Package org.springframework.security.oauth2.core.authorization

Class OAuth2ReactiveAuthorizationManagers

java.lang.Object
org.springframework.security.oauth2.core.authorization.OAuth2ReactiveAuthorizationManagers
public final class OAuth2ReactiveAuthorizationManagers extends Object
A convenience class for creating OAuth 2.0-specific AuthorizationManagers.
Since:
6.2
See Also:

  • Method Details

    • hasScope

      public static <T> ReactiveAuthorizationManager<T> hasScope(String scope)
      Create a ReactiveAuthorizationManager that requires an Authentication to have a SCOPE_scope authority.

      For example, if you call hasScope("read"), then this will require that each authentication have a GrantedAuthority whose value is SCOPE_read.

      This would equivalent to calling AuthorityReactiveAuthorizationManager#hasAuthority("SCOPE_read").

      Type Parameters:
      T - the secure object
      Parameters:
      scope - the scope value to require
      Returns:
      an ReactiveAuthorizationManager that requires a "SCOPE_scope" authority

    • hasAnyScope

      public static <T> ReactiveAuthorizationManager<T> hasAnyScope(String... scopes)
      Create a ReactiveAuthorizationManager that requires an Authentication to have at least one authority among SCOPE_scope1, SCOPE_scope2, ... SCOPE_scopeN.

      For example, if you call hasAnyScope("read", "write"), then this will require that each authentication have at least a GrantedAuthority whose value is either SCOPE_read or SCOPE_write.

      This would equivalent to calling AuthorityReactiveAuthorizationManager#hasAnyAuthority("SCOPE_read", "SCOPE_write").

      Type Parameters:
      T - the secure object
      Parameters:
      scopes - the scope values to allow
      Returns:
      an ReactiveAuthorizationManager that requires at least one authority among "SCOPE_scope1", SCOPE_scope2, ... SCOPE_scopeN.