org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService の継承関係図

org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService 連携図

公開メンバ関数
Set< OAuth2AccessTokenEntity >	getAllAccessTokensForUser (String id)

Set< OAuth2RefreshTokenEntity >	getAllRefreshTokensForUser (String id)

OAuth2AccessTokenEntity	getAccessTokenById (Long id)

OAuth2RefreshTokenEntity	getRefreshTokenById (Long id)

OAuth2AccessTokenEntity	createAccessToken (OAuth2Authentication authentication) throws AuthenticationException, InvalidClientException

OAuth2AccessTokenEntity	refreshAccessToken (String refreshTokenValue, TokenRequest authRequest) throws AuthenticationException

OAuth2Authentication	loadAuthentication (String accessTokenValue) throws AuthenticationException

OAuth2AccessTokenEntity	readAccessToken (String accessTokenValue) throws AuthenticationException

OAuth2AccessTokenEntity	getAccessToken (OAuth2Authentication authentication)

OAuth2RefreshTokenEntity	getRefreshToken (String refreshTokenValue) throws AuthenticationException

void	revokeRefreshToken (OAuth2RefreshTokenEntity refreshToken)

void	revokeAccessToken (OAuth2AccessTokenEntity accessToken)

List< OAuth2AccessTokenEntity >	getAccessTokensForClient (ClientDetailsEntity client)

List< OAuth2RefreshTokenEntity >	getRefreshTokensForClient (ClientDetailsEntity client)

void	clearExpiredTokens ()

OAuth2AccessTokenEntity	saveAccessToken (OAuth2AccessTokenEntity accessToken)

OAuth2RefreshTokenEntity	saveRefreshToken (OAuth2RefreshTokenEntity refreshToken)

TokenEnhancer	getTokenEnhancer ()

void	setTokenEnhancer (TokenEnhancer tokenEnhancer)

OAuth2AccessTokenEntity	getRegistrationAccessTokenForClient (ClientDetailsEntity client)

非公開メンバ関数
OAuth2AccessTokenEntity	clearExpiredAccessToken (OAuth2AccessTokenEntity token)

OAuth2RefreshTokenEntity	clearExpiredRefreshToken (OAuth2RefreshTokenEntity token)

OAuth2RefreshTokenEntity	createRefreshToken (ClientDetailsEntity client, AuthenticationHolderEntity authHolder)

非公開変数類
OAuth2TokenRepository	tokenRepository

AuthenticationHolderRepository	authenticationHolderRepository

ClientDetailsEntityService	clientDetailsService

TokenEnhancer	tokenEnhancer

SystemScopeService	scopeService

ApprovedSiteService	approvedSiteService

静的非公開変数類
static final Logger	logger = LoggerFactory.getLogger(DefaultOAuth2ProviderTokenService.class)

詳解

著者: jricher

関数詳解

◆ clearExpiredAccessToken()

OAuth2AccessTokenEntity org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.clearExpiredAccessToken ( OAuth2AccessTokenEntity token )

inlineprivate

Utility function to delete an access token that's expired before returning it.

引数

token the token to check

戻り値: null if the token is null or expired, the input token (unchanged) if it hasn't

                                                                                                {
                 if (token == null) {
                         return null;
                 } else if (token.isExpired()) {
                         // immediately revoke expired token
                         logger.debug("Clearing expired access token: " + token.getValue());
                         revokeAccessToken(token);
                         return null;
                 } else {
                         return token;
                 }
         }

◆ clearExpiredRefreshToken()

OAuth2RefreshTokenEntity org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.clearExpiredRefreshToken ( OAuth2RefreshTokenEntity token )

inlineprivate

Utility function to delete a refresh token that's expired before returning it.

引数

token the token to check

戻り値: null if the token is null or expired, the input token (unchanged) if it hasn't

                                                                                                   {
                 if (token == null) {
                         return null;
                 } else if (token.isExpired()) {
                         // immediately revoke expired token
                         logger.debug("Clearing expired refresh token: " + token.getValue());
                         revokeRefreshToken(token);
                         return null;
                 } else {
                         return token;
                 }
         }

◆ clearExpiredTokens()

void org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.clearExpiredTokens ( )

inline

Clears out expired tokens and any abandoned authentication objects

org.mitre.oauth2.service.OAuth2TokenEntityServiceを実装しています。

                                          {
                 logger.debug("Cleaning out all expired tokens");
 
                 new AbstractPageOperationTemplate<OAuth2AccessTokenEntity>("clearExpiredAccessTokens") {
                         @Override
                         public Collection<OAuth2AccessTokenEntity> fetchPage() {
                                 return tokenRepository.getAllExpiredAccessTokens(new DefaultPageCriteria());
                         }
 
                         @Override
                         public void doOperation(OAuth2AccessTokenEntity item) {
                                 revokeAccessToken(item);
                         }
                 }.execute();
 
                 new AbstractPageOperationTemplate<OAuth2RefreshTokenEntity>("clearExpiredRefreshTokens") {
                         @Override
                         public Collection<OAuth2RefreshTokenEntity> fetchPage() {
                                 return tokenRepository.getAllExpiredRefreshTokens(new DefaultPageCriteria());
                         }
 
                         @Override
                         public void doOperation(OAuth2RefreshTokenEntity item) {
                                 revokeRefreshToken(item);
                         }
                 }.execute();
 
                 new AbstractPageOperationTemplate<AuthenticationHolderEntity>("clearExpiredAuthenticationHolders") {
                         @Override
                         public Collection<AuthenticationHolderEntity> fetchPage() {
                                 return authenticationHolderRepository.getOrphanedAuthenticationHolders(new DefaultPageCriteria());
                         }
 
                         @Override
                         public void doOperation(AuthenticationHolderEntity item) {
                                 authenticationHolderRepository.remove(item);
                         }
                 }.execute();
         }

◆ createAccessToken()

OAuth2AccessTokenEntity org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.createAccessToken ( OAuth2Authentication authentication ) throws AuthenticationException, InvalidClientException

inline

                                                                                                                                                      {
                 if (authentication != null && authentication.getOAuth2Request() != null) {
                         // look up our client
                         OAuth2Request request = authentication.getOAuth2Request();
 
                         ClientDetailsEntity client = clientDetailsService.loadClientByClientId(request.getClientId());
 
                         if (client == null) {
                                 throw new InvalidClientException("Client not found: " + request.getClientId());
                         }
 
 
                         // handle the PKCE code challenge if present
                         if (request.getExtensions().containsKey(CODE_CHALLENGE)) {
                                 String challenge = (String) request.getExtensions().get(CODE_CHALLENGE);
                                 PKCEAlgorithm alg = PKCEAlgorithm.parse((String) request.getExtensions().get(CODE_CHALLENGE_METHOD));
 
                                 String verifier = request.getRequestParameters().get(CODE_VERIFIER);
 
                                 if (alg.equals(PKCEAlgorithm.plain)) {
                                         // do a direct string comparison
                                         if (!challenge.equals(verifier)) {
                                                 throw new InvalidRequestException("Code challenge and verifier do not match");
                                         }
                                 } else if (alg.equals(PKCEAlgorithm.S256)) {
                                         // hash the verifier
                                         try {
                                                 MessageDigest digest = MessageDigest.getInstance("SHA-256");
                                                 String hash = Base64URL.encode(digest.digest(verifier.getBytes(StandardCharsets.US_ASCII))).toString();
                                                 if (!challenge.equals(hash)) {
                                                         throw new InvalidRequestException("Code challenge and verifier do not match");
                                                 }
                                         } catch (NoSuchAlgorithmException e) {
                                                 logger.error("Unknown algorithm for PKCE digest", e);
                                         }
                                 }
 
                         }
 
 
                         OAuth2AccessTokenEntity token = new OAuth2AccessTokenEntity();//accessTokenFactory.createNewAccessToken();
 
                         // attach the client
                         token.setClient(client);
 
                         // inherit the scope from the auth, but make a new set so it is
                         //not unmodifiable. Unmodifiables don't play nicely with Eclipselink, which
                         //wants to use the clone operation.
                         Set<SystemScope> scopes = scopeService.fromStrings(request.getScope());
 
                         // remove any of the special system scopes
                         scopes = scopeService.removeReservedScopes(scopes);
 
                         token.setScope(scopeService.toStrings(scopes));
 
                         // make it expire if necessary
                         if (client.getAccessTokenValiditySeconds() != null && client.getAccessTokenValiditySeconds() > 0) {
                                 Date expiration = new Date(System.currentTimeMillis() + (client.getAccessTokenValiditySeconds() * 1000L));
                                 token.setExpiration(expiration);
                         }
 
                         // attach the authorization so that we can look it up later
                         AuthenticationHolderEntity authHolder = new AuthenticationHolderEntity();
                         authHolder.setAuthentication(authentication);
                         authHolder = authenticationHolderRepository.save(authHolder);
 
                         token.setAuthenticationHolder(authHolder);
 
                         // attach a refresh token, if this client is allowed to request them and the user gets the offline scope
                         if (client.isAllowRefresh() && token.getScope().contains(SystemScopeService.OFFLINE_ACCESS)) {
                                 OAuth2RefreshTokenEntity savedRefreshToken = createRefreshToken(client, authHolder);
 
                                 token.setRefreshToken(savedRefreshToken);
                         }
 
                         //Add approved site reference, if any
                         OAuth2Request originalAuthRequest = authHolder.getAuthentication().getOAuth2Request();
 
                         if (originalAuthRequest.getExtensions() != null && originalAuthRequest.getExtensions().containsKey("approved_site")) {
 
                                 Long apId = Long.parseLong((String) originalAuthRequest.getExtensions().get("approved_site"));
                                 ApprovedSite ap = approvedSiteService.getById(apId);
 
                                 token.setApprovedSite(ap);
                         }
 
                         OAuth2AccessTokenEntity enhancedToken = (OAuth2AccessTokenEntity) tokenEnhancer.enhance(token, authentication);
 
                         OAuth2AccessTokenEntity savedToken = saveAccessToken(enhancedToken);
 
                         if (savedToken.getRefreshToken() != null) {
                                 tokenRepository.saveRefreshToken(savedToken.getRefreshToken()); // make sure we save any changes that might have been enhanced
                         }
 
                         return savedToken;
                 }
 
                 throw new AuthenticationCredentialsNotFoundException("No authentication credentials found");
         }

◆ createRefreshToken()

OAuth2RefreshTokenEntity org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.createRefreshToken	(	ClientDetailsEntity	client,
		AuthenticationHolderEntity	authHolder
	)

inlineprivate

                                                                                                                                {
                 OAuth2RefreshTokenEntity refreshToken = new OAuth2RefreshTokenEntity(); //refreshTokenFactory.createNewRefreshToken();
                 JWTClaimsSet.Builder refreshClaims = new JWTClaimsSet.Builder();
 
 
                 // make it expire if necessary
                 if (client.getRefreshTokenValiditySeconds() != null) {
                         Date expiration = new Date(System.currentTimeMillis() + (client.getRefreshTokenValiditySeconds() * 1000L));
                         refreshToken.setExpiration(expiration);
                         refreshClaims.expirationTime(expiration);
                 }
 
                 // set a random identifier
                 refreshClaims.jwtID(UUID.randomUUID().toString());
 
                 // TODO: add issuer fields, signature to JWT
 
                 PlainJWT refreshJwt = new PlainJWT(refreshClaims.build());
                 refreshToken.setJwt(refreshJwt);
 
                 //Add the authentication
                 refreshToken.setAuthenticationHolder(authHolder);
                 refreshToken.setClient(client);
 
 
 
                 // save the token first so that we can set it to a member of the access token (NOTE: is this step necessary?)
                 OAuth2RefreshTokenEntity savedRefreshToken = tokenRepository.saveRefreshToken(refreshToken);
                 return savedRefreshToken;
         }

◆ getAccessToken()

OAuth2AccessTokenEntity org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.getAccessToken ( OAuth2Authentication authentication )

inline

Get an access token by its authentication object.

org.mitre.oauth2.service.OAuth2TokenEntityServiceを実装しています。

                                                                                            {
                 // TODO: implement this against the new service (#825)
                 throw new UnsupportedOperationException("Unable to look up access token from authentication object.");
         }

◆ getAccessTokenById()

OAuth2AccessTokenEntity org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.getAccessTokenById ( Long id )

inline

org.mitre.oauth2.service.OAuth2TokenEntityServiceを実装しています。

                                                                    {
                 return clearExpiredAccessToken(tokenRepository.getAccessTokenById(id));
         }

◆ getAccessTokensForClient()

List<OAuth2AccessTokenEntity> org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.getAccessTokensForClient ( ClientDetailsEntity client )

inline

org.mitre.oauth2.service.OAuth2TokenEntityServiceを実装しています。

                                                                                                   {
                 return tokenRepository.getAccessTokensForClient(client);
         }

◆ getAllAccessTokensForUser()

Set<OAuth2AccessTokenEntity> org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.getAllAccessTokensForUser ( String id )

inline

org.mitre.oauth2.service.OAuth2TokenEntityServiceを実装しています。

                                                                                  {
 
                 Set<OAuth2AccessTokenEntity> all = tokenRepository.getAllAccessTokens();
                 Set<OAuth2AccessTokenEntity> results = Sets.newLinkedHashSet();
 
                 for (OAuth2AccessTokenEntity token : all) {
                         if (clearExpiredAccessToken(token) != null && token.getAuthenticationHolder().getAuthentication().getName().equals(id)) {
                                 results.add(token);
                         }
                 }
 
                 return results;
         }

◆ getAllRefreshTokensForUser()

Set<OAuth2RefreshTokenEntity> org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.getAllRefreshTokensForUser ( String id )

inline

org.mitre.oauth2.service.OAuth2TokenEntityServiceを実装しています。

                                                                                    {
                 Set<OAuth2RefreshTokenEntity> all = tokenRepository.getAllRefreshTokens();
                 Set<OAuth2RefreshTokenEntity> results = Sets.newLinkedHashSet();
 
                 for (OAuth2RefreshTokenEntity token : all) {
                         if (clearExpiredRefreshToken(token) != null && token.getAuthenticationHolder().getAuthentication().getName().equals(id)) {
                                 results.add(token);
                         }
                 }
 
                 return results;
         }

◆ getRefreshToken()

OAuth2RefreshTokenEntity org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.getRefreshToken ( String refreshTokenValue ) throws AuthenticationException

inline

Get a refresh token by its token value.

org.mitre.oauth2.service.OAuth2TokenEntityServiceを実装しています。

                                                                                                                  {
                 OAuth2RefreshTokenEntity refreshToken = tokenRepository.getRefreshTokenByValue(refreshTokenValue);
                 if (refreshToken == null) {
                         throw new InvalidTokenException("Refresh token for value " + refreshTokenValue + " was not found");
                 }
                 else {
                         return refreshToken;
                 }
         }

◆ getRefreshTokenById()

OAuth2RefreshTokenEntity org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.getRefreshTokenById ( Long id )

inline

org.mitre.oauth2.service.OAuth2TokenEntityServiceを実装しています。

                                                                      {
                 return clearExpiredRefreshToken(tokenRepository.getRefreshTokenById(id));
         }

◆ getRefreshTokensForClient()

List<OAuth2RefreshTokenEntity> org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.getRefreshTokensForClient ( ClientDetailsEntity client )

inline

org.mitre.oauth2.service.OAuth2TokenEntityServiceを実装しています。

                                                                                                     {
                 return tokenRepository.getRefreshTokensForClient(client);
         }

◆ getRegistrationAccessTokenForClient()

OAuth2AccessTokenEntity org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.getRegistrationAccessTokenForClient ( ClientDetailsEntity client )

inline

org.mitre.oauth2.service.OAuth2TokenEntityServiceを実装しています。

                                                                                                        {
                 List<OAuth2AccessTokenEntity> allTokens = getAccessTokensForClient(client);
 
                 for (OAuth2AccessTokenEntity token : allTokens) {
                         if ((token.getScope().contains(SystemScopeService.REGISTRATION_TOKEN_SCOPE) || token.getScope().contains(SystemScopeService.RESOURCE_TOKEN_SCOPE))
                                         && token.getScope().size() == 1) {
                                 // if it only has the registration scope, then it's a registration token
                                 return token;
                         }
                 }
 
                 return null;
         }

◆ getTokenEnhancer()

TokenEnhancer org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.getTokenEnhancer ( )

inline

戻り値: the tokenEnhancer

                                                 {
                 return tokenEnhancer;
         }

◆ loadAuthentication()

OAuth2Authentication org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.loadAuthentication ( String accessTokenValue ) throws AuthenticationException

inline

                                                                                                                {
 
                 OAuth2AccessTokenEntity accessToken = clearExpiredAccessToken(tokenRepository.getAccessTokenByValue(accessTokenValue));
 
                 if (accessToken == null) {
                         throw new InvalidTokenException("Invalid access token: " + accessTokenValue);
                 } else {
                         return accessToken.getAuthenticationHolder().getAuthentication();
                 }
         }

◆ readAccessToken()

OAuth2AccessTokenEntity org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.readAccessToken ( String accessTokenValue ) throws AuthenticationException

inline

Get an access token from its token value.

org.mitre.oauth2.service.OAuth2TokenEntityServiceを実装しています。

                                                                                                                {
                 OAuth2AccessTokenEntity accessToken = clearExpiredAccessToken(tokenRepository.getAccessTokenByValue(accessTokenValue));
                 if (accessToken == null) {
                         throw new InvalidTokenException("Access token for value " + accessTokenValue + " was not found");
                 } else {
                         return accessToken;
                 }
         }

◆ refreshAccessToken()

OAuth2AccessTokenEntity org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.refreshAccessToken	(	String	refreshTokenValue,
		TokenRequest	authRequest
	)		throws AuthenticationException

inline

                                                                                                                                              {
                 
                 if (Strings.isNullOrEmpty(refreshTokenValue)) {
                         // throw an invalid token exception if there's no refresh token value at all
                         throw new InvalidTokenException("Invalid refresh token: " + refreshTokenValue);
                 }
 
                 OAuth2RefreshTokenEntity refreshToken = clearExpiredRefreshToken(tokenRepository.getRefreshTokenByValue(refreshTokenValue));
 
                 if (refreshToken == null) {
                         // throw an invalid token exception if we couldn't find the token
                         throw new InvalidTokenException("Invalid refresh token: " + refreshTokenValue);
                 }
 
                 ClientDetailsEntity client = refreshToken.getClient();
 
                 AuthenticationHolderEntity authHolder = refreshToken.getAuthenticationHolder();
 
                 // make sure that the client requesting the token is the one who owns the refresh token
                 ClientDetailsEntity requestingClient = clientDetailsService.loadClientByClientId(authRequest.getClientId());
                 if (!client.getClientId().equals(requestingClient.getClientId())) {
                         tokenRepository.removeRefreshToken(refreshToken);
                         throw new InvalidClientException("Client does not own the presented refresh token");
                 }
 
                 //Make sure this client allows access token refreshing
                 if (!client.isAllowRefresh()) {
                         throw new InvalidClientException("Client does not allow refreshing access token!");
                 }
 
                 // clear out any access tokens
                 if (client.isClearAccessTokensOnRefresh()) {
                         tokenRepository.clearAccessTokensForRefreshToken(refreshToken);
                 }
 
                 if (refreshToken.isExpired()) {
                         tokenRepository.removeRefreshToken(refreshToken);
                         throw new InvalidTokenException("Expired refresh token: " + refreshTokenValue);
                 }
 
                 OAuth2AccessTokenEntity token = new OAuth2AccessTokenEntity();
 
                 // get the stored scopes from the authentication holder's authorization request; these are the scopes associated with the refresh token
                 Set<String> refreshScopesRequested = new HashSet<>(refreshToken.getAuthenticationHolder().getAuthentication().getOAuth2Request().getScope());
                 Set<SystemScope> refreshScopes = scopeService.fromStrings(refreshScopesRequested);
                 // remove any of the special system scopes
                 refreshScopes = scopeService.removeReservedScopes(refreshScopes);
 
                 Set<String> scopeRequested = authRequest.getScope() == null ? new HashSet<String>() : new HashSet<>(authRequest.getScope());
                 Set<SystemScope> scope = scopeService.fromStrings(scopeRequested);
 
                 // remove any of the special system scopes
                 scope = scopeService.removeReservedScopes(scope);
 
                 if (scope != null && !scope.isEmpty()) {
                         // ensure a proper subset of scopes
                         if (refreshScopes != null && refreshScopes.containsAll(scope)) {
                                 // set the scope of the new access token if requested
                                 token.setScope(scopeService.toStrings(scope));
                         } else {
                                 String errorMsg = "Up-scoping is not allowed.";
                                 logger.error(errorMsg);
                                 throw new InvalidScopeException(errorMsg);
                         }
                 } else {
                         // otherwise inherit the scope of the refresh token (if it's there -- this can return a null scope set)
                         token.setScope(scopeService.toStrings(refreshScopes));
                 }
 
                 token.setClient(client);
 
                 if (client.getAccessTokenValiditySeconds() != null) {
                         Date expiration = new Date(System.currentTimeMillis() + (client.getAccessTokenValiditySeconds() * 1000L));
                         token.setExpiration(expiration);
                 }
 
                 if (client.isReuseRefreshToken()) {
                         // if the client re-uses refresh tokens, do that
                         token.setRefreshToken(refreshToken);
                 } else {
                         // otherwise, make a new refresh token
                         OAuth2RefreshTokenEntity newRefresh = createRefreshToken(client, authHolder);
                         token.setRefreshToken(newRefresh);
 
                         // clean up the old refresh token
                         tokenRepository.removeRefreshToken(refreshToken);
                 }
 
                 token.setAuthenticationHolder(authHolder);
 
                 tokenEnhancer.enhance(token, authHolder.getAuthentication());
 
                 tokenRepository.saveAccessToken(token);
 
                 return token;
 
         }

◆ revokeAccessToken()

void org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.revokeAccessToken ( OAuth2AccessTokenEntity accessToken )

inline

Revoke an access token.

org.mitre.oauth2.service.OAuth2TokenEntityServiceを実装しています。

                                                                            {
                 tokenRepository.removeAccessToken(accessToken);
         }

◆ revokeRefreshToken()

void org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.revokeRefreshToken ( OAuth2RefreshTokenEntity refreshToken )

inline

Revoke a refresh token and all access tokens issued to it.

org.mitre.oauth2.service.OAuth2TokenEntityServiceを実装しています。

                                                                               {
                 tokenRepository.clearAccessTokensForRefreshToken(refreshToken);
                 tokenRepository.removeRefreshToken(refreshToken);
         }

◆ saveAccessToken()

OAuth2AccessTokenEntity org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.saveAccessToken ( OAuth2AccessTokenEntity accessToken )

inline

org.mitre.oauth2.service.OAuth2TokenEntityServiceを実装しています。

                                                                                             {
                 OAuth2AccessTokenEntity newToken = tokenRepository.saveAccessToken(accessToken);
 
                 // if the old token has any additional information for the return from the token endpoint, carry it through here after save
                 if (accessToken.getAdditionalInformation() != null && !accessToken.getAdditionalInformation().isEmpty()) {
                         newToken.getAdditionalInformation().putAll(accessToken.getAdditionalInformation());
                 }
 
                 return newToken;
         }

◆ saveRefreshToken()

OAuth2RefreshTokenEntity org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.saveRefreshToken ( OAuth2RefreshTokenEntity refreshToken )

inline

org.mitre.oauth2.service.OAuth2TokenEntityServiceを実装しています。

                                                                                                 {
                 return tokenRepository.saveRefreshToken(refreshToken);
         }

◆ setTokenEnhancer()

void org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.setTokenEnhancer ( TokenEnhancer tokenEnhancer )

inline

引数

tokenEnhancer the tokenEnhancer to set

                                                                   {
                 this.tokenEnhancer = tokenEnhancer;
         }

メンバ詳解

◆ approvedSiteService

ApprovedSiteService org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.approvedSiteService

private

◆ authenticationHolderRepository

AuthenticationHolderRepository org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.authenticationHolderRepository

private

◆ clientDetailsService

ClientDetailsEntityService org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.clientDetailsService

private

◆ logger

final Logger org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.logger = LoggerFactory.getLogger(DefaultOAuth2ProviderTokenService.class)

staticprivate

Logger for this class

◆ scopeService

SystemScopeService org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.scopeService

private

◆ tokenEnhancer

TokenEnhancer org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.tokenEnhancer

private

◆ tokenRepository

OAuth2TokenRepository org.mitre.oauth2.service.impl.DefaultOAuth2ProviderTokenService.tokenRepository

private

このクラス詳解は次のファイルから抽出されました:

D:/AppData/OpenId/mitreid-connect/src/openid-connect-server/src/main/java/org/mitre/oauth2/service/impl/DefaultOAuth2ProviderTokenService.java

公開メンバ関数

非公開メンバ関数

非公開変数類

静的非公開変数類

詳解

関数詳解

◆ clearExpiredAccessToken()

◆ clearExpiredRefreshToken()

◆ clearExpiredTokens()

◆ createAccessToken()

◆ createRefreshToken()

◆ getAccessToken()

◆ getAccessTokenById()

◆ getAccessTokensForClient()

◆ getAllAccessTokensForUser()

◆ getAllRefreshTokensForUser()

◆ getRefreshToken()

◆ getRefreshTokenById()

◆ getRefreshTokensForClient()

◆ getRegistrationAccessTokenForClient()

◆ getTokenEnhancer()

◆ loadAuthentication()

◆ readAccessToken()

◆ refreshAccessToken()

◆ revokeAccessToken()

◆ revokeRefreshToken()

◆ saveAccessToken()

◆ saveRefreshToken()

◆ setTokenEnhancer()

メンバ詳解

◆ approvedSiteService

◆ authenticationHolderRepository

◆ clientDetailsService

◆ logger

◆ scopeService

◆ tokenEnhancer

◆ tokenRepository