Class OpaqueTokenReactiveAuthenticationManager

java.lang.Object
org.springframework.security.oauth2.server.resource.authentication.OpaqueTokenReactiveAuthenticationManager
All Implemented Interfaces:
ReactiveAuthenticationManager

public class OpaqueTokenReactiveAuthenticationManager extends Object implements ReactiveAuthenticationManager
An ReactiveAuthenticationManager implementation for opaque Bearer Tokens, using an OAuth 2.0 Introspection Endpoint to check the token's validity and reveal its attributes.

This ReactiveAuthenticationManager is responsible for introspecting and verifying an opaque access token, returning its attributes set as part of the Authentication statement.

A ReactiveOpaqueTokenIntrospector is responsible for retrieving token attributes from an authorization server.

A ReactiveOpaqueTokenAuthenticationConverter is responsible for turning a successful introspection result into an Authentication instance (which may include mapping GrantedAuthoritys from token attributes or retrieving from another source).

Since:
5.2
See Also: