Class OAuth2TokenIntrospectionEndpointFilter
java.lang.Object
org.springframework.web.filter.GenericFilterBean
org.springframework.web.filter.OncePerRequestFilter
org.springframework.security.oauth2.server.authorization.web.OAuth2TokenIntrospectionEndpointFilter
- All Implemented Interfaces:
jakarta.servlet.Filter,org.springframework.beans.factory.Aware,org.springframework.beans.factory.BeanNameAware,org.springframework.beans.factory.DisposableBean,org.springframework.beans.factory.InitializingBean,org.springframework.context.EnvironmentAware,org.springframework.core.env.EnvironmentCapable,org.springframework.web.context.ServletContextAware
public final class OAuth2TokenIntrospectionEndpointFilter
extends org.springframework.web.filter.OncePerRequestFilter
A
Filter for the OAuth 2.0 Token Introspection endpoint.-
Field Summary
Fields inherited from class org.springframework.web.filter.OncePerRequestFilter
ALREADY_FILTERED_SUFFIXFields inherited from class org.springframework.web.filter.GenericFilterBean
logger -
Constructor Summary
ConstructorsConstructorDescriptionOAuth2TokenIntrospectionEndpointFilter(org.springframework.security.authentication.AuthenticationManager authenticationManager) Constructs anOAuth2TokenIntrospectionEndpointFilterusing the provided parameters.OAuth2TokenIntrospectionEndpointFilter(org.springframework.security.authentication.AuthenticationManager authenticationManager, String tokenIntrospectionEndpointUri) Constructs anOAuth2TokenIntrospectionEndpointFilterusing the provided parameters. -
Method Summary
Modifier and TypeMethodDescriptionprotected voiddoFilterInternal(jakarta.servlet.http.HttpServletRequest request, jakarta.servlet.http.HttpServletResponse response, jakarta.servlet.FilterChain filterChain) voidsetAuthenticationConverter(org.springframework.security.web.authentication.AuthenticationConverter authenticationConverter) Sets theAuthenticationConverterused when attempting to extract an Introspection Request fromHttpServletRequestto an instance ofOAuth2TokenIntrospectionAuthenticationTokenused for authenticating the request.voidsetAuthenticationFailureHandler(org.springframework.security.web.authentication.AuthenticationFailureHandler authenticationFailureHandler) Sets theAuthenticationFailureHandlerused for handling anOAuth2AuthenticationExceptionand returning theError Resonse.voidsetAuthenticationSuccessHandler(org.springframework.security.web.authentication.AuthenticationSuccessHandler authenticationSuccessHandler) Sets theAuthenticationSuccessHandlerused for handling anOAuth2TokenIntrospectionAuthenticationToken.Methods inherited from class org.springframework.web.filter.OncePerRequestFilter
doFilter, doFilterNestedErrorDispatch, getAlreadyFilteredAttributeName, isAsyncDispatch, isAsyncStarted, shouldNotFilter, shouldNotFilterAsyncDispatch, shouldNotFilterErrorDispatchMethods inherited from class org.springframework.web.filter.GenericFilterBean
addRequiredProperty, afterPropertiesSet, createEnvironment, destroy, getEnvironment, getFilterConfig, getFilterName, getServletContext, init, initBeanWrapper, initFilterBean, setBeanName, setEnvironment, setServletContext
-
Constructor Details
-
OAuth2TokenIntrospectionEndpointFilter
public OAuth2TokenIntrospectionEndpointFilter(org.springframework.security.authentication.AuthenticationManager authenticationManager) Constructs anOAuth2TokenIntrospectionEndpointFilterusing the provided parameters.- Parameters:
authenticationManager- the authentication manager
-
OAuth2TokenIntrospectionEndpointFilter
public OAuth2TokenIntrospectionEndpointFilter(org.springframework.security.authentication.AuthenticationManager authenticationManager, String tokenIntrospectionEndpointUri) Constructs anOAuth2TokenIntrospectionEndpointFilterusing the provided parameters.- Parameters:
authenticationManager- the authentication managertokenIntrospectionEndpointUri- the endpointURIfor token introspection requests
-
-
Method Details
-
doFilterInternal
protected void doFilterInternal(jakarta.servlet.http.HttpServletRequest request, jakarta.servlet.http.HttpServletResponse response, jakarta.servlet.FilterChain filterChain) throws jakarta.servlet.ServletException, IOException - Specified by:
doFilterInternalin classorg.springframework.web.filter.OncePerRequestFilter- Throws:
jakarta.servlet.ServletExceptionIOException
-
setAuthenticationConverter
public void setAuthenticationConverter(org.springframework.security.web.authentication.AuthenticationConverter authenticationConverter) Sets theAuthenticationConverterused when attempting to extract an Introspection Request fromHttpServletRequestto an instance ofOAuth2TokenIntrospectionAuthenticationTokenused for authenticating the request.- Parameters:
authenticationConverter- theAuthenticationConverterused when attempting to extract an Introspection Request fromHttpServletRequest- Since:
- 0.2.3
-
setAuthenticationSuccessHandler
public void setAuthenticationSuccessHandler(org.springframework.security.web.authentication.AuthenticationSuccessHandler authenticationSuccessHandler) Sets theAuthenticationSuccessHandlerused for handling anOAuth2TokenIntrospectionAuthenticationToken.- Parameters:
authenticationSuccessHandler- theAuthenticationSuccessHandlerused for handling anOAuth2TokenIntrospectionAuthenticationToken- Since:
- 0.2.3
-
setAuthenticationFailureHandler
public void setAuthenticationFailureHandler(org.springframework.security.web.authentication.AuthenticationFailureHandler authenticationFailureHandler) Sets theAuthenticationFailureHandlerused for handling anOAuth2AuthenticationExceptionand returning theError Resonse.- Parameters:
authenticationFailureHandler- theAuthenticationFailureHandlerused for handling anOAuth2AuthenticationException- Since:
- 0.2.3
-