Class ClientSettings.Builder
java.lang.Object
org.springframework.security.oauth2.server.authorization.settings.AbstractSettings.AbstractBuilder<ClientSettings,ClientSettings.Builder>
org.springframework.security.oauth2.server.authorization.settings.ClientSettings.Builder
- Enclosing class:
- ClientSettings
public static final class ClientSettings.Builder
extends AbstractSettings.AbstractBuilder<ClientSettings,ClientSettings.Builder>
A builder for
ClientSettings
.-
Method Summary
Modifier and TypeMethodDescriptionbuild()
Builds theClientSettings
.Sets theURL
for the Client's JSON Web Key Set.requireAuthorizationConsent
(boolean requireAuthorizationConsent) Set totrue
if authorization consent is required when the client requests access.requireProofKey
(boolean requireProofKey) Set totrue
if the client is required to provide a proof key challenge and verifier when performing the Authorization Code Grant flow.tokenEndpointAuthenticationSigningAlgorithm
(org.springframework.security.oauth2.jose.jws.JwsAlgorithm authenticationSigningAlgorithm) Sets theJWS
algorithm that must be used for signing theJWT
used to authenticate the Client at the Token Endpoint for theprivate_key_jwt
andclient_secret_jwt
authentication methods.x509CertificateSubjectDN
(String x509CertificateSubjectDN) Sets the expected subject distinguished name associated to the clientX509Certificate
received during client authentication when using thetls_client_auth
method.Methods inherited from class org.springframework.security.oauth2.server.authorization.settings.AbstractSettings.AbstractBuilder
getSettings, getThis, setting, settings
-
Method Details
-
requireProofKey
Set totrue
if the client is required to provide a proof key challenge and verifier when performing the Authorization Code Grant flow.- Parameters:
requireProofKey
-true
if the client is required to provide a proof key challenge and verifier,false
otherwise- Returns:
- the
ClientSettings.Builder
for further configuration
-
requireAuthorizationConsent
Set totrue
if authorization consent is required when the client requests access. This applies to all interactive flows (e.g.authorization_code
anddevice_code
).- Parameters:
requireAuthorizationConsent
-true
if authorization consent is required when the client requests access,false
otherwise- Returns:
- the
ClientSettings.Builder
for further configuration
-
jwkSetUrl
Sets theURL
for the Client's JSON Web Key Set.- Parameters:
jwkSetUrl
- theURL
for the Client's JSON Web Key Set- Returns:
- the
ClientSettings.Builder
for further configuration - Since:
- 0.2.2
-
tokenEndpointAuthenticationSigningAlgorithm
public ClientSettings.Builder tokenEndpointAuthenticationSigningAlgorithm(org.springframework.security.oauth2.jose.jws.JwsAlgorithm authenticationSigningAlgorithm) Sets theJWS
algorithm that must be used for signing theJWT
used to authenticate the Client at the Token Endpoint for theprivate_key_jwt
andclient_secret_jwt
authentication methods.- Parameters:
authenticationSigningAlgorithm
- theJWS
algorithm that must be used for signing theJWT
used to authenticate the Client at the Token Endpoint- Returns:
- the
ClientSettings.Builder
for further configuration - Since:
- 0.2.2
-
x509CertificateSubjectDN
Sets the expected subject distinguished name associated to the clientX509Certificate
received during client authentication when using thetls_client_auth
method.- Parameters:
x509CertificateSubjectDN
- the expected subject distinguished name associated to the clientX509Certificate
received during client authentication * @return theClientSettings.Builder
for further configuration- Returns:
- the
ClientSettings.Builder
for further configuration - Since:
- 1.3
-
build
Builds theClientSettings
.- Specified by:
build
in classAbstractSettings.AbstractBuilder<ClientSettings,
ClientSettings.Builder> - Returns:
- the
ClientSettings
-