authenticateOAuth2Async
Signature
type AsyncAuthenticator[T] = Credentials => Future[Option[T]]
def authenticateOAuth2Async[T](realm: String, authenticator: AsyncAuthenticator[T]): AuthenticationDirective[T]
Description
Wraps the inner route with OAuth Bearer Token authentication support using a given AsyncAuthenticator[T]
AsyncAuthenticator<T>
- function from Optional<ProvidedCredentials>
to CompletionStage<Optional<T>>
.
Provides support for extracting the so-called “Bearer Token” from the Authorization
Authorization
HTTP Header, which is used to initiate an OAuth2 authorization.
This directive does not implement the complete OAuth2 protocol, but instead enables implementing it, by extracting the needed token from the HTTP headers.
Given a function returning Some[T]
a non empty Optional<T>
upon successful authentication and None
an empty Optional<T>
otherwise, respectively applies the inner route or rejects the request with a AuthenticationFailedRejection
AuthenticationFailedRejection
rejection, which by default is mapped to an 401 Unauthorized
response.
See also authenticateOAuth2 if the authorization operation is rather quick, and does not have to execute asynchronously.
See Credentials and password timing attacks for details about verifying the secret.
For more information on how OAuth2 works see RFC 6750.
Example
Usage in code is exactly the same as authenticateBasicAsync, with the difference that one must validate the token as OAuth2 dictates (which is currently not part of Akka HTTP itself).