Package net.shibboleth.idp.plugin.oidc.op.oauth2.profile.impl

Profile action implementations related to OAuth2.

Class Summary

Class	Description
AbstractEncryptTokenAction	Action that encrypts a source object into an EncryptedJWT.
AbstractProcessTokenAction<T>	Action that processes a token by validating it and populating the resulting JWTClaimsSet into an OAuth2TokenMgmtResponseContext placed beneath the outbound MessageContext.
BuildAccessToken	Action that creates an Access Token, and stores it to an AccessTokenContext.
BuildIntrospectionErrorResponseFromEvent	This action reads an event from the configured EventContext lookup strategy, constructs an OAuth2 Token Introspection error response message and attaches it as the outbound message.
BuildRevokeTokenErrorResponseFromEvent	This action reads an event from the configured EventContext lookup strategy, constructs an OAuth2 Token Revocation error response message and attaches it as the outbound message.
EncryptAccessToken	Action that handles JWT access token encryption.
FormOutboundIntrospectionResponseMessage	Action that forms outbound token introspection success message.
FormOutboundRevokeTokenResponseMessage	Action that forms outbound token revocation success message.
InitializeOutboundTokenMgmtResponseMessageContext	Action that adds an outbound MessageContext and related contexts to the ProfileRequestContext.
ProcessTokenForIntrospection	Action that processes a token for introspection.
ProcessTokenForRevocation	Action that processes a token for revocation.
RevokeToken	Action that revokes a single token or the full chain of tokens, depending on the result of the configured lookup strategy for the revocation method.
SetAccessTokenToResponseContext	Action that creates a Access Token, and sets it to work context OIDCAuthenticationResponseContext.getAccessToken() located under InOutOperationContext.getOutboundMessageContext().
SignAccessToken	Action that signs AccessTokenContext.getJWT() and overwrites it with the signed version.
ValidateAudience	Action that validates requested resource/audience values against a computed set of "allowed" values and populates the resulting set into the OIDCAuthenticationResponseContext and a ProxiedRequesterContext.