Class ImpersonationEndpoint

java.lang.Object
com.broadleafcommerce.auth.user.web.endpoint.ImpersonationEndpoint

@FrameworkController public class ImpersonationEndpoint extends Object
Author:
Nick Crum (ncrum)
  • Field Details

  • Constructor Details

  • Method Details

    • impersonate

      @FrameworkGetMapping("/impersonate") @PreAuthorize("isAuthenticated() and hasAuthority(\'ALL_IMPERSONATE\')") public String impersonate(jakarta.servlet.http.HttpServletRequest request, jakarta.servlet.http.HttpServletResponse response, ImpersonationRequest impersonationRequest, org.springframework.security.core.Authentication authentication)
    • impersonateSelf

      @FrameworkGetMapping(value="/impersonate", params="impersonate_self=true") @PreAuthorize("isAuthenticated() and hasAuthority(\'ALL_IMPERSONATE\')") public String impersonateSelf(jakarta.servlet.http.HttpServletRequest request, jakarta.servlet.http.HttpServletResponse response, ImpersonationRequest impersonationRequest, org.springframework.security.core.Authentication authentication)
    • consumeToken

      @FrameworkGetMapping("/consume-token") public org.springframework.web.servlet.ModelAndView consumeToken(jakarta.servlet.http.HttpServletResponse response, @RequestParam("signedJwt") String token)
    • getUserToImpersonate

      protected OAuth2UserDetails getUserToImpersonate(String clientId, String username)
    • getCsrUser

      protected OAuth2UserDetails getCsrUser(String clientId, String csrId)
    • loadAnonymousCsrUser

      protected OAuth2UserDetails loadAnonymousCsrUser(String clientId)
    • addSessionCookie

      protected void addSessionCookie(jakarta.servlet.http.HttpServletResponse response, ImpersonationRequestToken impersonationRequest, OAuth2UserDetails impersonatedUser)
    • getCsrUserId

      protected String getCsrUserId(org.springframework.security.core.Authentication authentication)