Spring/spring-boot
Spring/spring-boot
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-boot.git synced 2024-08-29 03:06:45 +08:00
Code Issues Packages Projects Releases Wiki Activity

Document audience support in Oauth2 resource server

Browse Source 
See gh-35286
This commit is contained in:
Bikash Adhikari 2023-05-04 11:46:57 -05:00 committed by Andy Wilkinson
parent 7c5fd06d77
commit 13c5c6efb1
1 changed files with 15 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
spring-boot-project/spring-boot-docs/src/docs/asciidoc/web/spring-security.adoc
View File

@ -223,7 +223,22 @@ Again, the same properties are applicable for both servlet and reactive applicat
Alternatively, you can define your own `OpaqueTokenIntrospector` bean for servlet applications or a `ReactiveOpaqueTokenIntrospector` for reactive applications.
To enable audience validation, set the `configprop:spring.security.oauth2.resourceserver.jwt.audiences[]` property in your Spring Boot application
configuration file. This property specifies the expected value(s) of the aud claim in JWTs.
For example, to expect the JWTs to contain an aud claim with the value `my-audience`, you can add the following line to your
application.properties file:
[source,yaml,indent=0,subs="verbatim",configprops,configblocks]
----
spring:
security:
oauth2:
resourceserver:
jwt:
audiences:
- "my-audience"
----
[[web.security.oauth2.authorization-server]]
==== Authorization Server