oauth2authserver

Can be used in:

serviceProxy, api, proxy, global, chainDef, for, stompProxy, if, registration, wsStompReassembler, internal, interceptor, chain, bean, transport and soapProxy

Attributes

NameRequiredDefaultDescriptionExamples
consentFile false - - -
path false - - -
issueNonSpecIdTokens false false
 Issue id-tokens also in credentials-flow and password-flow . The OIDC specification, which brings in id-tokens, does not handle those flows, which is why the default value is false.
-
issueNonSpecRefreshTokens false false
 Issue refresh-tokens also in credentials-flow. The OAuth2 specification does not issue refresh tokens in the credentials-flow, which is why the default value is false.
-
location false - Base path under which the login dialog will be served.
logindialog
exposeUserCredentialsToSession false - - -
message false - - -
issuer true - - -

Child Elements

ElementsDescriptionCardinality
cachingUserDataProvider 0..1
ldapUserDataProvider 0..1
unifyingUserDataProvider 0..1
sessionManager 0..1

Other optional Child Elements

jdbcUserDataProvider, staticUserDataProvider, customStatementJdbcUserDataProvider, fileUserDataProvider, accountBlocker, staticClientList, bearerToken, bearerJwtToken, refresh, claims