Package org.springframework.security.oauth2.server.authorization.oidc

Interface OidcClientMetadataClaimAccessor

All Superinterfaces:
ClaimAccessor
All Known Implementing Classes:
OidcClientRegistration
public interface OidcClientMetadataClaimAccessor extends ClaimAccessor
A ClaimAccessor for the "claims" that are contained in the OpenID Client Registration Request and Response.
Since:
7.0
See Also:

  • Method Details

    • getClientId

      default String getClientId()
      Returns the Client Identifier (client_id).
      Returns:
      the Client Identifier

    • getClientIdIssuedAt

      default Instant getClientIdIssuedAt()
      Returns the time at which the Client Identifier was issued (client_id_issued_at).
      Returns:
      the time at which the Client Identifier was issued

    • getClientSecret

      default String getClientSecret()
      Returns the Client Secret (client_secret).
      Returns:
      the Client Secret

    • getClientSecretExpiresAt

      default Instant getClientSecretExpiresAt()
      Returns the time at which the client_secret will expire (client_secret_expires_at).
      Returns:
      the time at which the client_secret will expire

    • getClientName

      default String getClientName()
      Returns the name of the Client to be presented to the End-User (client_name).
      Returns:
      the name of the Client to be presented to the End-User

    • getRedirectUris

      default List<String> getRedirectUris()
      Returns the redirection URI values used by the Client (redirect_uris).
      Returns:
      the redirection URI values used by the Client

    • getPostLogoutRedirectUris

      default List<String> getPostLogoutRedirectUris()
      Returns the post logout redirection URI values used by the Client (post_logout_redirect_uris). The post_logout_redirect_uri parameter is used by the client when requesting that the End-User's User Agent be redirected to after a logout has been performed.
      Returns:
      the post logout redirection URI values used by the Client

    • getTokenEndpointAuthenticationMethod

      default String getTokenEndpointAuthenticationMethod()
      Returns the authentication method used by the Client for the Token Endpoint (token_endpoint_auth_method).
      Returns:
      the authentication method used by the Client for the Token Endpoint

    • getTokenEndpointAuthenticationSigningAlgorithm

      default String getTokenEndpointAuthenticationSigningAlgorithm()
      Returns the JWS algorithm that must be used for signing the JWT used to authenticate the Client at the Token Endpoint for the private_key_jwt and client_secret_jwt authentication methods (token_endpoint_auth_signing_alg).
      Returns:
      the JWS algorithm that must be used for signing the JWT used to authenticate the Client at the Token Endpoint

    • getGrantTypes

      default List<String> getGrantTypes()
      Returns the OAuth 2.0 grant_type values that the Client will restrict itself to using (grant_types).
      Returns:
      the OAuth 2.0 grant_type values that the Client will restrict itself to using

    • getResponseTypes

      default List<String> getResponseTypes()
      Returns the OAuth 2.0 response_type values that the Client will restrict itself to using (response_types).
      Returns:
      the OAuth 2.0 response_type values that the Client will restrict itself to using

    • getScopes

      default List<String> getScopes()
      Returns the OAuth 2.0 scope values that the Client will restrict itself to using (scope).
      Returns:
      the OAuth 2.0 scope values that the Client will restrict itself to using

    • getJwkSetUrl

      default URL getJwkSetUrl()
      Returns the URL for the Client's JSON Web Key Set (jwks_uri).
      Returns:
      the URL for the Client's JSON Web Key Set (jwks_uri)

    • getIdTokenSignedResponseAlgorithm

      default String getIdTokenSignedResponseAlgorithm()
      Returns the JWS algorithm required for signing the ID Token issued to the Client (id_token_signed_response_alg).
      Returns:
      the JWS algorithm required for signing the ID Token issued to the Client

    • getRegistrationAccessToken

      default String getRegistrationAccessToken()
      Returns the Registration Access Token that can be used at the Client Configuration Endpoint.
      Returns:
      the Registration Access Token that can be used at the Client Configuration Endpoint

    • getRegistrationClientUrl

      default URL getRegistrationClientUrl()
      Returns the URL of the Client Configuration Endpoint where the Registration Access Token can be used.
      Returns:
      the URL of the Client Configuration Endpoint where the Registration Access Token can be used