Package com.broadleafcommerce.auth.user.session.token.enhancer
package com.broadleafcommerce.auth.user.session.token.enhancer
-
ClassDescriptionImplementation of
JwtAccessTokenEnhancerthat has a request scoped UserContext that contains the current user to avoid repeated database reads.Responsible for validating and adding the "acct_id" claim to the token.AJwtAccessTokenEnhancerto add the"authorities"claim.ThisJwtAccessTokenEnhancerdetermines the set of all permissions available to a client-only principal specified in the givenJwtTokenEnhancerContext.Provides claims "restrictions" and "restricted_authorities".Enhances tokens with the "customer_context_ids" claim.Enhances a token with the IDs of CustomerSegments that the User is a member of if they are present in the User attributes map.AnOAuth2TokenCustomizerforJwtEncodingContextthat delegates to a list ofJwtAccessTokenEnhancers.AJwtAccessTokenEnhancerthat copies claims from the current CSR's session token.Indicates classes that can participate in JWT Token customization for access tokens.A wrapper forJwtEncodingContextthat includes a map for additional context.Guarantees an overall unique access token value, even when generated in quick successionToken enhancer that adds several registered JWT claims, such as issuer and audience, as well as a non-standard "max" claim that determines the maximum lifetime of a token.Token enhancer to add the values "tenant_access", "application_access", "tenant_id" and "application_ids" to the token, if they exist.Utility to consolidate common operations performed inJwtAccessTokenEnhancer.Token enhancer that puts various relevant user data into the token's claims.Intended for use as a request scoped bean to be utilized byAccessTokenEnhancersthat need to read the currently authenticated user.Token enhancer that includes user restrictions and restricted authorities within the token.