-
Fields Field Description org.springframework.security.oauth2.core.AuthorizationGrantType.IMPLICIT org.springframework.security.oauth2.core.AuthorizationGrantType.PASSWORD The latest OAuth 2.0 Security Best Current Practice disallows the use of the Resource Owner Password Credentials grant. See reference OAuth 2.0 Security Best Current Practice.org.springframework.security.oauth2.core.ClientAuthenticationMethod.BASIC org.springframework.security.oauth2.core.ClientAuthenticationMethod.POST org.springframework.security.oauth2.core.endpoint.OAuth2AuthorizationResponseType.TOKEN org.springframework.security.oauth2.core.http.converter.OAuth2AccessTokenResponseHttpMessageConverter.tokenResponseConverter This field should no longer be usedorg.springframework.security.oauth2.core.http.converter.OAuth2AccessTokenResponseHttpMessageConverter.tokenResponseParametersConverter This field should no longer be used
-
Methods Method Description org.springframework.security.oauth2.core.ClaimAccessor.containsClaim(String) UseClaimAccessor.hasClaim(java.lang.String)instead.org.springframework.security.oauth2.core.endpoint.OAuth2AuthorizationRequest.implicit() It is not recommended to use the implicit flow due to the inherent risks of returning access tokens in an HTTP redirect without any confirmation that it has been received by the client.org.springframework.security.oauth2.core.http.converter.OAuth2AccessTokenResponseHttpMessageConverter.setTokenResponseConverter(Converter<Map<String, String>, OAuth2AccessTokenResponse>) org.springframework.security.oauth2.core.http.converter.OAuth2AccessTokenResponseHttpMessageConverter.setTokenResponseParametersConverter(Converter<OAuth2AccessTokenResponse, Map<String, String>>) org.springframework.security.oauth2.core.oidc.OidcUserInfo.Builder.phoneNumberVerified(String)