cxf-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From build...@apache.org
Subject svn commit: r1013278 - in /websites/production/cxf/content: cache/docs.pageCache docs/jax-rs-oauth.html
Date Thu, 01 Jun 2017 15:47:41 GMT
Author: buildbot
Date: Thu Jun  1 15:47:41 2017
New Revision: 1013278

Log:
Production update by buildbot for cxf

Modified:
    websites/production/cxf/content/cache/docs.pageCache
    websites/production/cxf/content/docs/jax-rs-oauth.html

Modified: websites/production/cxf/content/cache/docs.pageCache
==============================================================================
Binary files - no diff available.

Modified: websites/production/cxf/content/docs/jax-rs-oauth.html
==============================================================================
--- websites/production/cxf/content/docs/jax-rs-oauth.html (original)
+++ websites/production/cxf/content/docs/jax-rs-oauth.html Thu Jun  1 15:47:41 2017
@@ -117,12 +117,15 @@ Apache CXF -- JAX-RS OAuth
          <td height="100%">
            <!-- Content -->
            <div class="wiki-content">
-<div id="ConfluenceContent"><p><span class="inline-first-p" style="font-size:2em;font-weight:bold">
JAX-RS: OAuth </span></p><p></p><p>&#160;</p><p><style
type="text/css">/*<![CDATA[*/
-div.rbtoc1435780130656 {padding: 0px;}
-div.rbtoc1435780130656 ul {list-style: disc;margin-left: 0px;}
-div.rbtoc1435780130656 li {margin-left: 0px;padding-left: 0px;}
+<div id="ConfluenceContent"><p><span style="font-size:2em;font-weight:bold">JAX-RS:
OAuth</span>
 
-/*]]>*/</style></p><div class="toc-macro rbtoc1435780130656">
+
+&#160;</p><p>&#160;</p><p><style type="text/css">/*<![CDATA[*/
+div.rbtoc1496332023959 {padding: 0px;}
+div.rbtoc1496332023959 ul {list-style: disc;margin-left: 0px;}
+div.rbtoc1496332023959 li {margin-left: 0px;padding-left: 0px;}
+
+/*]]>*/</style></p><div class="toc-macro rbtoc1496332023959">
 <ul class="toc-indentation"><li><a shape="rect" href="#JAX-RSOAuth-Introduction">Introduction</a></li><li><a
shape="rect" href="#JAX-RSOAuth-Mavendependencies">Maven dependencies</a></li><li><a
shape="rect" href="#JAX-RSOAuth-DevelopingOAuth1.0Servers">Developing OAuth 1.0 Servers</a>
 <ul class="toc-indentation"><li><a shape="rect" href="#JAX-RSOAuth-RequestTokenService">RequestTokenService</a></li><li><a
shape="rect" href="#JAX-RSOAuth-AuthorizationRequestService">AuthorizationRequestService</a>
 <ul class="toc-indentation"><li><a shape="rect" href="#JAX-RSOAuth-OOBcallbacks">OOB
callbacks</a></li></ul>
@@ -141,7 +144,7 @@ div.rbtoc1435780130656 li {margin-left:
   &lt;version&gt;2.5.0&lt;/version&gt;
 &lt;/dependency&gt;
 </pre>
-</div></div><h1 id="JAX-RSOAuth-DevelopingOAuth1.0Servers">Developing OAuth
1.0 Servers</h1><p>OAuth server is the core piece of the complete OAuth-based
solution. Typically it contains 3 services for:</p><ul class="alternate"><li>Initiating
the flows by issuing temporarily tokens to consumers</li><li>Authorizing request
tokens by asking the end users to let consumers access some of their resources and returning
the<br clear="none"> confirmation back to the consumer</li><li>Exchanging
authorized request tokens for access tokens</li></ul><p>CXF offers 3 JAX-RS
service implementations that can be used to create OAuth 1.0 servers fast: <a shape="rect"
class="external-link" href="http://svn.apache.org/repos/asf/cxf/trunk/rt/rs/security/oauth-parent/oauth/src/main/java/org/apache/cxf/rs/security/oauth/services/RequestTokenService.java">RequestTokenService</a>,
<a shape="rect" class="external-link" href="http://svn.apache.org/repos/asf/cxf/trunk/rt/rs/security/oauth-parent/oauth/src/main/
 java/org/apache/cxf/rs/security/oauth/services/AuthorizationRequestService.java">AuthorizationRequestService</a>
and <a shape="rect" class="external-link" href="http://svn.apache.org/repos/asf/cxf/trunk/rt/rs/security/oauth-parent/oauth/src/main/java/org/apache/cxf/rs/security/oauth/services/AccessTokenService.java">AccessTokenService</a>.</p><p>All
of these 3 services rely on the custom <a shape="rect" class="external-link" href="http://svn.apache.org/repos/asf/cxf/trunk/rt/rs/security/oauth-parent/oauth/src/main/java/org/apache/cxf/rs/security/oauth/provider/OAuthDataProvider.java">OAuthDataProvider</a>
which manages request and access tokens. Writing your own OAuthDataProvider implementations
is what is needed to get the OAuth server up and running.</p><h2 id="JAX-RSOAuth-RequestTokenService">RequestTokenService</h2><p>The
main responsibility of <a shape="rect" class="external-link" href="http://svn.apache.org/repos/asf/cxf/trunk/rt/rs/security/oauth-parent/oauth/src/main/java/or
 g/apache/cxf/rs/security/oauth/services/RequestTokenService.java">RequestTokenService</a>
is to create a temporarily request token and return it back to the consumer. It supports POST
and GET requests and returns a form payload containing the new request token and its secret.</p><p>Here
is an example request log:</p><div class="code panel pdl" style="border-width: 1px;"><div
class="codeContent panelContent pdl">
+</div></div><h1 id="JAX-RSOAuth-DevelopingOAuth1.0Servers">Developing OAuth
1.0 Servers</h1><p>OAuth server is the core piece of the complete OAuth-based
solution. Typically it contains 3 services for:</p><ul class="alternate"><li>Initiating
the flows by issuing temporarily tokens to consumers</li><li>Authorizing request
tokens by asking the end users to let consumers access some of their resources and returning
the<br clear="none"> confirmation back to the consumer</li><li>Exchanging
authorized request tokens for access tokens</li></ul><p>CXF offers 3 JAX-RS
service implementations that can be used to create OAuth 1.0 servers fast: <a shape="rect"
class="external-link" href="https://github.com/apache/cxf/blob/master/rt/rs/security/oauth-parent/oauth/src/main/java/org/apache/cxf/rs/security/oauth/services/RequestTokenService.java"
rel="nofollow">RequestTokenService</a>, <a shape="rect" class="external-link"
href="https://github.com/apache/cxf/blob/master/rt/rs/security/oauth-parent/
 oauth/src/main/java/org/apache/cxf/rs/security/oauth/services/AuthorizationRequestService.java"
rel="nofollow">AuthorizationRequestService</a> and <a shape="rect" class="external-link"
href="https://github.com/apache/cxf/blob/master/rt/rs/security/oauth-parent/oauth/src/main/java/org/apache/cxf/rs/security/oauth/services/AccessTokenService.java"
rel="nofollow">AccessTokenService</a>.</p><p>All of these 3 services
rely on the custom <a shape="rect" class="external-link" href="https://github.com/apache/cxf/blob/master/rt/rs/security/oauth-parent/oauth/src/main/java/org/apache/cxf/rs/security/oauth/provider/OAuthDataProvider.java"
rel="nofollow">OAuthDataProvider</a> which manages request and access tokens. Writing
your own OAuthDataProvider implementations is what is needed to get the OAuth server up and
running.</p><h2 id="JAX-RSOAuth-RequestTokenService">RequestTokenService</h2><p>The
main responsibility of&#160;<a shape="rect" class="external-link" href="https://github.com/apache/c
 xf/blob/master/rt/rs/security/oauth-parent/oauth/src/main/java/org/apache/cxf/rs/security/oauth/services/RequestTokenService.java"
rel="nofollow">RequestTokenService</a> is to create a temporarily request token and
return it back to the consumer. It supports POST and GET requests and returns a form payload
containing the new request token and its secret.</p><p>Here is an example request
log:</p><div class="code panel pdl" style="border-width: 1px;"><div class="codeContent
panelContent pdl">
 <pre class="brush: xml; gutter: false; theme: Default" style="font-size:12px;">Address:
http://localhost:8080/services/oauth/initiate
 Encoding: ISO-8859-1
 Http-Method: POST



Mime
View raw message