public class OAuth2AuthenticationToken extends AbstractAuthenticationToken
AbstractAuthenticationToken
that represents an OAuth 2.0 Authentication
.
This Authentication
associates an OAuth2User
Principal
to the identifier of the Authorized Client
,
which the End-User (Principal) granted authorization to
so that it can access its protected resource(s) at the UserInfo Endpoint.
AbstractAuthenticationToken
,
OAuth2User
,
Serialized FormConstructor and Description |
---|
OAuth2AuthenticationToken(OAuth2User principal,
java.util.Collection<? extends GrantedAuthority> authorities,
java.lang.String authorizedClientRegistrationId) |
Modifier and Type | Method and Description |
---|---|
java.lang.String |
getAuthorizedClientRegistrationId() |
java.lang.Object |
getCredentials()
The credentials that prove the principal is correct.
|
OAuth2User |
getPrincipal()
The identity of the principal being authenticated.
|
equals, eraseCredentials, getAuthorities, getDetails, getName, hashCode, isAuthenticated, setAuthenticated, setDetails, toString
public OAuth2AuthenticationToken(OAuth2User principal, java.util.Collection<? extends GrantedAuthority> authorities, java.lang.String authorizedClientRegistrationId)
public OAuth2User getPrincipal()
Authentication
The AuthenticationManager implementation will often return an
Authentication containing richer information as the principal for use by
the application. Many of the authentication providers will create a
UserDetails
object as the principal.
Principal
being authenticated or the authenticated
principal after authentication.public java.lang.Object getCredentials()
Authentication
AuthenticationManager
. Callers
are expected to populate the credentials.Principal
public java.lang.String getAuthorizedClientRegistrationId()