public class ConfirmationKeyVerifierAccessTokenResolver extends Object implements AccessTokenResolver
ConfirmationKeyVerifierAccessTokenResolver
is responsible of validating
confirmation keys bound to the access_token (such as certificate thumbprint).
If the presented token has no confirmation key, then we continue the processing (strict checking is only required when confirmation key is presented).
Modifier and Type | Class and Description |
---|---|
static class |
ConfirmationKeyVerifierAccessTokenResolver.Heaplet
Creates and initializes a Confirmation Key Verifier access_token resolver in the heap environment.
|
Modifier and Type | Method and Description |
---|---|
Promise<AccessTokenInfo,AccessTokenException> |
resolve(Context context,
String token)
Resolves a given access token against an authorization server.
|
public Promise<AccessTokenInfo,AccessTokenException> resolve(Context context, String token)
AccessTokenResolver
resolve
in interface AccessTokenResolver
context
- Context chain used to keep a relationship between requests (tracking)token
- token identifier to be resolvedAccessTokenInfo
(well-formed, known by the server),
or by an exceptionCopyright 2011-2017 ForgeRock AS.