Class EmbeddedAuthenticationController

java.lang.Object
com.broadleafcommerce.auth.user.web.endpoint.EmbeddedAuthenticationController

@FrameworkRestController @ConditionalOnProperty("broadleaf.auth.login.embedded.enabled") public class EmbeddedAuthenticationController extends Object
Author:
Nathan Moore (nathandmoore)
  • Constructor Details

  • Method Details

    • processPwResetEmailRequest

      @FrameworkPostMapping(path="/embedded/request-password-reset", consumes="application/x-www-form-urlencoded") public org.springframework.http.ResponseEntity<Void> processPwResetEmailRequest(@RequestParam("client_id") String clientId, EmbeddedAuthenticationController.PasswordResetEmailRequest request)
    • processResetPasswordRequest

      @FrameworkPostMapping(path="/embedded/reset-password", consumes="application/x-www-form-urlencoded") public org.springframework.http.ResponseEntity<Void> processResetPasswordRequest(jakarta.servlet.http.HttpServletRequest request, jakarta.servlet.http.HttpServletResponse response, ResetPasswordForm resetPasswordForm)
    • processChangePasswordRequest

      @FrameworkPostMapping(value="/embedded/change-password", consumes="application/x-www-form-urlencoded") public org.springframework.http.ResponseEntity<Void> processChangePasswordRequest(jakarta.servlet.http.HttpServletRequest request, jakarta.servlet.http.HttpServletResponse response, ChangePasswordForm changePasswordForm)
    • validateClientId

      protected void validateClientId(@Nullable String clientId)
      Validates the client ID and ensure that the request is allowed for it.
      Parameters:
      clientId - ID of the AuthorizedClient from which the request for a user operation is being made.
      Throws:
      ClientValidationException - when the client ID is missing, the client doesn't exist, the parent auth server doesn't exist, or the auth server doesn't allow embedded authentication form submissions
    • getUserPasswordService

      protected UserPasswordService<PasswordToken,User> getUserPasswordService()
    • getProperties

      protected UserLoginProperties getProperties()
    • getLoginService

      protected UserLoginService getLoginService()
    • getAuthorizationServerService

      protected AuthorizationServerService<AuthorizationServer> getAuthorizationServerService()
    • getAuthorizedClientService

      protected AuthorizedClientService<AuthorizedClient> getAuthorizedClientService()