org.springframework.security.oauth2.client.authentication.OAuth2LoginAuthenticationProvider

All Implemented Interfaces:: org.springframework.security.authentication.AuthenticationProvider

public class OAuth2LoginAuthenticationProvider extends Object implements org.springframework.security.authentication.AuthenticationProvider

An implementation of an AuthenticationProvider for OAuth 2.0 Login, which leverages the OAuth 2.0 Authorization Code Grant Flow. This AuthenticationProvider is responsible for authenticating an Authorization Code credential with the Authorization Server's Token Endpoint and if valid, exchanging it for an Access Token credential.

It will also obtain the user attributes of the End-User (Resource Owner) from the UserInfo Endpoint using an OAuth2UserService, which will create a Principal in the form of an OAuth2User. The OAuth2User is then associated to the OAuth2LoginAuthenticationToken to complete the authentication.

Since:

5.0

See Also:

Constructor Summary

Constructors

Constructor

Description

OAuth2LoginAuthenticationProvider(OAuth2AccessTokenResponseClient<OAuth2AuthorizationCodeGrantRequest> accessTokenResponseClient, OAuth2UserService<OAuth2UserRequest,org.springframework.security.oauth2.core.user.OAuth2User> userService)

Constructs an OAuth2LoginAuthenticationProvider using the provided parameters.
Method Summary

Modifier and Type

Method

Description

org.springframework.security.core.Authentication

authenticate(org.springframework.security.core.Authentication authentication)

final void

setAuthoritiesMapper(org.springframework.security.core.authority.mapping.GrantedAuthoritiesMapper authoritiesMapper)

Sets the GrantedAuthoritiesMapper used for mapping OAuth2AuthenticatedPrincipal.getAuthorities() to a new set of authorities which will be associated to the OAuth2LoginAuthenticationToken.

boolean

supports(Class<?> authentication)

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details
- OAuth2LoginAuthenticationProvider
  
  public OAuth2LoginAuthenticationProvider(OAuth2AccessTokenResponseClient<OAuth2AuthorizationCodeGrantRequest> accessTokenResponseClient, OAuth2UserService<OAuth2UserRequest,org.springframework.security.oauth2.core.user.OAuth2User> userService)
  
  Constructs an OAuth2LoginAuthenticationProvider using the provided parameters.
  
  Parameters:
  
  accessTokenResponseClient - the client used for requesting the access token credential from the Token Endpoint
  
  userService - the service used for obtaining the user attributes of the End-User from the UserInfo Endpoint
Method Details
- authenticate
  
  public org.springframework.security.core.Authentication authenticate(org.springframework.security.core.Authentication authentication) throws org.springframework.security.core.AuthenticationException
  
  Specified by:
  
  authenticate in interface org.springframework.security.authentication.AuthenticationProvider
  
  Throws:
  
  org.springframework.security.core.AuthenticationException
- setAuthoritiesMapper
  
  public final void setAuthoritiesMapper(org.springframework.security.core.authority.mapping.GrantedAuthoritiesMapper authoritiesMapper)
  
  Sets the GrantedAuthoritiesMapper used for mapping OAuth2AuthenticatedPrincipal.getAuthorities() to a new set of authorities which will be associated to the OAuth2LoginAuthenticationToken.
  
  Parameters:
  
  authoritiesMapper - the GrantedAuthoritiesMapper used for mapping the user's authorities
- supports
  
  public boolean supports(Class<?> authentication)
  
  Specified by:
  
  supports in interface org.springframework.security.authentication.AuthenticationProvider

Class OAuth2LoginAuthenticationProvider

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Details

OAuth2LoginAuthenticationProvider

Method Details

authenticate

setAuthoritiesMapper

supports