlgorithm signingAlgorithm = jwtService.getDefaultSigningAlgorithm();
                JWSHeader header = new JWSHeader(signingAlgorithm, null, null, null, null, null, null, null, null, null,
                                jwtService.getDefaultSignerKeyId(),
                                null, null);
                SignedJWT signed = new SignedJWT(header, claims.build());

                jwtService.signJwt(signed);

                token.setJwt(signed);

                tokenService.saveAccessToken(token);

                return token;
        }

メンバ詳解

authenticationHolderRepository

AuthenticationHolderRepository org.mitre.uma.service.impl.DefaultUmaTokenService.authenticationHolderRepository

private

clientService

ClientDetailsEntityService org.mitre.uma.service.impl.DefaultUmaTokenService.clientService

private

config

ConfigurationPropertiesBean org.mitre.uma.service.impl.DefaultUmaTokenService.config

private

jwtService

JWTSigningAndValidationService org.mitre.uma.service.impl.DefaultUmaTokenService.jwtService

private

tokenService

OAuth2TokenEntityService org.mitre.uma.service.impl.DefaultUmaTokenService.tokenService

private

---

このクラス詳解は次のファイルから抽出されました:

• D:/AppData/OpenId/mitreid-connect/src/uma-server/src/main/java/org/mitre/uma/service/impl/DefaultUmaTokenService.java