Class OidcAuthorizationCodeReactiveAuthenticationManager
- java.lang.Object
-
- org.springframework.security.oauth2.client.oidc.authentication.OidcAuthorizationCodeReactiveAuthenticationManager
-
- All Implemented Interfaces:
org.springframework.security.authentication.ReactiveAuthenticationManager
public class OidcAuthorizationCodeReactiveAuthenticationManager extends java.lang.Object implements org.springframework.security.authentication.ReactiveAuthenticationManagerAn implementation of anAuthenticationProviderfor OAuth 2.0 Login, which leverages the OAuth 2.0 Authorization Code Grant Flow.This
AuthenticationProvideris responsible for authenticating an Authorization Code credential with the Authorization Server's Token Endpoint and if valid, exchanging it for an Access Token credential.It will also obtain the user attributes of the End-User (Resource Owner) from the UserInfo Endpoint using an
OAuth2UserService, which will create aPrincipalin the form of anOAuth2User. TheOAuth2Useris then associated to theOAuth2LoginAuthenticationTokento complete the authentication.
-
-
Constructor Summary
Constructors Constructor Description OidcAuthorizationCodeReactiveAuthenticationManager(ReactiveOAuth2AccessTokenResponseClient<OAuth2AuthorizationCodeGrantRequest> accessTokenResponseClient, ReactiveOAuth2UserService<OidcUserRequest,org.springframework.security.oauth2.core.oidc.user.OidcUser> userService)
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description reactor.core.publisher.Mono<org.springframework.security.core.Authentication>authenticate(org.springframework.security.core.Authentication authentication)voidsetAuthoritiesMapper(org.springframework.security.core.authority.mapping.GrantedAuthoritiesMapper authoritiesMapper)Sets theGrantedAuthoritiesMapperused for mappingOAuth2AuthenticatedPrincipal.getAuthorities()to a new set of authorities which will be associated to theOAuth2LoginAuthenticationToken.voidsetJwtDecoderFactory(org.springframework.security.oauth2.jwt.ReactiveJwtDecoderFactory<ClientRegistration> jwtDecoderFactory)Sets theReactiveJwtDecoderFactoryused forOidcIdTokensignature verification.
-
-
-
Constructor Detail
-
OidcAuthorizationCodeReactiveAuthenticationManager
public OidcAuthorizationCodeReactiveAuthenticationManager(ReactiveOAuth2AccessTokenResponseClient<OAuth2AuthorizationCodeGrantRequest> accessTokenResponseClient, ReactiveOAuth2UserService<OidcUserRequest,org.springframework.security.oauth2.core.oidc.user.OidcUser> userService)
-
-
Method Detail
-
authenticate
public reactor.core.publisher.Mono<org.springframework.security.core.Authentication> authenticate(org.springframework.security.core.Authentication authentication)
- Specified by:
authenticatein interfaceorg.springframework.security.authentication.ReactiveAuthenticationManager
-
setJwtDecoderFactory
public final void setJwtDecoderFactory(org.springframework.security.oauth2.jwt.ReactiveJwtDecoderFactory<ClientRegistration> jwtDecoderFactory)
Sets theReactiveJwtDecoderFactoryused forOidcIdTokensignature verification. The factory returns aReactiveJwtDecoderassociated to the providedClientRegistration.- Parameters:
jwtDecoderFactory- theReactiveJwtDecoderFactoryused forOidcIdTokensignature verification- Since:
- 5.2
-
setAuthoritiesMapper
public final void setAuthoritiesMapper(org.springframework.security.core.authority.mapping.GrantedAuthoritiesMapper authoritiesMapper)
Sets theGrantedAuthoritiesMapperused for mappingOAuth2AuthenticatedPrincipal.getAuthorities()to a new set of authorities which will be associated to theOAuth2LoginAuthenticationToken.- Parameters:
authoritiesMapper- theGrantedAuthoritiesMapperused for mapping the user's authorities- Since:
- 5.4
-
-