Clarify OAuth 2.0 Resource Server Multitenancy Snippet

Closes spring-projectsgh-10233
ahmedmq · Sep 3, 2021 · 989c141 · 989c141
1 parent f169137
commit 989c141
Showing 1 changed file with 13 additions and 18 deletions.
diff --git a/docs/manual/src/docs/asciidoc/_includes/servlet/oauth2/oauth2-resourceserver.adoc b/docs/manual/src/docs/asciidoc/_includes/servlet/oauth2/oauth2-resourceserver.adoc
@@ -2336,35 +2336,30 @@ If this decision must be made at request-time, then you can use an `Authenticati
 [source,java,role="primary"]
 ----
 @Bean
-AuthenticationManagerResolver<HttpServletRequest> tokenAuthenticationManagerResolver() {
-    BearerTokenResolver bearerToken = new DefaultBearerTokenResolver();
-    JwtAuthenticationProvider jwt = jwt();
-    OpaqueTokenAuthenticationProvider opaqueToken = opaqueToken();
-
-    return request -> {
-        if (useJwt(request)) {
-            return jwt::authenticate;
-        } else {
-            return opaqueToken::authenticate;
-        }
-    }
+AuthenticationManagerResolver<HttpServletRequest> tokenAuthenticationManagerResolver
+        (JwtDecoder jwtDecoder, OpaqueTokenIntrospector opaqueTokenIntrospector) {
+    AuthenticationManager jwt = new ProviderManager(new JwtAuthenticationProvider(jwtDecoder));
+    AuthenticationManager opaqueToken = new ProviderManager(
+            new OpaqueTokenAuthenticationProvider(opaqueTokenIntrospector));
+    return (request) -> useJwt(request) ? jwt : opaqueToken;
 }
 ----
 
 .Kotlin
 [source,kotlin,role="secondary"]
 ----
 @Bean
-fun tokenAuthenticationManagerResolver(): AuthenticationManagerResolver<HttpServletRequest> {
-    val bearerToken: BearerTokenResolver = DefaultBearerTokenResolver()
-    val jwt: JwtAuthenticationProvider = jwt()
-    val opaqueToken: OpaqueTokenAuthenticationProvider = opaqueToken()
+fun tokenAuthenticationManagerResolver
+        (jwtDecoder: JwtDecoder, opaqueTokenIntrospector: OpaqueTokenIntrospector):
+        AuthenticationManagerResolver<HttpServletRequest> {
+    val jwt = ProviderManager(JwtAuthenticationProvider(jwtDecoder))
+    val opaqueToken = ProviderManager(OpaqueTokenAuthenticationProvider(opaqueTokenIntrospector));
 
     return AuthenticationManagerResolver { request ->
         if (useJwt(request)) {
-            AuthenticationManager { jwt.authenticate(it) }
+            jwt
         } else {
-            AuthenticationManager { opaqueToken.authenticate(it) }
+            opaqueToken
         }
     }
 }