-
Notifications
You must be signed in to change notification settings - Fork 0
BaseClientDetails
egaumer edited this page Feb 19, 2013
·
2 revisions
Back to Implementation Details
The BaseClientDetails class holds detailed information about OAuth clients. This information is stored under /sys/clients and stores client authorization details pertaining to the OAuth specification.
When a client attempts to access an OAuth protected resource, the authorization specific details such as scope, grant_type, authorities, and client_id are obtained through the EvoClientDetailsService which returns a BaseClientDetails object.
NOTE that a user/client must first authenticate and therefore must have a valid account. See EvoUser for authentication specifics. At this time, the client_id must also match a valid username.
Implements ClientDetails
{
"client_id": "client1",
"resourceIds": ["resource1", "resource2"],
"clientSecret": "e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855", # SHA-2 encrypted
"scopes": ["read", "write"],
"authorizedGrantTypes": ["client_credentials", "password"],
"authorities": ["ROLE_CLIENT", "ROLE_USER"],
"accessTokenValiditySeconds": 3600,
"refreshTokenValiditySeconds": 3600
}