Class ServerHttpSecurity.OAuth2ResourceServerSpec.JwtSpec
java.lang.Object
org.springframework.security.config.web.server.ServerHttpSecurity.OAuth2ResourceServerSpec.JwtSpec
- Enclosing class:
- ServerHttpSecurity.OAuth2ResourceServerSpec
Configures JWT Resource Server Support
-
Constructor Summary
-
Method Summary
Modifier and TypeMethodDescriptionand()
Deprecated, for removal: This API element is subject to removal in a future version.For removal in 7.0.authenticationManager
(org.springframework.security.authentication.ReactiveAuthenticationManager authenticationManager) Configures theReactiveAuthenticationManager
to useprotected void
configure
(ServerHttpSecurity http) protected org.springframework.core.convert.converter.Converter<org.springframework.security.oauth2.jwt.Jwt,
? extends reactor.core.publisher.Mono<? extends org.springframework.security.authentication.AbstractAuthenticationToken>> protected org.springframework.security.oauth2.jwt.ReactiveJwtDecoder
Configures aReactiveJwtDecoder
using JSON Web Key (JWK) URLjwtAuthenticationConverter
(org.springframework.core.convert.converter.Converter<org.springframework.security.oauth2.jwt.Jwt, ? extends reactor.core.publisher.Mono<? extends org.springframework.security.authentication.AbstractAuthenticationToken>> jwtAuthenticationConverter) Configures theConverter
to use for converting aJwt
into anAbstractAuthenticationToken
.jwtDecoder
(org.springframework.security.oauth2.jwt.ReactiveJwtDecoder jwtDecoder) Configures theReactiveJwtDecoder
to usepublicKey
(RSAPublicKey publicKey) Configures aReactiveJwtDecoder
that leverages the providedRSAPublicKey
-
Constructor Details
-
JwtSpec
public JwtSpec()
-
-
Method Details
-
authenticationManager
public ServerHttpSecurity.OAuth2ResourceServerSpec.JwtSpec authenticationManager(org.springframework.security.authentication.ReactiveAuthenticationManager authenticationManager) Configures theReactiveAuthenticationManager
to use- Parameters:
authenticationManager
- the authentication manager to use- Returns:
- the
JwtSpec
for additional configuration
-
jwtAuthenticationConverter
public ServerHttpSecurity.OAuth2ResourceServerSpec.JwtSpec jwtAuthenticationConverter(org.springframework.core.convert.converter.Converter<org.springframework.security.oauth2.jwt.Jwt, ? extends reactor.core.publisher.Mono<? extends org.springframework.security.authentication.AbstractAuthenticationToken>> jwtAuthenticationConverter) Configures theConverter
to use for converting aJwt
into anAbstractAuthenticationToken
.- Parameters:
jwtAuthenticationConverter
- the converter to use- Returns:
- the
JwtSpec
for additional configuration - Since:
- 5.1.1
-
jwtDecoder
public ServerHttpSecurity.OAuth2ResourceServerSpec.JwtSpec jwtDecoder(org.springframework.security.oauth2.jwt.ReactiveJwtDecoder jwtDecoder) Configures theReactiveJwtDecoder
to use- Parameters:
jwtDecoder
- the decoder to use- Returns:
- the
JwtSpec
for additional configuration
-
publicKey
Configures aReactiveJwtDecoder
that leverages the providedRSAPublicKey
- Parameters:
publicKey
- the public key to use.- Returns:
- the
JwtSpec
for additional configuration
-
jwkSetUri
Configures aReactiveJwtDecoder
using JSON Web Key (JWK) URL- Parameters:
jwkSetUri
- the URL to use.- Returns:
- the
JwtSpec
for additional configuration
-
and
Deprecated, for removal: This API element is subject to removal in a future version.For removal in 7.0. UseServerHttpSecurity.OAuth2ResourceServerSpec.jwt(Customizer)
orjwt(Customizer.withDefaults())
to stick with defaults. See the documentation for more details. -
configure
-
getJwtDecoder
protected org.springframework.security.oauth2.jwt.ReactiveJwtDecoder getJwtDecoder() -
getJwtAuthenticationConverter
protected org.springframework.core.convert.converter.Converter<org.springframework.security.oauth2.jwt.Jwt,? extends reactor.core.publisher.Mono<? extends org.springframework.security.authentication.AbstractAuthenticationToken>> getJwtAuthenticationConverter()
-