spring-oauth2

问题 I am trying to authenticate a user from facebook and store it's username and provide custom permission to subset of users who will be admin for my application. My question is, How do I provide custom roles like "Admin" to the authenticated and authorize it in Oauth2Client. @Configuration class WebSecurityConfiguration extends GlobalAuthenticationConfigurerAdapter { @Autowired UserRepository userRepository; @Override public void init(AuthenticationManagerBuilder auth) throws Exception { auth

问题 I am really new to OAuth2 and trying to build one server in roles auth.server for authorizing users and one keeping a protected resource... I've got issues to secure with the ResourceServerConfigurerAdapter. It seems like he is ignoring all it's roles fetching form userInfoUrl... so here the code: AuthServer @SpringBootApplication @EnableAuthorizationServer @EnableResourceServer @RestController public class Oa2AuthServerApplication { @RequestMapping("/user") public Principal user(Principal

问题 I am using oauth2 with springboot 1.5.6.RELEASE and I am using jdbc authentication with oauth2. I added the property: security.oauth2.resource.filter-order = 3 1- AuthorizationServerConfigurerAdapter: @Configuration @EnableAuthorizationServer public class OAuth2Config extends AuthorizationServerConfigurerAdapter { @Autowired @Qualifier("authenticationManagerBean") @Lazy private AuthenticationManager authenticationManager; @Autowired private Environment env; @Override public void configure

问题 I try to modify existing example - Tonr2 and Sparklr2. Also I viewed this tutorial based on Spring Boot Spring Boot OAuth2. I try to build application like in Tonr2 example but without first login (on tonr2). I just need one Authentication on Sparklr2 side. I do this: @Bean public OAuth2ProtectedResourceDetails sparklr() { AuthorizationCodeResourceDetails details = new AuthorizationCodeResourceDetails(); details.setId("sparklr/tonr"); details.setClientId("tonr"); details.setTokenName("oauth

问题 In my Spring Boot application I'm trying to configure OAuth2 implicit flow. For this purpose I'm trying to configure custom login form. This is my config: @Configuration public class WebMvcConfig extends WebMvcConfigurerAdapter { @Override public void configureDefaultServletHandling(DefaultServletHandlerConfigurer configurer) { configurer.enable(); } @Override public void addViewControllers(ViewControllerRegistry registry) { registry.addViewController("/").setViewName("index"); registry

问题 According the tutorial Spring Boot and OAuth2 I have following project structure: And following source code: SocialApplication.class: @SpringBootApplication @RestController @EnableOAuth2Client @EnableAuthorizationServer @Order(200) public class SocialApplication extends WebSecurityConfigurerAdapter { @Autowired OAuth2ClientContext oauth2ClientContext; @RequestMapping({ "/user", "/me" }) public Map<String, String> user(Principal principal) { Map<String, String> map = new LinkedHashMap<>(); map

问题 i face a problem when i using spring cloud gateway is if any dependency call spring-boot-starter-tomcat directly or recursively it will not work because it will start the embedded tomcat server not the netty server that spring cloud gateway use i started to solve this problem by excluding this dependency <exclusions> <exclusion> <groupId>org.springframework.boot</groupId> <artifactId>spring-boot-starter-tomcat</artifactId> </exclusion> </exclusions> the spring cloud gateway worked

问题 Following this Spring tutorial I've added the following bean to my configuration logic. Note that I am using Spring Boot. If you are using Spring Boot, it is recommended to just declare a WebMvcConfigurer bean as following: @Bean public WebMvcConfigurer corsConfigurer() { return new WebMvcConfigurer() { @Override public void addCorsMappings(CorsRegistry registry) { registry.addMapping("/**") // Just slightly modified .allowedMethods("HEAD", "GET", "PUT", "POST", "DELETE", "PATCH", "OPTIONS")

问题 I am configuring an OAuth2 authorization server in a Spring project. Here is configuration. @Override public void configure(ClientDetailsServiceConfigurer clients) throws Exception { clients.jdbc(dataSource) .withClient("user") .secret("secret") .scopes("read", "write") .autoApprove(true) .authorizedGrantTypes( "password","authorization_code", "refresh_token") } The problem is that each time I restart application, it tries to add those clients in database, which I don't want. I am getting the

问题 We have a dedicated authorization server extending AuthorizationServerConfigurerAdapter, where we have set authorities overriding void configure(ClientDetailsServiceConfigurer clients) method. @Configuration @EnableAuthorizationServer protected static class OAuth2Config extends AuthorizationServerConfigurerAdapter { @Value('${oauth.clientId}') private String clientId @Value('${oauth.secret:}') private String secret @Value('${oauth.resourceId}') private String resourceId @Autowired @Qualifier(