Class OAuth2AuthenticationToken
- java.lang.Object
-
- org.springframework.security.authentication.AbstractAuthenticationToken
-
- org.springframework.security.oauth2.client.authentication.OAuth2AuthenticationToken
-
- All Implemented Interfaces:
java.io.Serializable,java.security.Principal,Authentication,CredentialsContainer
public class OAuth2AuthenticationToken extends AbstractAuthenticationToken
An implementation of anAbstractAuthenticationTokenthat represents an OAuth 2.0Authentication.The
Authenticationassociates anOAuth2UserPrincipalto the identifier of theAuthorized Client, which the End-User (Principal) granted authorization to so that it can access it's protected resources at the UserInfo Endpoint.- Since:
- 5.0
- See Also:
AbstractAuthenticationToken,OAuth2User,OAuth2AuthorizedClient, Serialized Form
-
-
Constructor Summary
Constructors Constructor Description OAuth2AuthenticationToken(OAuth2User principal, java.util.Collection<? extends GrantedAuthority> authorities, java.lang.String authorizedClientRegistrationId)Constructs anOAuth2AuthenticationTokenusing the provided parameters.
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description java.lang.StringgetAuthorizedClientRegistrationId()Returns the registration identifier of theAuthorized Client.java.lang.ObjectgetCredentials()The credentials that prove the principal is correct.OAuth2UsergetPrincipal()The identity of the principal being authenticated.-
Methods inherited from class org.springframework.security.authentication.AbstractAuthenticationToken
equals, eraseCredentials, getAuthorities, getDetails, getName, hashCode, isAuthenticated, setAuthenticated, setDetails, toString
-
-
-
-
Constructor Detail
-
OAuth2AuthenticationToken
public OAuth2AuthenticationToken(OAuth2User principal, java.util.Collection<? extends GrantedAuthority> authorities, java.lang.String authorizedClientRegistrationId)
Constructs anOAuth2AuthenticationTokenusing the provided parameters.- Parameters:
principal- the userPrincipalregistered with the OAuth 2.0 Providerauthorities- the authorities granted to the userauthorizedClientRegistrationId- the registration identifier of theAuthorized Client
-
-
Method Detail
-
getPrincipal
public OAuth2User getPrincipal()
Description copied from interface:AuthenticationThe identity of the principal being authenticated. In the case of an authentication request with username and password, this would be the username. Callers are expected to populate the principal for an authentication request.The AuthenticationManager implementation will often return an Authentication containing richer information as the principal for use by the application. Many of the authentication providers will create a
UserDetailsobject as the principal.- Returns:
- the
Principalbeing authenticated or the authenticated principal after authentication.
-
getCredentials
public java.lang.Object getCredentials()
Description copied from interface:AuthenticationThe credentials that prove the principal is correct. This is usually a password, but could be anything relevant to theAuthenticationManager. Callers are expected to populate the credentials.- Returns:
- the credentials that prove the identity of the
Principal
-
getAuthorizedClientRegistrationId
public java.lang.String getAuthorizedClientRegistrationId()
Returns the registration identifier of theAuthorized Client.- Returns:
- the registration identifier of the Authorized Client.
-
-