cxf-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From build...@apache.org
Subject svn commit: r839013 - in /websites/production/cxf/content: cache/docs.pageCache docs/jax-rs-oauth2.html
Date Wed, 21 Nov 2012 14:48:04 GMT
Author: buildbot
Date: Wed Nov 21 14:48:04 2012
New Revision: 839013

Log:
Production update by buildbot for cxf

Modified:
    websites/production/cxf/content/cache/docs.pageCache
    websites/production/cxf/content/docs/jax-rs-oauth2.html

Modified: websites/production/cxf/content/cache/docs.pageCache
==============================================================================
Binary files - no diff available.

Modified: websites/production/cxf/content/docs/jax-rs-oauth2.html
==============================================================================
--- websites/production/cxf/content/docs/jax-rs-oauth2.html (original)
+++ websites/production/cxf/content/docs/jax-rs-oauth2.html Wed Nov 21 14:48:04 2012
@@ -503,6 +503,8 @@ Authorization: MAC id=<span class="code-
 
 <h2><a shape="rect" name="JAX-RSOAuth2-SupportedGrants"></a>Supported Grants</h2>
 
+<p>The following subsections briefly describe how the well-known grant types can be
supported on the server side. Please also check the "Client Side Support" section on how to
use the related <a shape="rect" class="external-link" href="http://svn.apache.org/repos/asf/cxf/trunk/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/common/AccessTokenGrant.java">AccessTokenGrant</a>
implementations to request the access tokens.</p>
+
 <h3><a shape="rect" name="JAX-RSOAuth2-AuthorizationCode"></a>Authorization
Code</h3>
 
 <p>As described above, <a shape="rect" class="external-link" href="http://svn.apache.org/repos/asf/cxf/trunk/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/services/AuthorizationCodeGrantService.java">AuthorizationCodeGrantService</a>
service and <a shape="rect" class="external-link" href="http://svn.apache.org/repos/asf/cxf/trunk/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/grants/code/AuthorizationCodeDataProvider.java">AuthorizationCodeDataProvider</a>
data provider can support a redirection-based Authorization Code flow. </p>
@@ -807,8 +809,11 @@ how one can access a user login name tha
 </pre>
 </div></div>    
 
-<p>The reason such a simple wrapper can be introduced is to minimize the exposure to
OAuth2 of the main application code to the bare minimum, this is why<br clear="none">
-in this example OAuthServiceExceptions are caught, presumably logged and null values are
returned which will indicate to the main code that the request failed. Obviously, OAuthClientUtils
can be used directly as well.</p>
+<p>The reason such a simple wrapper can be introduced is to minimize the exposure to
OAuth2 of the main application code to the bare minimum, this is why in this example OAuthServiceExceptions
are caught, presumably logged and null values are returned which will indicate to the main
code that the request failed. Obviously, OAuthClientUtils can be used directly as well.</p>
+
+<p>Note that in the above example, an instance of <a shape="rect" class="external-link"
href="http://svn.apache.org/repos/asf/cxf/trunk/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/grants/code/AuthorizationCodeGrant.java">AuthorizationCodeGrant</a>
is passed as the last parameter to OAuthClientUtils.getAccessToken() method, alongside the
references to the AccessTokenService client and OAuthClientUtils.Consumer bean keeping the
client id and secret.</p>
+
+<p>CXF provides the utility grant beans for all the grants it supports, <a shape="rect"
class="external-link" href="http://svn.apache.org/repos/asf/cxf/trunk/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/grants/code/AuthorizationCodeGrant.java">AuthorizationCodeGrant</a>,
<a shape="rect" class="external-link" href="http://svn.apache.org/repos/asf/cxf/trunk/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/grants/clientcred/ClientCredentialsGrant.java">ClientCredentialsGrant</a>,
<a shape="rect" class="external-link" href="http://svn.apache.org/repos/asf/cxf/trunk/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/grants/owner/ResourceOwnerGrant.java">ResourceOwnerGrant</a>
and <a shape="rect" class="external-link" href="http://svn.apache.org/repos/asf/cxf/trunk/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/grants/refresh/RefreshTokenGrant
 .java">RefreshTokenGrant</a>. Please use the appropriate grant bean relevant to
your application when requesting an access token or create a custom AccessTokenGrant bean
implementation.</p>
 
 <h1><a shape="rect" name="JAX-RSOAuth2-OAuth2withouttheExplicitAuthorization"></a>OAuth2
without the Explicit Authorization</h1>
 



Mime
View raw message