org.mitre.oauth2.web.AuthenticationUtilities クラス

org.mitre.oauth2.web.AuthenticationUtilities 連携図

静的公開メンバ関数
static void	ensureOAuthScope (Authentication auth, String scope)
static boolean	isAdmin (Authentication auth)
static boolean	hasRole (Authentication auth, String role)

詳解

Utility class to enforce OAuth scopes in authenticated requests.

著者

jricher

関数詳解

ensureOAuthScope()

static void org.mitre.oauth2.web.AuthenticationUtilities.ensureOAuthScope ( Authentication  auth, String  scope  )

inlinestatic

Makes sure the authentication contains the given scope, throws an exception otherwise

引数

auth	the authentication object to check
scope	the scope to look for

例外

InsufficientScopeException

if the authentication does not contain that scope

                                                                               {
                // if auth is OAuth, make sure we've got the right scope
                if (auth instanceof OAuth2Authentication) {
                        OAuth2Authentication oAuth2Authentication = (OAuth2Authentication) auth;
                        if (oAuth2Authentication.getOAuth2Request().getScope() == null
                                        || !oAuth2Authentication.getOAuth2Request().getScope().contains(scope)) {
                                throw new InsufficientScopeException("Insufficient scope", ImmutableSet.of(scope));
                        }
                }
        }

hasRole()

static boolean org.mitre.oauth2.web.AuthenticationUtilities.hasRole ( Authentication  auth, String  role  )

inlinestatic

                                                                        {
                for (GrantedAuthority grantedAuthority : auth.getAuthorities()) {
                        if (grantedAuthority.getAuthority().equals(role)) {
                                return true;
                        }
                }
                return false;

        }

isAdmin()

static boolean org.mitre.oauth2.web.AuthenticationUtilities.isAdmin ( Authentication  auth )

inlinestatic

Check to see if the given auth object has ROLE_ADMIN assigned to it or not

引数

auth

戻り値

                                                           {
                for (GrantedAuthority grantedAuthority : auth.getAuthorities()) {
                        if (grantedAuthority.getAuthority().equals("ROLE_ADMIN")) {
                                return true;
                        }
                }
                return false;
        }

---

このクラス詳解は次のファイルから抽出されました:

• D:/AppData/OpenId/mitreid-connect/src/openid-connect-server/src/main/java/org/mitre/oauth2/web/AuthenticationUtilities.java