Class NimbusOpaqueTokenIntrospector
java.lang.Object
org.springframework.security.oauth2.server.resource.introspection.NimbusOpaqueTokenIntrospector
- All Implemented Interfaces:
OpaqueTokenIntrospector
A Nimbus implementation of
OpaqueTokenIntrospector
that verifies and
introspects a token using the configured
OAuth 2.0 Introspection
Endpoint.- Since:
- 5.2
-
Constructor Summary
ConstructorDescriptionNimbusOpaqueTokenIntrospector
(String introspectionUri, String clientId, String clientSecret) Creates aOpaqueTokenAuthenticationProvider
with the provided parametersNimbusOpaqueTokenIntrospector
(String introspectionUri, org.springframework.web.client.RestOperations restOperations) Creates aOpaqueTokenAuthenticationProvider
with the provided parameters The givenRestOperations
should perform its own client authentication against the introspection endpoint. -
Method Summary
Modifier and TypeMethodDescriptionintrospect
(String token) Introspect and verify the given token, returning its attributes.void
setRequestEntityConverter
(org.springframework.core.convert.converter.Converter<String, org.springframework.http.RequestEntity<?>> requestEntityConverter) Sets theConverter
used for converting the OAuth 2.0 access token to aRequestEntity
representation of the OAuth 2.0 token introspection request.
-
Constructor Details
-
NimbusOpaqueTokenIntrospector
Creates aOpaqueTokenAuthenticationProvider
with the provided parameters- Parameters:
introspectionUri
- The introspection endpoint uriclientId
- The client id authorized to introspectclientSecret
- The client's secret
-
NimbusOpaqueTokenIntrospector
public NimbusOpaqueTokenIntrospector(String introspectionUri, org.springframework.web.client.RestOperations restOperations) Creates aOpaqueTokenAuthenticationProvider
with the provided parameters The givenRestOperations
should perform its own client authentication against the introspection endpoint.- Parameters:
introspectionUri
- The introspection endpoint urirestOperations
- The client for performing the introspection request
-
-
Method Details
-
introspect
Description copied from interface:OpaqueTokenIntrospector
Introspect and verify the given token, returning its attributes. Returning aMap
is indicative that the token is valid.- Specified by:
introspect
in interfaceOpaqueTokenIntrospector
- Parameters:
token
- the token to introspect- Returns:
- the token's attributes
-
setRequestEntityConverter
public void setRequestEntityConverter(org.springframework.core.convert.converter.Converter<String, org.springframework.http.RequestEntity<?>> requestEntityConverter) Sets theConverter
used for converting the OAuth 2.0 access token to aRequestEntity
representation of the OAuth 2.0 token introspection request.- Parameters:
requestEntityConverter
- theConverter
used for converting to aRequestEntity
representation of the token introspection request
-