Package org.springframework.security.oauth2.client.endpoint
package org.springframework.security.oauth2.client.endpoint
Classes and interfaces providing support to the client for initiating requests to the
Authorization Server's Protocol Endpoints.
-
ClassDescriptionBase implementation of an OAuth 2.0 Authorization Grant request that holds an authorization grant credential and is used when initiating a request to the Authorization Server's Token Endpoint.AbstractWebClientReactiveOAuth2AccessTokenResponseClient<T extends AbstractOAuth2AuthorizationGrantRequest>Abstract base class for all of the
WebClientReactive*TokenResponseClient
s that communicate to the Authorization Server's Token Endpoint.The default implementation of anOAuth2AccessTokenResponseClient
for theauthorization_code
grant.The default implementation of anOAuth2AccessTokenResponseClient
for theclient_credentials
grant.The default implementation of anOAuth2AccessTokenResponseClient
for thejwt-bearer
grant.Deprecated.The latest OAuth 2.0 Security Best Current Practice disallows the use of the Resource Owner Password Credentials grant.The default implementation of anOAuth2AccessTokenResponseClient
for therefresh_token
grant.A JWT Bearer Grant request that holds aJwt
assertion.An implementation of anAbstractOAuth2AuthorizationGrantRequestEntityConverter
that converts the providedJwtBearerGrantRequest
to aRequestEntity
representation of an OAuth 2.0 Access Token Request for the JWT Bearer Grant.AConverter
that customizes the OAuth 2.0 Access Token Request parameters by adding a signed JSON Web Token (JWS) to be used for client authentication at the Authorization Server's Token Endpoint.NimbusJwtClientAuthenticationParametersConverter.JwtClientAuthenticationContext<T extends AbstractOAuth2AuthorizationGrantRequest>A context that holds client authentication-specific state and is used byNimbusJwtClientAuthenticationParametersConverter
when attempting to customize the JSON Web Token (JWS) client assertion.A strategy for "exchanging" an authorization grant credential (e.g.An OAuth 2.0 Authorization Code Grant request that holds an Authorization Code credential, which was granted by the Resource Owner to theClient
.An implementation of anAbstractOAuth2AuthorizationGrantRequestEntityConverter
that converts the providedOAuth2AuthorizationCodeGrantRequest
to aRequestEntity
representation of an OAuth 2.0 Access Token Request for the Authorization Code Grant.An OAuth 2.0 Client Credentials Grant request that holds the client's credentials inAbstractOAuth2AuthorizationGrantRequest.getClientRegistration()
.An implementation of anAbstractOAuth2AuthorizationGrantRequestEntityConverter
that converts the providedOAuth2ClientCredentialsGrantRequest
to aRequestEntity
representation of an OAuth 2.0 Access Token Request for the Client Credentials Grant.Deprecated.The latest OAuth 2.0 Security Best Current Practice disallows the use of the Resource Owner Password Credentials grant.An implementation of anAbstractOAuth2AuthorizationGrantRequestEntityConverter
that converts the providedOAuth2PasswordGrantRequest
to aRequestEntity
representation of an OAuth 2.0 Access Token Request for the Resource Owner Password Credentials Grant.An OAuth 2.0 Refresh Token Grant request that holds therefresh token
credential granted to theclient
.An implementation of anAbstractOAuth2AuthorizationGrantRequestEntityConverter
that converts the providedOAuth2RefreshTokenGrantRequest
to aRequestEntity
representation of an OAuth 2.0 Access Token Request for the Refresh Token Grant.A reactive strategy for "exchanging" an authorization grant credential (e.g.An implementation of aReactiveOAuth2AccessTokenResponseClient
that "exchanges" an authorization code credential for an access token credential at the Authorization Server's Token Endpoint.An implementation of aReactiveOAuth2AccessTokenResponseClient
that "exchanges" a client credential for an access token credential at the Authorization Server's Token Endpoint.The default implementation of anReactiveOAuth2AccessTokenResponseClient
for thejwt-bearer
grant.Deprecated.The latest OAuth 2.0 Security Best Current Practice disallows the use of the Resource Owner Password Credentials grant.An implementation of aReactiveOAuth2AccessTokenResponseClient
for therefresh_token
grant.