Package org.dspace.app.rest.security.jwt

Class JWTTokenRestAuthenticationServiceImpl

java.lang.Object

org.dspace.app.rest.security.jwt.JWTTokenRestAuthenticationServiceImpl

All Implemented Interfaces:

RestAuthenticationService, org.springframework.beans.factory.InitializingBean

@Component
public class JWTTokenRestAuthenticationServiceImpl
extends Object
implements RestAuthenticationService, org.springframework.beans.factory.InitializingBean

Rest Authentication implementation for JSON Web Tokens

Author:

Frederic Van Reet (frederic dot vanreet at atmire dot com), Tom Desair (tom dot desair at atmire dot com), Giuseppe Digilio (giuseppe dot digilio at 4science dot it)

Constructor Summary

Constructors

Constructor	Description
JWTTokenRestAuthenticationServiceImpl()

Method Summary

Modifier and Type	Method	Description
void	addAuthenticationDataForUser(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, DSpaceAuthentication authentication, boolean addCookie)
void	afterPropertiesSet()
org.dspace.eperson.EPerson	getAuthenticatedEPerson(javax.servlet.http.HttpServletRequest request, org.dspace.core.Context context)
org.dspace.authenticate.service.AuthenticationService	getAuthenticationService()
AuthenticationToken	getShortLivedAuthenticationToken(org.dspace.core.Context context, javax.servlet.http.HttpServletRequest request)	Create a short-lived token for bitstream downloads among other things
String	getWwwAuthenticateHeaderValue(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response)	Return the value that should be passed in the WWWW-Authenticate header for 4xx responses to the client
boolean	hasAuthenticationData(javax.servlet.http.HttpServletRequest request)
void	invalidateAuthenticationCookie(javax.servlet.http.HttpServletResponse response)
void	invalidateAuthenticationData(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, org.dspace.core.Context context)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

JWTTokenRestAuthenticationServiceImpl

public JWTTokenRestAuthenticationServiceImpl()

Method Detail

afterPropertiesSet

public void afterPropertiesSet()
                        throws Exception

Specified by:

afterPropertiesSet in interface org.springframework.beans.factory.InitializingBean

Throws:

Exception

addAuthenticationDataForUser

public void addAuthenticationDataForUser(javax.servlet.http.HttpServletRequest request,
                                         javax.servlet.http.HttpServletResponse response,
                                         DSpaceAuthentication authentication,
                                         boolean addCookie)
                                  throws IOException

Specified by:

addAuthenticationDataForUser in interface RestAuthenticationService

Throws:

IOException

getShortLivedAuthenticationToken

public AuthenticationToken getShortLivedAuthenticationToken(org.dspace.core.Context context,
                                                            javax.servlet.http.HttpServletRequest request)

Create a short-lived token for bitstream downloads among other things

Specified by:

getShortLivedAuthenticationToken in interface RestAuthenticationService

Parameters:

context - The context for which to create the token

request - The request for which to create the token

Returns:

The token with a short lifespan

getAuthenticatedEPerson

public org.dspace.eperson.EPerson getAuthenticatedEPerson(javax.servlet.http.HttpServletRequest request,
                                                          org.dspace.core.Context context)

Specified by:

getAuthenticatedEPerson in interface RestAuthenticationService

hasAuthenticationData

public boolean hasAuthenticationData(javax.servlet.http.HttpServletRequest request)

Specified by:

hasAuthenticationData in interface RestAuthenticationService

invalidateAuthenticationData

public void invalidateAuthenticationData(javax.servlet.http.HttpServletRequest request,
                                         javax.servlet.http.HttpServletResponse response,
                                         org.dspace.core.Context context)
                                  throws Exception

Specified by:

invalidateAuthenticationData in interface RestAuthenticationService

Throws:

Exception

invalidateAuthenticationCookie

public void invalidateAuthenticationCookie(javax.servlet.http.HttpServletResponse response)

Specified by:

invalidateAuthenticationCookie in interface RestAuthenticationService

getAuthenticationService

public org.dspace.authenticate.service.AuthenticationService getAuthenticationService()

Specified by:

getAuthenticationService in interface RestAuthenticationService

getWwwAuthenticateHeaderValue

public String getWwwAuthenticateHeaderValue(javax.servlet.http.HttpServletRequest request,
                                            javax.servlet.http.HttpServletResponse response)

Description copied from interface: RestAuthenticationService

Return the value that should be passed in the WWWW-Authenticate header for 4xx responses to the client

Specified by:

getWwwAuthenticateHeaderValue in interface RestAuthenticationService

Parameters:

request - The current client request

response - The response being build for the client

Returns:

A string value that should be set in the WWWW-Authenticate header