Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD

org.springframework.security.oauth2.provider.approval
Interface UserApprovalHandler

All Known Implementing Classes:
ApprovalStoreUserApprovalHandler, DefaultUserApprovalHandler, TokenStoreUserApprovalHandler
public interface UserApprovalHandler

Basic interface for determining whether a given client authentication request has been approved by the current user.

Author:
Ryan Heaton, Dave Syer, Amanda Anganes

Method Summary
 AuthorizationRequest checkForPreApproval(AuthorizationRequest authorizationRequest, org.springframework.security.core.Authentication userAuthentication)
           Provides a hook for allowing requests to be pre-approved (skipping the User Approval Page).
 boolean isApproved(AuthorizationRequest authorizationRequest, org.springframework.security.core.Authentication userAuthentication)
           Tests whether the specified authorization request has been approved by the current user (if there is one).
 AuthorizationRequest updateAfterApproval(AuthorizationRequest authorizationRequest, org.springframework.security.core.Authentication userAuthentication)
           Provides an opportunity to update the authorization request before it is checked for approval in cases where the incoming approval parameters contain richer information than just true/false (e.g.
 

Method Detail

isApproved

boolean isApproved(AuthorizationRequest authorizationRequest,
                   org.springframework.security.core.Authentication userAuthentication)

Tests whether the specified authorization request has been approved by the current user (if there is one).

Parameters:
authorizationRequest - the authorization request.
userAuthentication - the user authentication for the current user.
Returns:
true if the request has been approved, false otherwise

checkForPreApproval

AuthorizationRequest checkForPreApproval(AuthorizationRequest authorizationRequest,
                                         org.springframework.security.core.Authentication userAuthentication)

Provides a hook for allowing requests to be pre-approved (skipping the User Approval Page). Some implementations may allow users to store approval decisions so that they only have to approve a site once. This method is called in the AuthorizationEndpoint before sending the user to the Approval page. If this method sets oAuth2Request.approved to true, the Approval page will be skipped.

Parameters:
authorizationRequest - the authorization request.
userAuthentication - the user authentication
Returns:
the AuthorizationRequest, modified if necessary

updateAfterApproval

AuthorizationRequest updateAfterApproval(AuthorizationRequest authorizationRequest,
                                         org.springframework.security.core.Authentication userAuthentication)

Provides an opportunity to update the authorization request before it is checked for approval in cases where the incoming approval parameters contain richer information than just true/false (e.g. some scopes are approved, and others are rejected), implementations may need to be able to modify the AuthorizationRequest before a token is generated from it.

Parameters:
authorizationRequest - the authorization request.
userAuthentication - the user authentication
Returns:
the AuthorizationRequest, modified if necessary
Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD
Copyright © 2013. All rights reserved.