Package org.springframework.security.oauth2.server.authorization.web.authentication
package org.springframework.security.oauth2.server.authorization.web.authentication
-
ClassesClassDescriptionAttempts to extract HTTP Basic credentials from
HttpServletRequestand then converts to anOAuth2ClientAuthenticationTokenused for authenticating the client.Attempts to extract client credentials from POST parameters ofHttpServletRequestand then converts to anOAuth2ClientAuthenticationTokenused for authenticating the client.AnAuthenticationConverterthat simply delegates to it's internalListofAuthenticationConverter(s).Attempts to extract a JWT client assertion credential fromHttpServletRequestand then converts to anOAuth2ClientAuthenticationTokenused for authenticating the client.An implementation of anAuthenticationSuccessHandlerused for handling anOAuth2AccessTokenAuthenticationTokenand returning theAccess Token Response.Attempts to extract an Access Token Request fromHttpServletRequestfor the OAuth 2.0 Authorization Code Grant and then converts it to anOAuth2AuthorizationCodeAuthenticationTokenused for authenticating the authorization grant.Attempts to extract an Authorization Request fromHttpServletRequestfor the OAuth 2.0 Authorization Code Grant and then converts it to anOAuth2AuthorizationCodeRequestAuthenticationTokenused for authenticating the request.Attempts to extract an Authorization Consent fromHttpServletRequestfor the OAuth 2.0 Authorization Code Grant and then converts it to anOAuth2AuthorizationConsentAuthenticationTokenused for authenticating the request.Attempts to extract an Access Token Request fromHttpServletRequestfor the OAuth 2.0 Client Credentials Grant and then converts it to anOAuth2ClientCredentialsAuthenticationTokenused for authenticating the authorization grant.Attempts to extract a Device Authorization Consent fromHttpServletRequestfor the OAuth 2.0 Device Authorization Grant and then converts it to anOAuth2DeviceAuthorizationConsentAuthenticationTokenused for authenticating the request.Attempts to extract a Device Authorization Request fromHttpServletRequestfor the OAuth 2.0 Device Authorization Grant and then converts it to anOAuth2DeviceAuthorizationRequestAuthenticationTokenused for authenticating the request.Attempts to extract a Device Access Token Request fromHttpServletRequestfor the OAuth 2.0 Device Authorization Grant and then converts it to anOAuth2DeviceCodeAuthenticationTokenused for authenticating the authorization grant.Attempts to extract a user code fromHttpServletRequestfor the OAuth 2.0 Device Authorization Grant and then converts it to anOAuth2DeviceVerificationAuthenticationTokenused for authenticating the request.An implementation of anAuthenticationFailureHandlerused for handling anOAuth2AuthenticationExceptionand returning theOAuth 2.0 Error Response.Attempts to extract an Access Token Request fromHttpServletRequestfor the OAuth 2.0 Refresh Token Grant and then converts it to anOAuth2RefreshTokenAuthenticationTokenused for authenticating the authorization grant.Attempts to extract an Access Token Request fromHttpServletRequestfor the OAuth 2.0 Token Exchange Grant and then converts it to anOAuth2TokenExchangeAuthenticationTokenused for authenticating the authorization grant.Attempts to extract an Introspection Request fromHttpServletRequestand then converts it to anOAuth2TokenIntrospectionAuthenticationTokenused for authenticating the request.Attempts to extract a Revoke Token Request fromHttpServletRequestand then converts it to anOAuth2TokenRevocationAuthenticationTokenused for authenticating the request.Attempts to extract the parameters fromHttpServletRequestused for authenticating public clients using Proof Key for Code Exchange (PKCE).Attempts to extract a clientX509Certificatechain fromHttpServletRequestand then converts to anOAuth2ClientAuthenticationTokenused for authenticating the client using thetls_client_authorself_signed_tls_client_authmethod.