Class AuthorizeRestWebServiceValidator


  • @Named
    public class AuthorizeRestWebServiceValidator
    extends Object
    Version:
    December 15, 2021
    Author:
    Yuriy Zabrovarnyy
    • Constructor Detail

      • AuthorizeRestWebServiceValidator

        public AuthorizeRestWebServiceValidator()
    • Method Detail

      • validateClient

        public io.jans.as.common.model.registration.Client validateClient​(String clientId,
                                                                          String state)
      • validateClient

        public io.jans.as.common.model.registration.Client validateClient​(AuthzRequest authzRequest,
                                                                          boolean isPar)
      • validateClient

        public io.jans.as.common.model.registration.Client validateClient​(String clientId,
                                                                          String state,
                                                                          boolean isPar)
      • isAuthnMaxAgeValid

        public boolean isAuthnMaxAgeValid​(Integer maxAge,
                                          io.jans.as.common.model.session.SessionId sessionUser,
                                          io.jans.as.common.model.registration.Client client)
      • validate

        public void validate​(AuthzRequest authzRequest,
                             List<io.jans.as.model.common.ResponseType> responseTypes,
                             io.jans.as.common.model.registration.Client client)
      • validateCibaRequestObject

        public void validateCibaRequestObject​(JwtAuthorizationRequest jwtRequest,
                                              String clientId)
        Validates expiration, audience and scopes in the JWT request.
        Parameters:
        jwtRequest - Object to be validated.
      • validateRedirectUri

        public String validateRedirectUri​(@NotNull
                                          @NotNull io.jans.as.common.model.registration.Client client,
                                          @Nullable
                                          @Nullable String redirectUri,
                                          @Nullable
                                          @Nullable String state,
                                          @Nullable
                                          @Nullable String deviceAuthzUserCode,
                                          @Nullable
                                          @Nullable jakarta.servlet.http.HttpServletRequest httpRequest)
      • validateRedirectUri

        public String validateRedirectUri​(@NotNull
                                          @NotNull io.jans.as.common.model.registration.Client client,
                                          @Nullable
                                          @Nullable String redirectUri,
                                          @Nullable
                                          @Nullable String state,
                                          @Nullable
                                          @Nullable String deviceAuthzUserCode,
                                          @Nullable
                                          @Nullable jakarta.servlet.http.HttpServletRequest httpRequest,
                                          @NotNull
                                          @NotNull io.jans.as.model.authorize.AuthorizeErrorResponseType error)
      • throwInvalidJwtRequestExceptionAsJwtMode

        public void throwInvalidJwtRequestExceptionAsJwtMode​(RedirectUriResponse redirectUriResponse,
                                                             String reason,
                                                             String state,
                                                             jakarta.servlet.http.HttpServletRequest httpRequest)
      • createInvalidJwtRequestException

        public jakarta.ws.rs.WebApplicationException createInvalidJwtRequestException​(RedirectUriResponse redirectUriResponse,
                                                                                      String reason)
      • checkSignedRequestRequired

        public void checkSignedRequestRequired​(AuthzRequest authzRequest)
      • validateNotWebView

        public void validateNotWebView​(jakarta.servlet.http.HttpServletRequest httpRequest)
      • validateAuthorizationDetails

        public void validateAuthorizationDetails​(AuthzRequest authzRequest,
                                                 io.jans.as.common.model.registration.Client client)
      • validateRequestParameterSupported

        public void validateRequestParameterSupported​(AuthzRequest authzRequest)
      • validateRequestUriParameterSupported

        public void validateRequestUriParameterSupported​(AuthzRequest authzRequest)