1 /* 2 * Copyright 2008 Web Cohesion 3 * 4 * Licensed under the Apache License, Version 2.0 (the "License"); 5 * you may not use this file except in compliance with the License. 6 * You may obtain a copy of the License at 7 * 8 * https://www.apache.org/licenses/LICENSE-2.0 9 * 10 * Unless required by applicable law or agreed to in writing, software 11 * distributed under the License is distributed on an "AS IS" BASIS, 12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 13 * See the License for the specific language governing permissions and 14 * limitations under the License. 15 */ 16 17 package org.springframework.security.oauth.provider.nonce; 18 19 import org.springframework.security.core.AuthenticationException; 20 import org.springframework.security.oauth.provider.ConsumerDetails; 21 22 /** 23 * No-op nonce services. Assumes all nonces are valid. This leaves the provider exposed to the dangers 24 * of an unlimited timestamp validity window and OAuth request replay attacks. 25 * 26 * @author Ryan Heaton 27 */ 28 public class NullNonceServices implements OAuthNonceServices { 29 30 public void validateNonce(ConsumerDetails consumerDetails, long timestamp, String nonce) throws AuthenticationException { 31 //no-op 32 } 33 }