[[appendix.application-properties.security]]
== Security Properties
[cols="4,3,3", options="header"]
|===
|Name|Description|Default Value

|[[application-properties.security.spring.security.filter.dispatcher-types]]xref:#application-properties.security.spring.security.filter.dispatcher-types[`+spring.security.filter.dispatcher-types+`]
|+++Security filter chain dispatcher types for Servlet-based web applications.+++
|`+[async, error, forward, include, request]+`

|[[application-properties.security.spring.security.filter.order]]xref:#application-properties.security.spring.security.filter.order[`+spring.security.filter.order+`]
|+++Security filter chain order for Servlet-based web applications.+++
|`+-100+`

|[[application-properties.security.spring.security.oauth2.authorizationserver.client]]xref:#application-properties.security.spring.security.oauth2.authorizationserver.client[`+spring.security.oauth2.authorizationserver.client.*+`]
|+++Registered clients of the Authorization Server.+++
|

|[[application-properties.security.spring.security.oauth2.authorizationserver.endpoint.authorization-uri]]xref:#application-properties.security.spring.security.oauth2.authorizationserver.endpoint.authorization-uri[`+spring.security.oauth2.authorizationserver.endpoint.authorization-uri+`]
|+++Authorization Server's OAuth 2.0 Authorization Endpoint.+++
|`+/oauth2/authorize+`

|[[application-properties.security.spring.security.oauth2.authorizationserver.endpoint.device-authorization-uri]]xref:#application-properties.security.spring.security.oauth2.authorizationserver.endpoint.device-authorization-uri[`+spring.security.oauth2.authorizationserver.endpoint.device-authorization-uri+`]
|+++Authorization Server's OAuth 2.0 Device Authorization Endpoint.+++
|`+/oauth2/device_authorization+`

|[[application-properties.security.spring.security.oauth2.authorizationserver.endpoint.device-verification-uri]]xref:#application-properties.security.spring.security.oauth2.authorizationserver.endpoint.device-verification-uri[`+spring.security.oauth2.authorizationserver.endpoint.device-verification-uri+`]
|+++Authorization Server's OAuth 2.0 Device Verification Endpoint.+++
|`+/oauth2/device_verification+`

|[[application-properties.security.spring.security.oauth2.authorizationserver.endpoint.jwk-set-uri]]xref:#application-properties.security.spring.security.oauth2.authorizationserver.endpoint.jwk-set-uri[`+spring.security.oauth2.authorizationserver.endpoint.jwk-set-uri+`]
|+++Authorization Server's JWK Set Endpoint.+++
|`+/oauth2/jwks+`

|[[application-properties.security.spring.security.oauth2.authorizationserver.endpoint.oidc.client-registration-uri]]xref:#application-properties.security.spring.security.oauth2.authorizationserver.endpoint.oidc.client-registration-uri[`+spring.security.oauth2.authorizationserver.endpoint.oidc.client-registration-uri+`]
|+++Authorization Server's OpenID Connect 1.0 Client Registration Endpoint.+++
|`+/connect/register+`

|[[application-properties.security.spring.security.oauth2.authorizationserver.endpoint.oidc.logout-uri]]xref:#application-properties.security.spring.security.oauth2.authorizationserver.endpoint.oidc.logout-uri[`+spring.security.oauth2.authorizationserver.endpoint.oidc.logout-uri+`]
|+++Authorization Server's OpenID Connect 1.0 Logout Endpoint.+++
|`+/connect/logout+`

|[[application-properties.security.spring.security.oauth2.authorizationserver.endpoint.oidc.user-info-uri]]xref:#application-properties.security.spring.security.oauth2.authorizationserver.endpoint.oidc.user-info-uri[`+spring.security.oauth2.authorizationserver.endpoint.oidc.user-info-uri+`]
|+++Authorization Server's OpenID Connect 1.0 UserInfo Endpoint.+++
|`+/userinfo+`

|[[application-properties.security.spring.security.oauth2.authorizationserver.endpoint.token-introspection-uri]]xref:#application-properties.security.spring.security.oauth2.authorizationserver.endpoint.token-introspection-uri[`+spring.security.oauth2.authorizationserver.endpoint.token-introspection-uri+`]
|+++Authorization Server's OAuth 2.0 Token Introspection Endpoint.+++
|`+/oauth2/introspect+`

|[[application-properties.security.spring.security.oauth2.authorizationserver.endpoint.token-revocation-uri]]xref:#application-properties.security.spring.security.oauth2.authorizationserver.endpoint.token-revocation-uri[`+spring.security.oauth2.authorizationserver.endpoint.token-revocation-uri+`]
|+++Authorization Server's OAuth 2.0 Token Revocation Endpoint.+++
|`+/oauth2/revoke+`

|[[application-properties.security.spring.security.oauth2.authorizationserver.endpoint.token-uri]]xref:#application-properties.security.spring.security.oauth2.authorizationserver.endpoint.token-uri[`+spring.security.oauth2.authorizationserver.endpoint.token-uri+`]
|+++Authorization Server's OAuth 2.0 Token Endpoint.+++
|`+/oauth2/token+`

|[[application-properties.security.spring.security.oauth2.authorizationserver.issuer]]xref:#application-properties.security.spring.security.oauth2.authorizationserver.issuer[`+spring.security.oauth2.authorizationserver.issuer+`]
|+++URL of the Authorization Server's Issuer Identifier.+++
|

|[[application-properties.security.spring.security.oauth2.client.provider]]xref:#application-properties.security.spring.security.oauth2.client.provider[`+spring.security.oauth2.client.provider.*+`]
|+++OAuth provider details.+++
|

|[[application-properties.security.spring.security.oauth2.client.registration]]xref:#application-properties.security.spring.security.oauth2.client.registration[`+spring.security.oauth2.client.registration.*+`]
|+++OAuth client registrations.+++
|

|[[application-properties.security.spring.security.oauth2.resourceserver.jwt.audiences]]xref:#application-properties.security.spring.security.oauth2.resourceserver.jwt.audiences[`+spring.security.oauth2.resourceserver.jwt.audiences+`]
|+++Identifies the recipients that the JWT is intended for.+++
|

|[[application-properties.security.spring.security.oauth2.resourceserver.jwt.authorities-claim-delimiter]]xref:#application-properties.security.spring.security.oauth2.resourceserver.jwt.authorities-claim-delimiter[`+spring.security.oauth2.resourceserver.jwt.authorities-claim-delimiter+`]
|+++Regex to use for splitting the value of the authorities claim into authorities.+++
|

|[[application-properties.security.spring.security.oauth2.resourceserver.jwt.authorities-claim-name]]xref:#application-properties.security.spring.security.oauth2.resourceserver.jwt.authorities-claim-name[`+spring.security.oauth2.resourceserver.jwt.authorities-claim-name+`]
|+++Name of token claim to use for mapping authorities from JWT.+++
|

|[[application-properties.security.spring.security.oauth2.resourceserver.jwt.authority-prefix]]xref:#application-properties.security.spring.security.oauth2.resourceserver.jwt.authority-prefix[`+spring.security.oauth2.resourceserver.jwt.authority-prefix+`]
|+++Prefix to use for authorities mapped from JWT.+++
|

|[[application-properties.security.spring.security.oauth2.resourceserver.jwt.issuer-uri]]xref:#application-properties.security.spring.security.oauth2.resourceserver.jwt.issuer-uri[`+spring.security.oauth2.resourceserver.jwt.issuer-uri+`]
|+++URI that can either be an OpenID Connect discovery endpoint or an OAuth 2.0 Authorization Server Metadata endpoint defined by RFC 8414.+++
|

|[[application-properties.security.spring.security.oauth2.resourceserver.jwt.jwk-set-uri]]xref:#application-properties.security.spring.security.oauth2.resourceserver.jwt.jwk-set-uri[`+spring.security.oauth2.resourceserver.jwt.jwk-set-uri+`]
|+++JSON Web Key URI to use to verify the JWT token.+++
|

|[[application-properties.security.spring.security.oauth2.resourceserver.jwt.jws-algorithms]]xref:#application-properties.security.spring.security.oauth2.resourceserver.jwt.jws-algorithms[`+spring.security.oauth2.resourceserver.jwt.jws-algorithms+`]
|+++JSON Web Algorithms used for verifying the digital signatures.+++
|`+RS256+`

|[[application-properties.security.spring.security.oauth2.resourceserver.jwt.principal-claim-name]]xref:#application-properties.security.spring.security.oauth2.resourceserver.jwt.principal-claim-name[`+spring.security.oauth2.resourceserver.jwt.principal-claim-name+`]
|+++JWT principal claim name.+++
|

|[[application-properties.security.spring.security.oauth2.resourceserver.jwt.public-key-location]]xref:#application-properties.security.spring.security.oauth2.resourceserver.jwt.public-key-location[`+spring.security.oauth2.resourceserver.jwt.public-key-location+`]
|+++Location of the file containing the public key used to verify a JWT.+++
|

|[[application-properties.security.spring.security.oauth2.resourceserver.opaquetoken.client-id]]xref:#application-properties.security.spring.security.oauth2.resourceserver.opaquetoken.client-id[`+spring.security.oauth2.resourceserver.opaquetoken.client-id+`]
|+++Client id used to authenticate with the token introspection endpoint.+++
|

|[[application-properties.security.spring.security.oauth2.resourceserver.opaquetoken.client-secret]]xref:#application-properties.security.spring.security.oauth2.resourceserver.opaquetoken.client-secret[`+spring.security.oauth2.resourceserver.opaquetoken.client-secret+`]
|+++Client secret used to authenticate with the token introspection endpoint.+++
|

|[[application-properties.security.spring.security.oauth2.resourceserver.opaquetoken.introspection-uri]]xref:#application-properties.security.spring.security.oauth2.resourceserver.opaquetoken.introspection-uri[`+spring.security.oauth2.resourceserver.opaquetoken.introspection-uri+`]
|+++OAuth 2.0 endpoint through which token introspection is accomplished.+++
|

|[[application-properties.security.spring.security.saml2.relyingparty.registration]]xref:#application-properties.security.spring.security.saml2.relyingparty.registration[`+spring.security.saml2.relyingparty.registration.*+`]
|+++SAML2 relying party registrations.+++
|

|[[application-properties.security.spring.security.user.name]]xref:#application-properties.security.spring.security.user.name[`+spring.security.user.name+`]
|+++Default user name.+++
|`+user+`

|[[application-properties.security.spring.security.user.password]]xref:#application-properties.security.spring.security.user.password[`+spring.security.user.password+`]
|+++Password for the default user name.+++
|

|[[application-properties.security.spring.security.user.roles]]xref:#application-properties.security.spring.security.user.roles[`+spring.security.user.roles+`]
|+++Granted roles for the default user name.+++
|

|===