Class BearerIvoaAuthScheme

java.lang.Object
uk.ac.starlink.auth.IvoaAuthScheme
uk.ac.starlink.auth.BearerIvoaAuthScheme
All Implemented Interfaces:
AuthScheme

public class BearerIvoaAuthScheme extends IvoaAuthScheme
IvoaAuthScheme concrete subclass for working with bearer tokens.

This implements the "ivoa_bearer" scheme. The bearer token is acquired from the "X-VO-Bearer" header of the login response, and is subsequently used in accordance with RFC6750 like:

    Authorization: Bearer <token-text>
 

Note that at time of writing it is not in general safe to use this scheme because the details of token scope have not been worked out, leading to the possibility of a third-party malevolent site issuing a challenge that would result in stealing tokens.

Since:
10 Dec 2021
Author:
Mark Taylor
See Also:
  • Field Details

  • Method Details

    • createContextFactory

      public ContextFactory createContextFactory(LoginProtocol loginProto, URL loginUrl, URL challengeUrl)
      Description copied from class: IvoaAuthScheme
      Creates a ContextFactory for this scheme with a given login protocol instance. The return value should generally not be null, since if it's got as far as this call, the challenge looks like it's intended for this scheme.
      Specified by:
      createContextFactory in class IvoaAuthScheme
      Parameters:
      loginProto - login protocol
      loginUrl - login URL
      challengeUrl - URL from which the challenge was received
      Returns:
      context factory