Author: buildbot Date: Thu Jun 1 15:47:41 2017 New Revision: 1013278 Log: Production update by buildbot for cxf
Modified: websites/production/cxf/content/cache/docs.pageCache websites/production/cxf/content/docs/jax-rs-oauth.html Modified: websites/production/cxf/content/cache/docs.pageCache ============================================================================== Binary files - no diff available. Modified: websites/production/cxf/content/docs/jax-rs-oauth.html ============================================================================== --- websites/production/cxf/content/docs/jax-rs-oauth.html (original) +++ websites/production/cxf/content/docs/jax-rs-oauth.html Thu Jun 1 15:47:41 2017 @@ -117,12 +117,15 @@ Apache CXF -- JAX-RS OAuth <td height="100%"> <!-- Content --> <div class="wiki-content"> -<div id="ConfluenceContent"><p><span class="inline-first-p" style="font-size:2em;font-weight:bold"> JAX-RS: OAuth </span></p><p></p><p> </p><p><style type="text/css">/*<![CDATA[*/ -div.rbtoc1435780130656 {padding: 0px;} -div.rbtoc1435780130656 ul {list-style: disc;margin-left: 0px;} -div.rbtoc1435780130656 li {margin-left: 0px;padding-left: 0px;} +<div id="ConfluenceContent"><p><span style="font-size:2em;font-weight:bold">JAX-RS: OAuth</span> -/*]]>*/</style></p><div class="toc-macro rbtoc1435780130656"> + + </p><p> </p><p><style type="text/css">/*<![CDATA[*/ +div.rbtoc1496332023959 {padding: 0px;} +div.rbtoc1496332023959 ul {list-style: disc;margin-left: 0px;} +div.rbtoc1496332023959 li {margin-left: 0px;padding-left: 0px;} + +/*]]>*/</style></p><div class="toc-macro rbtoc1496332023959"> <ul class="toc-indentation"><li><a shape="rect" href="#JAX-RSOAuth-Introduction">Introduction</a></li><li><a shape="rect" href="#JAX-RSOAuth-Mavendependencies">Maven dependencies</a></li><li><a shape="rect" href="#JAX-RSOAuth-DevelopingOAuth1.0Servers">Developing OAuth 1.0 Servers</a> <ul class="toc-indentation"><li><a shape="rect" href="#JAX-RSOAuth-RequestTokenService">RequestTokenService</a></li><li><a shape="rect" href="#JAX-RSOAuth-AuthorizationRequestService">AuthorizationRequestService</a> <ul class="toc-indentation"><li><a shape="rect" href="#JAX-RSOAuth-OOBcallbacks">OOB callbacks</a></li></ul> @@ -141,7 +144,7 @@ div.rbtoc1435780130656 li {margin-left: <version>2.5.0</version> </dependency> </pre> -</div></div><h1 id="JAX-RSOAuth-DevelopingOAuth1.0Servers">Developing OAuth 1.0 Servers</h1><p>OAuth server is the core piece of the complete OAuth-based solution. Typically it contains 3 services for:</p><ul class="alternate"><li>Initiating the flows by issuing temporarily tokens to consumers</li><li>Authorizing request tokens by asking the end users to let consumers access some of their resources and returning the<br clear="none"> confirmation back to the consumer</li><li>Exchanging authorized request tokens for access tokens</li></ul><p>CXF offers 3 JAX-RS service implementations that can be used to create OAuth 1.0 servers fast: <a shape="rect" class="external-link" href="http://svn.apache.org/repos/asf/cxf/trunk/rt/rs/security/oauth-parent/oauth/src/main/java/org/apache/cxf/rs/security/oauth/services/RequestTokenService.java">RequestTokenService</a>, <a shape="rect" class="external-link" href="http://svn.apache.org/repos/asf/cxf/trunk/rt/rs/security/oauth-parent/oauth/src/main/ java/org/apache/cxf/rs/security/oauth/services/AuthorizationRequestService.java">AuthorizationRequestService</a> and <a shape="rect" class="external-link" href="http://svn.apache.org/repos/asf/cxf/trunk/rt/rs/security/oauth-parent/oauth/src/main/java/org/apache/cxf/rs/security/oauth/services/AccessTokenService.java">AccessTokenService</a>.</p><p>All of these 3 services rely on the custom <a shape="rect" class="external-link" href="http://svn.apache.org/repos/asf/cxf/trunk/rt/rs/security/oauth-parent/oauth/src/main/java/org/apache/cxf/rs/security/oauth/provider/OAuthDataProvider.java">OAuthDataProvider</a> which manages request and access tokens. Writing your own OAuthDataProvider implementations is what is needed to get the OAuth server up and running.</p><h2 id="JAX-RSOAuth-RequestTokenService">RequestTokenService</h2><p>The main responsibility of <a shape="rect" class="external-link" href="http://svn.apache.org/repos/asf/cxf/trunk/rt/rs/security/oauth-parent/oauth/src/main/java/or g/apache/cxf/rs/security/oauth/services/RequestTokenService.java">RequestTokenService</a> is to create a temporarily request token and return it back to the consumer. It supports POST and GET requests and returns a form payload containing the new request token and its secret.</p><p>Here is an example request log:</p><div class="code panel pdl" style="border-width: 1px;"><div class="codeContent panelContent pdl"> +</div></div><h1 id="JAX-RSOAuth-DevelopingOAuth1.0Servers">Developing OAuth 1.0 Servers</h1><p>OAuth server is the core piece of the complete OAuth-based solution. Typically it contains 3 services for:</p><ul class="alternate"><li>Initiating the flows by issuing temporarily tokens to consumers</li><li>Authorizing request tokens by asking the end users to let consumers access some of their resources and returning the<br clear="none"> confirmation back to the consumer</li><li>Exchanging authorized request tokens for access tokens</li></ul><p>CXF offers 3 JAX-RS service implementations that can be used to create OAuth 1.0 servers fast: <a shape="rect" class="external-link" href="https://github.com/apache/cxf/blob/master/rt/rs/security/oauth-parent/oauth/src/main/java/org/apache/cxf/rs/security/oauth/services/RequestTokenService.java" rel="nofollow">RequestTokenService</a>, <a shape="rect" class="external-link" href="https://github.com/apache/cxf/blob/master/rt/rs/security/oauth-parent/ oauth/src/main/java/org/apache/cxf/rs/security/oauth/services/AuthorizationRequestService.java" rel="nofollow">AuthorizationRequestService</a> and <a shape="rect" class="external-link" href="https://github.com/apache/cxf/blob/master/rt/rs/security/oauth-parent/oauth/src/main/java/org/apache/cxf/rs/security/oauth/services/AccessTokenService.java" rel="nofollow">AccessTokenService</a>.</p><p>All of these 3 services rely on the custom <a shape="rect" class="external-link" href="https://github.com/apache/cxf/blob/master/rt/rs/security/oauth-parent/oauth/src/main/java/org/apache/cxf/rs/security/oauth/provider/OAuthDataProvider.java" rel="nofollow">OAuthDataProvider</a> which manages request and access tokens. Writing your own OAuthDataProvider implementations is what is needed to get the OAuth server up and running.</p><h2 id="JAX-RSOAuth-RequestTokenService">RequestTokenService</h2><p>The main responsibility of <a shape="rect" class="external-link" href="https://github.com/apache/c xf/blob/master/rt/rs/security/oauth-parent/oauth/src/main/java/org/apache/cxf/rs/security/oauth/services/RequestTokenService.java" rel="nofollow">RequestTokenService</a> is to create a temporarily request token and return it back to the consumer. It supports POST and GET requests and returns a form payload containing the new request token and its secret.</p><p>Here is an example request log:</p><div class="code panel pdl" style="border-width: 1px;"><div class="codeContent panelContent pdl"> <pre class="brush: xml; gutter: false; theme: Default" style="font-size:12px;">Address: http://localhost:8080/services/oauth/initiate Encoding: ISO-8859-1 Http-Method: POST