BaseClientDetails

Back to Implementation Details

The BaseClientDetails class holds detailed information about OAuth clients. This information is stored under /sys/clients and stores client authorization details pertaining to the OAuth specification.

When a client attempts to access an OAuth protected resource, the authorization specific details such as scope, grant_type, authorities, and client_id are obtained through the EvoClientDetailsService which returns a BaseClientDetails object.

NOTE that a user/client must first authenticate and therefore must have a valid account. See EvoUser for authentication specifics. At this time, the client_id must also match a valid username.

Implements ClientDetails

Object Structure

{
  "client_id": "client1",
  "resourceIds": ["resource1", "resource2"],
  "clientSecret": "e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855", # SHA-2 encrypted
  "scopes": ["read", "write"],
  "authorizedGrantTypes": ["client_credentials", "password"],
  "authorities": ["ROLE_CLIENT", "ROLE_USER"],
  "accessTokenValiditySeconds": 3600,
  "refreshTokenValiditySeconds": 3600
}

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

BaseClientDetails

Object Structure

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Clone this wiki locally