banterCZ
Reputation: 1869
OAuth2TokenExchangeAuthenticationConverter does not support id_token token type
Spring Authorization Server supports the Exchange Token feature; so far so good.
According to RFC 8693, the token type id_token is valid, but not supported by OAuth2TokenExchangeAuthenticationConverter, which accepts only jwt and access_token. What is the reasoning behind this architectural decision?
Moreover, the class is final without any extension points. Is there an elegant way to customize it besides implementing the whole AuthenticationConverter?
The same situation is for OAuth2TokenExchangeAuthenticationProvider.
Upvotes: 0
Views: 55
Answers (0)
Related Questions
- What does "Could not find or load main class" mean?
- Does Java have support for multiline strings?
- What do 3 dots next to a parameter type mean in Java?
- In detail, how does the 'for each' loop work in Java?
- Why does this code using random strings print "hello world"?
- What does 'synchronized' mean?
- Does a finally block always get executed in Java?
- Why does Java have transient fields?