Class OpenAmAccessTokenResolver
java.lang.Object
org.forgerock.http.oauth2.resolver.OpenAmAccessTokenResolver
- All Implemented Interfaces:
AccessTokenResolver
An
OpenAmAccessTokenResolver knows how to resolve a given token identifier against an OpenAm instance.
Models an AccessTokenInfo as returned by the OpenAM tokeninfo endpoint.
curl https://openam.example.com:8443/openam/oauth2/tokeninfo?access_token=70e5776c-b0fa-4c70-9962-defb0e9c3cd6
Example of OpenAM returned Json value (for the previous request):
{
"scope": [
"email",
"profile"
],
"grant_type": "password",
"realm": "/",
"token_type": "Bearer",
"expires_in": 471,
"access_token": "70e5776c-b0fa-4c70-9962-defb0e9c3cd6",
"email": "",
"profile": ""
}
-
Constructor Summary
ConstructorsConstructorDescriptionOpenAmAccessTokenResolver(Handler client, TimeService time, String tokenInfoEndpoint) Creates a newOpenAmAccessTokenResolverconfigured to access the given /oauth2/tokeninfo OpenAm endpoint. -
Method Summary
Modifier and TypeMethodDescriptionResolves a given access token against an authorization server.
-
Constructor Details
-
OpenAmAccessTokenResolver
Creates a newOpenAmAccessTokenResolverconfigured to access the given /oauth2/tokeninfo OpenAm endpoint.- Parameters:
client- Http client handler used to perform the requesttime- Time service used to compute the token expiration timetokenInfoEndpoint- full URL of the /oauth2/tokeninfo endpoint
-
-
Method Details
-
resolve
Description copied from interface:AccessTokenResolverResolves a given access token against an authorization server.- Specified by:
resolvein interfaceAccessTokenResolver- Parameters:
context- Context chain used to keep a relationship between requests (tracking)token- token identifier to be resolved- Returns:
- a promise completed either with a valid
AccessTokenInfo(well-formed, known by the server), or by an exception
-