https://github.com/furiouspws002/spring-security-oauth2-example

spring-security-oauth2认证服务和资源服务示例
https://github.com/furiouspws002/spring-security-oauth2-example

spring-security-oauth2

Last synced: 4 months ago
JSON representation

spring-security-oauth2认证服务和资源服务示例

• Host: GitHub
• URL: https://github.com/furiouspws002/spring-security-oauth2-example
• Owner: FuriousPws002
• Created: 2018-11-12T11:01:46.000Z (over 6 years ago)
• Default Branch: master
• Last Pushed: 2018-11-15T04:40:10.000Z (over 6 years ago)
• Last Synced: 2025-01-13T21:08:25.698Z (6 months ago)
• Topics: spring-security-oauth2
• Language: Java
• Size: 13.7 KB
• Stars: 4
• Watchers: 2
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

        
# spring-security-oauth2-example

spring-security-oauth2认证服务和资源服务示例

## 说明

该项目是基于spring-security-oauth2实现的demo

包含了认证服务和资源服务示例，由于用户认证采用了jdbc的方式，所以要先导入oauth2.sql文件

主要参考了官方文档得以实现，为了方便自己学习和供他人参考，特记录于此，项目中难免有写得不当之处，若有疑问，可发送邮箱[email protected]共同交流

## 获取access_token示例

### 授权码模式authorization_code

第一步：

请求http://localhost:8080/oauth/authorize?client_id=testclient&response_type=code&redirect_uri=https://www.baidu.com获取code

第二步：

https://www.baidu.com/?code=Z0HXTU

第三步：

通过code获取access_token

http://localhost:8080/oauth/token?grant_type=authorization_code&code=Z0HXTU&client_id=testclient&client_secret=testsecret&redirect_uri=https://www.baidu.com

### refresh_token模式

http://testclient:testsecret@localhost:8080/oauth/token?grant_type=refresh_token&refresh_token=e9f25584-5c6e-4dc8-9903-bb5657815ea0

需要在AuthorizationServerEndpointsConfigurer中注入UserDetailsService

### 简化模式implicit

http://localhost:8080/oauth/authorize?response_type=token&client_id=testclient&redirect_uri=https://www.baidu.com

### 客户端模式client_credentials

http://testclient:testsecret@localhost:8080/oauth/token?grant_type=client_credentials

### 密码模式password

http://localhost:8080/oauth/token?username=user1&password=123456&grant_type=password&scope=read&client_id=testclient&client_secret=testsecret

需要重写WebSecurityConfigurerAdapter类中authenticationManagerBean方法

## 注意事项

要实现密码模式，须重写WebSecurityConfigurerAdapter类中authenticationManagerBean方法

----

## 添加客户端集成示例

在认证服务和资源服务示例的基础上，添加了客户端集成示例。

更新表数据


``UPDATE `oauth2`.`oauth_client_details` SET `resource_ids` = NULL, `client_secret` = 'testsecret', `scope` = 'read,write', `authorized_grant_types` = 'authorization_code,refresh_token,implicit,client_credentials,password', `web_server_redirect_uri` = 'https://www.baidu.com,http://localhost:8082,http://localhost:8082/login/oauth2/code/test1,http://localhost:8082/login/oauth2/code/r1', `authorities` = 'ROLE_USER', `access_token_validity` = NULL, `refresh_token_validity` = NULL, `additional_information` = NULL, `autoapprove` = '0' WHERE `client_id` = Cast('testclient' AS Binary(10));``


``UPDATE `oauth2`.`oauth_client_details` SET `resource_ids` = NULL, `client_secret` = 'testsecret1', `scope` = 'read,write', `authorized_grant_types` = 'authorization_code,refresh_token,implicit,client_credentials,password', `web_server_redirect_uri` = 'https://www.baidu.com,http://localhost:8082,http://localhost:8082/login/oauth2/code/test2,http://localhost:8082/login/oauth2/code/r2', `authorities` = '', `access_token_validity` = NULL, `refresh_token_validity` = NULL, `additional_information` = NULL, `autoapprove` = '0' WHERE `client_id` = Cast('testclient1' AS Binary(11));

``