pekko/akka-docs-dev/rst/scala/http/routing-dsl/directives/security-directives/authenticateOAuth2Async.rst

.. _-authenticateOAuth2Async-:

authenticateOAuth2Async
=======================

Wraps the inner route with OAuth Bearer Token authentication support using a given ``AsyncAuthenticator[T]``.

Signature
---------

.. includecode:: /../../akka-http/src/main/scala/akka/http/scaladsl/server/directives/SecurityDirectives.scala#authenticator

.. includecode2:: /../../akka-http/src/main/scala/akka/http/scaladsl/server/directives/SecurityDirectives.scala
   :snippet: authenticateOAuth2Async

Description
-----------

Provides support for extracting the so-called "*Bearer Token*" from the :class:`Authorization` HTTP Header,
which is used to initiate an OAuth2 authorization.

.. warning::
  This directive does not implement the complete OAuth2 protocol, but instead enables implementing it,
  by extracting the needed token from the HTTP headers.

Given a function returning ``Some[T]`` upon successful authentication and ``None`` otherwise,
respectively applies the inner route or rejects the request with a :class:`AuthenticationFailedRejection` rejection,
which by default is mapped to an ``401 Unauthorized`` response.

See also :ref:`-authenticateOAuth2-` if the authorization operation is rather quick, and does not have to execute asynchronously.

For more information on how OAuth2 works see `RFC 6750`_.

.. _RFC 6750: https://tools.ietf.org/html/rfc6750


Example
-------

Usage in code is exactly the same as :ref:`-authenticateBasicAsync-`,
with the difference that one must validate the token as OAuth2 dictates (which is currently not part of Akka HTTP itself).
+htp #18496 add missing directive documentation (scala) 2015-10-01 13:25:41 +02:00			`.. _-authenticateOAuth2Async-:`

			`authenticateOAuth2Async`
			`=======================`

=doc,htpi #18496 more security directives docs 2015-10-08 15:20:17 +02:00			Wraps the inner route with OAuth Bearer Token authentication support using a given ``AsyncAuthenticator[T]``.
+htp #18496 add missing directive documentation (scala) 2015-10-01 13:25:41 +02:00
			`Signature`
			`---------`

			`.. includecode:: /../../akka-http/src/main/scala/akka/http/scaladsl/server/directives/SecurityDirectives.scala#authenticator`

			`.. includecode2:: /../../akka-http/src/main/scala/akka/http/scaladsl/server/directives/SecurityDirectives.scala`
			`:snippet: authenticateOAuth2Async`

			`Description`
			`-----------`

=doc,htpi #18496 more security directives docs 2015-10-08 15:20:17 +02:00			Provides support for extracting the so-called "Bearer Token" from the :class:`Authorization` HTTP Header,
			`which is used to initiate an OAuth2 authorization.`

			`.. warning::`
			`This directive does not implement the complete OAuth2 protocol, but instead enables implementing it,`
			`by extracting the needed token from the HTTP headers.`

			Given a function returning ``Some[T]`` upon successful authentication and ``None`` otherwise,
			respectively applies the inner route or rejects the request with a :class:`AuthenticationFailedRejection` rejection,
			which by default is mapped to an ``401 Unauthorized`` response.

			See also :ref:`-authenticateOAuth2-` if the authorization operation is rather quick, and does not have to execute asynchronously.

			For more information on how OAuth2 works see `RFC 6750`_.

			`.. _RFC 6750: https://tools.ietf.org/html/rfc6750`

+htp #18496 add missing directive documentation (scala) 2015-10-01 13:25:41 +02:00
			`Example`
			`-------`

=doc,htpi #18496 more security directives docs 2015-10-08 15:20:17 +02:00			Usage in code is exactly the same as :ref:`-authenticateBasicAsync-`,
			`with the difference that one must validate the token as OAuth2 dictates (which is currently not part of Akka HTTP itself).`