Package org.forgerock.openig.filter.oauth2

This package contains the OAuth2 Token validation filter that acts as an OAuth 2 Resource Server.
  • It ensure that there is an existing bearer access token in the request's headers.
  • It resolves it against a given Authorization Server (that must provide a token-info endpoint).
    • Produced AccessTokenInfo are cached for future re-use.
    • Produced AccessTokenInfo are stored in the AttributesContext for downstream handlers/filters.
  • It performs token validation: checking expiration time and required scopes compliance.