Class AuthorizeRestWebServiceValidator
- java.lang.Object
-
- io.jans.as.server.authorize.ws.rs.AuthorizeRestWebServiceValidator
-
@Named public class AuthorizeRestWebServiceValidator extends Object
- Version:
- December 15, 2021
- Author:
- Yuriy Zabrovarnyy
-
-
Constructor Summary
Constructors Constructor Description AuthorizeRestWebServiceValidator()
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description void
checkSignedRequestRequired(AuthzRequest authzRequest)
jakarta.ws.rs.WebApplicationException
createInvalidJwtRequestException(RedirectUriResponse redirectUriResponse, String reason)
boolean
isAuthnMaxAgeValid(Integer maxAge, io.jans.as.common.model.session.SessionId sessionUser, io.jans.as.common.model.registration.Client client)
void
throwInvalidJwtRequestExceptionAsJwtMode(RedirectUriResponse redirectUriResponse, String reason, String state, jakarta.servlet.http.HttpServletRequest httpRequest)
void
validate(AuthzRequest authzRequest, List<io.jans.as.model.common.ResponseType> responseTypes, io.jans.as.common.model.registration.Client client)
void
validateAuthorizationDetails(AuthzRequest authzRequest, io.jans.as.common.model.registration.Client client)
void
validateCibaRequestObject(JwtAuthorizationRequest jwtRequest, String clientId)
Validates expiration, audience and scopes in the JWT request.io.jans.as.common.model.registration.Client
validateClient(AuthzRequest authzRequest, boolean isPar)
io.jans.as.common.model.registration.Client
validateClient(String clientId, String state)
io.jans.as.common.model.registration.Client
validateClient(String clientId, String state, boolean isPar)
void
validateJwtRequest(String clientId, String state, jakarta.servlet.http.HttpServletRequest httpRequest, List<io.jans.as.model.common.ResponseType> responseTypes, RedirectUriResponse redirectUriResponse, JwtAuthorizationRequest jwtRequest)
void
validateNotWebView(jakarta.servlet.http.HttpServletRequest httpRequest)
void
validatePkce(String codeChallenge, RedirectUriResponse redirectUriResponse)
String
validateRedirectUri(@NotNull io.jans.as.common.model.registration.Client client, @Nullable String redirectUri, @Nullable String state, @Nullable String deviceAuthzUserCode, @Nullable jakarta.servlet.http.HttpServletRequest httpRequest)
String
validateRedirectUri(@NotNull io.jans.as.common.model.registration.Client client, @Nullable String redirectUri, @Nullable String state, @Nullable String deviceAuthzUserCode, @Nullable jakarta.servlet.http.HttpServletRequest httpRequest, @NotNull io.jans.as.model.authorize.AuthorizeErrorResponseType error)
void
validateRequestJwt(String request, String requestUri, RedirectUriResponse redirectUriResponse)
void
validateRequestObject(JwtAuthorizationRequest jwtRequest, RedirectUriResponse redirectUriResponse)
void
validateRequestParameterSupported(AuthzRequest authzRequest)
void
validateRequestUriParameterSupported(AuthzRequest authzRequest)
-
-
-
Method Detail
-
validateClient
public io.jans.as.common.model.registration.Client validateClient(String clientId, String state)
-
validateClient
public io.jans.as.common.model.registration.Client validateClient(AuthzRequest authzRequest, boolean isPar)
-
validateClient
public io.jans.as.common.model.registration.Client validateClient(String clientId, String state, boolean isPar)
-
isAuthnMaxAgeValid
public boolean isAuthnMaxAgeValid(Integer maxAge, io.jans.as.common.model.session.SessionId sessionUser, io.jans.as.common.model.registration.Client client)
-
validateRequestJwt
public void validateRequestJwt(String request, String requestUri, RedirectUriResponse redirectUriResponse)
-
validate
public void validate(AuthzRequest authzRequest, List<io.jans.as.model.common.ResponseType> responseTypes, io.jans.as.common.model.registration.Client client)
-
validateRequestObject
public void validateRequestObject(JwtAuthorizationRequest jwtRequest, RedirectUriResponse redirectUriResponse)
-
validateCibaRequestObject
public void validateCibaRequestObject(JwtAuthorizationRequest jwtRequest, String clientId)
Validates expiration, audience and scopes in the JWT request.- Parameters:
jwtRequest
- Object to be validated.
-
validateRedirectUri
public String validateRedirectUri(@NotNull @NotNull io.jans.as.common.model.registration.Client client, @Nullable @Nullable String redirectUri, @Nullable @Nullable String state, @Nullable @Nullable String deviceAuthzUserCode, @Nullable @Nullable jakarta.servlet.http.HttpServletRequest httpRequest)
-
validateRedirectUri
public String validateRedirectUri(@NotNull @NotNull io.jans.as.common.model.registration.Client client, @Nullable @Nullable String redirectUri, @Nullable @Nullable String state, @Nullable @Nullable String deviceAuthzUserCode, @Nullable @Nullable jakarta.servlet.http.HttpServletRequest httpRequest, @NotNull @NotNull io.jans.as.model.authorize.AuthorizeErrorResponseType error)
-
throwInvalidJwtRequestExceptionAsJwtMode
public void throwInvalidJwtRequestExceptionAsJwtMode(RedirectUriResponse redirectUriResponse, String reason, String state, jakarta.servlet.http.HttpServletRequest httpRequest)
-
createInvalidJwtRequestException
public jakarta.ws.rs.WebApplicationException createInvalidJwtRequestException(RedirectUriResponse redirectUriResponse, String reason)
-
validatePkce
public void validatePkce(String codeChallenge, RedirectUriResponse redirectUriResponse)
-
validateJwtRequest
public void validateJwtRequest(String clientId, String state, jakarta.servlet.http.HttpServletRequest httpRequest, List<io.jans.as.model.common.ResponseType> responseTypes, RedirectUriResponse redirectUriResponse, JwtAuthorizationRequest jwtRequest)
-
checkSignedRequestRequired
public void checkSignedRequestRequired(AuthzRequest authzRequest)
-
validateNotWebView
public void validateNotWebView(jakarta.servlet.http.HttpServletRequest httpRequest)
-
validateAuthorizationDetails
public void validateAuthorizationDetails(AuthzRequest authzRequest, io.jans.as.common.model.registration.Client client)
-
validateRequestParameterSupported
public void validateRequestParameterSupported(AuthzRequest authzRequest)
-
validateRequestUriParameterSupported
public void validateRequestUriParameterSupported(AuthzRequest authzRequest)
-
-