Skip to content

Token Introspecting Client Config

Jump to bottom Edit New page
srmoore edited this page Jul 8, 2013 · 7 revisions

The following code sets up a filter to take a token passed in to the web application, and fill in the details as an OAuth2Authentication object by introspecting it with the IDP.

In applicationContext.xml:

    <oauth:resource-server id="resourceServerFilter" token-services-ref="IntrospectingService" />
    <bean id="IntrospectingService" class="org.mitre.oauth2.introspectingfilter.IntrospectingTokenService">
        <property name="clientId" value="yourClientId"/>
        <property name="clientSecret" value="yourClientSecret"/>
        <property name="introspectionUrl" value="${idp.url}introspect"/>
    </bean>

Software is available under the Apache 2.0 license. Documentation available under the Creative Commons 3.0 By-NC license.

Links

Development

Clients

Protected Resources

Servers

Clone this wiki locally