Class ServerHttpSecurity.OAuth2LoginSpec
java.lang.Object
org.springframework.security.config.web.server.ServerHttpSecurity.OAuth2LoginSpec
- Enclosing class:
- ServerHttpSecurity
- 
Method SummaryModifier and TypeMethodDescriptionand()Deprecated, for removal: This API element is subject to removal in a future version.For removal in 7.0.authenticationConverter(ServerAuthenticationConverter authenticationConverter) Sets the converter to useauthenticationFailureHandler(ServerAuthenticationFailureHandler authenticationFailureHandler) TheServerAuthenticationFailureHandlerused after authentication failure.authenticationManager(ReactiveAuthenticationManager authenticationManager) Configures theReactiveAuthenticationManagerto use.authenticationMatcher(ServerWebExchangeMatcher authenticationMatcher) Sets thematcherused for determining if the request is an authentication request.authenticationSuccessHandler(ServerAuthenticationSuccessHandler authenticationSuccessHandler) TheServerAuthenticationSuccessHandlerused after authentication success.authorizationRedirectStrategy(ServerRedirectStrategy authorizationRedirectStrategy) Sets the redirect strategy for Authorization Endpoint redirect URI.authorizationRequestRepository(ServerAuthorizationRequestRepository<OAuth2AuthorizationRequest> authorizationRequestRepository) Sets the repository to use for storingOAuth2AuthorizationRequest's.authorizationRequestResolver(ServerOAuth2AuthorizationRequestResolver authorizationRequestResolver) Sets the resolver used for resolvingOAuth2AuthorizationRequest's.authorizedClientRepository(ServerOAuth2AuthorizedClientRepository authorizedClientRepository) authorizedClientService(ReactiveOAuth2AuthorizedClientService authorizedClientService) clientRegistrationRepository(ReactiveClientRegistrationRepository clientRegistrationRepository) protected voidconfigure(ServerHttpSecurity http) oidcSessionRegistry(ReactiveOidcSessionRegistry oidcSessionRegistry) Configures theReactiveOidcSessionRegistryto use when logins use OIDC.securityContextRepository(ServerSecurityContextRepository securityContextRepository) TheServerSecurityContextRepositoryused to save theAuthentication.
- 
Method Details- 
authenticationManagerpublic ServerHttpSecurity.OAuth2LoginSpec authenticationManager(ReactiveAuthenticationManager authenticationManager) Configures theReactiveAuthenticationManagerto use. The default isOAuth2AuthorizationCodeReactiveAuthenticationManager- Parameters:
- authenticationManager- the manager to use
- Returns:
- the ServerHttpSecurity.OAuth2LoginSpecto customize
 
- 
securityContextRepositorypublic ServerHttpSecurity.OAuth2LoginSpec securityContextRepository(ServerSecurityContextRepository securityContextRepository) TheServerSecurityContextRepositoryused to save theAuthentication. Defaults toWebSessionServerSecurityContextRepository.- Parameters:
- securityContextRepository- the repository to use
- Returns:
- the ServerHttpSecurity.OAuth2LoginSpecto continue configuring
- Since:
- 5.2
 
- 
oidcSessionRegistrypublic ServerHttpSecurity.OAuth2LoginSpec oidcSessionRegistry(ReactiveOidcSessionRegistry oidcSessionRegistry) Configures theReactiveOidcSessionRegistryto use when logins use OIDC. Default is to look the value up as a Bean, or else use anInMemoryReactiveOidcSessionRegistry.- Parameters:
- oidcSessionRegistry- the registry to use
- Returns:
- the ServerHttpSecurity.OidcLogoutSpecto customize
- Since:
- 6.2
 
- 
authenticationSuccessHandlerpublic ServerHttpSecurity.OAuth2LoginSpec authenticationSuccessHandler(ServerAuthenticationSuccessHandler authenticationSuccessHandler) TheServerAuthenticationSuccessHandlerused after authentication success. Defaults toRedirectServerAuthenticationSuccessHandlerredirecting to "/".- Parameters:
- authenticationSuccessHandler- the success handler to use
- Returns:
- the ServerHttpSecurity.OAuth2LoginSpecto customize
- Since:
- 5.2
 
- 
authenticationFailureHandlerpublic ServerHttpSecurity.OAuth2LoginSpec authenticationFailureHandler(ServerAuthenticationFailureHandler authenticationFailureHandler) TheServerAuthenticationFailureHandlerused after authentication failure. Defaults toRedirectServerAuthenticationFailureHandlerredirecting to "/login?error".- Parameters:
- authenticationFailureHandler- the failure handler to use
- Returns:
- the ServerHttpSecurity.OAuth2LoginSpecto customize
- Since:
- 5.2
 
- 
authenticationConverterpublic ServerHttpSecurity.OAuth2LoginSpec authenticationConverter(ServerAuthenticationConverter authenticationConverter) Sets the converter to use- Parameters:
- authenticationConverter- the converter to use
- Returns:
- the ServerHttpSecurity.OAuth2LoginSpecto customize
 
- 
clientRegistrationRepositorypublic ServerHttpSecurity.OAuth2LoginSpec clientRegistrationRepository(ReactiveClientRegistrationRepository clientRegistrationRepository) 
- 
authorizedClientServicepublic ServerHttpSecurity.OAuth2LoginSpec authorizedClientService(ReactiveOAuth2AuthorizedClientService authorizedClientService) 
- 
authorizedClientRepositorypublic ServerHttpSecurity.OAuth2LoginSpec authorizedClientRepository(ServerOAuth2AuthorizedClientRepository authorizedClientRepository) 
- 
authorizationRequestRepositorypublic ServerHttpSecurity.OAuth2LoginSpec authorizationRequestRepository(ServerAuthorizationRequestRepository<OAuth2AuthorizationRequest> authorizationRequestRepository) Sets the repository to use for storingOAuth2AuthorizationRequest's.- Parameters:
- authorizationRequestRepository- the repository to use for storing- OAuth2AuthorizationRequest's
- Returns:
- the ServerHttpSecurity.OAuth2LoginSpecfor further configuration
- Since:
- 5.2
 
- 
authorizationRequestResolverpublic ServerHttpSecurity.OAuth2LoginSpec authorizationRequestResolver(ServerOAuth2AuthorizationRequestResolver authorizationRequestResolver) Sets the resolver used for resolvingOAuth2AuthorizationRequest's.- Parameters:
- authorizationRequestResolver- the resolver used for resolving- OAuth2AuthorizationRequest's
- Returns:
- the ServerHttpSecurity.OAuth2LoginSpecfor further configuration
- Since:
- 5.2
 
- 
authorizationRedirectStrategypublic ServerHttpSecurity.OAuth2LoginSpec authorizationRedirectStrategy(ServerRedirectStrategy authorizationRedirectStrategy) Sets the redirect strategy for Authorization Endpoint redirect URI.- Parameters:
- authorizationRedirectStrategy- the redirect strategy
- Returns:
- the ServerHttpSecurity.OAuth2LoginSpecfor further configuration
 
- 
authenticationMatcherpublic ServerHttpSecurity.OAuth2LoginSpec authenticationMatcher(ServerWebExchangeMatcher authenticationMatcher) Sets thematcherused for determining if the request is an authentication request.- Parameters:
- authenticationMatcher- the- matcherused for determining if the request is an authentication request
- Returns:
- the ServerHttpSecurity.OAuth2LoginSpecfor further configuration
- Since:
- 5.2
 
- 
andDeprecated, for removal: This API element is subject to removal in a future version.For removal in 7.0. UseServerHttpSecurity.oauth2Login(Customizer)oroauth2Login(Customizer.withDefaults())to stick with defaults. See the documentation for more details.Allows method chaining to continue configuring theServerHttpSecurity- Returns:
- the ServerHttpSecurityto continue configuring
 
- 
configure
 
-