All Classes and Interfaces

Class	Description
AbstractOAuth2AuthorizationGrantRequest	Base implementation of an OAuth 2.0 Authorization Grant request that holds an authorization grant credential and is used when initiating a request to the Authorization Server's Token Endpoint.
AbstractRestClientOAuth2AccessTokenResponseClient<T extends AbstractOAuth2AuthorizationGrantRequest>	Abstract base class for RestClient-based implementations of OAuth2AccessTokenResponseClient that communicate to the Authorization Server's Token Endpoint.
AbstractWebClientReactiveOAuth2AccessTokenResponseClient<T extends AbstractOAuth2AuthorizationGrantRequest>	Abstract base class for all of the WebClientReactive*TokenResponseClients that communicate to the Authorization Server's Token Endpoint.
AuthenticatedPrincipalOAuth2AuthorizedClientRepository	An implementation of an OAuth2AuthorizedClientRepository that delegates to the provided OAuth2AuthorizedClientService if the current Principal is authenticated, otherwise, to the default (or provided) OAuth2AuthorizedClientRepository if the current request is unauthenticated (or anonymous).
AuthenticatedPrincipalServerOAuth2AuthorizedClientRepository	An implementation of an ServerOAuth2AuthorizedClientRepository that delegates to the provided ServerOAuth2AuthorizedClientRepository if the current Principal is authenticated, otherwise, to the default (or provided) ServerOAuth2AuthorizedClientRepository if the current request is unauthenticated (or anonymous).
AuthorizationCodeOAuth2AuthorizedClientProvider	An implementation of an OAuth2AuthorizedClientProvider for the authorization_code grant.
AuthorizationCodeReactiveOAuth2AuthorizedClientProvider	An implementation of a ReactiveOAuth2AuthorizedClientProvider for the authorization_code grant.
AuthorizationRequestRepository<T extends org.springframework.security.oauth2.core.endpoint.OAuth2AuthorizationRequest>	Implementations of this interface are responsible for the persistence of OAuth2AuthorizationRequest between requests.
AuthorizedClientServiceOAuth2AuthorizedClientManager	An implementation of an OAuth2AuthorizedClientManager that is capable of operating outside of the context of a HttpServletRequest, e.g.
AuthorizedClientServiceOAuth2AuthorizedClientManager.DefaultContextAttributesMapper	The default implementation of the contextAttributesMapper.
AuthorizedClientServiceReactiveOAuth2AuthorizedClientManager	An implementation of a ReactiveOAuth2AuthorizedClientManager that is capable of operating outside of the context of a ServerWebExchange, e.g.
AuthorizedClientServiceReactiveOAuth2AuthorizedClientManager.DefaultContextAttributesMapper	The default implementation of the contextAttributesMapper.
ClientAuthorizationException	This exception is thrown on the client side when an attempt to authenticate or authorize an OAuth 2.0 client fails.
ClientAuthorizationRequiredException	This exception is thrown when an OAuth 2.0 Client is required to obtain authorization from the Resource Owner.
ClientCredentialsOAuth2AuthorizedClientProvider	An implementation of an OAuth2AuthorizedClientProvider for the client_credentials grant.
ClientCredentialsReactiveOAuth2AuthorizedClientProvider	An implementation of a ReactiveOAuth2AuthorizedClientProvider for the client_credentials grant.
ClientRegistration	A representation of a client registration with an OAuth 2.0 or OpenID Connect 1.0 Provider.
ClientRegistration.Builder	A builder for ClientRegistration.
ClientRegistration.ClientSettings	A facility for client configuration settings.
ClientRegistration.ClientSettings.Builder
ClientRegistrationRepository	A repository for OAuth 2.0 / OpenID Connect 1.0 ClientRegistration(s).
ClientRegistrations	Allows creating a ClientRegistration.Builder from an OpenID Provider Configuration or Authorization Server Metadata based on provided issuer.
DefaultAuthorizationCodeTokenResponseClient	Deprecated, for removal: This API element is subject to removal in a future version. Use RestClientAuthorizationCodeTokenResponseClient instead
DefaultClientCredentialsTokenResponseClient	Deprecated, for removal: This API element is subject to removal in a future version. Use RestClientClientCredentialsTokenResponseClient instead
DefaultJwtBearerTokenResponseClient	Deprecated, for removal: This API element is subject to removal in a future version. Use RestClientJwtBearerTokenResponseClient instead
DefaultOAuth2AuthorizationRequestResolver	An implementation of an OAuth2AuthorizationRequestResolver that attempts to resolve an OAuth2AuthorizationRequest from the provided HttpServletRequest using the default request URI pattern /oauth2/authorization/{registrationId}.
DefaultOAuth2AuthorizedClientManager	The default implementation of an OAuth2AuthorizedClientManager for use within the context of a HttpServletRequest.
DefaultOAuth2AuthorizedClientManager.DefaultContextAttributesMapper	The default implementation of the contextAttributesMapper.
DefaultOAuth2TokenRequestHeadersConverter<T extends AbstractOAuth2AuthorizationGrantRequest>	Default Converter used to convert an AbstractOAuth2AuthorizationGrantRequest to the HttpHeaders of a RequestEntity representation of an OAuth 2.0 Access Token Request for the specific Authorization Grant.
DefaultOAuth2TokenRequestParametersConverter<T extends AbstractOAuth2AuthorizationGrantRequest>	Default Converter used to convert an AbstractOAuth2AuthorizationGrantRequest to the default parameters of an OAuth 2.0 Access Token Request.
DefaultOAuth2UserService	An implementation of an OAuth2UserService that supports standard OAuth 2.0 Provider's.
DefaultPasswordTokenResponseClient	Deprecated, for removal: This API element is subject to removal in a future version. The OAuth 2.0 Security Best Current Practice disallows the use of the Resource Owner Password Credentials grant.
DefaultReactiveOAuth2AuthorizedClientManager	The default implementation of a ReactiveOAuth2AuthorizedClientManager for use within the context of a ServerWebExchange.
DefaultReactiveOAuth2AuthorizedClientManager.DefaultContextAttributesMapper	The default implementation of the contextAttributesMapper.
DefaultReactiveOAuth2UserService	An implementation of an ReactiveOAuth2UserService that supports standard OAuth 2.0 Provider's.
DefaultRefreshTokenTokenResponseClient	Deprecated, for removal: This API element is subject to removal in a future version. Use RestClientRefreshTokenTokenResponseClient instead
DefaultServerOAuth2AuthorizationRequestResolver	The default implementation of ServerOAuth2AuthorizationRequestResolver.
DefaultTokenExchangeTokenResponseClient	Deprecated, for removal: This API element is subject to removal in a future version. Use RestClientRefreshTokenTokenResponseClient instead
DelegatingOAuth2AuthorizedClientProvider	An implementation of an OAuth2AuthorizedClientProvider that simply delegates to its internal List of OAuth2AuthorizedClientProvider(s).
DelegatingOAuth2UserService<R extends OAuth2UserRequest,U extends org.springframework.security.oauth2.core.user.OAuth2User>	An implementation of an OAuth2UserService that simply delegates to its internal List of OAuth2UserService(s).
DelegatingReactiveOAuth2AuthorizedClientProvider	An implementation of a ReactiveOAuth2AuthorizedClientProvider that simply delegates to its internal List of ReactiveOAuth2AuthorizedClientProvider(s).
HttpSessionOAuth2AuthorizationRequestRepository	An implementation of an AuthorizationRequestRepository that stores OAuth2AuthorizationRequest in the HttpSession.
HttpSessionOAuth2AuthorizedClientRepository	An implementation of an OAuth2AuthorizedClientRepository that stores OAuth2AuthorizedClient's in the HttpSession.
InMemoryClientRegistrationRepository	A ClientRegistrationRepository that stores ClientRegistration(s) in-memory.
InMemoryOAuth2AuthorizedClientService	An OAuth2AuthorizedClientService that stores Authorized Client(s) in-memory.
InMemoryOidcSessionRegistry	An in-memory implementation of OidcSessionRegistry
InMemoryReactiveClientRegistrationRepository	A Reactive ClientRegistrationRepository that stores ClientRegistration(s) in-memory.
InMemoryReactiveOAuth2AuthorizedClientService	An OAuth2AuthorizedClientService that stores Authorized Client(s) in-memory.
InMemoryReactiveOidcSessionRegistry	An in-memory implementation of ReactiveOidcSessionRegistry
JdbcOAuth2AuthorizedClientService	A JDBC implementation of an OAuth2AuthorizedClientService that uses a JdbcOperations for OAuth2AuthorizedClient persistence.
JdbcOAuth2AuthorizedClientService.OAuth2AuthorizedClientHolder	A holder for an OAuth2AuthorizedClient and End-User Authentication (Resource Owner).
JdbcOAuth2AuthorizedClientService.OAuth2AuthorizedClientParametersMapper	The default Function that maps JdbcOAuth2AuthorizedClientService.OAuth2AuthorizedClientHolder to a List of SqlParameterValue.
JdbcOAuth2AuthorizedClientService.OAuth2AuthorizedClientRowMapper	The default RowMapper that maps the current row in java.sql.ResultSet to OAuth2AuthorizedClient.
JwtBearerGrantRequest	A JWT Bearer Grant request that holds a Jwt assertion.
JwtBearerGrantRequestEntityConverter	Deprecated, for removal: This API element is subject to removal in a future version. Use DefaultOAuth2TokenRequestParametersConverter instead
JwtBearerOAuth2AuthorizedClientProvider	An implementation of an OAuth2AuthorizedClientProvider for the jwt-bearer grant.
JwtBearerReactiveOAuth2AuthorizedClientProvider	An implementation of an ReactiveOAuth2AuthorizedClientProvider for the jwt-bearer grant.
LogoutTokenClaimAccessor	A ClaimAccessor for the "claims" that can be returned in OIDC Logout Tokens
LogoutTokenClaimNames	The names of the "claims" defined by the OpenID Back-Channel Logout 1.0 specification that can be returned in a Logout Token.
NimbusJwtClientAuthenticationParametersConverter<T extends AbstractOAuth2AuthorizationGrantRequest>	A Converter that customizes the OAuth 2.0 Access Token Request parameters by adding a signed JSON Web Token (JWS) to be used for client authentication at the Authorization Server's Token Endpoint.
NimbusJwtClientAuthenticationParametersConverter.JwtClientAuthenticationContext<T extends AbstractOAuth2AuthorizationGrantRequest>	A context that holds client authentication-specific state and is used by NimbusJwtClientAuthenticationParametersConverter when attempting to customize the JSON Web Token (JWS) client assertion.
OAuth2AccessTokenResponseClient<T extends AbstractOAuth2AuthorizationGrantRequest>	A strategy for "exchanging" an authorization grant credential (e.g.
OAuth2AuthenticationToken	An implementation of an AbstractAuthenticationToken that represents an OAuth 2.0 Authentication.
OAuth2AuthorizationCodeAuthenticationProvider	An implementation of an AuthenticationProvider for the OAuth 2.0 Authorization Code Grant.
OAuth2AuthorizationCodeAuthenticationToken	An AbstractAuthenticationToken for the OAuth 2.0 Authorization Code Grant.
OAuth2AuthorizationCodeGrantFilter	A Filter for the OAuth 2.0 Authorization Code Grant, which handles the processing of the OAuth 2.0 Authorization Response.
OAuth2AuthorizationCodeGrantRequest	An OAuth 2.0 Authorization Code Grant request that holds an Authorization Code credential, which was granted by the Resource Owner to the Client.
OAuth2AuthorizationCodeGrantRequestEntityConverter	Deprecated, for removal: This API element is subject to removal in a future version. Use DefaultOAuth2TokenRequestParametersConverter instead
OAuth2AuthorizationCodeGrantWebFilter	A Filter for the OAuth 2.0 Authorization Code Grant, which handles the processing of the OAuth 2.0 Authorization Response.
OAuth2AuthorizationCodeReactiveAuthenticationManager	An implementation of an AuthenticationProvider for OAuth 2.0 Login, which leverages the OAuth 2.0 Authorization Code Grant Flow.
OAuth2AuthorizationContext	A context that holds authorization-specific state and is used by an OAuth2AuthorizedClientProvider when attempting to authorize (or re-authorize) an OAuth 2.0 Client.
OAuth2AuthorizationContext.Builder	A builder for OAuth2AuthorizationContext.
OAuth2AuthorizationFailureHandler	Handles when an OAuth 2.0 Client fails to authorize (or re-authorize) via the Authorization Server or Resource Server.
OAuth2AuthorizationRequestCustomizers	A factory of customizers that customize the OAuth 2.0 Authorization Request via the OAuth2AuthorizationRequest.Builder.
OAuth2AuthorizationRequestRedirectFilter	This Filter initiates the authorization code grant flow by redirecting the End-User's user-agent to the Authorization Server's Authorization Endpoint.
OAuth2AuthorizationRequestRedirectWebFilter	This WebFilter initiates the authorization code grant flow by redirecting the End-User's user-agent to the Authorization Server's Authorization Endpoint.
OAuth2AuthorizationRequestResolver	Implementations of this interface are capable of resolving an OAuth2AuthorizationRequest from the provided HttpServletRequest.
OAuth2AuthorizationSuccessHandler	Handles when an OAuth 2.0 Client has been successfully authorized (or re-authorized) via the Authorization Server.
OAuth2AuthorizedClient	A representation of an OAuth 2.0 "Authorized Client".
OAuth2AuthorizedClientArgumentResolver	An implementation of a HandlerMethodArgumentResolver that is capable of resolving a method parameter to an argument value of type OAuth2AuthorizedClient.
OAuth2AuthorizedClientArgumentResolver	An implementation of a HandlerMethodArgumentResolver that is capable of resolving a method parameter to an argument value of type OAuth2AuthorizedClient.
OAuth2AuthorizedClientId	The identifier for OAuth2AuthorizedClient.
OAuth2AuthorizedClientManager	Implementations of this interface are responsible for the overall management of Authorized Client(s).
OAuth2AuthorizedClientProvider	A strategy for authorizing (or re-authorizing) an OAuth 2.0 Client.
OAuth2AuthorizedClientProviderBuilder	A builder that builds a DelegatingOAuth2AuthorizedClientProvider composed of one or more OAuth2AuthorizedClientProvider(s) that implement specific authorization grants.
OAuth2AuthorizedClientRefreshedEvent	An event that is published when an OAuth2AuthorizedClient is refreshed as a result of using a refresh_token to obtain an OAuth 2.0 Access Token Response.
OAuth2AuthorizedClientRepository	Implementations of this interface are responsible for the persistence of Authorized Client(s) between requests.
OAuth2AuthorizedClientService	Implementations of this interface are responsible for the management of Authorized Client(s), which provide the purpose of associating an Access Token credential to a Client and Resource Owner, who is the Principal that originally granted the authorization.
OAuth2AuthorizeRequest	Represents a request the OAuth2AuthorizedClientManager uses to authorize (or re-authorize) the client identified by the provided clientRegistrationId.
OAuth2AuthorizeRequest.Builder	A builder for OAuth2AuthorizeRequest.
OAuth2ClientCredentialsGrantRequest	An OAuth 2.0 Client Credentials Grant request that holds the client's credentials in AbstractOAuth2AuthorizationGrantRequest.getClientRegistration().
OAuth2ClientCredentialsGrantRequestEntityConverter	Deprecated, for removal: This API element is subject to removal in a future version. Use DefaultOAuth2TokenRequestParametersConverter instead
OAuth2ClientHttpRequestInterceptor	Provides an easy mechanism for using an OAuth2AuthorizedClient to make OAuth 2.0 requests by including the access token as a bearer token.
OAuth2ClientHttpRequestInterceptor.ClientRegistrationIdResolver	A strategy for resolving a clientRegistrationId from an intercepted request.
OAuth2ClientHttpRequestInterceptor.PrincipalResolver	A strategy for resolving a principal from an intercepted request.
OAuth2ClientJackson2Module	Jackson Module for spring-security-oauth2-client, that registers the following mix-in annotations: OAuth2AuthorizationRequestMixin ClientRegistrationMixin OAuth2AccessTokenMixin OAuth2RefreshTokenMixin OAuth2AuthorizedClientMixin OAuth2UserAuthorityMixin DefaultOAuth2UserMixin OidcIdTokenMixin OidcUserInfoMixin OidcUserAuthorityMixin DefaultOidcUserMixin OAuth2AuthenticationTokenMixin OAuth2AuthenticationExceptionMixin OAuth2ErrorMixin If not already enabled, default typing will be automatically enabled as type info is required to properly serialize/deserialize objects.
OAuth2ErrorResponseErrorHandler	A ResponseErrorHandler that handles an OAuth 2.0 Error.
OAuth2LoginAuthenticationFilter	An implementation of an AbstractAuthenticationProcessingFilter for OAuth 2.0 Login.
OAuth2LoginAuthenticationProvider	An implementation of an AuthenticationProvider for OAuth 2.0 Login, which leverages the OAuth 2.0 Authorization Code Grant Flow.
OAuth2LoginAuthenticationToken	An AbstractAuthenticationToken for OAuth 2.0 Login, which leverages the OAuth 2.0 Authorization Code Grant Flow.
OAuth2LoginAuthenticationWebFilter	A specialized AuthenticationWebFilter that converts from an OAuth2LoginAuthenticationToken to an OAuth2AuthenticationToken and saves the OAuth2AuthorizedClient
OAuth2LoginReactiveAuthenticationManager	An implementation of an AuthenticationProvider for OAuth 2.0 Login, which leverages the OAuth 2.0 Authorization Code Grant Flow.
OAuth2PasswordGrantRequest	Deprecated, for removal: This API element is subject to removal in a future version. The OAuth 2.0 Security Best Current Practice disallows the use of the Resource Owner Password Credentials grant.
OAuth2PasswordGrantRequestEntityConverter	Deprecated, for removal: This API element is subject to removal in a future version. Use DefaultOAuth2TokenRequestParametersConverter instead
OAuth2RefreshTokenGrantRequest	An OAuth 2.0 Refresh Token Grant request that holds the refresh token credential granted to the client.
OAuth2RefreshTokenGrantRequestEntityConverter	Deprecated, for removal: This API element is subject to removal in a future version. Use DefaultOAuth2TokenRequestParametersConverter instead
OAuth2UserRequest	Represents a request the OAuth2UserService uses when initiating a request to the UserInfo Endpoint.
OAuth2UserRequestEntityConverter	A Converter that converts the provided OAuth2UserRequest to a RequestEntity representation of a request for the UserInfo Endpoint.
OAuth2UserService<R extends OAuth2UserRequest,U extends org.springframework.security.oauth2.core.user.OAuth2User>	Implementations of this interface are responsible for obtaining the user attributes of the End-User (Resource Owner) from the UserInfo Endpoint using the Access Token granted to the Client and returning an AuthenticatedPrincipal in the form of an OAuth2User.
OidcAuthorizationCodeAuthenticationProvider	An implementation of an AuthenticationProvider for the OpenID Connect Core 1.0 Authorization Code Grant Flow.
OidcAuthorizationCodeReactiveAuthenticationManager	An implementation of an AuthenticationProvider for OAuth 2.0 Login, which leverages the OAuth 2.0 Authorization Code Grant Flow.
OidcAuthorizedClientRefreshedEventListener	An ApplicationListener that listens for events of type OAuth2AuthorizedClientRefreshedEvent and publishes an event of type OidcUserRefreshedEvent in order to refresh an OidcUser.
OidcClientInitiatedLogoutSuccessHandler	A logout success handler for initiating OIDC logout through the user agent.
OidcClientInitiatedServerLogoutSuccessHandler	A reactive logout success handler for initiating OIDC logout through the user agent.
OidcClientInitiatedServerLogoutSuccessHandler.RedirectUriParameters	Parameters, required for redirect URI resolving.
OidcIdTokenDecoderFactory	A factory that provides a JwtDecoder used for OidcIdToken signature verification.
OidcIdTokenValidator	An OAuth2TokenValidator responsible for validating the claims in an ID Token.
OidcLogoutToken	An implementation of an AbstractOAuth2Token representing an OpenID Backchannel Logout Token.
OidcLogoutToken.Builder	A builder for OidcLogoutTokens
OidcReactiveOAuth2UserService	An implementation of an ReactiveOAuth2UserService that supports OpenID Connect 1.0 Provider's.
OidcSessionInformation	A SessionInformation extension that enforces the principal be of type OidcUser.
OidcSessionRegistry	A registry to record the tie between the OIDC Provider session and the Client session.
OidcUserRefreshedEvent	An event that is published when an OidcUser is refreshed as a result of using a refresh_token to obtain an OAuth 2.0 Access Token Response that contains an id_token.
OidcUserRequest	Represents a request the OidcUserService uses when initiating a request to the UserInfo Endpoint.
OidcUserService	An implementation of an OAuth2UserService that supports OpenID Connect 1.0 Provider's.
PasswordOAuth2AuthorizedClientProvider	Deprecated, for removal: This API element is subject to removal in a future version. The OAuth 2.0 Security Best Current Practice disallows the use of the Resource Owner Password Credentials grant.
PasswordReactiveOAuth2AuthorizedClientProvider	Deprecated, for removal: This API element is subject to removal in a future version. The OAuth 2.0 Security Best Current Practice disallows the use of the Resource Owner Password Credentials grant.
R2dbcReactiveOAuth2AuthorizedClientService	A R2DBC implementation of ReactiveOAuth2AuthorizedClientService that uses a DatabaseClient for OAuth2AuthorizedClient persistence.
R2dbcReactiveOAuth2AuthorizedClientService.OAuth2AuthorizedClientHolder	A holder for OAuth2AuthorizedClient data and End-User Authentication (Resource Owner).
R2dbcReactiveOAuth2AuthorizedClientService.OAuth2AuthorizedClientParametersMapper	The default Function that maps R2dbcReactiveOAuth2AuthorizedClientService.OAuth2AuthorizedClientHolder to a Map of String and Parameter.
R2dbcReactiveOAuth2AuthorizedClientService.OAuth2AuthorizedClientRowMapper	The default BiFunction that maps the current io.r2dbc.spi.Row to a R2dbcReactiveOAuth2AuthorizedClientService.OAuth2AuthorizedClientHolder.
ReactiveClientRegistrationRepository	A reactive repository for OAuth 2.0 / OpenID Connect 1.0 ClientRegistration(s).
ReactiveOAuth2AccessTokenResponseClient<T extends AbstractOAuth2AuthorizationGrantRequest>	A reactive strategy for "exchanging" an authorization grant credential (e.g.
ReactiveOAuth2AuthorizationFailureHandler	Handles when an OAuth 2.0 Client fails to authorize (or re-authorize) via the authorization server or resource server.
ReactiveOAuth2AuthorizationSuccessHandler	Handles when an OAuth 2.0 Client has been successfully authorized (or re-authorized) via the authorization server.
ReactiveOAuth2AuthorizedClientManager	Implementations of this interface are responsible for the overall management of Authorized Client(s).
ReactiveOAuth2AuthorizedClientProvider	A strategy for authorizing (or re-authorizing) an OAuth 2.0 Client.
ReactiveOAuth2AuthorizedClientProviderBuilder	A builder that builds a DelegatingReactiveOAuth2AuthorizedClientProvider composed of one or more ReactiveOAuth2AuthorizedClientProvider(s) that implement specific authorization grants.
ReactiveOAuth2AuthorizedClientService	Implementations of this interface are responsible for the management of Authorized Client(s), which provide the purpose of associating an Access Token credential to a Client and Resource Owner, who is the Principal that originally granted the authorization.
ReactiveOAuth2UserService<R extends OAuth2UserRequest,U extends org.springframework.security.oauth2.core.user.OAuth2User>	Implementations of this interface are responsible for obtaining the user attributes of the End-User (Resource Owner) from the UserInfo Endpoint using the Access Token granted to the Client and returning an AuthenticatedPrincipal in the form of an OAuth2User.
ReactiveOidcIdTokenDecoderFactory	A factory that provides a ReactiveJwtDecoder used for OidcIdToken signature verification.
ReactiveOidcSessionRegistry	A registry to record the tie between the OIDC Provider session and the Client session.
RefreshTokenOAuth2AuthorizedClientProvider	An implementation of an OAuth2AuthorizedClientProvider for the refresh_token grant.
RefreshTokenReactiveOAuth2AuthorizedClientProvider	An implementation of a ReactiveOAuth2AuthorizedClientProvider for the refresh_token grant.
RegisteredOAuth2AuthorizedClient	This annotation may be used to resolve a method parameter to an argument value of type OAuth2AuthorizedClient.
RemoveAuthorizedClientOAuth2AuthorizationFailureHandler	An OAuth2AuthorizationFailureHandler that removes an OAuth2AuthorizedClient when the OAuth2Error.getErrorCode() matches one of the configured OAuth 2.0 error codes.
RemoveAuthorizedClientOAuth2AuthorizationFailureHandler.OAuth2AuthorizedClientRemover	Removes an OAuth2AuthorizedClient from an OAuth2AuthorizedClientRepository or OAuth2AuthorizedClientService.
RemoveAuthorizedClientReactiveOAuth2AuthorizationFailureHandler	A ReactiveOAuth2AuthorizationFailureHandler that removes an OAuth2AuthorizedClient when the OAuth2Error.getErrorCode() matches one of the configured OAuth 2.0 error codes.
RemoveAuthorizedClientReactiveOAuth2AuthorizationFailureHandler.OAuth2AuthorizedClientRemover	Removes an OAuth2AuthorizedClient from a ServerOAuth2AuthorizedClientRepository or ReactiveOAuth2AuthorizedClientService.
RequestAttributeClientRegistrationIdResolver	A strategy for resolving a clientRegistrationId from an intercepted request using attributes.
RequestAttributePrincipalResolver	A strategy for resolving a principal from an intercepted request using attributes.
RestClientAuthorizationCodeTokenResponseClient	An implementation of OAuth2AccessTokenResponseClient that "exchanges" an authorization code for an access token at the Authorization Server's Token Endpoint.
RestClientClientCredentialsTokenResponseClient	An implementation of OAuth2AccessTokenResponseClient that "exchanges" client credentials for an access token at the Authorization Server's Token Endpoint.
RestClientJwtBearerTokenResponseClient	An implementation of OAuth2AccessTokenResponseClient that "exchanges" a JWT for an access token at the Authorization Server's Token Endpoint.
RestClientRefreshTokenTokenResponseClient	An implementation of OAuth2AccessTokenResponseClient that "exchanges" a refresh token for an access token at the Authorization Server's Token Endpoint.
RestClientTokenExchangeTokenResponseClient	An implementation of OAuth2AccessTokenResponseClient that "exchanges" a subject token (and optionally an actor token) for an access token at the Authorization Server's Token Endpoint.
SecurityContextHolderPrincipalResolver	A strategy for resolving a principal from an intercepted request using the SecurityContextHolder.
ServerAuthorizationRequestRepository<T extends org.springframework.security.oauth2.core.endpoint.OAuth2AuthorizationRequest>	Implementations of this interface are responsible for the persistence of OAuth2AuthorizationRequest between requests.
ServerOAuth2AuthorizationCodeAuthenticationTokenConverter	Converts from a ServerWebExchange to an OAuth2AuthorizationCodeAuthenticationToken that can be authenticated.
ServerOAuth2AuthorizationRequestResolver	Implementations of this interface are capable of resolving an OAuth2AuthorizationRequest from the provided ServerWebExchange.
ServerOAuth2AuthorizedClientExchangeFilterFunction	Provides an easy mechanism for using an OAuth2AuthorizedClient to make OAuth2 requests by including the token as a Bearer Token.
ServerOAuth2AuthorizedClientRepository	Implementations of this interface are responsible for the persistence of Authorized Client(s) between requests.
ServletOAuth2AuthorizedClientExchangeFilterFunction	Provides an easy mechanism for using an OAuth2AuthorizedClient to make OAuth 2.0 requests by including the access token as a bearer token.
SupplierClientRegistrationRepository	A ClientRegistrationRepository that lazily calls to retrieve ClientRegistration(s) when requested.
TokenExchangeGrantRequest	A Token Exchange Grant request that holds the subject token and optional actor token.
TokenExchangeGrantRequestEntityConverter	Deprecated, for removal: This API element is subject to removal in a future version. Use DefaultOAuth2TokenRequestParametersConverter instead
TokenExchangeOAuth2AuthorizedClientProvider	An implementation of an OAuth2AuthorizedClientProvider for the token-exchange grant.
TokenExchangeReactiveOAuth2AuthorizedClientProvider	An implementation of an ReactiveOAuth2AuthorizedClientProvider for the token-exchange grant.
WebClientReactiveAuthorizationCodeTokenResponseClient	An implementation of a ReactiveOAuth2AccessTokenResponseClient that "exchanges" an authorization code credential for an access token credential at the Authorization Server's Token Endpoint.
WebClientReactiveClientCredentialsTokenResponseClient	An implementation of a ReactiveOAuth2AccessTokenResponseClient that "exchanges" a client credential for an access token credential at the Authorization Server's Token Endpoint.
WebClientReactiveJwtBearerTokenResponseClient	The default implementation of an ReactiveOAuth2AccessTokenResponseClient for the jwt-bearer grant.
WebClientReactivePasswordTokenResponseClient	Deprecated, for removal: This API element is subject to removal in a future version. The OAuth 2.0 Security Best Current Practice disallows the use of the Resource Owner Password Credentials grant.
WebClientReactiveRefreshTokenTokenResponseClient	An implementation of a ReactiveOAuth2AccessTokenResponseClient for the refresh_token grant.
WebClientReactiveTokenExchangeTokenResponseClient	The default implementation of an ReactiveOAuth2AccessTokenResponseClient for the token-exchange grant.
WebSessionOAuth2ServerAuthorizationRequestRepository	An implementation of an ServerAuthorizationRequestRepository that stores OAuth2AuthorizationRequest in the WebSession.
WebSessionServerOAuth2AuthorizedClientRepository	An implementation of an OAuth2AuthorizedClientRepository that stores OAuth2AuthorizedClient's in the HttpSession.