| Class | Description |
|---|---|
| ClientAuthenticationFailureFactory |
Produces exceptions to handle the invalid_client error of the OAuth2 specification, particularly
in handling the error code returned.
|
| Exception | Description |
|---|---|
| AccessDeniedException |
Thrown when the resource owner authentication fails.
|
| AuthorizationDeclinedException |
An exception representing a declined authorization request from the user in a device code flow.
|
| AuthorizationPendingException |
An exception representing a pending authorization request in a device code flow.
|
| BadRequestException |
Thrown when the request is malformed.
|
| CsrfException |
Thrown when a CSRF attack is detected.
|
| DuplicateRequestParameterException |
Thrown when the duplicate request parameter is found.
|
| ExpiredTokenException |
Thrown when an expired access token or refresh token is used.
|
| InsufficientScopeException |
An exception for when the resource requested requires a higher scope than the token supplied provides.
|
| InteractionRequiredException |
Thrown when the OpenID connect prompt parameter enforces that the resource owner is not asked to authenticate, but
the resource owner does not have a current authenticated session.
|
| InvalidClientAuthZHeaderException |
Thrown when client authentication fails.
|
| InvalidClientException |
Thrown when either the request does not contain the client's id or the client fails to be authenticated.
|
| InvalidCodeException |
Thrown when an expired authorization code is used to request an access token.
|
| InvalidGrantException |
Thrown when the requested grant type is not supported/
|
| InvalidRequestException |
Thrown when the request is missing any required parameters or is otherwise malformed.
|
| InvalidScopeException |
Thrown when the requested scope is invalid, unknown, or malformed.
|
| InvalidTokenException |
Thrown when a access token is used which does not exist on the OAuth2 provider.
|
| LoginRequiredException |
Thrown when the authentication of the resource owner fails.
|
| NotFoundException |
Thrown when a user cannot be found.
|
| OAuth2Exception |
Base exception for all OAuth2 exceptions.
|
| OAuth2ProviderNotFoundException |
Thrown when the oauth2 provider is not found.
|
| RedirectUriMismatchException |
Thrown when the redirect uri on the request does not match the redirect uri registered for the client.
|
| RelativeRedirectUriException |
Thrown when the redirect uri on the request is not an absolute uri.
|
| ResourceOwnerAuthenticationRequired |
Thrown when the resource owner needs to be authenticated before the authorization can be granted to a OAuth2 client.
|
| ResourceOwnerConsentRequired |
Thrown when the resource owner's consent is required before the authorization can be granted to a OAuth2 client.
|
| ResourceOwnerConsentRequiredException |
Thrown when the OpenID Connect prompt parameter enforces that the resource owner is not asked for consent, but the
resource owner's consent has not been previously stored.
|
| ServerException |
Thrown when any internal server error occurs.
|
| UnauthorizedClientException |
Thrown when client authorization fails.
|
| UnsupportedGrantTypeException |
Thrown when the requested grant type is not supported by the OAuth2 provider.
|
| UnsupportedResponseTypeException |
Thrown when the requested response type is not supported by either the client or the OAuth2 provider.
|
Copyright © 2010–2025 Open Identity Platform Community. All rights reserved.