Class OidcLogoutAuthenticationProvider
java.lang.Object
org.springframework.security.oauth2.server.authorization.oidc.authentication.OidcLogoutAuthenticationProvider
- All Implemented Interfaces:
org.springframework.security.authentication.AuthenticationProvider
public final class OidcLogoutAuthenticationProvider
extends Object
implements org.springframework.security.authentication.AuthenticationProvider
An
AuthenticationProvider
implementation for OpenID Connect 1.0 RP-Initiated
Logout Endpoint.- Since:
- 1.1
- See Also:
-
Constructor Summary
ConstructorDescriptionOidcLogoutAuthenticationProvider
(RegisteredClientRepository registeredClientRepository, OAuth2AuthorizationService authorizationService, org.springframework.security.core.session.SessionRegistry sessionRegistry) Constructs anOidcLogoutAuthenticationProvider
using the provided parameters. -
Method Summary
Modifier and TypeMethodDescriptionorg.springframework.security.core.Authentication
authenticate
(org.springframework.security.core.Authentication authentication) void
setAuthenticationValidator
(Consumer<OidcLogoutAuthenticationContext> authenticationValidator) Sets theConsumer
providing access to theOidcLogoutAuthenticationContext
and is responsible for validating specific OpenID Connect RP-Initiated Logout Request parameters associated in theOidcLogoutAuthenticationToken
.boolean
-
Constructor Details
-
OidcLogoutAuthenticationProvider
public OidcLogoutAuthenticationProvider(RegisteredClientRepository registeredClientRepository, OAuth2AuthorizationService authorizationService, org.springframework.security.core.session.SessionRegistry sessionRegistry) Constructs anOidcLogoutAuthenticationProvider
using the provided parameters.- Parameters:
registeredClientRepository
- the repository of registered clientsauthorizationService
- the authorization servicesessionRegistry
- theSessionRegistry
used to track OpenID Connect sessions
-
-
Method Details
-
authenticate
public org.springframework.security.core.Authentication authenticate(org.springframework.security.core.Authentication authentication) throws org.springframework.security.core.AuthenticationException - Specified by:
authenticate
in interfaceorg.springframework.security.authentication.AuthenticationProvider
- Throws:
org.springframework.security.core.AuthenticationException
-
supports
- Specified by:
supports
in interfaceorg.springframework.security.authentication.AuthenticationProvider
-
setAuthenticationValidator
public void setAuthenticationValidator(Consumer<OidcLogoutAuthenticationContext> authenticationValidator) Sets theConsumer
providing access to theOidcLogoutAuthenticationContext
and is responsible for validating specific OpenID Connect RP-Initiated Logout Request parameters associated in theOidcLogoutAuthenticationToken
. The default authentication validator isOidcLogoutAuthenticationValidator
.NOTE: The authentication validator MUST throw
OAuth2AuthenticationException
if validation fails.- Parameters:
authenticationValidator
- theConsumer
providing access to theOidcLogoutAuthenticationContext
and is responsible for validating specific OpenID Connect RP-Initiated Logout Request parameters- Since:
- 1.4
-