Index (Broadleaf Security Resource OAuth2 Common 2.0.2-GA API)

A C D E G H I J K L M O P R S T U V
All Classes and Interfaces|All Packages|Constant Field Values

A

accessDeniedExceptionAdvisor() - Method in class com.broadleafcommerce.oauth2.resource.security.autoconfiguration.OAuth2ResourceWebSecurityConfiguration.EnableGlobalMethodSecurityConfiguration
AccessDeniedExceptionAdvisor - Class in com.broadleafcommerce.oauth2.resource.security.exception: There is an open issue in Spring where methods annotated with @PreAuthorize correctly throw an AccessDeniedException, but it is not passed through ExceptionTranslationFilter and thus results in a 500 response rather than a 403.
AccessDeniedExceptionAdvisor() - Constructor for class com.broadleafcommerce.oauth2.resource.security.exception.AccessDeniedExceptionAdvisor
asRequestMatchers(String...) - Method in class com.broadleafcommerce.oauth2.resource.security.autoconfiguration.OAuth2ResourceWebSecurityConfiguration: By default, this forces interpretation of the given string patterns as ant patterns, matching via AntPathRequestMatcher semantics rather than the default MvcRequestMatcher.
authenticationAttributesConverter() - Method in class com.broadleafcommerce.oauth2.resource.security.autoconfiguration.OAuth2ResourceSecurityConfiguration
AUTHORITIES_CLAIM - Static variable in class com.broadleafcommerce.oauth2.resource.security.token.converter.DefaultJwtBearerTokenAuthenticationConverter

C

canEqual(Object) - Method in class com.broadleafcommerce.oauth2.resource.security.environment.OAuth2ResourceSecurityProperties
canEqual(Object) - Method in class com.broadleafcommerce.oauth2.resource.security.selectors.MultiKeyJWSKeySelector
com.broadleafcommerce.oauth2.resource.security.autoconfiguration - package com.broadleafcommerce.oauth2.resource.security.autoconfiguration
com.broadleafcommerce.oauth2.resource.security.configurers - package com.broadleafcommerce.oauth2.resource.security.configurers
com.broadleafcommerce.oauth2.resource.security.environment - package com.broadleafcommerce.oauth2.resource.security.environment
com.broadleafcommerce.oauth2.resource.security.exception - package com.broadleafcommerce.oauth2.resource.security.exception
com.broadleafcommerce.oauth2.resource.security.selectors - package com.broadleafcommerce.oauth2.resource.security.selectors
com.broadleafcommerce.oauth2.resource.security.token.converter - package com.broadleafcommerce.oauth2.resource.security.token.converter
com.broadleafcommerce.oauth2.resource.security.token.validator - package com.broadleafcommerce.oauth2.resource.security.token.validator
com.broadleafcommerce.oauth2.resource.security.util - package com.broadleafcommerce.oauth2.resource.security.util
configureDispatcherTypeAuthorization(HttpSecurity) - Method in class com.broadleafcommerce.oauth2.resource.security.autoconfiguration.OAuth2ResourceWebSecurityConfiguration
convert(Authentication) - Method in class com.broadleafcommerce.oauth2.resource.security.token.converter.DefaultAuthenticationAttributesConverter
convert(Jwt) - Method in class com.broadleafcommerce.oauth2.resource.security.token.converter.DefaultJwtBearerTokenAuthenticationConverter

D

DefaultAuthenticationAttributesConverter - Class in com.broadleafcommerce.oauth2.resource.security.token.converter: Default implementation of Converter that is used for extracting the a map of attributes from an Authentication.
DefaultAuthenticationAttributesConverter() - Constructor for class com.broadleafcommerce.oauth2.resource.security.token.converter.DefaultAuthenticationAttributesConverter
DefaultJwtBearerTokenAuthenticationConverter - Class in com.broadleafcommerce.oauth2.resource.security.token.converter: A Converter that takes a Jwt and converts it into a BearerTokenAuthentication.
DefaultJwtBearerTokenAuthenticationConverter() - Constructor for class com.broadleafcommerce.oauth2.resource.security.token.converter.DefaultJwtBearerTokenAuthenticationConverter
DefaultJwtClaimsValidator - Class in com.broadleafcommerce.oauth2.resource.security.token.validator: A OAuth2TokenValidator implementation that validates the JWT access token includes a valid issuer, audiences, and timestamp.
DefaultJwtClaimsValidator(OAuth2ResourceSecurityProperties) - Constructor for class com.broadleafcommerce.oauth2.resource.security.token.validator.DefaultJwtClaimsValidator

E

EnableGlobalMethodSecurityConfiguration() - Constructor for class com.broadleafcommerce.oauth2.resource.security.autoconfiguration.OAuth2ResourceWebSecurityConfiguration.EnableGlobalMethodSecurityConfiguration
equals(Object) - Method in class com.broadleafcommerce.oauth2.resource.security.environment.OAuth2ResourceSecurityProperties
equals(Object) - Method in class com.broadleafcommerce.oauth2.resource.security.selectors.MultiKeyJWSKeySelector
extractAuthorities(Jwt) - Method in class com.broadleafcommerce.oauth2.resource.security.token.converter.DefaultJwtBearerTokenAuthenticationConverter
extractName(Jwt) - Method in class com.broadleafcommerce.oauth2.resource.security.token.converter.DefaultJwtBearerTokenAuthenticationConverter: Extracts the principal name from the JWT.

G

getClockSkew() - Method in class com.broadleafcommerce.oauth2.resource.security.token.validator.DefaultJwtClaimsValidator
getDispatcherTypeMatchersPermittedWithoutAuthorization() - Method in class com.broadleafcommerce.oauth2.resource.security.environment.OAuth2ResourceSecurityProperties: The dispatcher type matchers to permit without authorization.
getEncodedPublicKey() - Method in class com.broadleafcommerce.oauth2.resource.security.environment.OAuth2ResourceSecurityProperties: The encoded RSA public key used for verifying the signature of access tokens.
getExpectedJWSAlg() - Method in class com.broadleafcommerce.oauth2.resource.security.selectors.MultiKeyJWSKeySelector
getJwkSetUri() - Method in class com.broadleafcommerce.oauth2.resource.security.environment.OAuth2ResourceSecurityProperties: The URI to JwkSetEndpoint
getMatchers() - Method in class com.broadleafcommerce.oauth2.resource.security.environment.OAuth2ResourceSecurityProperties: The set of ant path matchers on which resource security should apply.
getProperties() - Method in class com.broadleafcommerce.oauth2.resource.security.token.validator.DefaultJwtClaimsValidator
getPublicKeys(Environment) - Static method in class com.broadleafcommerce.oauth2.resource.security.util.KeyUtil: Get all public keys declared in the spring environment.
getRsaPublicKey() - Method in class com.broadleafcommerce.oauth2.resource.security.environment.OAuth2ResourceSecurityProperties: Getter for the RSA public key.
getSingletonKeyList() - Method in class com.broadleafcommerce.oauth2.resource.security.selectors.MultiKeyJWSKeySelector
getValidAudiences() - Method in class com.broadleafcommerce.oauth2.resource.security.environment.OAuth2ResourceSecurityProperties: Validation for the aud claim from the received JWT token.
getValidIssuers() - Method in class com.broadleafcommerce.oauth2.resource.security.environment.OAuth2ResourceSecurityProperties: Validation for the iss claim from the received JWT token

H

handleAccessDeniedException(AccessDeniedException, WebRequest) - Method in class com.broadleafcommerce.oauth2.resource.security.exception.AccessDeniedExceptionAdvisor
hashCode() - Method in class com.broadleafcommerce.oauth2.resource.security.environment.OAuth2ResourceSecurityProperties
hashCode() - Method in class com.broadleafcommerce.oauth2.resource.security.selectors.MultiKeyJWSKeySelector

I

init(HttpSecurity) - Method in class com.broadleafcommerce.oauth2.resource.security.configurers.ResourceSecurityDsl
isConfigureDispatcherTypeAuthorization() - Method in class com.broadleafcommerce.oauth2.resource.security.environment.OAuth2ResourceSecurityProperties: Whether dispatcher authorization should be configured.
isDefaultAllowAllAnonymous() - Method in class com.broadleafcommerce.oauth2.resource.security.environment.OAuth2ResourceSecurityProperties: Whether or not to allow anonymous access.

J

jwtDecoder(Environment, OAuth2TokenValidator<Jwt>, OAuth2ResourceSecurityProperties) - Method in class com.broadleafcommerce.oauth2.resource.security.autoconfiguration.OAuth2ResourceSecurityConfiguration

K

KeyUtil - Class in com.broadleafcommerce.oauth2.resource.security.util: Utilities related to token signing keys

L

logDebug(Exception, WebRequest) - Method in class com.broadleafcommerce.oauth2.resource.security.exception.AccessDeniedExceptionAdvisor

M

MultiKeyJWSKeySelector<C extends com.nimbusds.jose.proc.SecurityContext> - Class in com.broadleafcommerce.oauth2.resource.security.selectors: Selector that keeps a list of all registered public keys and will return all as candidates.
MultiKeyJWSKeySelector(List<Key>, JWSAlgorithm) - Constructor for class com.broadleafcommerce.oauth2.resource.security.selectors.MultiKeyJWSKeySelector

O

OAuth2ResourceSecurityConfiguration - Class in com.broadleafcommerce.oauth2.resource.security.autoconfiguration
OAuth2ResourceSecurityConfiguration() - Constructor for class com.broadleafcommerce.oauth2.resource.security.autoconfiguration.OAuth2ResourceSecurityConfiguration
OAuth2ResourceSecurityProperties - Class in com.broadleafcommerce.oauth2.resource.security.environment
OAuth2ResourceSecurityProperties() - Constructor for class com.broadleafcommerce.oauth2.resource.security.environment.OAuth2ResourceSecurityProperties
OAuth2ResourceWebSecurityConfiguration - Class in com.broadleafcommerce.oauth2.resource.security.autoconfiguration
OAuth2ResourceWebSecurityConfiguration(OAuth2ResourceSecurityProperties, List<SecurityEnhancer>) - Constructor for class com.broadleafcommerce.oauth2.resource.security.autoconfiguration.OAuth2ResourceWebSecurityConfiguration
OAuth2ResourceWebSecurityConfiguration.EnableGlobalMethodSecurityConfiguration - Class in com.broadleafcommerce.oauth2.resource.security.autoconfiguration
oauth2ResourceWebSecurityFilterChain(HttpSecurity) - Method in class com.broadleafcommerce.oauth2.resource.security.autoconfiguration.OAuth2ResourceWebSecurityConfiguration
OAuth2SecurityEnvironmentPostProcessor - Class in com.broadleafcommerce.oauth2.resource.security.autoconfiguration
OAuth2SecurityEnvironmentPostProcessor() - Constructor for class com.broadleafcommerce.oauth2.resource.security.autoconfiguration.OAuth2SecurityEnvironmentPostProcessor

P

postProcessEnvironment(ConfigurableEnvironment, SpringApplication) - Method in class com.broadleafcommerce.oauth2.resource.security.autoconfiguration.OAuth2SecurityEnvironmentPostProcessor
PUBLIC_KEY_PROPERTY_MAIN - Static variable in class com.broadleafcommerce.oauth2.resource.security.util.KeyUtil
PUBLIC_KEY_PROPERTY_PATTERN - Static variable in class com.broadleafcommerce.oauth2.resource.security.util.KeyUtil

R

resourceSecurity() - Static method in class com.broadleafcommerce.oauth2.resource.security.configurers.ResourceSecurityDsl
ResourceSecurityDsl - Class in com.broadleafcommerce.oauth2.resource.security.configurers: Custom DSL used to initialize the Spring Security configuration with resource server security compatible with Broadleaf's Authorization Service.

S

selectJWSKeys(JWSHeader, C) - Method in class com.broadleafcommerce.oauth2.resource.security.selectors.MultiKeyJWSKeySelector
setClock(Clock) - Method in class com.broadleafcommerce.oauth2.resource.security.token.validator.DefaultJwtClaimsValidator
setClockSkew(Duration) - Method in class com.broadleafcommerce.oauth2.resource.security.token.validator.DefaultJwtClaimsValidator
setConfigureDispatcherTypeAuthorization(boolean) - Method in class com.broadleafcommerce.oauth2.resource.security.environment.OAuth2ResourceSecurityProperties: Whether dispatcher authorization should be configured.
setDefaultAllowAllAnonymous(boolean) - Method in class com.broadleafcommerce.oauth2.resource.security.environment.OAuth2ResourceSecurityProperties: Whether or not to allow anonymous access.
setDispatcherTypeMatchersPermittedWithoutAuthorization(DispatcherType[]) - Method in class com.broadleafcommerce.oauth2.resource.security.environment.OAuth2ResourceSecurityProperties: The dispatcher type matchers to permit without authorization.
setEncodedPublicKey(String) - Method in class com.broadleafcommerce.oauth2.resource.security.environment.OAuth2ResourceSecurityProperties: The encoded RSA public key used for verifying the signature of access tokens.
setJwkSetUri(String) - Method in class com.broadleafcommerce.oauth2.resource.security.environment.OAuth2ResourceSecurityProperties: The URI to JwkSetEndpoint
setMatchers(String[]) - Method in class com.broadleafcommerce.oauth2.resource.security.environment.OAuth2ResourceSecurityProperties: The set of ant path matchers on which resource security should apply.
setValidAudiences(List<String>) - Method in class com.broadleafcommerce.oauth2.resource.security.environment.OAuth2ResourceSecurityProperties: Validation for the aud claim from the received JWT token.
setValidIssuers(List<String>) - Method in class com.broadleafcommerce.oauth2.resource.security.environment.OAuth2ResourceSecurityProperties: Validation for the iss claim from the received JWT token

T

toString() - Method in class com.broadleafcommerce.oauth2.resource.security.environment.OAuth2ResourceSecurityProperties
toString() - Method in class com.broadleafcommerce.oauth2.resource.security.selectors.MultiKeyJWSKeySelector

U

USER_NAME - Static variable in class com.broadleafcommerce.oauth2.resource.security.token.converter.DefaultJwtBearerTokenAuthenticationConverter

V

validate(Jwt) - Method in class com.broadleafcommerce.oauth2.resource.security.token.validator.DefaultJwtClaimsValidator

A C D E G H I J K L M O P R S T U V
All Classes and Interfaces|All Packages|Constant Field Values