OAuth 2.0 受保護資源元資料

OAuth2ResourceServerConfigurer.ProtectedResourceMetadataConfigurer 提供了自定義 OAuth 2.0 受保護資源元資料端點 的能力。它定義了一個擴充套件點,允許您自定義 OAuth 2.0 受保護資源元資料響應

OAuth2ResourceServerConfigurer.ProtectedResourceMetadataConfigurer 提供以下配置選項

@Bean
public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
	http
		.oauth2ResourceServer((resourceServer) ->
			resourceServer
				.protectedResourceMetadata(protectedResourceMetadata ->
                    protectedResourceMetadata
                        .protectedResourceMetadataCustomizer(protectedResourceMetadataCustomizer)   (1)
				)
		);

	return http.build();
}
1 protectedResourceMetadataCustomizer()Consumer 提供對 OAuth2ProtectedResourceMetadata.Builder 的訪問,允許自定義資源伺服器配置的宣告。

OAuth2ResourceServerConfigurer.ProtectedResourceMetadataConfigurer 配置 OAuth2ProtectedResourceMetadataFilter 並將其註冊到資源伺服器的 SecurityFilterChain @Bean 中。OAuth2ProtectedResourceMetadataFilter 是返回 OAuth2ProtectedResourceMetadata 響應Filter

© . This site is unofficial and not affiliated with VMware.