Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-05-30 16:52:13 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update auth_code ref doc for oauth2-client

Browse Source
This commit is contained in:
Joe Grandja 2019-09-16 09:28:11 -04:00
parent 338b637ab5
commit 8aa55fe81b
1 changed files with 7 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
docs/manual/src/docs/asciidoc/_includes/servlet/preface/oauth2-client.adoc
View File

@ -322,6 +322,10 @@ spring:
authorization-grant-type: authorization_code authorization-grant-type: authorization_code
redirect-uri: "{baseUrl}/authorized/okta" redirect-uri: "{baseUrl}/authorized/okta"
scope: read, write scope: read, write
provider:
okta:
authorization-uri: https://dev-1234.oktapreview.com/oauth2/v1/authorize
token-uri: https://dev-1234.oktapreview.com/oauth2/v1/token
---- ----
A request with the base path `/oauth2/authorization/okta` will initiate the Authorization Request redirect by the `OAuth2AuthorizationRequestRedirectFilter` and ultimately start the Authorization Code grant flow. A request with the base path `/oauth2/authorization/okta` will initiate the Authorization Request redirect by the `OAuth2AuthorizationRequestRedirectFilter` and ultimately start the Authorization Code grant flow.
@ -474,7 +478,7 @@ public class OAuth2ClientSecurityConfig extends WebSecurityConfigurerAdapter {
oauth2Client oauth2Client
.authorizationCodeGrant(authorizationCodeGrant -> .authorizationCodeGrant(authorizationCodeGrant ->
authorizationCodeGrant authorizationCodeGrant
.authorizationRequestRepository(this.customAuthorizationRequestRepository()) .authorizationRequestRepository(this.authorizationRequestRepository())
... ...
) )
); );
@ -488,9 +492,7 @@ public class OAuth2ClientSecurityConfig extends WebSecurityConfigurerAdapter {
[NOTE] [NOTE]
Please refer to the https://tools.ietf.org/html/rfc6749#section-4.1.3[Access Token Request/Response] protocol flow for the Authorization Code grant. Please refer to the https://tools.ietf.org/html/rfc6749#section-4.1.3[Access Token Request/Response] protocol flow for the Authorization Code grant.
The primary role of the `OAuth2AccessTokenResponseClient` is to exchange an authorization grant credential for an access token credential at the Authorization Server's Token Endpoint. The default implementation of `OAuth2AccessTokenResponseClient` for the Authorization Code grant is `DefaultAuthorizationCodeTokenResponseClient`, which uses a `RestOperations` for exchanging an authorization code for an access token at the Authorization Servers Token Endpoint.
The default implementation of `OAuth2AccessTokenResponseClient` for the Authorization Code grant is `DefaultAuthorizationCodeTokenResponseClient`, which uses a `RestOperations` for exchanging an authorization code for an access token at the Token Endpoint.
The `DefaultAuthorizationCodeTokenResponseClient` is quite flexible as it allows you to customize the pre-processing of the Token Request and/or post-handling of the Token Response. The `DefaultAuthorizationCodeTokenResponseClient` is quite flexible as it allows you to customize the pre-processing of the Token Request and/or post-handling of the Token Response.
@ -540,7 +542,7 @@ public class OAuth2ClientSecurityConfig extends WebSecurityConfigurerAdapter {
oauth2Client oauth2Client
.authorizationCodeGrant(authorizationCodeGrant -> .authorizationCodeGrant(authorizationCodeGrant ->
authorizationCodeGrant authorizationCodeGrant
.accessTokenResponseClient(this.customAccessTokenResponseClient()) .accessTokenResponseClient(this.accessTokenResponseClient())
... ...
) )
); );