All Downloads are FREE. Search and download functionalities are using the official Maven repository.

com.authlete.common.dto.BackchannelAuthenticationIssueResponse Maven / Gradle / Ivy

Go to download

Authlete Java library used commonly by service implementations and the Authlete server.

There is a newer version: 4.16
Show newest version
/*
 * Copyright (C) 2018 Authlete, Inc.
 *
 * Licensed under the Apache License, Version 2.0 (the "License"); you may not
 * use this file except in compliance with the License. You may obtain a copy of
 * the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
 * License for the specific language governing permissions and limitations under
 * the License.
 */
package com.authlete.common.dto;


/**
 * Response from Authlete's {@code /api/backchannel/authentication/issue} API.
 *
 * 

* Authlete's {@code /api/backchannel/authentication/issue} API returns JSON * which can be mapped to this class. The authorization server implementation * should retrieve the value of {@code action} from the response and take the * following steps according to the value. *

* *
*
{@link Action#OK OK}
*
*

* When the value of {@code action} is {@code OK}, it means that Authlete has * succeeded in preparing JSON that contains an {@code auth_req_id}. The JSON * should be used as the response body of the response which is returned to * the client from the backchannel authentication endpoint. The * {@link #getResponseContent()} method returns the JSON. *

* *

* The following illustrates the response which the authorization server * implementation should generate and return to the client application. *

* *
 * HTTP/1.1 200 OK
 * Content-Type: application/json
 * Cache-Control: no-store
 * Pragma: no-cache
 *
 * (The value returned from {@link #getResponseContent()})
*
*
* *
{@link Action#INTERNAL_SERVER_ERROR INTERNAL_SERVER_ERROR}
*
*

* When the value of {@code action} is {@code INTERNAL_SERVER_ERROR}, it means * that an error occurred in Authlete. *

* *

* From a viewpoint of the client application, this is an error on the server * side. Therefore, the authorization server implementation should generate a * response to the client application with {@code 500 Internal Server Error} * and {@code application/json}. *

* *

* The {@link #getResponseContent()} method returns a JSON string which * describes the error, so it can be used as the entity body of the response. *

* *

* The following illustrates the response which the authorization server * implementation should generate and return to the client application. *

* *
 * HTTP/1.1 500 Internal Server Error
 * Content-Type: application/json
 * Cache-Control: no-store
 * Pragma: no-cache
 *
 * (The value returned from {@link #getResponseContent()})
*
*
* *
{@link Action#INVALID_TICKET INVALID_TICKET}
*
*

* When the value of {@code action} is {@code INVALID_TICKET}, it means that * the ticket included in the API call was invalid. For example, it does not * exist or has expired. *

* *

* From a viewpoint of the client application, this is an error on the server * side. Therefore, the authorization server implementation should generate a * response to the client application with {@code 500 Internal Server Error} * and {@code application/json}. *

* *

* You can build an error response in the same way as shown in the description * for the case of {@code INTERNAL_SERVER_ERROR}. *

*
*
* *
* * @since 2.32 * @since Authlete 2.0.0 */ public class BackchannelAuthenticationIssueResponse extends ApiResponse { private static final long serialVersionUID = 1L; /** * The next action that the OpenID provider implementation should take. */ public enum Action { /** * The implementation of the backchannel authentication endpoint should * return a {@code 200 OK} response to the client application. */ OK, /** * The implementation of the backchannel authentication endpoint should * return a {@code 500 Internal Server Error} response to the client * application. However, in most cases, commercial implementations * prefer to use other HTTP status code than 5xx. */ INTERNAL_SERVER_ERROR, /** * The ticket included in the API call is invalid. It does not exist or * has expired. */ INVALID_TICKET, } private Action action; private String responseContent; private String authReqId; private int expiresIn; private int interval; /** * Get the next action that the OpenID provider implementation should take. * * @return * The next action. */ public Action getAction() { return action; } /** * Set the next action that the OpenID provider implementation should take. * * @param action * The next action. * * @return * {@code this} object. */ public BackchannelAuthenticationIssueResponse setAction(Action action) { this.action = action; return this; } /** * Get the content of the response body of the response to the client * application. Its format is JSON. * *

* In successful cases, the content contains {@code auth_req_id}. In error * cases, the content contains {@code error}. *

* * @return * The content of the response body of the response to the client * application. */ public String getResponseContent() { return responseContent; } /** * Set the content of the response body of the response to the client * application. * * @param responseContent * The content of the response body of the response to the client * application. * * @return * {@code this} object. */ public BackchannelAuthenticationIssueResponse setResponseContent(String responseContent) { this.responseContent = responseContent; return this; } /** * Get the issued authentication request ID. This corresponds to the * {@code auth_req_id} property in the response to the client. * * @return * The issued authentication request ID ({@code auth_req_id}). */ public String getAuthReqId() { return authReqId; } /** * Set the issued authentication request ID. This corresponds to the * {@code auth_req_id} property in the response to the client. * * @param authReqId * The issued authentication request ID ({@code auth_req_id}). * * @return * {@code this} object. */ public BackchannelAuthenticationIssueResponse setAuthReqId(String authReqId) { this.authReqId = authReqId; return this; } /** * Get the duration of the issued authentication request ID in seconds. * This corresponds to the {@code expires_in} property in the response * to the client. * * @return * The duration of the issued authentication request ID in seconds * ({@code expires_in}). */ public int getExpiresIn() { return expiresIn; } /** * Set the duration of the issued authentication request ID in seconds. * This corresponds to the {@code expires_in} property in the response * to the client. * * @param expiresIn * The duration of the issued authentication request ID in seconds * ({@code expires_in}). * * @return * {@code this} object. */ public BackchannelAuthenticationIssueResponse setExpiresIn(int expiresIn) { this.expiresIn = expiresIn; return this; } /** * Get the minimum amount of time in seconds that the client must wait for * between polling requests to the token endpoint. This corresponds to the * {@code interval} property in the response to the client. * *

* The value returned from this method has no meaning when the backchannel * token delivery mode is {@code "push"}. *

* * @return * The minimum amount of time in seconds between polling requests. */ public int getInterval() { return interval; } /** * Set the minimum amount of time in seconds that the client must wait for * between polling requests to the token endpoint. This corresponds to the * {@code interval} property in the response to the client. * * @param interval * The minimum amount of time in seconds between polling requests. * * @return * {@code this} object. */ public BackchannelAuthenticationIssueResponse setInterval(int interval) { this.interval = interval; return this; } }




© 2015 - 2025 Weber Informatics LLC | Privacy Policy