Interface ClientManagementConstants

  • All Known Implementing Classes:
    CMConfigs

    public interface ClientManagementConstants
    These are constants for the configuration of the client management facilities. A typical set of entries might look like
         <clientManagement>
             <api protocol="rfc7951" enabled="true"  url="https://foo.bar/oauth2/rfc77591"/>
             <api protocol="rfc7952" enabled="true" endpoint="oidc-cm2" />
             <api protocol="oa4mp" enabled="false" endpoint="oidc-cm" "/>
         </clientManagement>
     
    In this case, the RFC 7591 endpoint is completely specified. In the other 2 cases, it will be constructed from the server's address (found in the environment's ServiceEnvironmentImpl.getServiceAddress() property). In this case, the native OA4MP client management endpoint has been disabled.

    Created by Jeff Gaynor
    on 7/25/19 at 11:01 AM

    • Field Detail

      • RFC_7591_TEMPLATE

        static final String RFC_7591_TEMPLATE
        Client id of a configured client to use as a template.
        See Also:
        Constant Field Values
      • RFC_7591_AUTO_APPROVE

        static final String RFC_7591_AUTO_APPROVE
        Whether or not to automatically approve anonymous requests. This may happen in highly automated systems with severely restricted access. Generally though setting it true is a terrible idea and a security risk.
        See Also:
        Constant Field Values
      • RFC_7591_ANONYMOUS_OK

        static final String RFC_7591_ANONYMOUS_OK
        Allow anonymous create for this endpoint for a client. This means that a post with client information to this endpoint will be allowed and an unapproved client will result.
        See Also:
        Constant Field Values
      • ENDPOINT_ATTRIBUTE

        static final String ENDPOINT_ATTRIBUTE
        If the protocol is to be derived from the server address, just set the endpoint, e.g. if the server address is https://foo.bar/oauth2 and the endpoint is register then the resulting client registration endpoint would be https://foo.bar/oauth2/register
        See Also:
        Constant Field Values
      • FULL_URL_ATTRIBUTE

        static final String FULL_URL_ATTRIBUTE
        Specify the complete url for the client registration endpoint. Note that this will only affect the RFC7951 and RFC7952 protocols and will override the endpoint tag. Use this if, e.g., the registration servlet is located on a completely different machine than the OA4MP server, or if there is some other reason to do so.
        See Also:
        Constant Field Values