Package org.imixs.security.oidc
Class CallbackServlet
java.lang.Object
jakarta.servlet.GenericServlet
jakarta.servlet.http.HttpServlet
org.imixs.security.oidc.CallbackServlet
- All Implemented Interfaces:
jakarta.servlet.Servlet,jakarta.servlet.ServletConfig,Serializable
@WebServlet("/callback")
public class CallbackServlet
extends jakarta.servlet.http.HttpServlet
The CallbackServlet provides the servlet endpoint for handling the OpenID
Connect (OIDC) authorization code callback.
This servlet is triggered after a successful login at the identity provider
(IdP).
It exchanges the authorization code for an access token and stores the token
(and optionally user info) in the HTTP session.
This is a core part of the OIDC Authorization Code Flow.
In addition the CallbackServlet fetches additional user information
from the UserInfo endpoint when available.
- See Also:
-
Field Summary
Fields inherited from class jakarta.servlet.http.HttpServlet
LEGACY_DO_HEAD -
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionprotected voiddoGet(jakarta.servlet.http.HttpServletRequest request, jakarta.servlet.http.HttpServletResponse response) Methods inherited from class jakarta.servlet.http.HttpServlet
doDelete, doHead, doOptions, doPost, doPut, doTrace, getLastModified, init, service, serviceMethods inherited from class jakarta.servlet.GenericServlet
destroy, getInitParameter, getInitParameterNames, getServletConfig, getServletContext, getServletInfo, getServletName, init, log, log
-
Constructor Details
-
CallbackServlet
public CallbackServlet()
-
-
Method Details
-
doGet
protected void doGet(jakarta.servlet.http.HttpServletRequest request, jakarta.servlet.http.HttpServletResponse response) throws jakarta.servlet.ServletException, IOException - Overrides:
doGetin classjakarta.servlet.http.HttpServlet- Throws:
jakarta.servlet.ServletExceptionIOException
-