Skip to content
/ spring-oauth2 Public

"Securing Microservices with Spring Security and OAuth2" Manning's Live Project

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

seguri/spring-oauth2

1 Branch7 Tags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

seguriseguri
Set version 4.1.0
Jan 2, 2021
938d857 · Jan 2, 2021

History

111 Commits
.github/workflows
.github/workflows
Dec 18, 2020
.idea
.idea
Jan 2, 2021
.mvn/wrapper
.mvn/wrapper
Dec 12, 2020
advice-client
advice-client
Jan 2, 2021
authentication-server
authentication-server
Jan 2, 2021
gateway
gateway
Jan 2, 2021
resource-server
resource-server
Jan 2, 2021
scripts
scripts
Jan 2, 2021
.gitignore
.gitignore
Dec 24, 2020
README.md
README.md
Jan 2, 2021
mvnw
mvnw
Dec 12, 2020
mvnw.cmd
mvnw.cmd
Dec 12, 2020
pom.xml
pom.xml
Jan 2, 2021
spring-oauth2.iml
spring-oauth2.iml
Jan 2, 2021

Repository files navigation

spring-oauth2

Authentication server

Create user

http POST http://localhost:8080/users username=admin password=changeme authority=write

Create client

http POST http://localhost:8080/clients clientId=client clientSecret=secret scope=write

grant_type=password

To get an access token:

curl -v -XPOST -u client:secret "http://localhost:8080/oauth/token?grant_type=password&username=john&password=12345&scope=read"
http -a client:secret POST localhost:8080/oauth/token grant_type==password username==john password==12345 scope==read

grant_type=authentication_code

Open in the browser and login:

http://localhost:8080/oauth/authorize?response_type=code&client_id=client&scope=read

You'll be redirected to a non-existing service but you can fetch the code from the URL. Use the code here to get an access token:

curl -v -XPOST -u client:secret "http://localhost:8080/oauth/token?grant_type=authorization_code&scope=read&code={CODE}"

grant_type=client_credentials

To get an access token:

curl -v -XPOST -u client:secret "http://localhost:8080/oauth/token?grant_type=client_credentials&scope=info"
http -a adviceClient:adviceSecret POST "http://localhost:8080/oauth/token?grant_type=client_credentials&scope=advice"

grant_type=[password,refresh_token]

To get an access token and a refresh token:

curl -v -XPOST -u client:secret "http://localhost:8080/oauth/token?grant_type=password&username=john&password=12345&scope=read"

JWT (symmetric and asymmetric key scenarios)

To get an access token and a refresh token:

curl -v -XPOST -u client:secret "http://localhost:8080/oauth/token?grant_type=password&username=john&password=12345&scope=read"

To get the public key:

curl -u client:secret "http://localhost:8080/oauth/token_key"

Asymmetric keys

Generation:

keytool -genkeypair -alias ssia -keyalg RSA -keysize 2048 -keypass ssia123 -keystore ssia.jks -storepass ssia123

Get public key:

keytool -list -rfc --keystore ssia.jks | openssl x509 -inform pem -pubkey

Resource server

Access resource with token:

curl -H "Authorization:Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9..." "http://localhost:8081/profile/john"
curl -H "Authorization:Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9..." "http://localhost:8081/metric/john"

Troubleshouting

ClassNotFoundException: org.apache.maven.wrapper.MavenWrapperMain

Run:

/realpath/to/mvn -N io.takari:maven:wrapper

/realpath/to/mwn because on my system I have:

alias mvn=mvn-or-mvnw

About

"Securing Microservices with Spring Security and OAuth2" Manning's Live Project

Resources

Readme
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

7 tags

Packages

No packages published

Languages