@Configuration @ConditionalOnClass(value=org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter.class) @ConditionalOnMissingBean(value=org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter.class) @ConditionalOnWebApplication(type=ANY) @EnableWebSecurity @Conditional(value=OnOAuth2SecurityEnabled.class) public class OAuthSecurityConfiguration extends org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
| Modifier and Type | Class and Description |
|---|---|
protected static class |
OAuthSecurityConfiguration.BrowserDetectingContentNegotiationStrategy |
| Modifier and Type | Field and Description |
|---|---|
protected org.springframework.context.ApplicationEventPublisher |
applicationEventPublisher |
protected AuthorizationProperties |
authorizationProperties |
protected org.springframework.security.oauth2.client.registration.ClientRegistrationRepository |
clientRegistrationRepository |
protected org.springframework.security.oauth2.client.OAuth2AuthorizedClientService |
oauth2AuthorizedClientService |
protected org.springframework.boot.autoconfigure.security.oauth2.client.OAuth2ClientProperties |
oauth2ClientProperties |
protected org.springframework.security.oauth2.client.endpoint.OAuth2AccessTokenResponseClient<org.springframework.security.oauth2.client.endpoint.OAuth2PasswordGrantRequest> |
oAuth2PasswordTokenResponseClient |
protected org.springframework.boot.autoconfigure.security.oauth2.resource.OAuth2ResourceServerProperties |
oAuth2ResourceServerProperties |
protected org.springframework.security.oauth2.server.resource.introspection.OpaqueTokenIntrospector |
opaqueTokenIntrospector |
protected org.springframework.boot.autoconfigure.security.SecurityProperties |
securityProperties |
protected SecurityStateBean |
securityStateBean |
| Constructor and Description |
|---|
OAuthSecurityConfiguration() |
| Modifier and Type | Method and Description |
|---|---|
protected org.springframework.security.authentication.AuthenticationProvider |
authenticationProvider() |
AuthoritiesMapper |
authorityMapper() |
org.springframework.security.oauth2.client.OAuth2AuthorizedClientManager |
authorizedClientManager(org.springframework.security.oauth2.client.registration.ClientRegistrationRepository clientRegistrationRepository,
org.springframework.security.oauth2.client.web.OAuth2AuthorizedClientRepository authorizedClientRepository) |
protected void |
configure(org.springframework.security.config.annotation.web.builders.HttpSecurity http) |
protected String |
dashboard(String path) |
protected org.springframework.core.convert.converter.Converter<org.springframework.security.oauth2.jwt.Jwt,org.springframework.security.authentication.AbstractAuthenticationToken> |
grantedAuthoritiesExtractor() |
void |
handleOAuth2AuthenticationFailureEvent(org.springframework.security.authentication.event.AbstractAuthenticationFailureEvent authenticationFailureEvent) |
protected OAuth2TokenUtilsService |
oauth2TokenUtilsService() |
protected org.springframework.security.oauth2.client.userinfo.OAuth2UserService<org.springframework.security.oauth2.client.oidc.userinfo.OidcUserRequest,org.springframework.security.oauth2.core.oidc.user.OidcUser> |
oidcUserService() |
protected org.springframework.security.oauth2.server.resource.introspection.OpaqueTokenIntrospector |
opaqueTokenIntrospector() |
protected org.springframework.security.oauth2.client.userinfo.OAuth2UserService<org.springframework.security.oauth2.client.userinfo.OAuth2UserRequest,org.springframework.security.oauth2.core.user.OAuth2User> |
plainOauth2UserService() |
protected org.springframework.security.authentication.ProviderManager |
providerManager() |
authenticationManager, authenticationManagerBean, configure, configure, getApplicationContext, getHttp, init, setApplicationContext, setAuthenticationConfiguration, setContentNegotationStrategy, setObjectPostProcessor, setTrustResolver, userDetailsService, userDetailsServiceBean@Autowired protected org.springframework.boot.autoconfigure.security.oauth2.client.OAuth2ClientProperties oauth2ClientProperties
@Autowired protected SecurityStateBean securityStateBean
@Autowired protected org.springframework.boot.autoconfigure.security.SecurityProperties securityProperties
@Autowired protected org.springframework.context.ApplicationEventPublisher applicationEventPublisher
@Autowired protected AuthorizationProperties authorizationProperties
@Autowired protected org.springframework.boot.autoconfigure.security.oauth2.resource.OAuth2ResourceServerProperties oAuth2ResourceServerProperties
@Autowired protected org.springframework.security.oauth2.client.endpoint.OAuth2AccessTokenResponseClient<org.springframework.security.oauth2.client.endpoint.OAuth2PasswordGrantRequest> oAuth2PasswordTokenResponseClient
@Autowired protected org.springframework.security.oauth2.client.registration.ClientRegistrationRepository clientRegistrationRepository
@Autowired(required=false) protected org.springframework.security.oauth2.server.resource.introspection.OpaqueTokenIntrospector opaqueTokenIntrospector
@Autowired protected org.springframework.security.oauth2.client.OAuth2AuthorizedClientService oauth2AuthorizedClientService
protected void configure(org.springframework.security.config.annotation.web.builders.HttpSecurity http)
throws Exception
configure in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapterExceptionprotected org.springframework.core.convert.converter.Converter<org.springframework.security.oauth2.jwt.Jwt,org.springframework.security.authentication.AbstractAuthenticationToken> grantedAuthoritiesExtractor()
@Bean
@ConditionalOnProperty(prefix="spring.security.oauth2.resourceserver.opaquetoken",
value="introspection-uri")
protected org.springframework.security.oauth2.server.resource.introspection.OpaqueTokenIntrospector opaqueTokenIntrospector()
@Bean protected org.springframework.security.oauth2.client.userinfo.OAuth2UserService<org.springframework.security.oauth2.client.oidc.userinfo.OidcUserRequest,org.springframework.security.oauth2.core.oidc.user.OidcUser> oidcUserService()
@Bean protected org.springframework.security.oauth2.client.userinfo.OAuth2UserService<org.springframework.security.oauth2.client.userinfo.OAuth2UserRequest,org.springframework.security.oauth2.core.user.OAuth2User> plainOauth2UserService()
@Bean
public org.springframework.security.oauth2.client.OAuth2AuthorizedClientManager authorizedClientManager(org.springframework.security.oauth2.client.registration.ClientRegistrationRepository clientRegistrationRepository,
org.springframework.security.oauth2.client.web.OAuth2AuthorizedClientRepository authorizedClientRepository)
@Bean public AuthoritiesMapper authorityMapper()
@Bean
@ConditionalOnProperty(prefix="spring.security.oauth2.resourceserver.opaquetoken",
value="introspection-uri")
protected org.springframework.security.authentication.AuthenticationProvider authenticationProvider()
@Bean
@ConditionalOnProperty(prefix="spring.security.oauth2.resourceserver.opaquetoken",
value="introspection-uri")
protected org.springframework.security.authentication.ProviderManager providerManager()
@Bean protected OAuth2TokenUtilsService oauth2TokenUtilsService()
@EventListener public void handleOAuth2AuthenticationFailureEvent(org.springframework.security.authentication.event.AbstractAuthenticationFailureEvent authenticationFailureEvent)
Copyright © 2020 Pivotal Software, Inc.. All rights reserved.