Class JwtBearerReactiveOAuth2AuthorizedClientProvider

    • Constructor Detail

      • JwtBearerReactiveOAuth2AuthorizedClientProvider

        public JwtBearerReactiveOAuth2AuthorizedClientProvider()
    • Method Detail

      • setAccessTokenResponseClient

        public void setAccessTokenResponseClient​(ReactiveOAuth2AccessTokenResponseClient<JwtBearerGrantRequest> accessTokenResponseClient)
        Sets the client used when requesting an access token credential at the Token Endpoint for the jwt-bearer grant.
        Parameters:
        accessTokenResponseClient - the client used when requesting an access token credential at the Token Endpoint for the jwt-bearer grant
      • setJwtAssertionResolver

        public void setJwtAssertionResolver​(java.util.function.Function<OAuth2AuthorizationContext,​reactor.core.publisher.Mono<Jwt>> jwtAssertionResolver)
        Sets the resolver used for resolving the Jwt assertion.
        Parameters:
        jwtAssertionResolver - the resolver used for resolving the Jwt assertion
        Since:
        5.7
      • setClockSkew

        public void setClockSkew​(java.time.Duration clockSkew)
        Sets the maximum acceptable clock skew, which is used when checking the access token expiry. The default is 60 seconds.

        An access token is considered expired if OAuth2AccessToken#getExpiresAt() - clockSkew is before the current time clock#instant().

        Parameters:
        clockSkew - the maximum acceptable clock skew
      • setClock

        public void setClock​(java.time.Clock clock)
        Sets the Clock used in Instant.now(Clock) when checking the access token expiry.
        Parameters:
        clock - the clock