diff --git a/snapshot/guide/configurationreference.html b/snapshot/guide/configurationreference.html index bb06ab7a5b..71ec50a8d3 100644 --- a/snapshot/guide/configurationreference.html +++ b/snapshot/guide/configurationreference.html @@ -51,9 +51,9 @@

Configuration Reference

Micronaut Security Config Properties

-🔗 +🔗 - +@@ -68,21 +68,26 @@

Micronaut Security Config Propert

- + - + - + + + + + +
Table 1. Configuration Properties for SecurityFilterConfigurationPropertiesTable 1. Configuration Properties for OauthControllerConfigurationProperties

micronaut.security.filter.enabled

micronaut.security.endpoints.oauth.enabled

boolean

micronaut.security.filter.path

micronaut.security.endpoints.oauth.path

java.lang.String

Pattern the {@link SecurityFilter} should match. Default value /**. URLS NOT MATCHED BY PREVIOUS PATTERN ARE NOT SECURED

Sets the path to map the {@link OauthController} to. Default value ("/oauth/access_token").

micronaut.security.endpoints.oauth.get-allowed

boolean
-🔗 +🔗 - +@@ -97,21 +102,21 @@

Micronaut Security Config Propert

- + - + - +
Table 2. Configuration Properties for IntrospectionConfigurationPropertiesTable 2. Configuration Properties for LoginControllerConfigurationProperties

micronaut.security.endpoints.introspection.enabled

micronaut.security.endpoints.login.enabled

boolean

micronaut.security.endpoints.introspection.path

micronaut.security.endpoints.login.path

java.lang.String

Path to the IntrospectionController. Default value "/token_info"

Path to the LoginController. Default value "/login"
-🔗 +🔗 - +@@ -126,51 +131,47 @@

Micronaut Security Config Propert

- - - - - - - - + + + - - - + + + - - - + + + - - - + + + - + - + - - - + + + - - - + + +
Table 3. Configuration Properties for TokenCookieConfigurationPropertiesTable 3. Configuration Properties for SecurityConfigurationProperties

micronaut.security.token.cookie.cookie-domain

java.lang.String

micronaut.security.token.cookie.cookie-http-only

java.lang.Boolean

micronaut.security.authentication

AuthenticationMode

Defines which authentication to use. Defaults to null. Possible values bearer, session, cookie, idtoken. Should + only be supplied if the service handles login and logout requests.

micronaut.security.token.cookie.cookie-secure

java.lang.Boolean

micronaut.security.enabled

boolean

If Security is enabled. Default value true

micronaut.security.token.cookie.cookie-max-age

java.time.Duration

micronaut.security.intercept-url-map

java.util.List

Map that defines the interception patterns.

micronaut.security.token.cookie.cookie-same-site

SameSite

Sets the same-site setting of the cookie. Default value null. Value is case sensitive. Allowed values: Strict, Lax or None.

micronaut.security.ip-patterns

java.util.List

Allowed IP patterns. Default value (["0.0.0.0"])

micronaut.security.token.cookie.enabled

micronaut.security.intercept-url-map-prepend-pattern-with-context-path

boolean

Whether the intercept URL patterns should be prepended with context path if defined. Defaults to true.

micronaut.security.token.cookie.cookie-name

java.lang.String

micronaut.security.authentication-provider-strategy

AuthenticationStrategy

Determines how authentication providers should be processed. Default value ANY. Possible values: ANY or ALL.

micronaut.security.token.cookie.cookie-path

java.lang.String

micronaut.security.reject-not-found

boolean

Whether the server should respond with 401 for requests that do not match any routes on the server, if you set it to false, it will return 404 for requests that do not match any routes on the server. Default value (true).
-🔗 +🔗 - +@@ -185,21 +186,21 @@

Micronaut Security Config Propert

- + - + - + - +
Table 4. Configuration Properties for RedirectConfigurationProperties$RefreshRedirectConfigurationPropertiesTable 4. Configuration Properties for RedirectConfigurationProperties$UnauthorizedRedirectConfigurationProperties

micronaut.security.redirect.refresh.url

micronaut.security.redirect.unauthorized.url

java.lang.String

Where the user is redirected to after trying to access a secured route which he is forbidden to access. Default value ("/").

Where the user is redirected to after trying to access a secured route. Default value ("/").

micronaut.security.redirect.refresh.enabled

micronaut.security.redirect.unauthorized.enabled

boolean

Whether it should redirect on forbidden rejections. Default value (true).

Whether it should redirect on unauthorized rejections. Default value (true).
-🔗 +🔗 - +@@ -214,47 +215,41 @@

Micronaut Security Config Propert

- - - + + + - - - + + + - - - + + + - - - + + + - + - - - - - - + - - - + + +
Table 5. Configuration Properties for SecurityConfigurationPropertiesTable 5. Configuration Properties for TokenPropagationConfigurationProperties

micronaut.security.authentication

AuthenticationMode

Defines which authentication to use. Defaults to null. Possible values bearer, session, cookie, idtoken. Should - only be supplied if the service handles login and logout requests.

micronaut.security.token.propagation.service-id-regex

java.lang.String

micronaut.security.enabled

boolean

If Security is enabled. Default value true

micronaut.security.token.propagation.uri-regex

java.lang.String

micronaut.security.intercept-url-map

java.util.List

Map that defines the interception patterns.

micronaut.security.token.propagation.service-id-pattern

java.util.regex.Pattern

micronaut.security.ip-patterns

java.util.List

Allowed IP patterns. Default value (["0.0.0.0"])

micronaut.security.token.propagation.uri-pattern

java.util.regex.Pattern

micronaut.security.intercept-url-map-prepend-pattern-with-context-path

micronaut.security.token.propagation.enabled

boolean

Whether the intercept URL patterns should be prepended with context path if defined. Defaults to true.

micronaut.security.authentication-provider-strategy

AuthenticationStrategy

Determines how authentication providers should be processed. Default value ANY. Possible values: ANY or ALL.

Enables TokenPropagationHttpClientFilter. Default value false

micronaut.security.reject-not-found

boolean

Whether the server should respond with 401 for requests that do not match any routes on the server, if you set it to false, it will return 404 for requests that do not match any routes on the server. Default value (true).

micronaut.security.token.propagation.path

java.lang.String
-🔗 +🔗 - +@@ -269,51 +264,50 @@

Micronaut Security Config Propert

- - - - - - - - - - - - - - - - - - + + + + +
Table 6. Configuration Properties for RefreshTokenCookieConfigurationPropertiesTable 6. Configuration Properties for AccessTokenConfigurationProperties

micronaut.security.token.refresh.cookie.cookie-domain

java.lang.String

micronaut.security.token.refresh.cookie.cookie-http-only

java.lang.Boolean

micronaut.security.token.refresh.cookie.cookie-secure

java.lang.Boolean

micronaut.security.token.refresh.cookie.cookie-max-age

java.time.Duration

micronaut.security.token.generator.access-token.expiration

java.lang.Integer

Access token expiration. Default value (3600).
+
+🔗 + + +++++ + - - - + + + + + - + - + - + - +
Table 7. Configuration Properties for HttpHeaderTokenPropagatorConfigurationProperties

micronaut.security.token.refresh.cookie.cookie-same-site

SameSite

Sets the same-site setting of the cookie. Default value null. Value is case sensitive. Allowed values: Strict, Lax or None.

PropertyTypeDescription

micronaut.security.token.refresh.cookie.enabled

micronaut.security.token.propagation.header.enabled

boolean

Enable HttpHeaderTokenPropagator. Default value (true).

micronaut.security.token.refresh.cookie.cookie-name

micronaut.security.token.propagation.header.prefix

java.lang.String

micronaut.security.token.refresh.cookie.cookie-path

micronaut.security.token.propagation.header.header-name

java.lang.String
-🔗 +🔗 - +@@ -328,21 +322,21 @@

Micronaut Security Config Propert

- + - + - +
Table 7. Configuration Properties for LoginControllerConfigurationPropertiesTable 8. Configuration Properties for IntrospectionConfigurationProperties

micronaut.security.endpoints.login.enabled

micronaut.security.endpoints.introspection.enabled

boolean

micronaut.security.endpoints.login.path

micronaut.security.endpoints.introspection.path

java.lang.String

Path to the LoginController. Default value "/login"

Path to the IntrospectionController. Default value "/token_info"
-🔗 +🔗 - +@@ -357,26 +351,21 @@

Micronaut Security Config Propert

- + - - - - - - + - +
Table 8. Configuration Properties for HttpHeaderTokenPropagatorConfigurationPropertiesTable 9. Configuration Properties for SecurityFilterConfigurationProperties

micronaut.security.token.propagation.header.enabled

micronaut.security.filter.enabled

boolean

Enable HttpHeaderTokenPropagator. Default value (true).

micronaut.security.token.propagation.header.prefix

java.lang.String

micronaut.security.token.propagation.header.header-name

micronaut.security.filter.path

java.lang.String

Pattern the {@link SecurityFilter} should match. Default value /**. URLS NOT MATCHED BY PREVIOUS PATTERN ARE NOT SECURED
🔗 - +@@ -408,9 +397,9 @@

Micronaut Security Config Propert

Table 9. Configuration Properties for LogoutControllerConfigurationPropertiesTable 10. Configuration Properties for LogoutControllerConfigurationProperties
-🔗 +🔗 - +@@ -425,26 +414,26 @@

Micronaut Security Config Propert

- + - + - + - + - - - + + +
Table 10. Configuration Properties for OauthControllerConfigurationPropertiesTable 11. Configuration Properties for BearerTokenConfigurationProperties

micronaut.security.endpoints.oauth.enabled

micronaut.security.token.bearer.enabled

boolean

Set whether to enable bearer token authentication. Default value true.

micronaut.security.endpoints.oauth.path

micronaut.security.token.bearer.prefix

java.lang.String

Sets the path to map the {@link OauthController} to. Default value ("/oauth/access_token").

Sets the prefix to use for the auth token. Default value Bearer.

micronaut.security.endpoints.oauth.get-allowed

boolean

micronaut.security.token.bearer.header-name

java.lang.String

Sets the header name to use. Default value Authorization.
🔗 - +@@ -471,9 +460,9 @@

Micronaut Security Config Propert

Table 11. Configuration Properties for RedirectConfigurationProperties$ForbiddenRedirectConfigurationPropertiesTable 12. Configuration Properties for RedirectConfigurationProperties$ForbiddenRedirectConfigurationProperties
-🔗 +🔗 - +@@ -488,26 +477,16 @@

Micronaut Security Config Propert

- + - - - - - - - - - - - +
Table 12. Configuration Properties for BearerTokenConfigurationPropertiesTable 13. Configuration Properties for BasicAuthAuthenticationConfiguration

micronaut.security.token.bearer.enabled

micronaut.security.basic-auth.enabled

boolean

Set whether to enable bearer token authentication. Default value true.

micronaut.security.token.bearer.prefix

java.lang.String

Sets the prefix to use for the auth token. Default value Bearer.

micronaut.security.token.bearer.header-name

java.lang.String

Sets the header name to use. Default value Authorization.

Enables the {@link BasicAuthAuthenticationFetcher}. Default value true.
🔗 - +@@ -544,9 +523,9 @@

Micronaut Security Config Propert

Table 13. Configuration Properties for TokenConfigurationPropertiesTable 14. Configuration Properties for TokenConfigurationProperties
-🔗 +🔗 - +@@ -561,63 +540,19 @@

Micronaut Security Config Propert

- - - - - - + - - - - - - - - - - - + - + - - - - - - +
Table 14. Configuration Properties for TokenPropagationConfigurationPropertiesTable 15. Configuration Properties for RedirectConfigurationProperties$RefreshRedirectConfigurationProperties

micronaut.security.token.propagation.service-id-regex

java.lang.String

micronaut.security.token.propagation.uri-regex

micronaut.security.redirect.refresh.url

java.lang.String

micronaut.security.token.propagation.service-id-pattern

java.util.regex.Pattern

micronaut.security.token.propagation.uri-pattern

java.util.regex.Pattern

Where the user is redirected to after trying to access a secured route which he is forbidden to access. Default value ("/").

micronaut.security.token.propagation.enabled

micronaut.security.redirect.refresh.enabled

boolean

Enables TokenPropagationHttpClientFilter. Default value false

micronaut.security.token.propagation.path

java.lang.String

Whether it should redirect on forbidden rejections. Default value (true).
-🔗 - - ----- - - - - - - - - - - - - - - -
Table 15. Configuration Properties for AccessTokenConfigurationProperties
PropertyTypeDescription

micronaut.security.token.generator.access-token.expiration

java.lang.Integer

Access token expiration. Default value (3600).

-
-🔗 +🔗 @@ -692,9 +627,9 @@

Micronaut Security Config Propert

Table 16. Configuration Properties for RedirectConfigurationProperties
-🔗 +🔗 - +@@ -709,16 +644,51 @@

Micronaut Security Config Propert

- + + + + + + + + + + + + + + + + + + + + + + + + + + - + + + + + + + + + + +
Table 18. Configuration Properties for BasicAuthAuthenticationConfigurationTable 18. Configuration Properties for TokenCookieConfigurationProperties

micronaut.security.basic-auth.enabled

micronaut.security.token.cookie.cookie-domain

java.lang.String

micronaut.security.token.cookie.cookie-http-only

java.lang.Boolean

micronaut.security.token.cookie.cookie-secure

java.lang.Boolean

micronaut.security.token.cookie.cookie-max-age

java.time.Duration

micronaut.security.token.cookie.cookie-same-site

SameSite

Sets the same-site setting of the cookie. Default value null. Value is case sensitive. Allowed values: Strict, Lax or None.

micronaut.security.token.cookie.enabled

boolean

Enables the {@link BasicAuthAuthenticationFetcher}. Default value true.

micronaut.security.token.cookie.cookie-name

java.lang.String

micronaut.security.token.cookie.cookie-path

java.lang.String
-🔗 +🔗 - +@@ -733,14 +703,44 @@

Micronaut Security Config Propert

- + - + - + + + + + + + + + + + + + + + + + + + + + - + + + + + + + + + + +
Table 19. Configuration Properties for RedirectConfigurationProperties$UnauthorizedRedirectConfigurationPropertiesTable 19. Configuration Properties for RefreshTokenCookieConfigurationProperties

micronaut.security.redirect.unauthorized.url

micronaut.security.token.refresh.cookie.cookie-domain

java.lang.String

Where the user is redirected to after trying to access a secured route. Default value ("/").

micronaut.security.redirect.unauthorized.enabled

micronaut.security.token.refresh.cookie.cookie-http-only

java.lang.Boolean

micronaut.security.token.refresh.cookie.cookie-secure

java.lang.Boolean

micronaut.security.token.refresh.cookie.cookie-max-age

java.time.Duration

micronaut.security.token.refresh.cookie.cookie-same-site

SameSite

Sets the same-site setting of the cookie. Default value null. Value is case sensitive. Allowed values: Strict, Lax or None.

micronaut.security.token.refresh.cookie.enabled

boolean

Whether it should redirect on unauthorized rejections. Default value (true).

micronaut.security.token.refresh.cookie.cookie-name

java.lang.String

micronaut.security.token.refresh.cookie.cookie-path

java.lang.String
@@ -748,9 +748,9 @@

Micronaut Security Config Propert

Micronaut Security Jwt Config Properties

-🔗 +🔗 - +@@ -765,26 +765,46 @@

Micronaut Security Jwt Config

- - - + + + - + - + - + + + + + + + + + + + + + + + + + + + + +
Table 20. Configuration Properties for SecretSignatureConfigurationTable 20. Configuration Properties for JwtClaimsValidatorConfigurationProperties

micronaut.security.token.jwt.signatures.secret.*.jws-algorithm

com.nimbusds.jose.JWSAlgorithm

micronaut.security.token.jwt.claims-validators.issuer

java.lang.String

Whether the iss claim should be validated to ensure it matches this value. It defaults to null, thus it is not validated.

micronaut.security.token.jwt.signatures.secret.*.secret

micronaut.security.token.jwt.claims-validators.audience

java.lang.String

Whether the aud claim should be validated to ensure it matches this value. It defaults to null, thus it is not validated.

micronaut.security.token.jwt.signatures.secret.*.base64

micronaut.security.token.jwt.claims-validators.subject-not-null

boolean

Whether the JWT subject claim should be validated to ensure it is not null. Default value true.

micronaut.security.token.jwt.claims-validators.not-before

boolean

micronaut.security.token.jwt.claims-validators.expiration

boolean

Whether the expiration date of the JWT should be validated. Default value true.

micronaut.security.token.jwt.claims-validators.nonce

boolean

Whether the nonce claim should be validated when a nonce was present. Default value true.

micronaut.security.token.jwt.claims-validators.openid-idtoken

boolean

Whether IdTokenClaimsValidator, which performs some fo the verifications described in OpenID Connect Spec, is enabled. Default value true. Only applies for idtoken authentication mode.
-🔗 +🔗 - +@@ -799,14 +819,19 @@

Micronaut Security Jwt Config

- - - + + + - + - + + + + + +
Table 21. Configuration Properties for KeysControllerConfigurationPropertiesTable 21. Configuration Properties for JwksSignatureConfigurationProperties

micronaut.security.endpoints.keys.enabled

boolean

micronaut.security.token.jwt.signatures.jwks.*.cache-expiration

java.lang.Integer

JWKS cache expiration. Default value 60 seconds.

micronaut.security.endpoints.keys.path

micronaut.security.token.jwt.signatures.jwks.*.url

java.lang.String

Path to the KeysController. Default value "/keys".

micronaut.security.token.jwt.signatures.jwks.*.key-type

com.nimbusds.jose.jwk.KeyType
@@ -835,9 +860,9 @@

Micronaut Security Jwt Config
-🔗 +🔗 - +@@ -852,46 +877,26 @@

Micronaut Security Jwt Config

- - - - - - + - - - - - - - - - - - - - - - - - - + + + - - - + + +
Table 23. Configuration Properties for JwtClaimsValidatorConfigurationPropertiesTable 23. Configuration Properties for SecretEncryptionConfiguration

micronaut.security.token.jwt.claims-validators.issuer

java.lang.String

Whether the iss claim should be validated to ensure it matches this value. It defaults to null, thus it is not validated.

micronaut.security.token.jwt.claims-validators.audience

micronaut.security.token.jwt.encryptions.secret.*.secret

java.lang.String

Whether the aud claim should be validated to ensure it matches this value. It defaults to null, thus it is not validated.

micronaut.security.token.jwt.claims-validators.subject-not-null

boolean

Whether the JWT subject claim should be validated to ensure it is not null. Default value true.

micronaut.security.token.jwt.claims-validators.not-before

boolean

micronaut.security.token.jwt.claims-validators.expiration

boolean

Whether the expiration date of the JWT should be validated. Default value true.

micronaut.security.token.jwt.claims-validators.nonce

boolean

Whether the nonce claim should be validated when a nonce was present. Default value true.

micronaut.security.token.jwt.encryptions.secret.*.jwe-algorithm

com.nimbusds.jose.JWEAlgorithm

micronaut.security.token.jwt.claims-validators.openid-idtoken

boolean

Whether IdTokenClaimsValidator, which performs some fo the verifications described in OpenID Connect Spec, is enabled. Default value true. Only applies for idtoken authentication mode.

micronaut.security.token.jwt.encryptions.secret.*.encryption-method

com.nimbusds.jose.EncryptionMethod
-🔗 +🔗 - +@@ -906,31 +911,26 @@

Micronaut Security Jwt Config

- - - - - - + - + - + - + - + - +
Table 24. Configuration Properties for RefreshTokenConfigurationPropertiesTable 24. Configuration Properties for SecretSignatureConfiguration

micronaut.security.token.jwt.generator.refresh-token.enabled

boolean

Sets whether SignedRefreshTokenGenerator is enabled. Default value (true).

micronaut.security.token.jwt.generator.refresh-token.jws-algorithm

micronaut.security.token.jwt.signatures.secret.*.jws-algorithm

com.nimbusds.jose.JWSAlgorithm

{@link com.nimbusds.jose.JWSAlgorithm}. Defaults to HS256

micronaut.security.token.jwt.generator.refresh-token.secret

micronaut.security.token.jwt.signatures.secret.*.secret

java.lang.String

shared secret. For HS256 must be at least 256 bits.

micronaut.security.token.jwt.generator.refresh-token.base64

micronaut.security.token.jwt.signatures.secret.*.base64

boolean

Indicates whether the supplied secret is base64 encoded. Default value false.
-🔗 +🔗 - +@@ -945,26 +945,31 @@

Micronaut Security Jwt Config

- - - + + + - + + + + + + - + - - - + + +
Table 25. Configuration Properties for JwksSignatureConfigurationPropertiesTable 25. Configuration Properties for RefreshTokenConfigurationProperties

micronaut.security.token.jwt.signatures.jwks.*.cache-expiration

java.lang.Integer

JWKS cache expiration. Default value 60 seconds.

micronaut.security.token.jwt.generator.refresh-token.enabled

boolean

Sets whether SignedRefreshTokenGenerator is enabled. Default value (true).

micronaut.security.token.jwt.signatures.jwks.*.url

micronaut.security.token.jwt.generator.refresh-token.jws-algorithm

com.nimbusds.jose.JWSAlgorithm

{@link com.nimbusds.jose.JWSAlgorithm}. Defaults to HS256

micronaut.security.token.jwt.generator.refresh-token.secret

java.lang.String

shared secret. For HS256 must be at least 256 bits.

micronaut.security.token.jwt.signatures.jwks.*.key-type

com.nimbusds.jose.jwk.KeyType

micronaut.security.token.jwt.generator.refresh-token.base64

boolean

Indicates whether the supplied secret is base64 encoded. Default value false.
-🔗 +🔗 - +@@ -979,19 +984,14 @@

Micronaut Security Jwt Config

- - - - - - - + + - - - + + +
Table 26. Configuration Properties for SecretEncryptionConfigurationTable 26. Configuration Properties for KeysControllerConfigurationProperties

micronaut.security.token.jwt.encryptions.secret.*.secret

java.lang.String

micronaut.security.token.jwt.encryptions.secret.*.jwe-algorithm

com.nimbusds.jose.JWEAlgorithm

micronaut.security.endpoints.keys.enabled

boolean

micronaut.security.token.jwt.encryptions.secret.*.encryption-method

com.nimbusds.jose.EncryptionMethod

micronaut.security.endpoints.keys.path

java.lang.String

Path to the KeysController. Default value "/keys".
@@ -1067,9 +1067,9 @@

Micronaut Security Ldap Conf
-🔗 +🔗 - +@@ -1084,9 +1084,24 @@

Micronaut Security Ldap Conf

- + - + + + + + + + + + + + + + + + +
Table 29. Configuration Properties for LdapConfigurationTable 29. Configuration Properties for LdapConfiguration$SearchConfiguration

micronaut.security.ldap.*.enabled

micronaut.security.ldap.*.search.subtree

boolean

Sets whether this configuration is enabled. Default true.

micronaut.security.ldap.*.search.base

java.lang.String

micronaut.security.ldap.*.search.filter

java.lang.String

micronaut.security.ldap.*.search.attributes

java.lang.String
@@ -1140,9 +1155,9 @@

Micronaut Security Ldap Conf
-🔗 +🔗 - +@@ -1157,34 +1172,60 @@

Micronaut Security Ldap Conf

- + - + + + +
Table 31. Configuration Properties for LdapConfiguration$SearchConfigurationTable 31. Configuration Properties for LdapConfiguration

micronaut.security.ldap.*.search.subtree

micronaut.security.ldap.*.enabled

boolean

Sets whether this configuration is enabled. Default true.

+
+

+
+

Micronaut Security Oauth2 Config Properties

+🔗 + + +++++ + + + + + + + - + + + + + + - + - + - + - + - +
Table 32. Configuration Properties for OauthConfigurationProperties
PropertyTypeDescription

micronaut.security.ldap.*.search.base

micronaut.security.oauth2.enabled

boolean

Sets whether the OAuth 2.0 support is enabled. Default value (true).

micronaut.security.oauth2.login-uri

java.lang.String

The URI template that is used to initiate an OAuth 2.0 + authorization code grant flow. Default value ("/oauth/login{/provider}").

micronaut.security.ldap.*.search.filter

micronaut.security.oauth2.callback-uri

java.lang.String

The URI template that OAuth 2.0 providers can use to + submit an authorization callback request. Default value ("/oauth/callback{/provider}").

micronaut.security.ldap.*.search.attributes

micronaut.security.oauth2.default-provider

java.lang.String

The default authentication provider for an OAuth 2.0 authorization code grant flow.
-
-
-

Micronaut Security Oauth2 Config Properties

-🔗 +🔗 - +@@ -1199,41 +1240,41 @@

Micronaut Security Oauth2

- + - + - + - + - + - + - +
Table 32. Configuration Properties for CookiePkcePersistenceConfigurationTable 33. Configuration Properties for CookieStatePersistenceConfiguration

micronaut.security.oauth2.pkce.cookie.cookie-domain

micronaut.security.oauth2.state.cookie.cookie-domain

java.lang.String

Sets the domain name of this Cookie. Default value (null).

micronaut.security.oauth2.pkce.cookie.cookie-secure

micronaut.security.oauth2.state.cookie.cookie-secure

java.lang.Boolean

Sets whether the cookie is secured. Defaults to the secure status of the request.

micronaut.security.oauth2.pkce.cookie.cookie-name

micronaut.security.oauth2.state.cookie.cookie-name

java.lang.String

Cookie Name. Default value {@link #DEFAULT_COOKIE_NAME}.

Cookie Name. Default value {@link #DEFAULT_COOKIENAME}.

micronaut.security.oauth2.pkce.cookie.cookie-path

micronaut.security.oauth2.state.cookie.cookie-path

java.lang.String

Sets the path of the cookie. Default value ("/").

micronaut.security.oauth2.pkce.cookie.cookie-http-only

micronaut.security.oauth2.state.cookie.cookie-http-only

java.lang.Boolean

Whether the Cookie can only be accessed via HTTP. Default value (true).

micronaut.security.oauth2.pkce.cookie.cookie-max-age

micronaut.security.oauth2.state.cookie.cookie-max-age

java.time.Duration

Sets the maximum age of the cookie. Default value (5 minutes).
-🔗 +🔗 - +@@ -1248,56 +1289,57 @@

Micronaut Security Oauth2

- + - - - + + + - -
Table 33. Configuration Properties for OauthClientConfigurationProperties$IntrospectionEndpointConfigurationPropertiesTable 34. Configuration Properties for OauthClientConfigurationProperties$OpenIdClientConfigurationProperties$AuthorizationEndpointConfigurationProperties

micronaut.security.oauth2.clients.*.introspection.url

micronaut.security.oauth2.clients.*.openid.authorization.url

java.lang.String

The endpoint URL

micronaut.security.oauth2.clients.*.introspection.auth-method

AuthenticationMethod

Authentication Method

micronaut.security.oauth2.clients.*.openid.authorization.response-type

ResponseType

Determines the authorization processing flow to be used. Default value (code).
-
-🔗 - - ----- - - - - + + + - - - - - + + + - - - + + + - + + + + + + + + + + + + + + + + - +
Table 34. Configuration Properties for OauthClientConfigurationProperties$OpenIdClientConfigurationProperties
PropertyTypeDescription

micronaut.security.oauth2.clients.*.openid.authorization.response-mode

java.lang.String

Mechanism to be used for returning authorization response parameters from the + authorization endpoint.

micronaut.security.oauth2.clients.*.openid.issuer

java.net.URL

URL using the https scheme with no query or fragment component that the - Open ID provider asserts as its issuer identifier.

micronaut.security.oauth2.clients.*.openid.authorization.display

Display

Controls how the authentication interface is displayed.

micronaut.security.oauth2.clients.*.openid.configuration-path

java.lang.String

The configuration path to discover openid configuration. Default ("/.well-known/openid-configuration").

micronaut.security.oauth2.clients.*.openid.authorization.prompt

Prompt

Controls how the authentication server prompts the user.

micronaut.security.oauth2.clients.*.openid.jwks-uri

micronaut.security.oauth2.clients.*.openid.authorization.max-age

java.lang.Integer

Maximum authentication age.

micronaut.security.oauth2.clients.*.openid.authorization.ui-locales

java.util.List

Preferred locales for authentication.

micronaut.security.oauth2.clients.*.openid.authorization.acr-values

java.util.List

Authentication class reference values.

micronaut.security.oauth2.clients.*.openid.authorization.code-challenge-method

java.lang.String

The JWKS signature URI.

Code Challenge Method to use for PKCE.
-🔗 +🔗 - +@@ -1312,21 +1354,21 @@

Micronaut Security Oauth2

- + - +
Table 35. Configuration Properties for OauthClientConfigurationProperties$TokenEndpointConfigurationPropertiesTable 35. Configuration Properties for OauthClientConfigurationProperties$RevocationEndpointConfigurationProperties

micronaut.security.oauth2.clients.*.token.url

micronaut.security.oauth2.clients.*.revocation.url

java.lang.String

The endpoint URL

micronaut.security.oauth2.clients.*.token.auth-method

micronaut.security.oauth2.clients.*.revocation.auth-method

AuthenticationMethod

Authentication Method
-🔗 +🔗 - +@@ -1341,22 +1383,27 @@

Micronaut Security Oauth2

- + + + + + + - + - - - + + +
Table 36. Configuration Properties for DefaultNonceConfigurationTable 36. Configuration Properties for OauthClientConfigurationProperties$OpenIdClientConfigurationProperties

micronaut.security.oauth2.openid.nonce.persistence

micronaut.security.oauth2.clients.*.openid.issuer

java.net.URL

URL using the https scheme with no query or fragment component that the + Open ID provider asserts as its issuer identifier.

micronaut.security.oauth2.clients.*.openid.configuration-path

java.lang.String

Sets the mechanism to persist the nonce for later retrieval for validation. - Supported values ("session", "cookie"). Default value ("cookie").

The configuration path to discover openid configuration. Default ("/.well-known/openid-configuration").

micronaut.security.oauth2.openid.nonce.enabled

boolean

Sets whether a nonce parameter will be sent. Default (true).

micronaut.security.oauth2.clients.*.openid.jwks-uri

java.lang.String

The JWKS signature URI.
-🔗 +🔗 - +@@ -1371,36 +1418,21 @@

Micronaut Security Oauth2

- + - + - + - - - - - - - - - - - - - - - - +
Table 37. Configuration Properties for OauthClientConfigurationPropertiesTable 37. Configuration Properties for OauthClientConfigurationProperties$AuthorizationEndpointConfigurationProperties

micronaut.security.oauth2.clients.*.client-id

micronaut.security.oauth2.clients.*.authorization.url

java.lang.String

OAuth 2.0 client id.

The endpoint URL

micronaut.security.oauth2.clients.*.client-secret

micronaut.security.oauth2.clients.*.authorization.code-challenge-method

java.lang.String

OAuth 2.0 client secret.

micronaut.security.oauth2.clients.*.enabled

boolean

Sets whether the client is enabled. Default value (true).

micronaut.security.oauth2.clients.*.scopes

java.util.List

Requested scopes. If not specified for OAuth 2.0 clients using OpenID Connect it defaults to profile, email and idtoken

micronaut.security.oauth2.clients.*.grant-type

GrantType

OAuth 2.0 grant type. Default value (authorization_code).

Code Challenge Method to use for PKCE.
-🔗 +🔗 - +@@ -1415,21 +1447,29 @@

Micronaut Security Oauth2

- - - + + + - - - + + + + + + + +
Table 38. Configuration Properties for OauthClientConfigurationProperties$RevocationEndpointConfigurationPropertiesTable 38. Configuration Properties for OauthConfigurationProperties$OpenIdConfigurationProperties$ClaimsValidationConfigurationProperties

micronaut.security.oauth2.clients.*.revocation.url

java.lang.String

The endpoint URL

micronaut.security.oauth2.openid.claims-validation.issuer

boolean

Whether IssuerClaimValidator + is enabled. Default value (true).

micronaut.security.oauth2.clients.*.revocation.auth-method

AuthenticationMethod

Authentication Method

micronaut.security.oauth2.openid.claims-validation.audience

boolean

Whether AudienceClaimValidator + is enabled. Default value (true).

micronaut.security.oauth2.openid.claims-validation.authorized-party

boolean

Whether AuthorizedPartyClaimValidator + is enabled. Default value (true).
-🔗 +🔗 - +@@ -1444,21 +1484,16 @@

Micronaut Security Oauth2

- + - - - - - - +
Table 39. Configuration Properties for OauthClientConfigurationProperties$OpenIdClientConfigurationProperties$EndSessionConfigurationPropertiesTable 39. Configuration Properties for OauthConfigurationProperties$OpenIdConfigurationProperties

micronaut.security.oauth2.clients.*.openid.end-session.url

micronaut.security.oauth2.openid.logout-uri

java.lang.String

The endpoint URL

micronaut.security.oauth2.clients.*.openid.end-session.enabled

boolean

The end session enabled flag. Default value (true).

The URI used to log out of an OpenID provider. Default value ("/oauth/logout").
-🔗 +🔗 - +@@ -1473,26 +1508,20 @@

Micronaut Security Oauth2

- - - - - - - - + + + - + - + - - - + + +
Table 40. Configuration Properties for OauthConfigurationPropertiesTable 40. Configuration Properties for PkceConfigurationProperties

micronaut.security.oauth2.enabled

boolean

Sets whether the OAuth 2.0 support is enabled. Default value (true).

micronaut.security.oauth2.login-uri

java.lang.String

The URI template that is used to initiate an OAuth 2.0 - authorization code grant flow. Default value ("/oauth/login{/provider}").

micronaut.security.oauth2.pkce.entropy

int

entropy (in bytes) used for the code verifier generation. Default value 64.

micronaut.security.oauth2.callback-uri

micronaut.security.oauth2.pkce.persistence

java.lang.String

The URI template that OAuth 2.0 providers can use to - submit an authorization callback request. Default value ("/oauth/callback{/provider}").

Sets the mechanism to persist the state for later retrieval for validation. + Supported values ("session", "cookie"). Default value (PERSISTENCE_COOKIE).

micronaut.security.oauth2.default-provider

java.lang.String

The default authentication provider for an OAuth 2.0 authorization code grant flow.

micronaut.security.oauth2.pkce.enabled

boolean

Sets whether a state parameter will be sent. Default (true).
@@ -1531,9 +1560,9 @@

Micronaut Security Oauth2
-🔗 +🔗 - +@@ -1548,29 +1577,22 @@

Micronaut Security Oauth2

- - - - - - - - + + + - + - +
Table 42. Configuration Properties for OauthConfigurationProperties$OpenIdConfigurationProperties$ClaimsValidationConfigurationPropertiesTable 42. Configuration Properties for DefaultNonceConfiguration

micronaut.security.oauth2.openid.claims-validation.issuer

boolean

Whether IssuerClaimValidator - is enabled. Default value (true).

micronaut.security.oauth2.openid.claims-validation.audience

boolean

Whether AudienceClaimValidator - is enabled. Default value (true).

micronaut.security.oauth2.openid.nonce.persistence

java.lang.String

Sets the mechanism to persist the nonce for later retrieval for validation. + Supported values ("session", "cookie"). Default value ("cookie").

micronaut.security.oauth2.openid.claims-validation.authorized-party

micronaut.security.oauth2.openid.nonce.enabled

boolean

Whether AuthorizedPartyClaimValidator - is enabled. Default value (true).

Sets whether a nonce parameter will be sent. Default (true).
-🔗 +🔗 - +@@ -1585,57 +1607,21 @@

Micronaut Security Oauth2

- + - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - + + +
Table 43. Configuration Properties for OauthClientConfigurationProperties$OpenIdClientConfigurationProperties$AuthorizationEndpointConfigurationPropertiesTable 43. Configuration Properties for OauthClientConfigurationProperties$TokenEndpointConfigurationProperties

micronaut.security.oauth2.clients.*.openid.authorization.url

micronaut.security.oauth2.clients.*.token.url

java.lang.String

The endpoint URL

micronaut.security.oauth2.clients.*.openid.authorization.response-type

ResponseType

Determines the authorization processing flow to be used. Default value (code).

micronaut.security.oauth2.clients.*.openid.authorization.response-mode

java.lang.String

Mechanism to be used for returning authorization response parameters from the - authorization endpoint.

micronaut.security.oauth2.clients.*.openid.authorization.display

Display

Controls how the authentication interface is displayed.

micronaut.security.oauth2.clients.*.openid.authorization.prompt

Prompt

Controls how the authentication server prompts the user.

micronaut.security.oauth2.clients.*.openid.authorization.max-age

java.lang.Integer

Maximum authentication age.

micronaut.security.oauth2.clients.*.openid.authorization.ui-locales

java.util.List

Preferred locales for authentication.

micronaut.security.oauth2.clients.*.openid.authorization.acr-values

java.util.List

Authentication class reference values.

micronaut.security.oauth2.clients.*.openid.authorization.code-challenge-method

java.lang.String

Code Challenge Method to use for PKCE.

micronaut.security.oauth2.clients.*.token.auth-method

AuthenticationMethod

Authentication Method
-🔗 +🔗 - +@@ -1650,16 +1636,16 @@

Micronaut Security Oauth2

- + - +
Table 44. Configuration Properties for OauthClientConfigurationProperties$OpenIdClientConfigurationProperties$UserInfoEndpointConfigurationPropertiesTable 44. Configuration Properties for OauthConfigurationProperties$OpenIdConfigurationProperties$EndSessionConfigurationProperties

micronaut.security.oauth2.clients.*.openid.user-info.url

micronaut.security.oauth2.openid.end-session.redirect-uri

java.lang.String

The endpoint URL

The URI the OpenID provider should redirect to after logging out. Default value ("/logout").
-🔗 +🔗 - +@@ -1674,41 +1660,21 @@

Micronaut Security Oauth2

- - - - - - - - - - - - - - - - + - - - - - - + - - - + + +
Table 45. Configuration Properties for CookieNoncePersistenceConfigurationTable 45. Configuration Properties for OauthClientConfigurationProperties$IntrospectionEndpointConfigurationProperties

micronaut.security.oauth2.openid.nonce.cookie.cookie-domain

java.lang.String

Sets the domain name of this Cookie. Default value (null).

micronaut.security.oauth2.openid.nonce.cookie.cookie-secure

java.lang.Boolean

Sets whether the cookie is secured. Defaults to the secure status of the request.

micronaut.security.oauth2.openid.nonce.cookie.cookie-name

java.lang.String

Cookie Name. Default value {@link #DEFAULT_COOKIENAME}.

micronaut.security.oauth2.openid.nonce.cookie.cookie-path

micronaut.security.oauth2.clients.*.introspection.url

java.lang.String

Sets the path of the cookie. Default value ("/").

micronaut.security.oauth2.openid.nonce.cookie.cookie-http-only

java.lang.Boolean

Whether the Cookie can only be accessed via HTTP. Default value (true).

The endpoint URL

micronaut.security.oauth2.openid.nonce.cookie.cookie-max-age

java.time.Duration

Sets the maximum age of the cookie. Default value (5 minutes).

micronaut.security.oauth2.clients.*.introspection.auth-method

AuthenticationMethod

Authentication Method
-🔗 +🔗 - +@@ -1723,16 +1689,22 @@

Micronaut Security Oauth2

- + - + + + + + +
Table 46. Configuration Properties for OauthClientConfigurationProperties$OpenIdClientConfigurationProperties$RegistrationEndpointConfigurationPropertiesTable 46. Configuration Properties for DefaultStateConfiguration

micronaut.security.oauth2.clients.*.openid.registration.url

micronaut.security.oauth2.state.persistence

java.lang.String

The endpoint URL

Sets the mechanism to persist the state for later retrieval for validation. + Supported values ("session", "cookie"). Default value ("cookie").

micronaut.security.oauth2.state.enabled

boolean

Sets whether a state parameter will be sent. Default (true).
-🔗 +🔗 - +@@ -1747,16 +1719,26 @@

Micronaut Security Oauth2

- + + + + + + - + + + + + +
Table 47. Configuration Properties for OauthConfigurationProperties$OpenIdConfigurationPropertiesTable 47. Configuration Properties for OauthClientConfigurationProperties$ClientCredentialsConfigurationProperties$HeaderTokenPropagatorConfigurationProperties

micronaut.security.oauth2.openid.logout-uri

micronaut.security.oauth2.clients.*.client-credentials.header-propagation.enabled

boolean

Enable {@link ClientCredentialsHeaderTokenPropagatorConfiguration}. Default value (true).

micronaut.security.oauth2.clients.*.client-credentials.header-propagation.prefix

java.lang.String

The URI used to log out of an OpenID provider. Default value ("/oauth/logout").

micronaut.security.oauth2.clients.*.client-credentials.header-propagation.header-name

java.lang.String
-🔗 +🔗 - +@@ -1771,27 +1753,16 @@

Micronaut Security Oauth2

- - - - - - + - - - - - - +
Table 48. Configuration Properties for PkceConfigurationPropertiesTable 48. Configuration Properties for OauthClientConfigurationProperties$OpenIdClientConfigurationProperties$RegistrationEndpointConfigurationProperties

micronaut.security.oauth2.pkce.entropy

int

entropy (in bytes) used for the code verifier generation. Default value 64.

micronaut.security.oauth2.pkce.persistence

micronaut.security.oauth2.clients.*.openid.registration.url

java.lang.String

Sets the mechanism to persist the state for later retrieval for validation. - Supported values ("session", "cookie"). Default value (PERSISTENCE_COOKIE).

micronaut.security.oauth2.pkce.enabled

boolean

Sets whether a state parameter will be sent. Default (true).

The endpoint URL
-🔗 +🔗 - +@@ -1806,41 +1777,41 @@

Micronaut Security Oauth2

- + - + - + - + - + - + - +
Table 49. Configuration Properties for CookieStatePersistenceConfigurationTable 49. Configuration Properties for CookiePkcePersistenceConfiguration

micronaut.security.oauth2.state.cookie.cookie-domain

micronaut.security.oauth2.pkce.cookie.cookie-domain

java.lang.String

Sets the domain name of this Cookie. Default value (null).

micronaut.security.oauth2.state.cookie.cookie-secure

micronaut.security.oauth2.pkce.cookie.cookie-secure

java.lang.Boolean

Sets whether the cookie is secured. Defaults to the secure status of the request.

micronaut.security.oauth2.state.cookie.cookie-name

micronaut.security.oauth2.pkce.cookie.cookie-name

java.lang.String

Cookie Name. Default value {@link #DEFAULT_COOKIENAME}.

Cookie Name. Default value {@link #DEFAULT_COOKIE_NAME}.

micronaut.security.oauth2.state.cookie.cookie-path

micronaut.security.oauth2.pkce.cookie.cookie-path

java.lang.String

Sets the path of the cookie. Default value ("/").

micronaut.security.oauth2.state.cookie.cookie-http-only

micronaut.security.oauth2.pkce.cookie.cookie-http-only

java.lang.Boolean

Whether the Cookie can only be accessed via HTTP. Default value (true).

micronaut.security.oauth2.state.cookie.cookie-max-age

micronaut.security.oauth2.pkce.cookie.cookie-max-age

java.time.Duration

Sets the maximum age of the cookie. Default value (5 minutes).
-🔗 +🔗 - +@@ -1855,21 +1826,41 @@

Micronaut Security Oauth2

- + - + - + + + + + + - + + + + + + + + + + + + + + + +
Table 50. Configuration Properties for OauthClientConfigurationProperties$AuthorizationEndpointConfigurationPropertiesTable 50. Configuration Properties for CookieNoncePersistenceConfiguration

micronaut.security.oauth2.clients.*.authorization.url

micronaut.security.oauth2.openid.nonce.cookie.cookie-domain

java.lang.String

The endpoint URL

Sets the domain name of this Cookie. Default value (null).

micronaut.security.oauth2.clients.*.authorization.code-challenge-method

micronaut.security.oauth2.openid.nonce.cookie.cookie-secure

java.lang.Boolean

Sets whether the cookie is secured. Defaults to the secure status of the request.

micronaut.security.oauth2.openid.nonce.cookie.cookie-name

java.lang.String

Code Challenge Method to use for PKCE.

Cookie Name. Default value {@link #DEFAULT_COOKIENAME}.

micronaut.security.oauth2.openid.nonce.cookie.cookie-path

java.lang.String

Sets the path of the cookie. Default value ("/").

micronaut.security.oauth2.openid.nonce.cookie.cookie-http-only

java.lang.Boolean

Whether the Cookie can only be accessed via HTTP. Default value (true).

micronaut.security.oauth2.openid.nonce.cookie.cookie-max-age

java.time.Duration

Sets the maximum age of the cookie. Default value (5 minutes).
-🔗 +🔗 - +@@ -1884,16 +1875,21 @@

Micronaut Security Oauth2

- + - + + + + + +
Table 51. Configuration Properties for OauthConfigurationProperties$OpenIdConfigurationProperties$EndSessionConfigurationPropertiesTable 51. Configuration Properties for OauthClientConfigurationProperties$OpenIdClientConfigurationProperties$EndSessionConfigurationProperties

micronaut.security.oauth2.openid.end-session.redirect-uri

micronaut.security.oauth2.clients.*.openid.end-session.url

java.lang.String

The URI the OpenID provider should redirect to after logging out. Default value ("/logout").

The endpoint URL

micronaut.security.oauth2.clients.*.openid.end-session.enabled

boolean

The end session enabled flag. Default value (true).
-🔗 +🔗 - +@@ -1908,26 +1904,42 @@

Micronaut Security Oauth2

- - - + + + - + - + + + + + + + + + + + + + + + +
Table 52. Configuration Properties for OauthClientConfigurationProperties$ClientCredentialsConfigurationProperties$HeaderTokenPropagatorConfigurationPropertiesTable 52. Configuration Properties for OauthClientConfigurationProperties$ClientCredentialsConfigurationProperties

micronaut.security.oauth2.clients.*.client-credentials.header-propagation.enabled

boolean

Enable {@link ClientCredentialsHeaderTokenPropagatorConfiguration}. Default value (true).

micronaut.security.oauth2.clients.*.client-credentials.service-id-regex

java.lang.String

micronaut.security.oauth2.clients.*.client-credentials.header-propagation.prefix

micronaut.security.oauth2.clients.*.client-credentials.uri-regex

java.lang.String

micronaut.security.oauth2.clients.*.client-credentials.header-propagation.header-name

micronaut.security.oauth2.clients.*.client-credentials.advanced-expiration

java.time.Duration

Number of seconds for a token obtained via client credentials grant to be considered expired + prior to its expiration date. Default value (30 seconds).

micronaut.security.oauth2.clients.*.client-credentials.scope

java.lang.String

Scope to be requested in the client credentials request. Defaults to none.

micronaut.security.oauth2.clients.*.client-credentials.enabled

boolean

Enables ClientCredentialsClient. Default value true

micronaut.security.oauth2.clients.*.client-credentials.additional-request-params

java.util.Map
-🔗 +🔗 - +@@ -1942,22 +1954,29 @@

Micronaut Security Oauth2

- - - + + + - + - + + + + + +
Table 53. Configuration Properties for DefaultStateConfigurationTable 53. Configuration Properties for OauthConfigurationProperties$OpenIdConfigurationProperties$AdditionalClaimsConfigurationProperties

micronaut.security.oauth2.state.persistence

java.lang.String

Sets the mechanism to persist the state for later retrieval for validation. - Supported values ("session", "cookie"). Default value ("cookie").

micronaut.security.oauth2.openid.additional-claims.jwt

boolean

Set to true if the original JWT from the provider should be included in the Micronaut JWT. + Default value (false).

micronaut.security.oauth2.state.enabled

micronaut.security.oauth2.openid.additional-claims.access-token

boolean

Sets whether a state parameter will be sent. Default (true).

Set to true if the original access token from the provider should be included in the Micronaut JWT. + Default value (false).

micronaut.security.oauth2.openid.additional-claims.refresh-token

boolean

Set to true if the original refresh token from the provider should be included in the Micronaut JWT. + Default value (false).
-🔗 +🔗 - +@@ -1972,42 +1991,36 @@

Micronaut Security Oauth2

- + - + - + - - - - - - + - - - + + + - - - + + + - - - + + +
Table 54. Configuration Properties for OauthClientConfigurationProperties$ClientCredentialsConfigurationPropertiesTable 54. Configuration Properties for OauthClientConfigurationProperties

micronaut.security.oauth2.clients.*.client-credentials.service-id-regex

micronaut.security.oauth2.clients.*.client-id

java.lang.String

OAuth 2.0 client id.

micronaut.security.oauth2.clients.*.client-credentials.uri-regex

micronaut.security.oauth2.clients.*.client-secret

java.lang.String

micronaut.security.oauth2.clients.*.client-credentials.advanced-expiration

java.time.Duration

Number of seconds for a token obtained via client credentials grant to be considered expired - prior to its expiration date. Default value (30 seconds).

OAuth 2.0 client secret.

micronaut.security.oauth2.clients.*.client-credentials.scope

java.lang.String

Scope to be requested in the client credentials request. Defaults to none.

micronaut.security.oauth2.clients.*.enabled

boolean

Sets whether the client is enabled. Default value (true).

micronaut.security.oauth2.clients.*.client-credentials.enabled

boolean

Enables ClientCredentialsClient. Default value true

micronaut.security.oauth2.clients.*.scopes

java.util.List

Requested scopes. If not specified for OAuth 2.0 clients using OpenID Connect it defaults to profile, email and idtoken

micronaut.security.oauth2.clients.*.client-credentials.additional-request-params

java.util.Map

micronaut.security.oauth2.clients.*.grant-type

GrantType

OAuth 2.0 grant type. Default value (authorization_code).
-🔗 +🔗 - +@@ -2022,22 +2035,9 @@

Micronaut Security Oauth2

- - - - - - - - - - - - - + + +
Table 55. Configuration Properties for OauthConfigurationProperties$OpenIdConfigurationProperties$AdditionalClaimsConfigurationPropertiesTable 55. Configuration Properties for OauthClientConfigurationProperties$OpenIdClientConfigurationProperties$UserInfoEndpointConfigurationProperties

micronaut.security.oauth2.openid.additional-claims.jwt

boolean

Set to true if the original JWT from the provider should be included in the Micronaut JWT. - Default value (false).

micronaut.security.oauth2.openid.additional-claims.access-token

boolean

Set to true if the original access token from the provider should be included in the Micronaut JWT. - Default value (false).

micronaut.security.oauth2.openid.additional-claims.refresh-token

boolean

Set to true if the original refresh token from the provider should be included in the Micronaut JWT. - Default value (false).

micronaut.security.oauth2.clients.*.openid.user-info.url

java.lang.String

The endpoint URL