Examples of AccessToken

• co.cask.cdap.security.auth.AccessToken
  Represents a verified identity used for client authentication. The token consists of two parts:

  • the token identity - represented by the {@link AccessTokenIdentifier}, this contains the authenticated username, group memberships, and valid token lifetime,
  • the token digest - a signature computed on the token identity components plus a server-side secret key, this ensures that the token is authentic (was issued by a trusted server) and has not been modified.

  An access token is issued following successful authentication of a client by an external mechanism (such as LDAP, Kerberos, etc). The token is then provided by the client on subsequent requests to CDAP. In order to validate the token, CDAP components recompute the digest for the token identifier, based on their own knowledge of the secret key. If the recomputed digest matches that provided by the client, we know that, barring compromise of the secret keys or exposure of the token itself, the token was issued by CDAP for this client.
• co.cask.cdap.security.authentication.client.AccessToken
  This class represents access token object.
• com.dongxuexidu.douban4j.model.app.AccessToken
  @author Zhibo Wei
• com.fitbit.api.client.http.AccessToken
  Representing authorized Access Token which is passed to the service provider in order to access protected resources.
  the token and token secret can be stored into some persistent stores such as file system or RDBMS for the further accesses. @author Yusuke Yamamoto - yusuke at mac.com
• com.ibm.sbt.security.authentication.oauth.consumer.AccessToken
  Holds a token to connect to a service, for a dedicated user.

  This holds both the application identifier and the URL to reach the service. Not that it does not hold the token specific to a user.

  @author Philippe Riand
• com.intellij.openapi.application.AccessToken
• com.nimbusds.oauth2.sdk.token.AccessToken
  The base abstract class for access tokens. Concrete extending classes should be immutable.

  Related specifications:

  • OAuth 2.0 (RFC 6749), sections 1.4 and 5.1.
• com.renren.api.client.param.impl.AccessToken
• com.sola.instagram.auth.AccessToken
• com.zaranux.os.server.core.AccessToken
• facebook4j.auth.AccessToken
  Represents an access token (with expiration date). @author Ryuji Yamashita - roundrop at gmail.com
• org.apache.cxf.rs.security.oauth.data.AccessToken
  Access Token representation
• org.apache.hadoop.fs.swift.auth.entities.AccessToken
  Access token representation of Openstack Keystone authentication. Class holds token id, tenant and expiration time. THIS FILE IS MAPPED BY JACKSON TO AND FROM JSON. DO NOT RENAME OR MODIFY FIELDS AND THEIR ACCESSORS. Example:

   "token" : { "RAX-AUTH:authenticatedBy" : [ "APIKEY" ], "expires" : "2013-07-12T05:19:24.685-05:00", "id" : "8bbea4215113abdab9d4c8fb0d37", "tenant" : { "id" : "01011970", "name" : "77777" } } 

• org.eurekaj.api.datatypes.AccessToken
  Created with IntelliJ IDEA. User: joahaa Date: 2/3/13 Time: 9:29 PM To change this template use File | Settings | File Templates.
• org.glassfish.jersey.client.oauth1.AccessToken
  Access Token class (credentials issued by the Service Provider for the user). The class stores client secret as byte array to improve security. @author Miroslav Fuksa (miroslav.fuksa at oracle.com) @since 2.3
• org.graylog2.security.AccessToken
  @author Dennis Oelkers
• org.iplantc.agave.client.model.AccessToken
• org.keycloak.representations.AccessToken
  @author Bill Burke @version $Revision: 1 $
• org.surfnet.oaaas.model.AccessToken
  .ietf.org/html/draft-ietf-oauth-v2-30#section-1.4" >AccessToken
• twitter4j.auth.AccessToken
  Representing authorized Access Token which is passed to the service provider in order to access protected resources.
  the token and token secret can be stored into some persistent stores such as file system or RDBMS for the further accesses. @author Yusuke Yamamoto - yusuke at mac.com
• twitter4j.http.AccessToken
  Representing authorized Access Token which is passed to the service provider in order to access protected resources.
  the token and token secret can be stored into some persistent stores such as file system or RDBMS for the further accesses. @author Yusuke Yamamoto - yusuke at mac.com
• weibo4j.http.AccessToken
  Representing authorized Access Token which is passed to the service provider in order to access protected resources.
  the token and token secret can be stored into some persistent stores such as file system or RDBMS for the further accesses. @author Yusuke Yamamoto - yusuke at mac.com

Examples of org.graylog2.security.AccessToken

    }

    @Override
    protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken token) throws AuthenticationException {
        AccessTokenAuthToken authToken = (AccessTokenAuthToken) token;
        final AccessToken accessToken = accessTokenService.load(String.valueOf(authToken.getToken()));

        if (accessToken == null) {
            return null;
        }
        final User user = userService.load(accessToken.getUserName());
        if (user == null) {
            return null;
        }
        if (user.isExternalUser() && !ldapAuthenticator.isEnabled()) {
            throw new LockedAccountException("LDAP authentication is currently disabled.");

Examples of org.iplantc.agave.client.model.AccessToken

        int lifetime = 14400;
        int expiresIn = json.get("expires_in").asInt();
        DateTime created = new DateTime();
        created = created.minusSeconds(lifetime - expiresIn);

        AccessToken token = new AccessToken();
        token.setAccessToken(json.get("access_token").asText());
        token.setClientSecret(clientSecret);
        token.setClientKey(clientKey);
        token.setCreatedAt(created);
        token.setExpiresAt(new DateTime().plusSeconds(expiresIn));
        token.setRefreshToken(json.get("refresh_token").asText());

        tokenResponse.setResult(token);
      }
      else
      {

Examples of org.keycloak.representations.AccessToken

    }

    @Before
    public void setup() {

        AccessToken token = new AccessToken();
        token.setPreferredUsername("admin");
        when(context.getToken()).thenReturn(token);
        when(keycloakPrincipal.getKeycloakSecurityContext()).thenReturn(context);
        when(httpServletRequest.getUserPrincipal()).thenReturn(keycloakPrincipal);

        searchManager.setHttpServletRequest(httpServletRequest);

Examples of org.surfnet.oaaas.model.AccessToken

    client = repo.save(client);


    // Create an access token
    AccessToken at = new AccessToken("mytoken", new AuthenticatedPrincipal("username"), client, 0, null);
    at = accessTokenRepository.save(at);
    assertEquals(at, accessTokenRepository.findOne(at.getId()));

    // Create an authorization request
    AuthorizationRequest ar = new AuthorizationRequest("foo", "faa", "boo", null, "boo", "boo");
    ar.setClient(client);
    ar = authorizationRequestRepository.save(ar);
    assertEquals(ar, authorizationRequestRepository.findOne(ar.getId()));

    // Make sure things are saved; the relation between clients and access tokens is unidirectional; therefore a
    // delete would not work with attached entities.
    entityManager.clear();

    final long clientId = client.getId();
    repo.delete(client);
    assertNull(repo.findOne(clientId));

    assertNull(accessTokenRepository.findOne(at.getId()));
    assertNull(authorizationRequestRepository.findOne(ar.getId()));

  }

Examples of org.surfnet.oaaas.model.AccessToken

  @Test
  public void testPrincipalDisplayName() {
    AuthorizationRequest authRequest = createAuthRequest(OAuth2Validator.IMPLICIT_GRANT_RESPONSE_TYPE);
    authRequest.getClient().setIncludePrincipal(true);

    AccessToken accessToken = createAccessToken();

    when(authorizationRequestRepository.findByAuthState("auth_state")).thenReturn(authRequest);
    when(request.getAttribute(AbstractAuthenticator.AUTH_STATE)).thenReturn("auth_state");
    when(request.getAttribute(AbstractUserConsentHandler.GRANTED_SCOPES)).thenReturn(accessToken.getScopes().toArray());
    when(accessTokenRepository.save((AccessToken) any())).thenReturn(accessToken);

    URI uri = (URI) tokenResource.authorizeCallback(request).getMetadata().get("Location").get(0);

Examples of org.surfnet.oaaas.model.AccessToken

    assertEquals("http://localhost:8080#access_token=ABCDEF&token_type=bearer&expires_in=" + expiresIn + "&scope=read,write&state=important&principal=sammy%20sammy", uri.toString());
    assertTrue(uri.getFragment().endsWith("principal=" + authRequest.getPrincipal().getDisplayName()));
  }

  private AccessToken createAccessToken() {
    AccessToken token = new AccessToken();
    token.setToken("ABCDEF");
    token.setExpires(System.currentTimeMillis() + 1800 * 1000);
    token.setScopes(Arrays.asList("read","write"));
    return token;
  }

Examples of org.surfnet.oaaas.model.AccessToken

public class AccessTokenRepositoryTest extends AbstractTestRepository {

  @Test
  public void testPrincipal() {
    AccessTokenRepository repo = getRepository(AccessTokenRepository.class);
    AccessToken token = repo.findByToken("00-11-22-33");
    assertEquals("it-test-enduser",token.getPrincipal().getName());
  }

Examples of org.surfnet.oaaas.model.AccessToken

    if (resourceServer == null || !resourceServer.getSecret().equals(credentials.getPassword())) {
      LOG.warn("For access token {}: Resource server not found for credentials {}. Responding with 401 in VerifyResource#verifyToken.", accessToken, credentials);
      return unauthorized();
    }

    AccessToken token = accessTokenRepository.findByToken(accessToken);
    if (token == null || !resourceServer.containsClient(token.getClient())) {
      LOG.warn("Access token {} not found for resource server '{}'. Responding with 404 in VerifyResource#verifyToken for user {}", accessToken, resourceServer.getName(), credentials);
      return Response.status(Status.NOT_FOUND).entity(new VerifyTokenResponse("not_found")).build();
    }
    if (tokenExpired(token)) {
      LOG.warn("Token {} is expired. Responding with 410 in VerifyResource#verifyToken for user {}", accessToken, credentials);
      return Response.status(Status.GONE).entity(new VerifyTokenResponse("token_expired")).build();
    }

    final VerifyTokenResponse verifyTokenResponse = new VerifyTokenResponse(token.getClient().getName(),
            token.getScopes(), token.getPrincipal(), token.getExpires());

    if (LOG.isDebugEnabled()) {
      LOG.debug("Responding with 200 in VerifyResource#verifyToken for access token {} and user {}", accessToken, credentials);
    }
    return Response.ok(mapper.writeValueAsString(verifyTokenResponse)).build();

Examples of org.surfnet.oaaas.model.AccessToken

  public Response delete(@Context HttpServletRequest request, @PathParam("accessTokenId") Long id) {
    Response validateScopeResponse = validateScope(request, Collections.singletonList(AbstractResource.SCOPE_WRITE));
    if (validateScopeResponse != null) {
      return validateScopeResponse;
    }
    AccessToken accessToken = getAccessToken(request, id);
    if (accessToken == null) {
      return Response.status(Response.Status.NOT_FOUND).build();
    }
    LOG.debug("About to delete accessToken {}", id);
    accessTokenRepository.delete(id);

Examples of org.surfnet.oaaas.model.AccessToken

    accessTokenRepository.delete(id);
    return Response.noContent().build();
  }

  private AccessToken getAccessToken(HttpServletRequest request, Long id) {
    AccessToken accessToken;
    if (isAdminPrincipal(request)) {
      accessToken = accessTokenRepository.findOne(id);
    } else {
      String owner = getUserId(request);
      accessToken = accessTokenRepository.findByIdAndResourceOwnerId(id, owner);