00016 table columns description
lishengzhao
parent
ba2e8bc1a1
commit
babf49a2ee
|
|
@ -9,8 +9,10 @@
|
|||
<div class="container">
|
||||
<h2>spring-oauth-server 数据库表说明</h2>
|
||||
|
||||
<p>以下对<code>oauth.ddl</code>中的表字及段进行说明, 内容包括字段说明与使用场合</p>
|
||||
<table class="table table-bordered">
|
||||
<p>以下对<a target="_blank"
|
||||
href="http://git.oschina.net/shengzhao/spring-oauth-server">spring-oauth-server</a>项目中的<code>oauth.ddl</code>文件(位于/others/database目录)中的表字及段进行说明,
|
||||
内容包括字段说明与使用场合</p>
|
||||
<table class="table table-bordered table-hover">
|
||||
<thead>
|
||||
<tr>
|
||||
<th style="width:15%;">表名</th>
|
||||
|
|
@ -45,16 +47,37 @@
|
|||
<tr>
|
||||
<td>client_secret</td>
|
||||
<td>
|
||||
|
||||
用于指定客户端(client)的访问密匙; 在注册时必须填写(也可由服务端自动生成).
|
||||
<br/>
|
||||
对于不同的grant_type,该字段都是必须的. 在实际应用中的另一个名称叫appSecret,与client_secret是同一个概念.
|
||||
</td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td>scope</td>
|
||||
<td></td>
|
||||
<td>
|
||||
指定客户端申请的权限范围,可选值包括<em>read</em>,<em>write</em>,<em>trust</em>;若有多个权限范围用逗号(,)分隔,如: "read,write".
|
||||
<br/>
|
||||
scope的值与<code>security.xml</code>中配置的<code>‹intercept-url</code>的<code>access</code>属性有关系.
|
||||
如<code>‹intercept-url</code>的配置为
|
||||
<pre>‹intercept-url pattern="/m/**" access="ROLE_MOBILE,SCOPE_READ"/></pre>
|
||||
则说明访问该URL时的客户端必须有<em>read</em>权限范围.
|
||||
<em>write</em>的配置值为<em>SCOPE_WRITE</em>, <em>trust</em>的配置值为<em>SCOPE_TRUST</em>.
|
||||
<br/>
|
||||
在实际应该中, 该值一般由服务端指定, 常用的值为<em>read,write</em>.
|
||||
</td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td>authorized_grant_types</td>
|
||||
<td></td>
|
||||
<td>
|
||||
指定客户端支持的grant_type,可选值包括<em>authorization_code</em>,<em>password</em>,<em>refresh_token</em>,<em>implicit</em>,<em>client_credentials</em>,
|
||||
若支持多个grant_type用逗号(,)分隔,如: "authorization_code,password".
|
||||
<br/>
|
||||
在实际应用中,当注册时,该字段是一般由服务器端指定的,而不是由申请者去选择的,最常用的grant_type组合有:
|
||||
"authorization_code,refresh_token"(针对通过浏览器访问的客户端);
|
||||
"password,refresh_token"(针对移动设备的客户端).
|
||||
<br/>
|
||||
<em>implicit</em>与<em>client_credentials</em>在实际中很少使用.
|
||||
</td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td>web_server_redirect_uri</td>
|
||||
|
|
@ -114,6 +137,72 @@
|
|||
<td>client_id</td>
|
||||
<td></td>
|
||||
</tr>
|
||||
<!-- oauth_access_token -->
|
||||
<tr>
|
||||
<td rowspan="8">oauth_access_token</td>
|
||||
<td>create_time</td>
|
||||
<td>数据的创建时间,精确到秒,由数据库在插入数据时取当前系统时间自动生成(扩展字段)</td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td>token_id</td>
|
||||
<td></td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td>token</td>
|
||||
<td></td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td>authentication_id</td>
|
||||
<td></td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td>user_name</td>
|
||||
<td></td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td>client_id</td>
|
||||
<td></td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td>authentication</td>
|
||||
<td></td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td>refresh_token</td>
|
||||
<td></td>
|
||||
</tr>
|
||||
<!-- oauth_refresh_token -->
|
||||
<tr>
|
||||
<td rowspan="4">oauth_refresh_token</td>
|
||||
<td>create_time</td>
|
||||
<td>数据的创建时间,精确到秒,由数据库在插入数据时取当前系统时间自动生成(扩展字段)</td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td>token_id</td>
|
||||
<td></td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td>token</td>
|
||||
<td></td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td>authentication</td>
|
||||
<td></td>
|
||||
</tr>
|
||||
<!-- oauth_code -->
|
||||
<tr>
|
||||
<td rowspan="3">oauth_code</td>
|
||||
<td>create_time</td>
|
||||
<td>数据的创建时间,精确到秒,由数据库在插入数据时取当前系统时间自动生成(扩展字段)</td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td>code</td>
|
||||
<td></td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td>authentication</td>
|
||||
<td></td>
|
||||
</tr>
|
||||
</tbody>
|
||||
</table>
|
||||
</div>
|
||||
|
|
|
|||
Loading…
Reference in New Issue