Skip to content

Comments

[Security] Add documentation chapter for OAuth2TokenHandler#22029

Open
welcoMattic wants to merge 1 commit intosymfony:7.3from
welcoMattic:oauth2tokenhandler
Open

[Security] Add documentation chapter for OAuth2TokenHandler#22029
welcoMattic wants to merge 1 commit intosymfony:7.3from
welcoMattic:oauth2tokenhandler

Conversation

@welcoMattic
Copy link
Member

@welcoMattic welcoMattic commented Feb 20, 2026

Related to symfony/symfony#50027 and symfony/symfony#63439

It documents configuration and use case for OAuth2TokenHandler, related to OAuth2 Token Introspection endpoint.

cc @Spomky

@carsonbot carsonbot added this to the 7.4 milestone Feb 20, 2026
@welcoMattic welcoMattic changed the base branch from 7.4 to 7.3 February 20, 2026 13:32
MrYamous
MrYamous reviewed Feb 20, 2026
View reviewed changes
security/access_token.rst
3) Configure the Oauth2TokenHandler
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Symfony provides a generic ``Oauth2TokenHandler`` that calls the configured token introspection endpoint to validate the token and retrieve the user information from it.
Copy link
Contributor

@MrYamous MrYamous Feb 20, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The Oauth2TokenHandler class is marked internal, do we want to mention it ?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@MrYamous MrYamous MrYamous left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

Security Status: Needs Review

Projects

None yet

Milestone

7.4

Development

Successfully merging this pull request may close these issues.

3 participants

@welcoMattic @MrYamous @carsonbot