http4k / org.http4k.security / InsecureCookieBasedOAuthPersistence
class InsecureCookieBasedOAuthPersistence :
OAuthPersistence
This is an example implementation which stores CSRF and AccessToken values in an INSECURE client-side cookie. Access-tokens for end-services are fully available to the browser so do not use this in production!
Name | Summary |
---|---|
<init> | This is an example implementation which stores CSRF and AccessToken values in an INSECURE client-side cookie. Access-tokens for end-services are fully available to the browser so do not use this in production!InsecureCookieBasedOAuthPersistence(cookieNamePrefix: String , cookieValidity: Duration = Duration.ofHours(3), clock: Clock = Clock.systemDefaultZone()) |
Name | Summary |
---|---|
assignCsrf | Assign a CSRF token to this OAuth auth redirection (to the end-service) response. Opportunity here to modify the response returned to the user when the redirection happens.fun assignCsrf(redirect: Response , csrf: CrossSiteRequestForgeryToken ): Response |
assignNonce | Assign a nonce to this OIDC auth redirection (to the end-service) response. Opportunity here to modify the response returned to the user when the redirection happens.fun assignNonce(redirect: Response , nonce: Nonce ): Response |
assignOriginalUri | opportunity to store the uri that the request was made before authentication this will then be redirected back to after authfun assignOriginalUri(redirect: Response , originalUri: Uri ): Response |
assignToken | Assign the swapped AccessToken (and optional IdToken) returned by the end-service. Opportunity here to modify the response returned to the user when the redirection happens.fun assignToken(request: Request , redirect: Response , accessToken: AccessToken , idToken: IdToken ?): Response |
authFailureResponse | Build the default failure response which occurs when a failure occurs during the callback process (eg. a mismatch/missing CSRF or failure occurring when calling into the end-service for the access-token.fun authFailureResponse(): Response |
retrieveCsrf | Retrieve the stored CSRF token for this user requestfun retrieveCsrf(request: Request ): CrossSiteRequestForgeryToken ? |
retrieveNonce | Retrieve the stored nonce token for this user requestfun retrieveNonce(request: Request ): Nonce ? |
retrieveOriginalUri | Retrieve the stored original uri for this user requestfun retrieveOriginalUri(request: Request ): Uri ? |
retrieveToken | Retrieve the stored AccessToken token for this user requestfun retrieveToken(request: Request ): AccessToken ? |