AbstractAuthenticationTokenthat represents an OAuth 2.0
Authentication associates an
Principal to the
identifier of the
Authorized Client, which
the End-User (
Principal) granted authorization to so that it can access it's
protected resources at the UserInfo Endpoint.
Methods inherited from class org.springframework.security.authentication.AbstractAuthenticationToken
equals, eraseCredentials, getAuthorities, getDetails, getName, hashCode, isAuthenticated, setAuthenticated, setDetails, toString
Methods inherited from class java.lang.Object
clone, finalize, getClass, notify, notifyAll, wait, wait, wait
(OAuth2User principal, Collection<? extends GrantedAuthority> authorities, String authorizedClientRegistrationId)Constructs an
OAuth2AuthenticationTokenusing the provided parameters.
principal- the user
Principalregistered with the OAuth 2.0 Provider
authorities- the authorities granted to the user
authorizedClientRegistrationId- the registration identifier of the
getPrincipalpublic OAuth2User getPrincipal()Description copied from interface:
AuthenticationThe identity of the principal being authenticated. In the case of an authentication request with username and password, this would be the username. Callers are expected to populate the principal for an authentication request.
The AuthenticationManager implementation will often return an Authentication containing richer information as the principal for use by the application. Many of the authentication providers will create a
UserDetailsobject as the principal.
Principalbeing authenticated or the authenticated principal after authentication.
getCredentialspublic Object getCredentials()Description copied from interface:
AuthenticationThe credentials that prove the principal is correct. This is usually a password, but could be anything relevant to the
AuthenticationManager. Callers are expected to populate the credentials.
- the credentials that prove the identity of the
getAuthorizedClientRegistrationIdpublic String getAuthorizedClientRegistrationId()
- the registration identifier of the Authorized Client.