CustomTokenExtractor (common-starter-码云(gitee.com))

Skip navigation links

Prev Class
Next Class

All Classes

Summary:
Nested |
Field |
Constr |
Method

Detail:
Field |
Constr |
Method

java.lang.Object
- com.yishuifengxiao.common.oauth2.extractor.CustomTokenExtractor

All Implemented Interfaces:

org.springframework.security.oauth2.provider.authentication.TokenExtractor
```
public class CustomTokenExtractor
extends Object
implements org.springframework.security.oauth2.provider.authentication.TokenExtractor
```
TokenExtractor that strips the authenticator from a bearer token request (with an Authorization header in the form "Bearer <TOKEN>", or as a request parameter if that fails). The access token is the principal in the authentication token that is extracted.

从请求中提取出token信息
提取过程如下：
- 先从请求头参数里获取
- 再从请求参数里获取
- 最后尝试先从session里获取
该提取器会被 Oauth2Resource收集，然后配置到oauth2中
Since:

1.0.0

Version:

1.0.0

Author:

Dave Syer, yishui

See Also:

Oauth2Resource

Constructor Summary

Constructors
Constructor and Description

CustomTokenExtractor()

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`org.springframework.security.core.Authentication`	`extract(javax.servlet.http.HttpServletRequest request)`
`protected String`	`extractHeaderToken(javax.servlet.http.HttpServletRequest request)` Extract the OAuth bearer token from a header.
`protected String`	`extractToken(javax.servlet.http.HttpServletRequest request)`

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Constructor Detail
  - CustomTokenExtractor
```
public CustomTokenExtractor()
```
- Method Detail
  - extract
```
public org.springframework.security.core.Authentication extract(javax.servlet.http.HttpServletRequest request)
```
    Specified by:
    
    extract in interface org.springframework.security.oauth2.provider.authentication.TokenExtractor
  - extractToken
```
protected String extractToken(javax.servlet.http.HttpServletRequest request)
```
  - extractHeaderToken
```
protected String extractHeaderToken(javax.servlet.http.HttpServletRequest request)
```
    Extract the OAuth bearer token from a header.
    
    Parameters:
    
    request - The request.
    
    Returns:
    
    The token, or null if no OAuth authorization header was supplied.

Skip navigation links

Prev Class
Next Class

All Classes

Summary:
Nested |
Field |
Constr |
Method

Detail:
Field |
Constr |
Method

Copyright © 2021. All rights reserved.