org.springframework.cloud.security.oauth2.client

Class ResourceServerTokenRelayAutoConfiguration

java.lang.Object

org.springframework.cloud.security.oauth2.client.ResourceServerTokenRelayAutoConfiguration

@Configuration
 @ResourceServerTokenRelayAutoConfiguration.ConditionalOnOAuth2ClientInResourceServer
 @ConditionalOnClass(value=org.springframework.security.oauth2.config.annotation.web.configuration.ResourceServerConfiguration.class)
 @ConditionalOnWebApplication
public class ResourceServerTokenRelayAutoConfiguration
extends Object

Adds an MVC interceptor for relaying OAuth2 access tokens into the client context (if there is one). In this way an incoming request to a resource server can be relayed downstream just be using @EnableOAuth2Client and an OAuth2RestTemplate. An MVC interceptor is used so as to have a minimal impact on the call stack. If you are not using MVC you could use a custom filter or AOP interceptor wrapping the same call to an AccessTokenContextRelay.
N.B. an app that is using UserInfoTokenServices generally doesn't need this interceptor, but it doesn't hurt to include it.

Author:

Dave Syer

Constructor Summary

Constructors

Constructor and Description
ResourceServerTokenRelayAutoConfiguration()

Method Summary

Modifier and Type	Method and Description
org.springframework.web.servlet.HandlerInterceptor	tokenRelayRequestInterceptor(org.springframework.security.oauth2.client.OAuth2ClientContext context)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

ResourceServerTokenRelayAutoConfiguration

public ResourceServerTokenRelayAutoConfiguration()

Method Detail

tokenRelayRequestInterceptor

@Bean
public org.springframework.web.servlet.HandlerInterceptor tokenRelayRequestInterceptor(org.springframework.security.oauth2.client.OAuth2ClientContext context)