Package org.rootservices.otter.security.csrf

Class DoubleSubmitCSRF

java.lang.Object

org.rootservices.otter.security.csrf.DoubleSubmitCSRF

public class DoubleSubmitCSRF
extends java.lang.Object

Field Summary

Fields

Modifier and Type	Field	Description
protected static org.apache.log4j.Logger	logger

Constructor Summary

Constructors

Constructor	Description
DoubleSubmitCSRF(org.rootservices.jwt.config.JwtAppFactory jwtAppFactory, RandomString randomString)
DoubleSubmitCSRF(org.rootservices.jwt.config.JwtAppFactory jwtAppFactory, RandomString randomString, org.rootservices.jwt.entity.jwk.SymmetricKey preferredSignKey, java.util.Map<java.lang.String,org.rootservices.jwt.entity.jwk.SymmetricKey> rotationSignKeys)

Method Summary

Modifier and Type	Method	Description
org.rootservices.jwt.entity.jwt.JsonWebToken	csrfCookieValueToJwt(java.lang.String encodedCsrfCookieValue)
java.lang.Boolean	doTokensMatch(java.lang.String encodedCsrfCookieValue, java.lang.String csrfFormValue)
protected org.rootservices.jwt.entity.jwk.SymmetricKey	getSignKey(java.lang.String keyId)
java.lang.String	makeChallengeToken()
Cookie	makeCsrfCookie(java.lang.String name, java.lang.String challengeToken, java.lang.Boolean secure, int maxAge)
void	setPreferredSignKey(org.rootservices.jwt.entity.jwk.SymmetricKey preferredSignKey)
void	setRotationSignKeys(java.util.Map<java.lang.String,org.rootservices.jwt.entity.jwk.SymmetricKey> rotationSignKeys)
protected java.lang.Boolean	verifyCsrfCookieSignature(org.rootservices.jwt.entity.jwt.JsonWebToken csrfJwt, org.rootservices.jwt.entity.jwk.SymmetricKey signKey)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

logger

protected static org.apache.log4j.Logger logger

Constructor Detail

DoubleSubmitCSRF

public DoubleSubmitCSRF(org.rootservices.jwt.config.JwtAppFactory jwtAppFactory,
                        RandomString randomString)

DoubleSubmitCSRF

public DoubleSubmitCSRF(org.rootservices.jwt.config.JwtAppFactory jwtAppFactory,
                        RandomString randomString,
                        org.rootservices.jwt.entity.jwk.SymmetricKey preferredSignKey,
                        java.util.Map<java.lang.String,org.rootservices.jwt.entity.jwk.SymmetricKey> rotationSignKeys)

Method Detail

doTokensMatch

public java.lang.Boolean doTokensMatch(java.lang.String encodedCsrfCookieValue,
                                       java.lang.String csrfFormValue)

csrfCookieValueToJwt

public org.rootservices.jwt.entity.jwt.JsonWebToken csrfCookieValueToJwt(java.lang.String encodedCsrfCookieValue)
                                                                  throws CsrfException

Throws:

CsrfException

getSignKey

protected org.rootservices.jwt.entity.jwk.SymmetricKey getSignKey(java.lang.String keyId)

verifyCsrfCookieSignature

protected java.lang.Boolean verifyCsrfCookieSignature(org.rootservices.jwt.entity.jwt.JsonWebToken csrfJwt,
                                                      org.rootservices.jwt.entity.jwk.SymmetricKey signKey)
                                               throws CsrfException

Throws:

CsrfException

makeChallengeToken

public java.lang.String makeChallengeToken()

makeCsrfCookie

public Cookie makeCsrfCookie(java.lang.String name,
                             java.lang.String challengeToken,
                             java.lang.Boolean secure,
                             int maxAge)
                      throws CsrfException

Throws:

CsrfException

setPreferredSignKey

public void setPreferredSignKey(org.rootservices.jwt.entity.jwk.SymmetricKey preferredSignKey)

setRotationSignKeys

public void setRotationSignKeys(java.util.Map<java.lang.String,org.rootservices.jwt.entity.jwk.SymmetricKey> rotationSignKeys)