Package org.alfresco.repo.security.authentication.identityservice

Class DirectUserTokenProvider

java.lang.Object

org.alfresco.repo.security.authentication.identityservice.DirectUserTokenProvider

All Implemented Interfaces:

UserTokenProvider

public class DirectUserTokenProvider
extends Object
implements UserTokenProvider

UserTokenProvider that authenticates against the Identity Service on every call.

Performs the OAuth2 Resource-Owner-Password-Credentials grant and runs Just-In-Time provisioning so the local Person record exists before the resulting UserToken is returned. This implementation has no caching of any kind; every invocation is a round-trip to the Authorization Server.

Constructor Summary

Constructors

Constructor	Description
DirectUserTokenProvider(IdentityServiceFacade identityServiceFacade, IdentityServiceJITProvisioningHandler jitProvisioningHandler)

Method Summary

Modifier and Type	Method	Description
UserToken	getUserToken(UserTokenRequest request)	Authenticate the supplied request against the Identity Service (or a local cache thereof) and return the resulting validated user token.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

DirectUserTokenProvider

public DirectUserTokenProvider(IdentityServiceFacade identityServiceFacade,
 IdentityServiceJITProvisioningHandler jitProvisioningHandler)

Method Details

getUserToken

public UserToken getUserToken(UserTokenRequest request)

Description copied from interface: UserTokenProvider

Authenticate the supplied request against the Identity Service (or a local cache thereof) and return the resulting validated user token.

Specified by:

getUserToken in interface UserTokenProvider

Parameters:

request - credential pair; never null. Field-level null-validation is enforced by UserTokenRequest so implementations may rely on both components being non-null.

Returns:

a validated UserToken