OpaqueTokenReactiveAuthenticationManager (spring-security-docs 5.7.18 API)

java.lang.Object

org.springframework.security.oauth2.server.resource.authentication.OpaqueTokenReactiveAuthenticationManager

All Implemented Interfaces:: ReactiveAuthenticationManager

public class OpaqueTokenReactiveAuthenticationManager extends Object implements ReactiveAuthenticationManager

An ReactiveAuthenticationManager implementation for opaque Bearer Tokens, using an OAuth 2.0 Introspection Endpoint to check the token's validity and reveal its attributes.

This ReactiveAuthenticationManager is responsible for introspecting and verifying an opaque access token, returning its attributes set as part of the Authentication statement.

Scopes are translated into GrantedAuthoritys according to the following algorithm:

If there is a "scope" attribute, then convert to a Collection of Strings.
Take the resulting Collection and prepend the "SCOPE_" keyword to each element, adding as GrantedAuthoritys.

Since:

5.2

See Also:

ReactiveAuthenticationManager

Constructor Summary

Constructors

Constructor

Description

OpaqueTokenReactiveAuthenticationManager(ReactiveOpaqueTokenIntrospector introspector)

Creates a OpaqueTokenReactiveAuthenticationManager with the provided parameters
Method Summary

Modifier and Type

Method

Description

reactor.core.publisher.Mono<Authentication>

authenticate(Authentication authentication)

Attempts to authenticate the provided Authentication

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details
- OpaqueTokenReactiveAuthenticationManager
  
  public OpaqueTokenReactiveAuthenticationManager(ReactiveOpaqueTokenIntrospector introspector)
  
  Creates a OpaqueTokenReactiveAuthenticationManager with the provided parameters
  
  Parameters:
  
  introspector - The ReactiveOpaqueTokenIntrospector to use
Method Details
- authenticate
  
  public reactor.core.publisher.Mono<Authentication> authenticate(Authentication authentication)
  
  Description copied from interface: ReactiveAuthenticationManager
  
  Attempts to authenticate the provided Authentication
  
  Specified by:
  
  authenticate in interface ReactiveAuthenticationManager
  
  Parameters:
  
  authentication - the Authentication to test
  
  Returns:
  
  if authentication is successful an Authentication is returned. If authentication cannot be determined, an empty Mono is returned. If authentication fails, a Mono error is returned.