Package com.sap.cloud.security.servlet
Class XsuaaTokenAuthenticator
java.lang.Object
com.sap.cloud.security.servlet.AbstractTokenAuthenticator
com.sap.cloud.security.servlet.XsuaaTokenAuthenticator
- All Implemented Interfaces:
TokenAuthenticator
-
Field Summary
Fields inherited from class com.sap.cloud.security.servlet.AbstractTokenAuthenticator
httpClient, serviceConfiguration -
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionprotected TokenAuthenticationResultauthenticated(Token token) extractFromHeader(String authorizationHeader) Extracts theTokenfrom the authorization header.protected OAuth2ServiceConfigurationReturn other configured service configurations or null if not configured.protected OAuth2ServiceConfigurationReturn configured service configuration or Environments.getCurrent() if not configured.validateRequest(jakarta.servlet.ServletRequest request, jakarta.servlet.ServletResponse response) withHttpClient(org.apache.http.impl.client.CloseableHttpClient httpClient) Use to configure the HttpClient that is used to retrieve token keys or to perform a token-exchange.withServiceConfiguration(OAuth2ServiceConfiguration serviceConfiguration) Use to override the service configuration used.Methods inherited from class com.sap.cloud.security.servlet.AbstractTokenAuthenticator
withCacheConfiguration, withValidationListener
-
Constructor Details
-
XsuaaTokenAuthenticator
public XsuaaTokenAuthenticator()
-
-
Method Details
-
withServiceConfiguration
public AbstractTokenAuthenticator withServiceConfiguration(OAuth2ServiceConfiguration serviceConfiguration) Description copied from class:AbstractTokenAuthenticatorUse to override the service configuration used.- Overrides:
withServiceConfigurationin classAbstractTokenAuthenticator- Parameters:
serviceConfiguration- the service configuration to use- Returns:
- this authenticator
-
withHttpClient
public AbstractTokenAuthenticator withHttpClient(org.apache.http.impl.client.CloseableHttpClient httpClient) Description copied from class:AbstractTokenAuthenticatorUse to configure the HttpClient that is used to retrieve token keys or to perform a token-exchange.- Overrides:
withHttpClientin classAbstractTokenAuthenticator- Parameters:
httpClient- the HttpClient- Returns:
- this authenticator
-
extractFromHeader
Description copied from class:AbstractTokenAuthenticatorExtracts theTokenfrom the authorization header.- Specified by:
extractFromHeaderin classAbstractTokenAuthenticator- Parameters:
authorizationHeader- the value of the 'Authorization' request header- Returns:
- the
Tokeninstance.
-
getServiceConfiguration
Description copied from class:AbstractTokenAuthenticatorReturn configured service configuration or Environments.getCurrent() if not configured.- Specified by:
getServiceConfigurationin classAbstractTokenAuthenticator- Returns:
- the actual service configuration
-
getOtherServiceConfiguration
Description copied from class:AbstractTokenAuthenticatorReturn other configured service configurations or null if not configured.- Specified by:
getOtherServiceConfigurationin classAbstractTokenAuthenticator- Returns:
- the other service configuration or null
-
authenticated
- Overrides:
authenticatedin classAbstractTokenAuthenticator
-
validateRequest
public TokenAuthenticationResult validateRequest(jakarta.servlet.ServletRequest request, jakarta.servlet.ServletResponse response) - Specified by:
validateRequestin interfaceTokenAuthenticator- Overrides:
validateRequestin classAbstractTokenAuthenticator
-