Skip to content

itqpleyva/Oauth2SpringBoot

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
.settings
.settings
 
 
src
src
 
 
target
target
 
 
.classpath
.classpath
 
 
.project
.project
 
 
README.md
README.md
 
 
facelogin.png
facelogin.png
 
 
login.png
login.png
 
 
pom.xml
pom.xml
 
 
securedPage.png
securedPage.png
 
 

Repository files navigation

OAuth2Example

Four endpoints are provided

  • http://localhost:8081/
  • http://localhost:8081/secured
  • http://localhost:8081/login
  • http://localhost:8081/logout

The home page:

The facebook login page after the execution of http://localhost:8081/secured:

The secured page:

The main dependencies:

	<dependency>
		<groupId>org.springframework.boot</groupId>
		<artifactId>spring-boot-starter-oauth2-client</artifactId>
	</dependency>
	<dependency>
		<groupId>org.springframework.boot</groupId>
		<artifactId>spring-boot-starter-security</artifactId>
	</dependency>
	<dependency>
		<groupId>org.springframework.boot</groupId>
		<artifactId>spring-boot-starter-web</artifactId>
	</dependency>

Security configuration:

@Configuration
public class SecurityConfig extends WebSecurityConfigurerAdapter {
  @Override
  public void configure(HttpSecurity http) throws Exception {

  	  http
 	   .authorizeRequests()
  	    .antMatchers("/","/login","/logout","/webjars/**").permitAll()
	    .anyRequest().authenticated()
	.and()
  	  .logout()
  	  .logoutUrl("/logout")
   	   .logoutSuccessUrl("/")
     	.and()
  	  .csrf().csrfTokenRepository(CookieCsrfTokenRepository.withHttpOnlyFalse())
    	.and()
  	  .oauth2Login().loginPage("/login")
  	  .authorizationEndpoint()
	.baseUri("/login/oauth2/authorization")
	;  
}

}

Application.properties file:

spring:
security:
  oauth2:
    client:
      registration:
        facebook:
          client-id: 609915459871136 // facebook app id
          client-secret: 44e4d8eb49584adc628505d7135a1921 // facebook secret key
server:
  port: 8081

To obtain user data and printed un secured page:

@GetMapping("/secured")
public String secured(Principal principal, Model model) {
	
    if (principal != null) {
    	OAuth2AuthenticationToken oAuth2Authentication = (OAuth2AuthenticationToken) principal;
    	OAuth2User authentication =  oAuth2Authentication.getPrincipal();
        model.addAttribute("user",authentication.getAttributes().get("name").toString());
    } 

    return "secured";
}

In secured.html page:

<div class="card-body">
	<h2 class="card-title">Welcome to Secured Page <span class="text-success" th:text="${user}"></span></h2>	
	<div class="mt-4">
		<a class="btn btn-danger" href="/logout">logout</a>
	</div>
</div>

About

Example of Oauth2 implementation using spring boot

Topics

oauth2 spring-boot oauth2-provider oauth2-authentication

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages