OAuth2
Distributed authentication and authorization protocols
I. Introduction
OAuth2.0
Service providers covering the two services, namely Authorized Service ( Authorization Server
also known as certification service) and Resource Service ( Resource Server
).
Authorization Service ( Authorization Server
) shall contain the access terminal and login to authenticate validity of the user and issue a token
function, a request for a token endpoints Spring MVC
were controllers, following is a dot arrangement authentication service must be achieved:
-
AuthorizationEndpoint service to an authentication request, the default
URL
:/oauth/authorize
-
TokenEndpoint serve the access token request. Default
URL
:/oauth.token
Resource Service (
Resource Server
) should include protection of resources, illegal and retrograde request you to intercept, to requesttoken
parsing authentication, etc., the following filter is used to implementOAuth2.0
resource services: -
OAuth2AuthenticationProcessingFilter used to request