Package org.springframework.security.oauth2.server.authorization.web.authentication
package org.springframework.security.oauth2.server.authorization.web.authentication
-
ClassDescriptionAttempts to extract HTTP Basic credentials from
HttpServletRequest
and then converts to anOAuth2ClientAuthenticationToken
used for authenticating the client.Attempts to extract client credentials from POST parameters ofHttpServletRequest
and then converts to anOAuth2ClientAuthenticationToken
used for authenticating the client.AnAuthenticationConverter
that simply delegates to it's internalList
ofAuthenticationConverter
(s).Attempts to extract a JWT client assertion credential fromHttpServletRequest
and then converts to anOAuth2ClientAuthenticationToken
used for authenticating the client.An implementation of anAuthenticationSuccessHandler
used for handling anOAuth2AccessTokenAuthenticationToken
and returning theAccess Token Response
.Attempts to extract an Access Token Request fromHttpServletRequest
for the OAuth 2.0 Authorization Code Grant and then converts it to anOAuth2AuthorizationCodeAuthenticationToken
used for authenticating the authorization grant.Attempts to extract an Authorization Request fromHttpServletRequest
for the OAuth 2.0 Authorization Code Grant and then converts it to anOAuth2AuthorizationCodeRequestAuthenticationToken
used for authenticating the request.Attempts to extract an Authorization Consent fromHttpServletRequest
for the OAuth 2.0 Authorization Code Grant and then converts it to anOAuth2AuthorizationConsentAuthenticationToken
used for authenticating the request.Attempts to extract an Access Token Request fromHttpServletRequest
for the OAuth 2.0 Client Credentials Grant and then converts it to anOAuth2ClientCredentialsAuthenticationToken
used for authenticating the authorization grant.Attempts to extract a Device Authorization Consent fromHttpServletRequest
for the OAuth 2.0 Device Authorization Grant and then converts it to anOAuth2DeviceAuthorizationConsentAuthenticationToken
used for authenticating the request.Attempts to extract a Device Authorization Request fromHttpServletRequest
for the OAuth 2.0 Device Authorization Grant and then converts it to anOAuth2DeviceAuthorizationRequestAuthenticationToken
used for authenticating the request.Attempts to extract a Device Access Token Request fromHttpServletRequest
for the OAuth 2.0 Device Authorization Grant and then converts it to anOAuth2DeviceCodeAuthenticationToken
used for authenticating the authorization grant.Attempts to extract a user code fromHttpServletRequest
for the OAuth 2.0 Device Authorization Grant and then converts it to anOAuth2DeviceVerificationAuthenticationToken
used for authenticating the request.An implementation of anAuthenticationFailureHandler
used for handling anOAuth2AuthenticationException
and returning theOAuth 2.0 Error Response
.Attempts to extract an Access Token Request fromHttpServletRequest
for the OAuth 2.0 Refresh Token Grant and then converts it to anOAuth2RefreshTokenAuthenticationToken
used for authenticating the authorization grant.Attempts to extract an Access Token Request fromHttpServletRequest
for the OAuth 2.0 Token Exchange Grant and then converts it to anOAuth2TokenExchangeAuthenticationToken
used for authenticating the authorization grant.Attempts to extract an Introspection Request fromHttpServletRequest
and then converts it to anOAuth2TokenIntrospectionAuthenticationToken
used for authenticating the request.Attempts to extract a Revoke Token Request fromHttpServletRequest
and then converts it to anOAuth2TokenRevocationAuthenticationToken
used for authenticating the request.Attempts to extract the parameters fromHttpServletRequest
used for authenticating public clients using Proof Key for Code Exchange (PKCE).Attempts to extract a clientX509Certificate
chain fromHttpServletRequest
and then converts to anOAuth2ClientAuthenticationToken
used for authenticating the client using thetls_client_auth
orself_signed_tls_client_auth
method.