io.micronaut.security.oauth2.configuration.OauthClientConfiguration Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of micronaut-security-oauth2 Show documentation
Show all versions of micronaut-security-oauth2 Show documentation
Official Security Solution for Micronaut
/*
* Copyright 2017-2023 original authors
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* https://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package io.micronaut.security.oauth2.configuration;
import io.micronaut.context.exceptions.ConfigurationException;
import io.micronaut.core.annotation.NonNull;
import io.micronaut.core.annotation.Nullable;
import io.micronaut.core.util.Toggleable;
import io.micronaut.security.oauth2.client.clientcredentials.ClientCredentialsConfiguration;
import io.micronaut.security.oauth2.configuration.endpoints.EndpointConfiguration;
import io.micronaut.security.oauth2.configuration.endpoints.OauthAuthorizationEndpointConfiguration;
import io.micronaut.security.oauth2.configuration.endpoints.SecureEndpointConfiguration;
import io.micronaut.security.oauth2.endpoint.AuthenticationMethod;
import io.micronaut.security.oauth2.endpoint.DefaultSecureEndpoint;
import io.micronaut.security.oauth2.endpoint.SecureEndpoint;
import io.micronaut.security.oauth2.grants.GrantType;
import java.time.Duration;
import java.util.Collections;
import java.util.List;
import java.util.Optional;
/**
* OAuth 2.0 client configuration.
*
* @author Sergio del Amo
* @since 1.2.0
*/
public interface OauthClientConfiguration extends Toggleable {
AuthenticationMethod DEFAULT_AUTHENTICATION_METHOD = AuthenticationMethod.CLIENT_SECRET_POST;
/**
* The default advanced expiration value for client credentials grant.
*/
Duration DEFAULT_ADVANCED_EXPIRATION = Duration.ofSeconds(30);
/**
* @return The provider name
*/
@NonNull
String getName();
/**
* @return The client id
*/
@NonNull
String getClientId();
/**
* @return The client secret
*/
@Nullable
String getClientSecret();
/**
* @return The scopes requested
*/
@NonNull
List getScopes();
/**
* @return The grant type
*/
@NonNull
GrantType getGrantType();
/**
* @see RFC 6749 Section 4.1.3
* @return The optional token endpoint configuration
*/
Optional getToken();
/**
* @see RFC 6749 Section 3.1
* @return The optional authorization endpoint configuration
*/
Optional getAuthorization();
/**
*
* @return The Client Credentials Configuration
*/
@NonNull
Optional getClientCredentials();
/**
* @see RFC 7662
* @return The introspection endpoint configuration
*/
Optional getIntrospection();
/**
* @see RFC 7009
* @return The revocation endpoint configuration
*/
Optional getRevocation();
/**
* @return The optional OpenID configuration
*/
Optional getOpenid();
/**
*
* @return The Token endpoint
* @throws ConfigurationException if token endpoint url is not set in configuration
*/
default SecureEndpoint getTokenEndpoint() throws ConfigurationException {
Optional tokenOptional = getToken();
return new DefaultSecureEndpoint(tokenOptional.flatMap(EndpointConfiguration::getUrl)
.orElseThrow(() -> new ConfigurationException("Oauth client requires the token endpoint URL to be set in configuration")),
Collections.singletonList(tokenOptional.flatMap(SecureEndpointConfiguration::getAuthMethod)
.orElse(DEFAULT_AUTHENTICATION_METHOD)));
}
}