Using encoded oauth2 client secrets

We'd like to be able to use encoded secrets for our oauth2 clients so that they are not stored in the clear in our database.

I have a password encoder setup for my client and user authentication managers, but only in the user authentication manager does it appear to be used.

Is it possible to use encoded secrets for clients? If so, how does one go about wiring it up?

There should be nothing stopping you from encoding the client secrets in the backend (whatever ClientDetailsService you are using). Then they need to be decoded when the authentication happens, so in your filter. There's an example here: https://github.com/cloudfoundry/uaa/...ng-servlet.xml.