Skip to content

Commit 2d8d568

Browse files
jgrandjajgrandja
committed
Polish oauth2-integration sample
Issue gh-267
1 parent 85d6a12 commit 2d8d568

File tree

3 files changed

+18
-8
lines changed

3 files changed

+18
-8
lines changed

samples/boot/oauth2-integration/README.adoc

+1-1
Original file line numberDiff line numberDiff line change
@@ -8,4 +8,4 @@ This sample integrates `spring-security-oauth2-client` and `spring-security-oaut
88
** *IMPORTANT:* Make sure to modify your `/etc/hosts` file to avoid problems with session cookie overwrites between `client` and `authorizationserver`. Simply add the entry `127.0.0.1 auth-server`
99
* Run Resource Server -> `./gradlew -b samples/boot/oauth2-integration/resourceserver/spring-security-samples-boot-oauth2-integrated-resourceserver.gradle bootRun`
1010
* Run Client -> `./gradlew -b samples/boot/oauth2-integration/client/spring-security-samples-boot-oauth2-integrated-client.gradle bootRun`
11-
* Go to `http://localhost:8080`
11+
* Go to `http://127.0.0.1:8080`

samples/boot/oauth2-integration/authorizationserver/src/main/java/sample/config/AuthorizationServerConfig.java

+14-4
Original file line numberDiff line numberDiff line change
@@ -25,7 +25,10 @@
2525

2626
import org.springframework.context.annotation.Bean;
2727
import org.springframework.context.annotation.Configuration;
28-
import org.springframework.context.annotation.Import;
28+
import org.springframework.core.Ordered;
29+
import org.springframework.core.annotation.Order;
30+
import org.springframework.security.config.Customizer;
31+
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
2932
import org.springframework.security.config.annotation.web.configuration.OAuth2AuthorizationServerConfiguration;
3033
import org.springframework.security.oauth2.core.AuthorizationGrantType;
3134
import org.springframework.security.oauth2.core.ClientAuthenticationMethod;
@@ -34,15 +37,22 @@
3437
import org.springframework.security.oauth2.server.authorization.client.RegisteredClient;
3538
import org.springframework.security.oauth2.server.authorization.client.RegisteredClientRepository;
3639
import org.springframework.security.oauth2.server.authorization.config.ProviderSettings;
40+
import org.springframework.security.web.SecurityFilterChain;
3741

3842
/**
3943
* @author Joe Grandja
4044
* @since 0.0.1
4145
*/
4246
@Configuration(proxyBeanMethods = false)
43-
@Import(OAuth2AuthorizationServerConfiguration.class)
4447
public class AuthorizationServerConfig {
4548

49+
@Bean
50+
@Order(Ordered.HIGHEST_PRECEDENCE)
51+
public SecurityFilterChain authorizationServerSecurityFilterChain(HttpSecurity http) throws Exception {
52+
OAuth2AuthorizationServerConfiguration.applyDefaultSecurity(http);
53+
return http.formLogin(Customizer.withDefaults()).build();
54+
}
55+
4656
// @formatter:off
4757
@Bean
4858
public RegisteredClientRepository registeredClientRepository() {
@@ -53,8 +63,8 @@ public RegisteredClientRepository registeredClientRepository() {
5363
.authorizationGrantType(AuthorizationGrantType.AUTHORIZATION_CODE)
5464
.authorizationGrantType(AuthorizationGrantType.REFRESH_TOKEN)
5565
.authorizationGrantType(AuthorizationGrantType.CLIENT_CREDENTIALS)
56-
.redirectUri("http://localhost:8080/login/oauth2/code/messaging-client-oidc")
57-
.redirectUri("http://localhost:8080/authorized")
66+
.redirectUri("http://127.0.0.1:8080/login/oauth2/code/messaging-client-oidc")
67+
.redirectUri("http://127.0.0.1:8080/authorized")
5868
.scope(OidcScopes.OPENID)
5969
.scope("message.read")
6070
.scope("message.write")

samples/boot/oauth2-integration/client/src/main/resources/application.yml

+3-3
Original file line numberDiff line numberDiff line change
@@ -21,15 +21,15 @@ spring:
2121
client-id: messaging-client
2222
client-secret: secret
2323
authorization-grant-type: authorization_code
24-
redirect-uri: "{baseUrl}/login/oauth2/code/{registrationId}"
24+
redirect-uri: "http://127.0.0.1:8080/login/oauth2/code/{registrationId}"
2525
scope: openid
2626
client-name: messaging-client-oidc
2727
messaging-client-authorization-code:
2828
provider: spring
2929
client-id: messaging-client
3030
client-secret: secret
3131
authorization-grant-type: authorization_code
32-
redirect-uri: "{baseUrl}/authorized"
32+
redirect-uri: "http://127.0.0.1:8080/authorized"
3333
scope: message.read,message.write
3434
client-name: messaging-client-authorization-code
3535
messaging-client-client-credentials:
@@ -44,4 +44,4 @@ spring:
4444
issuer-uri: http://auth-server:9000
4545

4646
messages:
47-
base-uri: http://localhost:8090/messages
47+
base-uri: http://127.0.0.1:8090/messages

0 commit comments

Comments
 (0)