Package org.wildfly.security.http.oidc

Class Oidc

java.lang.Object

org.wildfly.security.http.oidc.Oidc

public class Oidc
extends Object

Constants and utility methods related to the OpenID Connect HTTP mechanism.

Author:

Marek Posolda, Farah Juma

Nested Class Summary

Nested Classes

Modifier and Type	Class	Description
static class	Oidc.AuthOutcome
static class	Oidc.ClientCredentialsProviderType
static class	Oidc.EnvUtil	Replaces any ${} strings with their corresponding system property.
static class	Oidc.SSLRequired
static class	Oidc.TokenStore

Field Summary

Fields

Modifier and Type	Field	Description
static String	ACCEPT
static Pattern	BEARER_TOKEN_PATTERN	Bearer token pattern.
static String	CLIENT_ID
static String	CLIENTS_MANAGEMENT_REGISTER_NODE_PATH
static String	CLIENTS_MANAGEMENT_UNREGISTER_NODE_PATH
static String	CODE
static String	DISABLE_TYP_CLAIM_VALIDATION_PROPERTY_NAME
static String	DISCOVERY_PATH
static String	ERROR
static String	ERROR_DESCRIPTION
static String	FACES_REQUEST
static String	GRANT_TYPE
static String	HTML_CONTENT_TYPE
static int	INVALID_AT_HASH_CLAIM
static int	INVALID_ISSUED_FOR_CLAIM
static String	INVALID_TOKEN
static int	INVALID_TYPE_CLAIM
static String	JSON_CONFIG_CONTEXT_PARAM
static String	JSON_CONTENT_TYPE
static String	KC_IDP_HINT
static String	KEYCLOAK_REALMS_PATH
static String	LOGIN_HINT
static String	MAX_AGE
static String	NO_TOKEN
static String	OIDC_CLIENT_CONTEXT_KEY
static String	OIDC_NAME
static String	OIDC_SCOPE
static String	OPTIONS
static String	PARTIAL
static String	PASSWORD
static String	PROMPT
static String	REDIRECT_URI
static String	REFRESH_TOKEN
static String	RESPONSE_TYPE
static String	SCOPE
static String	SESSION_STATE
static String	SHA256
static String	SHA384
static String	SHA512
static String	SLASH
static String	SOAP_ACTION
static String	STALE_TOKEN
static String	STATE
static String	TEXT_CONTENT_TYPE
static String	UI_LOCALES
static String	USERNAME
static String	WILDCARD_CONTENT_TYPE
static String	X_REQUESTED_WITH
static String	XML_HTTP_REQUEST

Constructor Summary

Constructors

Constructor	Description
Oidc()

Method Summary

Modifier and Type	Method	Description
protected static boolean	checkCachedAccountMatchesRequest(OidcAccount account, OidcClientConfiguration deployment)
static String	generateId()
static String	getJavaAlgorithm(String algorithm)
static String	getJavaAlgorithmForHash(String algorithm)
static String	getQueryParamValue(OidcHttpFacade facade, String paramName)
static boolean	isOpaqueToken(String token)
static void	logToken(String name, String token)
protected static String	stripQueryParam(String url, String paramName)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

ACCEPT

public static final String ACCEPT

See Also:

Constant Field Values

OIDC_NAME

public static final String OIDC_NAME

See Also:

Constant Field Values

JSON_CONTENT_TYPE

public static final String JSON_CONTENT_TYPE

See Also:

Constant Field Values

HTML_CONTENT_TYPE

public static final String HTML_CONTENT_TYPE

See Also:

Constant Field Values

WILDCARD_CONTENT_TYPE

public static final String WILDCARD_CONTENT_TYPE

See Also:

Constant Field Values

TEXT_CONTENT_TYPE

public static final String TEXT_CONTENT_TYPE

See Also:

Constant Field Values

DISCOVERY_PATH

public static final String DISCOVERY_PATH

See Also:

Constant Field Values

KEYCLOAK_REALMS_PATH

public static final String KEYCLOAK_REALMS_PATH

See Also:

Constant Field Values

JSON_CONFIG_CONTEXT_PARAM

public static final String JSON_CONFIG_CONTEXT_PARAM

See Also:

Constant Field Values

CLIENTS_MANAGEMENT_REGISTER_NODE_PATH

public static final String CLIENTS_MANAGEMENT_REGISTER_NODE_PATH

See Also:

Constant Field Values

CLIENTS_MANAGEMENT_UNREGISTER_NODE_PATH

public static final String CLIENTS_MANAGEMENT_UNREGISTER_NODE_PATH

See Also:

Constant Field Values

SLASH

public static final String SLASH

See Also:

Constant Field Values

OIDC_CLIENT_CONTEXT_KEY

public static final String OIDC_CLIENT_CONTEXT_KEY

CLIENT_ID

public static final String CLIENT_ID

See Also:

Constant Field Values

CODE

public static final String CODE

See Also:

Constant Field Values

ERROR

public static final String ERROR

See Also:

Constant Field Values

ERROR_DESCRIPTION

public static final String ERROR_DESCRIPTION

See Also:

Constant Field Values

FACES_REQUEST

public static final String FACES_REQUEST

See Also:

Constant Field Values

GRANT_TYPE

public static final String GRANT_TYPE

See Also:

Constant Field Values

INVALID_TOKEN

public static final String INVALID_TOKEN

See Also:

Constant Field Values

LOGIN_HINT

public static final String LOGIN_HINT

See Also:

Constant Field Values

MAX_AGE

public static final String MAX_AGE

See Also:

Constant Field Values

NO_TOKEN

public static final String NO_TOKEN

See Also:

Constant Field Values

OPTIONS

public static final String OPTIONS

See Also:

Constant Field Values

PARTIAL

public static final String PARTIAL

See Also:

Constant Field Values

PASSWORD

public static final String PASSWORD

See Also:

Constant Field Values

PROMPT

public static final String PROMPT

See Also:

Constant Field Values

SCOPE

public static final String SCOPE

See Also:

Constant Field Values

UI_LOCALES

public static final String UI_LOCALES

See Also:

Constant Field Values

USERNAME

public static final String USERNAME

See Also:

Constant Field Values

OIDC_SCOPE

public static final String OIDC_SCOPE

See Also:

Constant Field Values

REDIRECT_URI

public static final String REDIRECT_URI

See Also:

Constant Field Values

REFRESH_TOKEN

public static final String REFRESH_TOKEN

See Also:

Constant Field Values

RESPONSE_TYPE

public static final String RESPONSE_TYPE

See Also:

Constant Field Values

SESSION_STATE

public static final String SESSION_STATE

See Also:

Constant Field Values

SOAP_ACTION

public static final String SOAP_ACTION

See Also:

Constant Field Values

STALE_TOKEN

public static final String STALE_TOKEN

See Also:

Constant Field Values

STATE

public static final String STATE

See Also:

Constant Field Values

INVALID_ISSUED_FOR_CLAIM

public static final int INVALID_ISSUED_FOR_CLAIM

See Also:

Constant Field Values

INVALID_AT_HASH_CLAIM

public static final int INVALID_AT_HASH_CLAIM

See Also:

Constant Field Values

INVALID_TYPE_CLAIM

public static final int INVALID_TYPE_CLAIM

See Also:

Constant Field Values

SHA256

public static final String SHA256

See Also:

Constant Field Values

SHA384

public static final String SHA384

See Also:

Constant Field Values

SHA512

public static final String SHA512

See Also:

Constant Field Values

DISABLE_TYP_CLAIM_VALIDATION_PROPERTY_NAME

public static final String DISABLE_TYP_CLAIM_VALIDATION_PROPERTY_NAME

See Also:

Constant Field Values

X_REQUESTED_WITH

public static final String X_REQUESTED_WITH

See Also:

Constant Field Values

XML_HTTP_REQUEST

public static final String XML_HTTP_REQUEST

See Also:

Constant Field Values

BEARER_TOKEN_PATTERN

public static final Pattern BEARER_TOKEN_PATTERN

Bearer token pattern. The Bearer token authorization header is of the form "Bearer", followed by optional whitespace, followed by the token itself, followed by optional whitespace. The token itself must be one or more characters and must not contain any whitespace.

KC_IDP_HINT

public static final String KC_IDP_HINT

See Also:

Constant Field Values

Constructor Detail

Oidc

public Oidc()

Method Detail

getJavaAlgorithm

public static String getJavaAlgorithm(String algorithm)

getJavaAlgorithmForHash

public static String getJavaAlgorithmForHash(String algorithm)

generateId

public static String generateId()

getQueryParamValue

public static String getQueryParamValue(OidcHttpFacade facade,
                                        String paramName)

stripQueryParam

protected static String stripQueryParam(String url,
                                        String paramName)

isOpaqueToken

public static boolean isOpaqueToken(String token)

logToken

public static void logToken(String name,
                            String token)

checkCachedAccountMatchesRequest

protected static boolean checkCachedAccountMatchesRequest(OidcAccount account,
                                                          OidcClientConfiguration deployment)