Package org.restheart.security.mechanisms

Class JwtAuthenticationMechanism

java.lang.Object
org.restheart.security.mechanisms.JwtAuthenticationMechanism
All Implemented Interfaces:
io.undertow.security.api.AuthenticationMechanism, org.restheart.plugins.ConfigurablePlugin, org.restheart.plugins.ConsumingPlugin<com.auth0.jwt.interfaces.DecodedJWT>, org.restheart.plugins.Plugin, org.restheart.plugins.security.AuthMechanism
public class JwtAuthenticationMechanism extends Object implements org.restheart.plugins.security.AuthMechanism, org.restheart.plugins.ConsumingPlugin<com.auth0.jwt.interfaces.DecodedJWT>
factory for JWT AuthenticationMechanism
Author:
Andrea Di Cesare <andrea@softinstigate.com>

  • Nested Class Summary

    Nested classes/interfaces inherited from interface io.undertow.security.api.AuthenticationMechanism

    io.undertow.security.api.AuthenticationMechanism.AuthenticationMechanismOutcome, io.undertow.security.api.AuthenticationMechanism.ChallengeResult

  • Field Summary

    Fields
    Modifier and Type
    Field
    Description
    static final String
    JWT_AUTH_HEADER_PREFIX
     

  • Constructor Summary

    Constructors
    Constructor
    Description
    JwtAuthenticationMechanism()
     

  • Method Summary

    Modifier and Type
    Method
    Description
    void
    addConsumer(Consumer<com.auth0.jwt.interfaces.DecodedJWT> extraJwtVerifier)
    set an extra verification step via a Consumer that can throw JWTVerificationException to make the verification failing
    io.undertow.security.api.AuthenticationMechanism.AuthenticationMechanismOutcome
    authenticate(io.undertow.server.HttpServerExchange hse, io.undertow.security.api.SecurityContext sc)
     
    void
    init()
     
    io.undertow.security.api.AuthenticationMechanism.ChallengeResult
    sendChallenge(io.undertow.server.HttpServerExchange exchange, io.undertow.security.api.SecurityContext securityContext)
     
    protected static boolean
    validateKeyComplexity(String jwtKey)
     

    Methods inherited from class java.lang.Object

    clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

    Methods inherited from interface org.restheart.plugins.security.AuthMechanism

    getMechanismName

    Methods inherited from interface org.restheart.plugins.ConfigurablePlugin

    arg, argOrDefault

  • Field Details

  • Constructor Details

    • JwtAuthenticationMechanism

      public JwtAuthenticationMechanism()

  • Method Details

    • init

      public void init() throws org.restheart.configuration.ConfigurationException
      Throws:
      org.restheart.configuration.ConfigurationException

    • validateKeyComplexity

      protected static boolean validateKeyComplexity(String jwtKey)

    • authenticate

      public io.undertow.security.api.AuthenticationMechanism.AuthenticationMechanismOutcome authenticate(io.undertow.server.HttpServerExchange hse, io.undertow.security.api.SecurityContext sc)
      Specified by:
      authenticate in interface io.undertow.security.api.AuthenticationMechanism
      Specified by:
      authenticate in interface org.restheart.plugins.security.AuthMechanism

    • sendChallenge

      public io.undertow.security.api.AuthenticationMechanism.ChallengeResult sendChallenge(io.undertow.server.HttpServerExchange exchange, io.undertow.security.api.SecurityContext securityContext)
      Specified by:
      sendChallenge in interface io.undertow.security.api.AuthenticationMechanism
      Specified by:
      sendChallenge in interface org.restheart.plugins.security.AuthMechanism

    • addConsumer

      public void addConsumer(Consumer<com.auth0.jwt.interfaces.DecodedJWT> extraJwtVerifier)
      set an extra verification step via a Consumer that can throw JWTVerificationException to make the verification failing
      Specified by:
      addConsumer in interface org.restheart.plugins.ConsumingPlugin<com.auth0.jwt.interfaces.DecodedJWT>
      Parameters:
      extraJwtVerifier -