cxf-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From serg...@apache.org
Subject cxf git commit: [CXF-6692] Comment updates
Date Thu, 11 Aug 2016 12:11:14 GMT
Repository: cxf
Updated Branches:
  refs/heads/master c5b8e9897 -> 833386f00


[CXF-6692] Comment updates


Project: http://git-wip-us.apache.org/repos/asf/cxf/repo
Commit: http://git-wip-us.apache.org/repos/asf/cxf/commit/833386f0
Tree: http://git-wip-us.apache.org/repos/asf/cxf/tree/833386f0
Diff: http://git-wip-us.apache.org/repos/asf/cxf/diff/833386f0

Branch: refs/heads/master
Commit: 833386f005cd0b7682ef83894fda0b3a5179b130
Parents: c5b8e98
Author: Sergey Beryozkin <sberyozkin@gmail.com>
Authored: Thu Aug 11 13:11:01 2016 +0100
Committer: Sergey Beryozkin <sberyozkin@gmail.com>
Committed: Thu Aug 11 13:11:01 2016 +0100

----------------------------------------------------------------------
 .../oauth2/provider/AbstractOAuthDataProvider.java      | 12 +-----------
 1 file changed, 1 insertion(+), 11 deletions(-)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/cxf/blob/833386f0/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/provider/AbstractOAuthDataProvider.java
----------------------------------------------------------------------
diff --git a/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/provider/AbstractOAuthDataProvider.java
b/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/provider/AbstractOAuthDataProvider.java
index 475a82d..dbbb167 100644
--- a/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/provider/AbstractOAuthDataProvider.java
+++ b/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/provider/AbstractOAuthDataProvider.java
@@ -140,17 +140,7 @@ public abstract class AbstractOAuthDataProvider implements OAuthDataProvider,
Cl
         }
         // ServerAccessToken 'nonce' property, if available, can be ignored for the purpose
for persisting it
         // further as a JWT claim - as it is only used once by (OIDC) IdTokenResponseFilter
-        // to set IdToken nonce property with the filter havinh an access to the current
ServerAccessToken instance
-        
-        //TODO: consider auto-setting all the remaining token properties as claims either
optionally 
-        // or if JWE encryption is enabled for the providers be able to choose if they
-        // want to save JOSE token representations only - though the providers can always
override
-        // this method too and set the extra claims. If all ServerAccessToken properties
are set as claims
-        // then the providers will only have to save ServerAccessToken.getTokenKey() in 
-        // saveAccessToken(ServerAccessToken) which will be a JOSE representation of a given
ServerAccessToken
-        // instance but will have to restore ServerAccessToken from it when the runtime requests
ServerAccessToken
-        // for the validation purposes. 
-        
+        // to set IdToken nonce property with the filter having an access to the current
ServerAccessToken instance
         return claims;
     }
 


Mime
View raw message