Class OAuth2LoginAuthenticationToken
java.lang.Object
org.springframework.security.authentication.AbstractAuthenticationToken
org.springframework.security.oauth2.client.authentication.OAuth2LoginAuthenticationToken
- All Implemented Interfaces:
- Serializable,- Principal,- Authentication,- CredentialsContainer
An 
AbstractAuthenticationToken for OAuth 2.0 Login, which leverages the OAuth
 2.0 Authorization Code Grant Flow.- 
Constructor SummaryConstructorsConstructorDescriptionOAuth2LoginAuthenticationToken(ClientRegistration clientRegistration, OAuth2AuthorizationExchange authorizationExchange) This constructor should be used when the Authorization Request/Response is complete.OAuth2LoginAuthenticationToken(ClientRegistration clientRegistration, OAuth2AuthorizationExchange authorizationExchange, OAuth2User principal, Collection<? extends GrantedAuthority> authorities, OAuth2AccessToken accessToken) This constructor should be used when the Access Token Request/Response is complete, which indicates that the Authorization Code Grant flow has fully completed and OAuth 2.0 Login has been achieved.OAuth2LoginAuthenticationToken(ClientRegistration clientRegistration, OAuth2AuthorizationExchange authorizationExchange, OAuth2User principal, Collection<? extends GrantedAuthority> authorities, OAuth2AccessToken accessToken, OAuth2RefreshToken refreshToken) This constructor should be used when the Access Token Request/Response is complete, which indicates that the Authorization Code Grant flow has fully completed and OAuth 2.0 Login has been achieved.
- 
Method SummaryModifier and TypeMethodDescriptionReturns theaccess token.Returns theauthorization exchange.Returns theclient registration.The credentials that prove the principal is correct.The identity of the principal being authenticated.Returns therefresh token.Methods inherited from class org.springframework.security.authentication.AbstractAuthenticationTokenequals, eraseCredentials, getAuthorities, getDetails, getName, hashCode, isAuthenticated, setAuthenticated, setDetails, toString
- 
Constructor Details- 
OAuth2LoginAuthenticationTokenpublic OAuth2LoginAuthenticationToken(ClientRegistration clientRegistration, OAuth2AuthorizationExchange authorizationExchange) This constructor should be used when the Authorization Request/Response is complete.- Parameters:
- clientRegistration- the client registration
- authorizationExchange- the authorization exchange
 
- 
OAuth2LoginAuthenticationTokenpublic OAuth2LoginAuthenticationToken(ClientRegistration clientRegistration, OAuth2AuthorizationExchange authorizationExchange, OAuth2User principal, Collection<? extends GrantedAuthority> authorities, OAuth2AccessToken accessToken) This constructor should be used when the Access Token Request/Response is complete, which indicates that the Authorization Code Grant flow has fully completed and OAuth 2.0 Login has been achieved.- Parameters:
- clientRegistration- the client registration
- authorizationExchange- the authorization exchange
- principal- the user- Principalregistered with the OAuth 2.0 Provider
- authorities- the authorities granted to the user
- accessToken- the access token credential
 
- 
OAuth2LoginAuthenticationTokenpublic OAuth2LoginAuthenticationToken(ClientRegistration clientRegistration, OAuth2AuthorizationExchange authorizationExchange, OAuth2User principal, Collection<? extends GrantedAuthority> authorities, OAuth2AccessToken accessToken, @Nullable OAuth2RefreshToken refreshToken) This constructor should be used when the Access Token Request/Response is complete, which indicates that the Authorization Code Grant flow has fully completed and OAuth 2.0 Login has been achieved.- Parameters:
- clientRegistration- the client registration
- authorizationExchange- the authorization exchange
- principal- the user- Principalregistered with the OAuth 2.0 Provider
- authorities- the authorities granted to the user
- accessToken- the access token credential
- refreshToken- the refresh token credential
 
 
- 
- 
Method Details- 
getPrincipalDescription copied from interface:AuthenticationThe identity of the principal being authenticated. In the case of an authentication request with username and password, this would be the username. Callers are expected to populate the principal for an authentication request.The AuthenticationManager implementation will often return an Authentication containing richer information as the principal for use by the application. Many of the authentication providers will create a UserDetailsobject as the principal.- Returns:
- the Principalbeing authenticated or the authenticated principal after authentication.
 
- 
getCredentialsDescription copied from interface:AuthenticationThe credentials that prove the principal is correct. This is usually a password, but could be anything relevant to theAuthenticationManager. Callers are expected to populate the credentials.- Returns:
- the credentials that prove the identity of the Principal
 
- 
getClientRegistrationReturns theclient registration.- Returns:
- the ClientRegistration
 
- 
getAuthorizationExchangeReturns theauthorization exchange.- Returns:
- the OAuth2AuthorizationExchange
 
- 
getAccessTokenReturns theaccess token.- Returns:
- the OAuth2AccessToken
 
- 
getRefreshTokenReturns therefresh token.- Returns:
- the OAuth2RefreshToken
- Since:
- 5.1
 
 
-