All Classes Interface Summary Class Summary Enum Summary Exception Summary
| Class |
Description |
| AbstractAuthenticationStrategyDelegate<T extends org.springframework.security.core.Authentication> |
|
| AbstractOAuthClientAuthenticationStrategyDelegate |
|
| AbstractUserTokenEnhancer |
Implementation of TokenEnhancer that has a request scoped UserContext that contains the
current user to avoid repeated database reads.
|
| AccessTokenClaimKeys |
Contains constants that are used as keys for token claims for access tokens in
TokenEnhancers.
|
| AccessTokenClaimKeys.ClientRestrictionClaims |
|
| AccessTokenClaimKeys.CustomerContextClaims |
|
| AccessTokenClaimKeys.CustomerSegmentClaims |
|
| AccessTokenClaimKeys.RegisteredClaims |
|
| AccessTokenClaimKeys.TenantClaims |
|
| AccessTokenClaimKeys.UserDataClaims |
|
| AccessTokenClaimKeys.UserRestrictionClaims |
|
| AccountLockedException |
Exception thrown when an attempt reset password is blocked due to a user account being locked.
|
| AdminPermission |
Specific messaging contract for sending in admin permission updates.
|
| AdminPermission.AdminPermissionBuilder |
|
| AdminPermissionPersistenceConsumer |
Spring cloud data channel description for messaging input.
|
| AdminPermissionPersistenceHandler |
|
| AdminPermissionRef |
Specific messaging contract for permission references by entities.
|
| AdminRestrictedPermission |
Specific messaging contract for restricted permission references by entities.
|
| AdminRestrictedRole |
Specific messaging contract for restricted role references by entities.
|
| AdminRestriction |
Specific messaging contract for restriction references by entities.
|
| AdminRole |
Specific messaging contract for sending in admin role updates.
|
| AdminRole.AdminRoleBuilder |
|
| AdminRolePersistenceConsumer |
Spring cloud data channel description for messaging input.
|
| AdminRolePersistenceHandler |
|
| AdminRoleRef |
Specific messaging contract for role references by entities.
|
| AdminUser |
Specific messaging contract for sending in user updates.
|
| AdminUser.AdminUserBuilder |
|
| AdminUserPersistenceConsumer |
Spring cloud data channel description for messaging input.
|
| AdminUserPersistenceHandler |
Handles messages from the Persistence channel for AdminUser data to update User. |
| Application |
Projection domain representing a subset of information provided by
Application.
|
| ApplicationRef |
A DTO intended to hold just the applicationId of a user-application relationship.
|
| ApplicationRepository<D> |
|
| ApplicationService<P extends Application> |
Perform CRUD operations using the Application projection domain. |
| AuthAnonymizationAutoConfiguration |
|
| AuthAnonymizationEndpoint |
Supply the anonymization related endpoint to the service.
|
| AuthAnonymizationProperties |
Controls anonymization behavior for the auth service
|
| AuthCacheProperties |
Properties that influence cache settings for the auth service
|
| AuthClientProviderEncryptionProperties |
Properties used for encrypted columns.
|
| AuthCode |
Template entity for storing auth codes.
|
| AuthCodeRepository |
|
| AuthCustomerPersistenceConsumer |
Spring cloud data channel description for messaging input.
|
| AuthDataUpdatePersistenceHandler |
Handles messages from the Persistence channel for other services that can impact the data in the
authentication service, such as roles, permissions, and users.
|
| AuthDataUpdatePersistenceHandlerAutoConfiguration |
|
| AuthDefaultsEnvironmentPostProcessor |
Spring Boot default property overrides for this service
|
| AuthenticationController |
|
| AuthenticationController.ModelAttributes |
|
| AuthenticationEvent |
A message event dispatched after authentication events occur.
|
| AuthenticationFailureExceptionMapping |
Class used for mapping an exception to a redirect URI.
|
| AuthenticationLogoutHandler |
|
| AuthenticationMessageType |
|
| AuthenticationProperties |
|
| AuthenticationStrategyDelegate |
|
| AuthenticationVariableExpression |
|
| AuthExceptionAdvisor |
General exception handler registry for handlers not exclusive to a single controller.
|
| AuthI18nAutoConfiguration |
Responsible for configuring the setup for internationalization support.
|
| AuthI18nAutoConfiguration.AuthMessagesDefaultBasenameAddingPostProcessor |
|
| AuthorizationDataInitializationProperties |
|
| AuthorizationDataInitializationProperties.AuthorizationServerConfig |
|
| AuthorizationDataInitializationProperties.AuthorizedClientConfig |
|
| AuthorizationRequestRepositoryProperties |
|
| AuthorizationRequestWrapper |
A holder for OAuth2AuthorizationRequest data, with a field for the Broadleaf Client Id
|
| AuthorizationRequestWrapper.AuthorizationRequestWrapperBuilder |
|
| AuthorizationServer |
An authorization server responsible for authenticating users.
|
| AuthorizationServerAutoConfiguration |
|
| AuthorizationServerConfiguration |
Set up OAuth specific items.
|
| AuthorizationServerDataInitializer |
|
| AuthorizationServerDataInitializerAutoConfiguration |
|
| AuthorizationServerDataInitializerAutoConfiguration.AuthorizationServerConfiguration |
|
| AuthorizationServerDataInitializerAutoConfiguration.AuthorizedClientConfiguration |
|
| AuthorizationServerDataInitializerAutoConfiguration.DefaultMasterGlobalAdminUserConfiguration |
|
| AuthorizationServerDataInitializerAutoConfiguration.PermissionConfiguration |
|
| AuthorizationServerDataInitializerAutoConfiguration.RoleConfiguration |
|
| AuthorizationServerDataInitializerAutoConfiguration.UserConfiguration |
|
| AuthorizationServerEndpoint |
|
| AuthorizationServerJpaAutoConfiguration |
|
| AuthorizationServerProperties |
|
| AuthorizationServerProperties.ContentSecurityPolicyProperties |
|
| AuthorizationServerProperties.ContentSecurityPolicyProperties.DirectiveValue |
Represents the configuration for a particular 'directive' (ex: should 'default-src' be
provided, and what should its value be?).
|
| AuthorizationServerProperties.OAuth2 |
|
| AuthorizationServerRepository<D> |
|
| AuthorizationServerService<P extends AuthorizationServer> |
Service interface for managing authorization servers.
|
| AuthorizationServerWebAutoConfiguration |
|
| AuthorizationServerWebSecurityConfiguration |
Set up the spring security configuration for our OAuth server
|
| AuthorizedClient |
Represents the authorization service concept of an authorized client.
|
| AuthorizedClientAutoConfiguration |
|
| AuthorizedClientDataInitializer |
|
| AuthorizedClientEndpoint |
|
| AuthorizedClientEntityValidator |
|
| AuthorizedClientRepository<D> |
|
| AuthorizedClientService<P extends AuthorizedClient> |
|
| AuthPersistenceConsumer |
Spring cloud data channel description for messaging input.
|
| AuthRegistrationProperties |
Configuration properties for special behavior on user registration.
|
| AuthResourceWebAutoConfiguration |
Web configuration for the resource side of the auth server
|
| AuthServerCreationHandler |
|
| AuthServerEntityValidator |
|
| AuthServiceCacheAutoConfiguration |
Configuration for engaging default Broadleaf support for Apache Ignite cache
|
| AuthServiceEntityValidationConfiguration |
Auth-specific configuration for entity validations.
|
| AuthServiceJpaAutoConfiguration |
|
| AuthServiceOAuth2CommonAutoConfiguration |
Common configuration used to set up the token services and converters for the authorization
server.
|
| AuthServiceServiceAutoConfiguration |
Configures the common service layer that applies to both the resource and authorization server
concerns
|
| AuthServiceTemplateAutoConfiguration |
|
| AuthServiceTemplateAutoConfiguration.ViewResolverPostProcessor |
|
| AuthServiceUserWebAutoConfiguration |
Autoconfiguration for the username/password login functionality
|
| AuthTenantPersistenceHandler |
Handler for the AuthPersistenceConsumer channel that specializes in replicating persisted
Application domain information
into a subset of that information embodied in the Application domain. |
| AuthUserJpaAutoConfiguration |
|
| AuthUserMessagingAutoConfiguration |
|
| BasicSavedRequest |
Simple implementation of a SavedRequest.
|
| BroadleafAuthorizationRequestRepository |
Save and load OAuth2AuthorizationRequest from a cookie.
|
| BroadleafClientRegistrationRepository |
This enhances the ClientRegistrationRepository interface to enable users to get all
ClientRegistrations at once.
|
| BroadleafDialect |
|
| BroadleafOAuthClientAuthenticationDetails |
|
| BroadleafVariableExpression |
Classes that implement this interface will be exposed to the Thymeleaf expression evaluation
context.
|
| BroadleafVariableExpressionObjectFactory |
|
| ChangePasswordForm |
This form backs the change password HTML form as a DTO.
|
| ChangePasswordFormValidator |
|
| ClearCustomerSegmentEventConsumer |
|
| ClearCustomerSegmentEventListener |
|
| ClearCustomerSegmentRequest |
Represents a request to remove a customer segment from multiple users.
|
| ClientDiscoveryEndpoint |
Endpoint used for the discovery of authorized client details.
|
| ClientDiscoveryEndpoint.ClientDiscoveryResponse |
|
| ClientDiscoveryEndpoint.ClientDiscoveryType |
|
| ClientIdentityProviderProperties |
Properties for configuring identity providers for different clients, i.e., admin or commerce
client, during a user authorization flow.
|
| ClientIdentityProviderProperties.ClientProperties |
|
| ClientIdentityProviderProperties.ClientProperties.Provider |
|
| ClientIdFilter |
This filter helps with the 3rd Party OAuth Server functionality, where this app is acting as an
OAuth2 Client to a 3rd party OAuth service.
|
| ClientRedirectAutoConfiguration |
|
| ClientRedirectService |
Service used for returning redirects for a client and/or server
|
| ClientRegistrationPropertiesService<P extends OAuthClientRegistrationWrapper> |
|
| ClientRestrictionTokenEnhancer |
|
| ClientValidationException |
Indicates that a request was missing a client ID, the client could not be found, or the client
does not allow the type of request received.
|
| ContentSecurityPolicyConfigurer |
|
| ContextHelperService |
This interface is intended to encapsulate functionality for getting client id and tenant id from
the request context
|
| CookieRequestCache |
Alternative storage mechanism for an original destination before being redirected for login.
|
| CookieUtil |
|
| Customer |
A subset of customer information that we're concerned with from Customer Service.
|
| CustomerContextTokenEnhancer |
Enhances tokens with the "customer_context_ids" claim.
|
| CustomerPersistenceHandler |
|
| CustomerSegmentsTokenEnhancer |
Enhances a token with the IDs of CustomerSegments that the User is a member of if they are
present in the User attributes map.
|
| CustomizedRoleRepository<D> |
|
| CustomizedUserPermissionRepository<D> |
|
| CustomizedUserRepository<D> |
|
| DataInitializer |
|
| DefaultApplicationService<P extends Application,D extends com.broadleafcommerce.data.tracking.core.mapping.ModelMapperMappable & com.broadleafcommerce.data.tracking.core.mapping.BusinessTypeAware> |
|
| DefaultAuthorizationCodeServices |
Implementation of AuthorizationCodeServices that better handles our AuthCode
domain compared to the Spring provided JdbcAuthorizationCodeServices. |
| DefaultAuthorizationServerService<P extends AuthorizationServer,D extends com.broadleafcommerce.data.tracking.core.mapping.ModelMapperMappable & com.broadleafcommerce.data.tracking.core.mapping.BusinessTypeAware> |
|
| DefaultAuthorizedClientService<P extends AuthorizedClient,D extends com.broadleafcommerce.data.tracking.core.mapping.ModelMapperMappable & com.broadleafcommerce.data.tracking.core.mapping.BusinessTypeAware> |
|
| DefaultAuthServerCreationHandler |
|
| DefaultAuthServerCreationPropertiesLoader |
|
| DefaultAuthServerProperties |
Default authorization server properties to use when creating an authorization server and
authorized clients.
|
| DefaultAuthServerProperties.AuthServerProperties |
|
| DefaultBroadleafClientRegistrationRepository |
Provides ClientRegistration objects to the OAuth2 Client beans.
|
| DefaultChangePasswordFormValidator |
|
| DefaultClaimsSetVerifier |
Verifies the JWT token being utilized at the resource tier (during the JWT decode) contains the
claims issued from the authorization service.
|
| DefaultClientDetailsService |
|
| DefaultClientRedirectService |
|
| DefaultClientRegistrationPropertiesService<P extends OAuthClientRegistrationWrapper> |
|
| DefaultContextHelperService |
This class uses the RequestContextHolder to read the client_id for the current request, then
looks up the corresponding tenant id.
|
| DefaultExceptionMappingAuthenticationFailureHandler |
|
| DefaultImpersonationClaimsEnhancer |
|
| DefaultImpersonationRequestValidator |
Default implementation of ImpersonationRequestValidator that validates that the CSR has
authority to impersonate, the impersonated target exists, and that the impersonated target has
chosen to allow impersonation. |
| DefaultImpersonationService |
|
| DefaultMasterGlobalAdminUserDataInitializer |
The seed-data for the default master global admin user.
|
| DefaultOAuth2AuthorizedClientRepository |
This service stores an OAuth2AuthorizedClient as a Base64 encoded value in a cookie.
|
| DefaultOAuth2AuthorizedClientRepository.TenantAwareOAuth2AuthorizedClientWrapper |
This class holds the necessary fields for saving and loading OAuth2AuthorizedClient.
|
| DefaultOAuth2SessionToken |
|
| DefaultOAuth2UserDetails |
|
| DefaultOAuth2UserDetailsService |
|
| DefaultOAuthClientAuthenticationDetailsSource |
|
| DefaultOAuthClientRegistrationPersistenceService<P extends OAuthClientRegistrationWrapper,D extends com.broadleafcommerce.data.tracking.core.mapping.BusinessTypeAware & com.broadleafcommerce.data.tracking.core.mapping.ModelMapperMappable> |
|
| DefaultOIDCAuthenticationStrategyDelegate |
Basic implementation that will try to handle any OAuth2AuthenticationToken.
|
| DefaultOriginalAwareOAuth2RefreshToken |
Add a new token wrapper type that allows keeping track of the id for the original ancestor
refresh token.
|
| DefaultPasscodeService<P extends PasswordToken,U extends User,D extends com.broadleafcommerce.data.tracking.core.mapping.BusinessTypeAware & com.broadleafcommerce.data.tracking.core.mapping.ModelMapperMappable> |
|
| DefaultPasswordRequestValidator |
|
| DefaultPasswordTokenValidator<P extends PasswordToken> |
|
| DefaultPrivilegeService |
|
| DefaultPrivilegeService.PrivilegeHydrationResult |
An intermediary data structure used internally by PrivilegeService to hold all the
restrictions, flat permissions, restricted roles, and restricted permissions of a user entity and permissions from a server entity to prevent
querying the data multiple times. |
| DefaultRegistrationValidator |
|
| DefaultResetPasswordFormValidator<P extends PasswordToken> |
|
| DefaultRotatingTokenServices |
Based on DefaultTokenServices.
|
| DefaultRotatingTokenStore |
A specialized TokenStore concept used to support the refresh token rotation concept in
Broadleaf.
|
| DefaultSecurityService |
Default implementation of the security service that utilizes the security context and various
repositories in order to assess the user's privileges.
|
| DefaultSessionAuthenticationStrategy |
This is used to set the session cookie after successful authentication.
|
| DefaultTokenCleanupServices |
|
| DefaultUserAttributesRequestHandler |
|
| DefaultUserLockoutService |
|
| DefaultUserLoginAttemptService<P extends UserLoginAttempt,D extends com.broadleafcommerce.data.tracking.core.mapping.BusinessTypeAware & com.broadleafcommerce.data.tracking.core.mapping.ModelMapperMappable> |
|
| DefaultUserLoginService |
|
| DefaultUserMessagingService |
|
| DefaultUsernameValidator |
|
| DefaultUserOperationService |
|
| DefaultUserPasswordService<P extends PasswordToken,U extends User,D extends com.broadleafcommerce.data.tracking.core.mapping.BusinessTypeAware & com.broadleafcommerce.data.tracking.core.mapping.ModelMapperMappable> |
|
| DefaultUserPermissionService<P extends UserPermission,D extends com.broadleafcommerce.data.tracking.core.mapping.BusinessTypeAware & com.broadleafcommerce.data.tracking.core.mapping.ModelMapperMappable> |
|
| DefaultUserRegistrationService<P extends User> |
|
| DefaultUserRoleAncestryHydrationService |
|
| DefaultUserRoleService<P extends UserRole,D extends com.broadleafcommerce.data.tracking.core.mapping.BusinessTypeAware & com.broadleafcommerce.data.tracking.core.mapping.ModelMapperMappable> |
|
| DefaultUserService<P extends User,D extends com.broadleafcommerce.data.tracking.core.mapping.BusinessTypeAware & com.broadleafcommerce.data.tracking.core.mapping.ModelMapperMappable> |
|
| DefaultUserTypes |
Default user types managed within this service
|
| DemoSchemaInitializerEnvironmentPostProcessor |
|
| EmbeddedAuthenticationController |
|
| EmbeddedAuthenticationController.PasswordResetEmailRequest |
Represents a request to get an email with a link to reset a user's password.
|
| EmbeddedLoginAuthenticationFailureHandler |
|
| EmbeddedLoginAuthenticationFilter |
Processes an authentication form submission from an embedded login form.
|
| EmbeddedLoginAuthenticationProvider |
|
| EmbeddedLoginAuthenticationSuccessHandler<P extends PasswordToken,U extends User> |
Writes a One-Time Passcode to the response on Embedded Login success.
|
| EmbeddedLoginAuthenticationToken |
An Authentication implementation that is designed for simple presentation of an OAuth2
clientId, username, and password.
|
| EmbeddedLoginNotAllowedException |
Indicates that there was an attempt to login a user using embedded login when the
AuthorizationServer receiving the request did not allow embedded login. |
| EmbeddedLoginOTPResponseException |
Thrown if there is a problem writing the One-Time Passcode to the embedded login response.
|
| EmbeddedLoginProperties |
|
| EmbeddedLoginTokenAuthenticationProvider |
Authenticates the user for the
TokenEndpoint based on a one-time
passcode parameter.
|
| EmbeddedLoginTokenEndpointAuthenticationFilter |
Authentication Filter for the
TokenEndpoint when using Embedded
Login.
|
| EmbeddedLoginTokenEndpointAuthenticationFilter.EmbeddedLoginTokenEndpointRequestMatcher |
Matches requests based on destination and parameters.
|
| EmbeddedLoginTokenEndpointAuthenticationToken |
Authentication Token for the
TokenEndpoint when using Embedded
Login.
|
| EmbeddedLoginTokenGranter |
|
| EmbeddedRegistrationNotAllowedException |
Indicates that there was an attempt to register a user using embedded registration when the
AuthorizationServer receiving the request did not allow embedded registration. |
| EncryptedFieldConverter |
Converter used to encrypt a string when persisted and decrypt it when read.
|
| EncryptionMigrationTask |
Runs as a Liquibase change set.
|
| ExternalTenantUrlResolver |
The default implementation of TenantUrlResolver, which makes external calls to the tenant
service for URL resolution of applications and tenant admins. |
| ExternalTenantUrlResolverProperties |
Properties used by ExternalTenantUrlResolver to determine the paths at which to make
requests for admin and application URL resolution. |
| FormLoginAuthenticationFilter |
Processes an authentication form submission for an OAuth2 Authorization Server for Universal
Login.
|
| FormLoginAuthenticationProvider |
|
| FormLoginAuthenticationStrategyDelegate |
|
| FormLoginAuthenticationToken |
An Authentication implementation that is designed for simple presentation of an OAuth2
clientId, username, and password.
|
| GithubOAuthClientAuthenticationStrategyDelegate |
|
| GoogleOAuthClientAuthenticationStrategyDelegate |
|
| ImpersonationClaimsEnhancer |
Strategy for enhancing an OAuth2SessionToken claims before it is stored as an HTTP-only
cookie. |
| ImpersonationClaimsEnhancerChain |
|
| ImpersonationConfiguration |
|
| ImpersonationEndpoint |
|
| ImpersonationRequest |
The initial impersonation request.
|
| ImpersonationRequestToken |
|
| ImpersonationRequestValidator |
|
| ImpersonationService |
Service providing various methods related to the impersonation flow.
|
| ImpersonationTokenEnhancer |
An implementation of TokenEnhancer that copies claims from the current CSR's
Authentication.getDetails() to the access token claims.
|
| InvalidApplicationContextException |
Exception that is thrown in the event that some operation is being performed with a user, but the
application context is incompatible.
|
| InvalidApplicationIdException |
Exception that is thrown when an invalid application ID is supplied in an operation involving the
user-application relationship.
|
| InvalidUserRoleDeleteException |
Exception thrown when attempting to archive or delete a UserRole which has descendants
still pointing to it as a parent. |
| JpaApplication |
An entity holding information about an application registered via the tenant service
|
| JpaApplicationRepository<D extends JpaApplication> |
|
| JpaAuthorizationServer |
|
| JpaAuthorizationServerRepository<D extends JpaAuthorizationServer> |
|
| JpaAuthorizedClient |
|
| JpaAuthorizedClientRepository<D extends JpaAuthorizedClient> |
|
| JpaCustomizedRoleRepository<D extends JpaUserRole> |
|
| JpaCustomizedUserPermissionRepository<D extends JpaUserPermission> |
|
| JpaCustomizedUserRepository<D extends JpaUser> |
|
| JpaOAuthClientProviderDetails |
JPA Representation of a ClientRegistration.ProviderDetails
|
| JpaOAuthClientRegistration |
JPA representation of a ClientRegistration with a tenant id.
|
| JpaOAuthClientRegistrationRepository<D extends JpaOAuthClientRegistration> |
|
| JpaPasswordToken |
|
| JpaPasswordTokenRepository<D extends JpaPasswordToken> |
|
| JpaRefreshToken1 |
JPA Shard partition for recording a refresh token assignment
|
| JpaRefreshToken2 |
JPA Shard partition for recording a refresh token assignment
|
| JpaRefreshToken3 |
JPA Shard partition for recording a refresh token assignment
|
| JpaRefreshToken4 |
JPA Shard partition for recording a refresh token assignment
|
| JpaRefreshToken5 |
JPA Shard partition for recording a refresh token assignment
|
| JpaRefreshToken6 |
JPA Shard partition for recording a refresh token assignment
|
| JpaRefreshTokenRepository1<D extends JpaRefreshToken1> |
JPA Shard partition repository for recording a refresh token assignment
|
| JpaRefreshTokenRepository2<D extends JpaRefreshToken2> |
JPA Shard partition repository for recording a refresh token assignment
|
| JpaRefreshTokenRepository3<D extends JpaRefreshToken3> |
JPA Shard partition repository for recording a refresh token assignment
|
| JpaRefreshTokenRepository4<D extends JpaRefreshToken4> |
JPA Shard partition repository for recording a refresh token assignment
|
| JpaRefreshTokenRepository5<D extends JpaRefreshToken5> |
JPA Shard partition repository for recording a refresh token assignment
|
| JpaRefreshTokenRepository6<D extends JpaRefreshToken6> |
JPA Shard partition repository for recording a refresh token assignment
|
| JpaRoleRepository<D extends JpaUserRole> |
JPA-specific repository for persisted counterparts of UserRole. |
| JpaUser |
Persisted counterpart for a User. |
| JpaUserLoginAttempt |
|
| JpaUserLoginAttemptRepository<D extends JpaUserLoginAttempt> |
|
| JpaUserPermission |
|
| JpaUserPermissionRepository<D extends JpaUserPermission> |
|
| JpaUserRepository<D extends JpaUser> |
|
| JpaUserRestrictedPermission |
|
| JpaUserRestrictedRole |
|
| JpaUserRestriction |
|
| JpaUserRole |
|
| JwkSetEndpoint |
|
| LoginAttemptResult |
|
| OAuth2AuthenticationEntryPoint |
Provides a behavior consistent with
http://openid.net/specs/openid-connect-core-1_0.html#AuthRequest.
|
| OAuth2AuthorizedClientRepositoryProperties |
|
| OAuth2ClientIdForwardRedirectStrategy |
|
| OAuth2ClientIdTemplateEngine |
The sole purpose of this Template Engine is to add the current request's `client_id` param to the
`resolutionAttributes` of the TemplateSpec.
|
| OAuth2ClientTemplateResolver |
|
| OAuth2IdentityProvider |
Represents a configured identity provider to be shown as a model attribute in a Thymeleaf
template.
|
| OAuth2SessionAuthenticationFilter |
Processes an OAuth2 client session Cookie to establish an authentication user.
|
| OAuth2SessionAuthenticationProvider |
|
| OAuth2SessionAuthenticationToken |
An Authentication implementation that is designed for simple presentation of an OAuth2
clientId, and JWT session token.
|
| OAuth2SessionToken |
The holder of the claims associated with a user's session.
|
| OAuth2TokenEndpointAuthenticationFilter |
|
| OAuth2UserDetails |
|
| OAuth2UserDetailsAutoConfiguration |
|
| OAuth2UserDetailsService |
Core interface which loads user-specific data for a certain OAuth2 client.
|
| OAuthClientAutoConfiguration |
Beans to support acting as an OAuth Client for 3rd party authentication
|
| OAuthClientJpaAutoConfiguration |
|
| OAuthClientPersistenceAutoConfiguration |
|
| OAuthClientProviderEncryptionConfiguration |
|
| OAuthClientProviderEncryptionConfiguration.MigrationLiquibaseConfiguration |
|
| OAuthClientRegistrationEndpoint |
|
| OAuthClientRegistrationPersistenceService<P extends OAuthClientRegistrationWrapper> |
|
| OAuthClientRegistrationProviderDetails |
A wrapper for ClientRegistration.ProviderDetails to allow correspondence with a
persistent version of the same.
|
| OAuthClientRegistrationProviderDetails.UserInfoEndpoint |
|
| OAuthClientRegistrationRepository<D> |
|
| OAuthClientRegistrationUtils |
A non-static wrapper around ClientRegistrations used to make testing easier.
|
| OAuthClientRegistrationWrapper |
Wrapper for ClientRegistration.
|
| OAuthClientRegistrationWrapperEntityValidator |
|
| OAuthClientWebAutoConfiguration |
|
| OAuthRedirectHelper |
|
| OperationAwarePersistenceHandler |
Handles messages from the Persistence channel, asserting that they contain operation type, id,
and timestamp information.
|
| OptionalBooleanConverter |
|
| OriginalAwareJwtAccessTokenConverter |
Token enhancer to add the value oid to the token, if it exists.
|
| PasscodeEndpoint |
|
| PasscodeNotConsumedException |
Thrown when there is an exception during Passcode consumption
|
| PasscodeService<P extends PasswordToken,U extends User> |
This service provides methods for creating and consuming random passcodes.
|
| PasswordRequestValidator |
This validator uses regex to validate new passwords for registration and password resets.
|
| PasswordToken |
|
| PasswordTokenProperties |
|
| PasswordTokenRepository<D> |
|
| PasswordTokenValidator<P extends PasswordToken> |
This validator performs various checks on the validity of a password token compared to that of a
set of password tokens that belong to a user.
|
| PasswordValidation |
|
| PasswordValidatorProperties |
Any of the validations that use regex may be "disabled" by changing the regex to match anything:
^.*$ or nothing: ^$ (e.g., for whitespace or repeated characters)
|
| PermissionDataInitializer |
The seed data permissions will be defined here.
|
| PermissionDataInitializer.UserPermissionIds |
|
| PermissionRepository |
|
| PermissionScope |
|
| PermissionScopeDataInitializer |
|
| PermissionType |
|
| PermissionUtils |
Convenience methods used for processing permissions and authorities
|
| PrivilegeService |
|
| PrivilegeSummary |
|
| PurgeLoginTableJobListener |
|
| PurgeLoginTriggeredJobEventConsumer |
|
| RefreshToken |
Represents a rotatable refresh token assignment.
|
| RefreshTokenRepository<D> |
General interface for all repositories supporting shard paritioned refresh token assignment
|
| RegisteredClaimsTokenEnhancer |
Token enhancer that adds several
registered JWT claims, such as
issuer and audience, as well as a non-standard "max" claim that determines the maximum lifetime
of a token. |
| RegistrationController |
REST controller for supporting embedded registration.
|
| RegistrationExceptionAdvisor |
|
| RegistrationFormController |
Controller for supporting form-based registration for Universal Login.
|
| RegistrationValidator |
|
| RequestView |
Intended to be used within a JsonView to demarcate which properties are accepted in a
request from external (e.g.
|
| ResetPasswordException |
Exception to be used when a failure occurs somewhere in the reset password flow for a user.
|
| ResetPasswordForm |
This form backs the password reset HTML form as a DTO.
|
| ResetPasswordForm.ResetPasswordFormBuilder |
|
| ResetPasswordFormValidator<P extends PasswordToken> |
|
| ResponseView |
Intended to be used within a JsonView to demarcate which properties serialized in the
response from and endpoint
|
| RestrictedPermission |
Represent a permission a user has access to only within specific segment(s) of data.
|
| RestrictedRole |
Represent a role a user has access to only within specific segment(s) of data.
|
| Restriction |
A DTO used to represent a restriction on the data in which a user has access.
|
| RevokeRefreshTokenLogoutHandler |
Revoke refresh token on logout if provided.
|
| RoleDataInitializer |
The seed data roles will be defined here.
|
| RoleDataInitializer.UserRoleIds |
|
| RoleDataInitializer.UserRoleIds.Marketplace |
|
| RoleRepository<D> |
Repository for persisted counterparts of UserRole. |
| RotatableTokenStore |
A specialized TokenStore concept used to support the refresh token rotation concept in
Broadleaf.
|
| ScopeRepository |
|
| SecurityScope |
|
| SecurityScopeDataInitializer |
|
| SecurityService |
Service used during the authorization flow to assess the privileges of the current user in order
to filter the requested scopes or retrieve the permissions for an access token.
|
| SecurityServiceAccessTokenConverter |
Converts the access token using the defaults within DefaultAccessTokenConverter and then
extracts the narrowed set of permissions using SecurityService.extractPermissions(Set) in
order to restrict the set of delegated authorities to the set of requested scopes. |
| SecurityServiceAutoConfiguration |
|
| SecurityServiceOAuth2RequestFactory |
A custom request factory implementation that utilizes SecurityService to check that the
requested scopes are valid for the request and current user. |
| SegmentMemberPersistenceConsumer |
Spring cloud data channel description for messaging input.
|
| SegmentMemberPersistenceHandler |
Handles creation and deletes of customer segment/customer relationships.
|
| SessionTokenClaimKeys |
Contains constants that are used as keys for token claims for session tokens in
TokenEnhancers.
|
| SessionTokenClaimKeys.ImpersonationClaims |
Though these are used in OAuth2SessionToken, some of these claims are also used in
access tokens. |
| SimplePayloadMapper |
|
| SSLVerificationProperties |
Contains properties dictating SSL verification.
|
| StatelessUtil |
Utility for JWT-based cookies - specifically those intended to drive stateless behavior, such as
stateless sessions.
|
| StatelessUtilImpl |
|
| StatelessUtilProperties |
|
| TenantPropertiesTokenEnhancer |
Token enhancer to add the values "tenant_access", "application_access", "tenant_id" and
"application_ids" to the token, if they exist.
|
| TenantSynchronizationAutoConfiguration |
|
| TenantSynchronizationJpaAutoConfiguration |
|
| TenantUrlResolver |
Responsible for resolving the base URL at which an application or admin is served given the ID of
an application or tenant.
|
| TenantUrlResolverAutoConfiguration |
|
| TokenAutoConfiguration |
Configuration specific to the token handling in the auth service
|
| TokenEnhancerAutoConfiguration |
|
| TokenEnhancerUtil |
Convenience methods for common operations when enhancing tokens.
|
| TokenJpaAutoConfiguration |
Setup spring data repositories and entities for refresh token related domain
|
| TokenProperties |
Configuration properties for refresh token rotation handling
|
| ULIDGenerationStrategy |
A generation strategy that generates a ULID for a primary key.
|
| UrlResolverResponse |
A DTO matching the expected structure of a URL resolution response from the tenant service.
|
| User |
Represents a user which can authenticate with this service.
|
| UserAccessController |
Endpoint for retrieving information about the currently authenticated user
|
| UserAnonymizationHandler |
Updates PII fields for the User domain. |
| UserAttributesEndpoint |
|
| UserAttributesEventConsumer |
Spring cloud data channel description for messaging input.
|
| UserAttributesEventListener |
|
| UserAttributesRequest |
A request DTO to adjust the attributes on a particular User. |
| UserAttributesRequestHandler |
Add additional attributes to a User |
| UserContext |
Intended for use as a request scoped bean to be utilized by
TokenEnhancers that need
to read the currently authenticated user.
|
| UserCreationEvent |
A message event dispatched when a user is registered within the system.
|
| UserCreationProducer |
|
| UserDataInitializer |
The seed data users will be defined here.
|
| UserDataInitializer.UserIds |
|
| UserDataInitializer.UserIds.AdminUser |
|
| UserDataInitializer.UserIds.AdminUser.Marketplace |
|
| UserDataInitializer.UserIds.Customer |
|
| UserEndpoint |
Endpoints for CRUD operations on User.
|
| UserInfoEndpoint |
Endpoint for retrieving information about the currently authenticated user
|
| UserLockoutProperties |
Optional properties when handling user lockout due to failed login attempts.
|
| UserLockoutService |
Service responsible for handling login attempts.
|
| UserLoginAttempt |
Represents a login attempt by a user
|
| UserLoginAttemptRepository<D> |
|
| UserLoginAttemptService<P extends UserLoginAttempt> |
Service for managing user login attempts.
|
| UserLoginProperties |
Properties for authentication controllers
|
| UserLoginService |
Service for doing user authentication actions
|
| UserMessagingService<D extends User> |
|
| UsernameValidator |
This validator uses regex to validate usernames.
|
| UserNotActiveException |
Thrown when login fails because the user is not marked as active.
|
| UserOperation |
The API domain that represents a scope and operation types a user has access to on that scope.
|
| UserOperationInformation |
Payload describing the operations a user is allowed to perform. |
| UserOperationService |
|
| UserPasswordService<P extends PasswordToken,U extends User> |
|
| UserPermission |
|
| UserPermissionEndpoint |
Endpoint for CRUD operations on UserPermissions
|
| UserPermissionRef |
An alternative DTO object to use for the specific use case of being an element in collection
fields of parent entities.
|
| UserPermissionRepository<D> |
|
| UserPermissionService<P extends UserPermission> |
|
| UserPermissionValidator |
|
| UserRegistration |
Representation of a registration from the frontend
|
| UserRegistrationProducer |
Spring cloud data channel description for messaging output.
|
| UserRegistrationService<P extends User> |
Registers new users into the user data store
|
| UserRegistrationTypeResolver |
|
| UserRepository<D> |
|
| UserRestrictionTokenEnhancer |
Token enhancer that includes user restrictions and restricted authorities within the token.
|
| UserRole |
|
| UserRoleAncestryHydrationResponse |
|
| UserRoleAncestryHydrationService |
|
| UserRoleEndpoint |
Endpoint for CRUD operations on UserRoles
|
| UserRoleRef |
An alternative DTO object to use for the specific use case of being an element in collection
fields of parent entities.
|
| UserRoleService<P extends UserRole> |
|
| UserRoleValidator |
|
| UserService<P extends User> |
Provides services for interacting with Users and JpaUsers |
| UserTokenEnhancer |
Token enhancer that puts various relevant user data into the token's
OAuth2AccessToken.getAdditionalInformation().
|
| UserType |
|
| UserUpdateProducer |
Output channel used when a User update occurs. |
| UserValidator |
|
| ValidationAutoConfiguration |
|
| VerifyRedirectCookieFilter |
This filter is for verifying that there's a saved redirect cookie on the request for certain
URIs.
|
| VerifyRedirectCookieProperties |
|