root
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Actions 13 Packages Projects Releases Wiki Activity
spring-security/docs/modules/ROOT/pages/servlet/oauth2/resource-server
History
ch4mpy 1efb63387f
Add authentication converter for introspected tokens 
Adds configurable authentication converter for resource-servers with
token introspection (something very similar to what
JwtAuthenticationConverter does for resource-servers with JWT decoder).

The new (Reactive)OpaqueTokenAuthenticationConverter is given
responsibility for converting successful token introspection result
into an Authentication instance (which is currently done by a private
methods of OpaqueTokenAuthenticationProvider and
OpaqueTokenReactiveAuthenticationManager).

The default (Reactive)OpaqueTokenAuthenticationConverter, behave the
same as current private convert(OAuth2AuthenticatedPrincipal principal,
String token) methods: map authorities from scope attribute and build a
BearerTokenAuthentication.

Closes gh-11661
 		2022-09-13 16:45:36 -05:00
..
bearer-tokens.adoc Fix typo 2022-04-06 11:09:41 +02:00
index.adoc Separate Resource Server Servlet Docs 2021-10-27 10:02:05 -06:00
jwt.adoc Replace WebSecurityConfigurerAdapter with SecurityFilterChain in docs 2022-02-08 16:12:10 +01:00
multitenancy.adoc Update docs to use multi-tenancy 2022-02-14 11:07:42 +01:00
opaque-token.adoc Add authentication converter for introspected tokens 2022-09-13 16:45:36 -05:00