org.pac4j.oidc.client

Class AzureAdClient

java.lang.Object

org.pac4j.core.util.InitializableObject

org.pac4j.core.client.BaseClient<C,U>

org.pac4j.core.client.IndirectClient<OidcCredentials,U>

org.pac4j.oidc.client.OidcClient<AzureAdProfile,AzureAdOidcConfiguration>

org.pac4j.oidc.client.AzureAdClient

All Implemented Interfaces:

Client<OidcCredentials,AzureAdProfile>

public class AzureAdClient
extends OidcClient<AzureAdProfile,AzureAdOidcConfiguration>

A specialized OidcClient for authenticating againt Microsoft Azure AD. Microsoft Azure AD provides authentication for multiple tenants, or, when the tenant is not known prior to authentication, the speciall common-tenant. For a specific tenant, the following discovery URI must be used: https://login.microsoftonline.com/tenantid/.well-known/openid-configuration or https://login.microsoftonline.com/tenantid/v2.0/.well-known/openid-configuration for Azure AD v2.0. Replace tenantid with the ID of the tenant to authenticate against. To find this ID, fill in your tenant's domain name. Your tenant ID is the UUID in authorization_endpoint. For authentication against an unknown (or dynamic tenant), use common as ID. Authentication against the common endpoint results in a ID token with a issuer different from the issuer mentioned in the discovery data. This class uses to special validator to correctly validate the issuer returned by Azure AD. More information at: https://msdn.microsoft.com/en-us/library/azure/dn645541.aspx

Since:

1.8.3

Author:

Emond Papegaaij

Field Summary

Fields inherited from class org.pac4j.core.client.IndirectClient

ATTEMPTED_AUTHENTICATION_SUFFIX, callbackUrl, callbackUrlResolver, urlResolver

Fields inherited from class org.pac4j.core.client.BaseClient

logger

Constructor Summary

Constructors

Constructor and Description
AzureAdClient()
AzureAdClient(AzureAdOidcConfiguration configuration)

Method Summary

Modifier and Type	Method and Description
protected void	clientInit()
java.lang.String	getAccessTokenFromRefreshToken(AzureAdProfile azureAdProfile)
protected CallbackUrlResolver	newDefaultCallbackUrlResolver()

Methods inherited from class org.pac4j.oidc.client.OidcClient

getConfiguration, setConfiguration, toString

Methods inherited from class org.pac4j.core.client.IndirectClient

computeFinalCallbackUrl, defaultLogoutActionBuilder, defaultRedirectActionBuilder, getAjaxRequestResolver, getCallbackUrl, getCallbackUrlResolver, getCredentials, getLogoutAction, getLogoutActionBuilder, getRedirectAction, getRedirectActionBuilder, getUrlResolver, internalInit, redirect, setAjaxRequestResolver, setCallbackUrl, setCallbackUrlResolver, setLogoutActionBuilder, setRedirectActionBuilder, setUrlResolver

Methods inherited from class org.pac4j.core.client.BaseClient

addAuthorizationGenerator, addAuthorizationGenerators, defaultAuthenticator, defaultCredentialsExtractor, defaultProfileCreator, getAuthenticator, getAuthorizationGenerators, getCredentialsExtractor, getCustomProperties, getName, getProfileCreator, getUserProfile, notifySessionRenewal, retrieveCredentials, retrieveUserProfile, setAuthenticator, setAuthorizationGenerator, setAuthorizationGenerators, setAuthorizationGenerators, setCredentialsExtractor, setCustomProperties, setName, setProfileCreator

Methods inherited from class org.pac4j.core.util.InitializableObject

init

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

Constructor Detail

AzureAdClient

public AzureAdClient()

AzureAdClient

public AzureAdClient(AzureAdOidcConfiguration configuration)

Method Detail

clientInit

protected void clientInit()

Overrides:

clientInit in class OidcClient<AzureAdProfile,AzureAdOidcConfiguration>

newDefaultCallbackUrlResolver

protected CallbackUrlResolver newDefaultCallbackUrlResolver()

Overrides:

newDefaultCallbackUrlResolver in class IndirectClient<OidcCredentials,AzureAdProfile>

getAccessTokenFromRefreshToken

public java.lang.String getAccessTokenFromRefreshToken(AzureAdProfile azureAdProfile)