openwebbeans-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From build...@apache.org
Subject svn commit: r1005036 - in /websites/staging/openwebbeans/trunk/content: ./ meecrowave/meecrowave-oauth2/index.html meecrowave/meecrowave-oauth2/index.pdf
Date Mon, 16 Jan 2017 14:23:42 GMT
Author: buildbot
Date: Mon Jan 16 14:23:42 2017
New Revision: 1005036

Log:
Staging update by buildbot for openwebbeans

Modified:
    websites/staging/openwebbeans/trunk/content/   (props changed)
    websites/staging/openwebbeans/trunk/content/meecrowave/meecrowave-oauth2/index.html
    websites/staging/openwebbeans/trunk/content/meecrowave/meecrowave-oauth2/index.pdf

Propchange: websites/staging/openwebbeans/trunk/content/
------------------------------------------------------------------------------
--- cms:source-revision (original)
+++ cms:source-revision Mon Jan 16 14:23:42 2017
@@ -1 +1 @@
-1777966
+1779034

Modified: websites/staging/openwebbeans/trunk/content/meecrowave/meecrowave-oauth2/index.html
==============================================================================
--- websites/staging/openwebbeans/trunk/content/meecrowave/meecrowave-oauth2/index.html (original)
+++ websites/staging/openwebbeans/trunk/content/meecrowave/meecrowave-oauth2/index.html Mon
Jan 16 14:23:42 2017
@@ -66,7 +66,9 @@
 
 
             <section class="doc-section">
-                <div class="paragraph">
+                <div id="preamble">
+<div class="sectionbody">
+<div class="paragraph">
 <p>Starting with version 0.3.0.</p>
 </div>
 <div class="paragraph">
@@ -107,6 +109,10 @@
 <td class="tableblock halign-left valign-top"><p class="tableblock">How long
an access token is valid, default to 3600s</p></td>
 </tr>
 <tr>
+<td class="tableblock halign-left valign-top"><p class="tableblock">--oauth2-authorization-code-support</p></td>
+<td class="tableblock halign-left valign-top"><p class="tableblock">Is authorization
code flow supported</p></td>
+</tr>
+<tr>
 <td class="tableblock halign-left valign-top"><p class="tableblock">--oauth2-block-unsecure-requests</p></td>
 <td class="tableblock halign-left valign-top"><p class="tableblock">Should unsecured
requests be blocked</p></td>
 </tr>
@@ -135,10 +141,30 @@
 <td class="tableblock halign-left valign-top"><p class="tableblock">JCache configuration
uri for the cache manager (jcache or provider)</p></td>
 </tr>
 <tr>
+<td class="tableblock halign-left valign-top"><p class="tableblock">--oauth2-jcache-jmx</p></td>
+<td class="tableblock halign-left valign-top"><p class="tableblock">Should JCache
JMX MBeans be enabled</p></td>
+</tr>
+<tr>
+<td class="tableblock halign-left valign-top"><p class="tableblock">--oauth2-jcache-loader</p></td>
+<td class="tableblock halign-left valign-top"><p class="tableblock">The loader
bean or class name</p></td>
+</tr>
+<tr>
+<td class="tableblock halign-left valign-top"><p class="tableblock">--oauth2-jcache-statistics</p></td>
+<td class="tableblock halign-left valign-top"><p class="tableblock">Should JCache
statistics be enabled</p></td>
+</tr>
+<tr>
 <td class="tableblock halign-left valign-top"><p class="tableblock">--oauth2-jcache-store-jwt-token-key-only</p></td>
 <td class="tableblock halign-left valign-top"><p class="tableblock">Should JCache
store jwt token key only (jcache provider)</p></td>
 </tr>
 <tr>
+<td class="tableblock halign-left valign-top"><p class="tableblock">--oauth2-jcache-store-value</p></td>
+<td class="tableblock halign-left valign-top"><p class="tableblock">Should JCache
store value or not</p></td>
+</tr>
+<tr>
+<td class="tableblock halign-left valign-top"><p class="tableblock">--oauth2-jcache-writer</p></td>
+<td class="tableblock halign-left valign-top"><p class="tableblock">The writer
bean or class name</p></td>
+</tr>
+<tr>
 <td class="tableblock halign-left valign-top"><p class="tableblock">--oauth2-jpa-database-driver</p></td>
 <td class="tableblock halign-left valign-top"><p class="tableblock">JPA database
driver for jpa provider</p></td>
 </tr>
@@ -199,6 +225,22 @@
 <td class="tableblock halign-left valign-top"><p class="tableblock">Which provider
type to use: jcache[-code], jpa[-code], encrypted[-code]</p></td>
 </tr>
 <tr>
+<td class="tableblock halign-left valign-top"><p class="tableblock">--oauth2-redirection-match-redirect-uri-with-application-uri</p></td>
+<td class="tableblock halign-left valign-top"><p class="tableblock">For authorization
code flow, should redirect uri be matched with application one</p></td>
+</tr>
+<tr>
+<td class="tableblock halign-left valign-top"><p class="tableblock">--oauth2-redirection-max-default-session-interval</p></td>
+<td class="tableblock halign-left valign-top"><p class="tableblock">For authorization
code flow, how long a session can be</p></td>
+</tr>
+<tr>
+<td class="tableblock halign-left valign-top"><p class="tableblock">--oauth2-redirection-scopes-requiring-no-consent</p></td>
+<td class="tableblock halign-left valign-top"><p class="tableblock">For authorization
code flow, the scopes using no consent</p></td>
+</tr>
+<tr>
+<td class="tableblock halign-left valign-top"><p class="tableblock">--oauth2-redirection-use-registered-redirect-uri-if-possible</p></td>
+<td class="tableblock halign-left valign-top"><p class="tableblock">For authorization
code flow, should the registered uri be used</p></td>
+</tr>
+<tr>
 <td class="tableblock halign-left valign-top"><p class="tableblock">--oauth2-refresh-token</p></td>
 <td class="tableblock halign-left valign-top"><p class="tableblock">Is issuing
of access token issuing a refreh token too</p></td>
 </tr>
@@ -223,6 +265,10 @@
 <td class="tableblock halign-left valign-top"><p class="tableblock">Are public
clients supported</p></td>
 </tr>
 <tr>
+<td class="tableblock halign-left valign-top"><p class="tableblock">--oauth2-token-support</p></td>
+<td class="tableblock halign-left valign-top"><p class="tableblock">Are token
flows supported</p></td>
+</tr>
+<tr>
 <td class="tableblock halign-left valign-top"><p class="tableblock">--oauth2-use-all-client-scopes</p></td>
 <td class="tableblock halign-left valign-top"><p class="tableblock">Are all client
scopes used for refresh tokens</p></td>
 </tr>
@@ -306,6 +352,33 @@ but also how to use a 3rd party library
 </tr>
 </table>
 </div>
+</div>
+</div>
+<div class="sect1">
+<h2 id="_authorization_code_case">Authorization code case</h2>
+<div class="sectionbody">
+<div class="paragraph">
+<p>Authorization code flow is a bit more complicated but services (endpoints) can be
activated (see configuration - <code>--oauth2-authorization-code-support</code>).</p>
+</div>
+<div class="paragraph">
+<p>You will need to configure CXF to point to the keystore/key to crypt/sign the token
in session.
+It is properties based. All CXF properties (<code>rs.security.<strong></code>)
are supported but prefixed with <code>oauth2.cxf.</code> to avoid
+to mix it with another configuration starting with <code>rs.</strong></code>.</p>
+</div>
+<div class="paragraph">
+<p>For instance you can use:</p>
+</div>
+<div class="listingblock">
+<div class="content">
+<pre class="highlightjs highlight"><code class="language-properties" data-lang="properties">oauth2.cxf.rs.security.keystore.type
= jks
+oauth2.cxf.rs.security.keystore.file = /opt/keystores/oauth2.jks
+oauth2.cxf.rs.security.keystore.password = password
+oauth2.cxf.rs.security.keystore.alias = alice
+oauth2.cxf.rs.security.key.password = pwd</code></pre>
+</div>
+</div>
+</div>
+</div>
             </section><!--//doc-section-->
 
 

Modified: websites/staging/openwebbeans/trunk/content/meecrowave/meecrowave-oauth2/index.pdf
==============================================================================
Binary files - no diff available.



Mime
View raw message