├── README.md
└── spring-security-oauth2-example-1
├── HELP.md
├── mvnw
├── mvnw.cmd
├── pom.xml
└── src
├── main
├── java
│ └── com
│ │ └── spring
│ │ └── security
│ │ ├── SpringSecurityOauth2Example1Application.java
│ │ ├── configuration
│ │ ├── OAuthConfiguration.java
│ │ ├── ResourceServerConfiguration.java
│ │ └── SecurityConfig.java
│ │ ├── contoller
│ │ └── UserController.java
│ │ ├── model
│ │ └── UserInfo.java
│ │ ├── repository
│ │ └── UserDetailsRepository.java
│ │ └── service
│ │ ├── UserDetailsServiceImpl.java
│ │ └── UserInfoService.java
└── resources
│ └── application.properties
└── test
└── java
└── com
└── spring
└── security
└── SpringSecurityOauth2Example1ApplicationTests.java
/README.md:
--------------------------------------------------------------------------------
1 | # Spring-Security-OAuth2-MySQL
2 | Example of Spring Security OAuth2 + MySQL
3 |
--------------------------------------------------------------------------------
/spring-security-oauth2-example-1/HELP.md:
--------------------------------------------------------------------------------
1 | # Getting Started
2 |
3 | ### Reference Documentation
4 | For further reference, please consider the following sections:
5 |
6 | * [Official Apache Maven documentation](https://maven.apache.org/guides/index.html)
7 |
8 |
--------------------------------------------------------------------------------
/spring-security-oauth2-example-1/mvnw:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | # ----------------------------------------------------------------------------
3 | # Licensed to the Apache Software Foundation (ASF) under one
4 | # or more contributor license agreements. See the NOTICE file
5 | # distributed with this work for additional information
6 | # regarding copyright ownership. The ASF licenses this file
7 | # to you under the Apache License, Version 2.0 (the
8 | # "License"); you may not use this file except in compliance
9 | # with the License. You may obtain a copy of the License at
10 | #
11 | # https://www.apache.org/licenses/LICENSE-2.0
12 | #
13 | # Unless required by applicable law or agreed to in writing,
14 | # software distributed under the License is distributed on an
15 | # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
16 | # KIND, either express or implied. See the License for the
17 | # specific language governing permissions and limitations
18 | # under the License.
19 | # ----------------------------------------------------------------------------
20 |
21 | # ----------------------------------------------------------------------------
22 | # Maven2 Start Up Batch script
23 | #
24 | # Required ENV vars:
25 | # ------------------
26 | # JAVA_HOME - location of a JDK home dir
27 | #
28 | # Optional ENV vars
29 | # -----------------
30 | # M2_HOME - location of maven2's installed home dir
31 | # MAVEN_OPTS - parameters passed to the Java VM when running Maven
32 | # e.g. to debug Maven itself, use
33 | # set MAVEN_OPTS=-Xdebug -Xrunjdwp:transport=dt_socket,server=y,suspend=y,address=8000
34 | # MAVEN_SKIP_RC - flag to disable loading of mavenrc files
35 | # ----------------------------------------------------------------------------
36 |
37 | if [ -z "$MAVEN_SKIP_RC" ] ; then
38 |
39 | if [ -f /etc/mavenrc ] ; then
40 | . /etc/mavenrc
41 | fi
42 |
43 | if [ -f "$HOME/.mavenrc" ] ; then
44 | . "$HOME/.mavenrc"
45 | fi
46 |
47 | fi
48 |
49 | # OS specific support. $var _must_ be set to either true or false.
50 | cygwin=false;
51 | darwin=false;
52 | mingw=false
53 | case "`uname`" in
54 | CYGWIN*) cygwin=true ;;
55 | MINGW*) mingw=true;;
56 | Darwin*) darwin=true
57 | # Use /usr/libexec/java_home if available, otherwise fall back to /Library/Java/Home
58 | # See https://developer.apple.com/library/mac/qa/qa1170/_index.html
59 | if [ -z "$JAVA_HOME" ]; then
60 | if [ -x "/usr/libexec/java_home" ]; then
61 | export JAVA_HOME="`/usr/libexec/java_home`"
62 | else
63 | export JAVA_HOME="/Library/Java/Home"
64 | fi
65 | fi
66 | ;;
67 | esac
68 |
69 | if [ -z "$JAVA_HOME" ] ; then
70 | if [ -r /etc/gentoo-release ] ; then
71 | JAVA_HOME=`java-config --jre-home`
72 | fi
73 | fi
74 |
75 | if [ -z "$M2_HOME" ] ; then
76 | ## resolve links - $0 may be a link to maven's home
77 | PRG="$0"
78 |
79 | # need this for relative symlinks
80 | while [ -h "$PRG" ] ; do
81 | ls=`ls -ld "$PRG"`
82 | link=`expr "$ls" : '.*-> \(.*\)$'`
83 | if expr "$link" : '/.*' > /dev/null; then
84 | PRG="$link"
85 | else
86 | PRG="`dirname "$PRG"`/$link"
87 | fi
88 | done
89 |
90 | saveddir=`pwd`
91 |
92 | M2_HOME=`dirname "$PRG"`/..
93 |
94 | # make it fully qualified
95 | M2_HOME=`cd "$M2_HOME" && pwd`
96 |
97 | cd "$saveddir"
98 | # echo Using m2 at $M2_HOME
99 | fi
100 |
101 | # For Cygwin, ensure paths are in UNIX format before anything is touched
102 | if $cygwin ; then
103 | [ -n "$M2_HOME" ] &&
104 | M2_HOME=`cygpath --unix "$M2_HOME"`
105 | [ -n "$JAVA_HOME" ] &&
106 | JAVA_HOME=`cygpath --unix "$JAVA_HOME"`
107 | [ -n "$CLASSPATH" ] &&
108 | CLASSPATH=`cygpath --path --unix "$CLASSPATH"`
109 | fi
110 |
111 | # For Mingw, ensure paths are in UNIX format before anything is touched
112 | if $mingw ; then
113 | [ -n "$M2_HOME" ] &&
114 | M2_HOME="`(cd "$M2_HOME"; pwd)`"
115 | [ -n "$JAVA_HOME" ] &&
116 | JAVA_HOME="`(cd "$JAVA_HOME"; pwd)`"
117 | # TODO classpath?
118 | fi
119 |
120 | if [ -z "$JAVA_HOME" ]; then
121 | javaExecutable="`which javac`"
122 | if [ -n "$javaExecutable" ] && ! [ "`expr \"$javaExecutable\" : '\([^ ]*\)'`" = "no" ]; then
123 | # readlink(1) is not available as standard on Solaris 10.
124 | readLink=`which readlink`
125 | if [ ! `expr "$readLink" : '\([^ ]*\)'` = "no" ]; then
126 | if $darwin ; then
127 | javaHome="`dirname \"$javaExecutable\"`"
128 | javaExecutable="`cd \"$javaHome\" && pwd -P`/javac"
129 | else
130 | javaExecutable="`readlink -f \"$javaExecutable\"`"
131 | fi
132 | javaHome="`dirname \"$javaExecutable\"`"
133 | javaHome=`expr "$javaHome" : '\(.*\)/bin'`
134 | JAVA_HOME="$javaHome"
135 | export JAVA_HOME
136 | fi
137 | fi
138 | fi
139 |
140 | if [ -z "$JAVACMD" ] ; then
141 | if [ -n "$JAVA_HOME" ] ; then
142 | if [ -x "$JAVA_HOME/jre/sh/java" ] ; then
143 | # IBM's JDK on AIX uses strange locations for the executables
144 | JAVACMD="$JAVA_HOME/jre/sh/java"
145 | else
146 | JAVACMD="$JAVA_HOME/bin/java"
147 | fi
148 | else
149 | JAVACMD="`which java`"
150 | fi
151 | fi
152 |
153 | if [ ! -x "$JAVACMD" ] ; then
154 | echo "Error: JAVA_HOME is not defined correctly." >&2
155 | echo " We cannot execute $JAVACMD" >&2
156 | exit 1
157 | fi
158 |
159 | if [ -z "$JAVA_HOME" ] ; then
160 | echo "Warning: JAVA_HOME environment variable is not set."
161 | fi
162 |
163 | CLASSWORLDS_LAUNCHER=org.codehaus.plexus.classworlds.launcher.Launcher
164 |
165 | # traverses directory structure from process work directory to filesystem root
166 | # first directory with .mvn subdirectory is considered project base directory
167 | find_maven_basedir() {
168 |
169 | if [ -z "$1" ]
170 | then
171 | echo "Path not specified to find_maven_basedir"
172 | return 1
173 | fi
174 |
175 | basedir="$1"
176 | wdir="$1"
177 | while [ "$wdir" != '/' ] ; do
178 | if [ -d "$wdir"/.mvn ] ; then
179 | basedir=$wdir
180 | break
181 | fi
182 | # workaround for JBEAP-8937 (on Solaris 10/Sparc)
183 | if [ -d "${wdir}" ]; then
184 | wdir=`cd "$wdir/.."; pwd`
185 | fi
186 | # end of workaround
187 | done
188 | echo "${basedir}"
189 | }
190 |
191 | # concatenates all lines of a file
192 | concat_lines() {
193 | if [ -f "$1" ]; then
194 | echo "$(tr -s '\n' ' ' < "$1")"
195 | fi
196 | }
197 |
198 | BASE_DIR=`find_maven_basedir "$(pwd)"`
199 | if [ -z "$BASE_DIR" ]; then
200 | exit 1;
201 | fi
202 |
203 | ##########################################################################################
204 | # Extension to allow automatically downloading the maven-wrapper.jar from Maven-central
205 | # This allows using the maven wrapper in projects that prohibit checking in binary data.
206 | ##########################################################################################
207 | if [ -r "$BASE_DIR/.mvn/wrapper/maven-wrapper.jar" ]; then
208 | if [ "$MVNW_VERBOSE" = true ]; then
209 | echo "Found .mvn/wrapper/maven-wrapper.jar"
210 | fi
211 | else
212 | if [ "$MVNW_VERBOSE" = true ]; then
213 | echo "Couldn't find .mvn/wrapper/maven-wrapper.jar, downloading it ..."
214 | fi
215 | jarUrl="https://repo.maven.apache.org/maven2/io/takari/maven-wrapper/0.4.2/maven-wrapper-0.4.2.jar"
216 | while IFS="=" read key value; do
217 | case "$key" in (wrapperUrl) jarUrl="$value"; break ;;
218 | esac
219 | done < "$BASE_DIR/.mvn/wrapper/maven-wrapper.properties"
220 | if [ "$MVNW_VERBOSE" = true ]; then
221 | echo "Downloading from: $jarUrl"
222 | fi
223 | wrapperJarPath="$BASE_DIR/.mvn/wrapper/maven-wrapper.jar"
224 |
225 | if command -v wget > /dev/null; then
226 | if [ "$MVNW_VERBOSE" = true ]; then
227 | echo "Found wget ... using wget"
228 | fi
229 | wget "$jarUrl" -O "$wrapperJarPath"
230 | elif command -v curl > /dev/null; then
231 | if [ "$MVNW_VERBOSE" = true ]; then
232 | echo "Found curl ... using curl"
233 | fi
234 | curl -o "$wrapperJarPath" "$jarUrl"
235 | else
236 | if [ "$MVNW_VERBOSE" = true ]; then
237 | echo "Falling back to using Java to download"
238 | fi
239 | javaClass="$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.java"
240 | if [ -e "$javaClass" ]; then
241 | if [ ! -e "$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.class" ]; then
242 | if [ "$MVNW_VERBOSE" = true ]; then
243 | echo " - Compiling MavenWrapperDownloader.java ..."
244 | fi
245 | # Compiling the Java class
246 | ("$JAVA_HOME/bin/javac" "$javaClass")
247 | fi
248 | if [ -e "$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.class" ]; then
249 | # Running the downloader
250 | if [ "$MVNW_VERBOSE" = true ]; then
251 | echo " - Running MavenWrapperDownloader.java ..."
252 | fi
253 | ("$JAVA_HOME/bin/java" -cp .mvn/wrapper MavenWrapperDownloader "$MAVEN_PROJECTBASEDIR")
254 | fi
255 | fi
256 | fi
257 | fi
258 | ##########################################################################################
259 | # End of extension
260 | ##########################################################################################
261 |
262 | export MAVEN_PROJECTBASEDIR=${MAVEN_BASEDIR:-"$BASE_DIR"}
263 | if [ "$MVNW_VERBOSE" = true ]; then
264 | echo $MAVEN_PROJECTBASEDIR
265 | fi
266 | MAVEN_OPTS="$(concat_lines "$MAVEN_PROJECTBASEDIR/.mvn/jvm.config") $MAVEN_OPTS"
267 |
268 | # For Cygwin, switch paths to Windows format before running java
269 | if $cygwin; then
270 | [ -n "$M2_HOME" ] &&
271 | M2_HOME=`cygpath --path --windows "$M2_HOME"`
272 | [ -n "$JAVA_HOME" ] &&
273 | JAVA_HOME=`cygpath --path --windows "$JAVA_HOME"`
274 | [ -n "$CLASSPATH" ] &&
275 | CLASSPATH=`cygpath --path --windows "$CLASSPATH"`
276 | [ -n "$MAVEN_PROJECTBASEDIR" ] &&
277 | MAVEN_PROJECTBASEDIR=`cygpath --path --windows "$MAVEN_PROJECTBASEDIR"`
278 | fi
279 |
280 | WRAPPER_LAUNCHER=org.apache.maven.wrapper.MavenWrapperMain
281 |
282 | exec "$JAVACMD" \
283 | $MAVEN_OPTS \
284 | -classpath "$MAVEN_PROJECTBASEDIR/.mvn/wrapper/maven-wrapper.jar" \
285 | "-Dmaven.home=${M2_HOME}" "-Dmaven.multiModuleProjectDirectory=${MAVEN_PROJECTBASEDIR}" \
286 | ${WRAPPER_LAUNCHER} $MAVEN_CONFIG "$@"
287 |
--------------------------------------------------------------------------------
/spring-security-oauth2-example-1/mvnw.cmd:
--------------------------------------------------------------------------------
1 | @REM ----------------------------------------------------------------------------
2 | @REM Licensed to the Apache Software Foundation (ASF) under one
3 | @REM or more contributor license agreements. See the NOTICE file
4 | @REM distributed with this work for additional information
5 | @REM regarding copyright ownership. The ASF licenses this file
6 | @REM to you under the Apache License, Version 2.0 (the
7 | @REM "License"); you may not use this file except in compliance
8 | @REM with the License. You may obtain a copy of the License at
9 | @REM
10 | @REM https://www.apache.org/licenses/LICENSE-2.0
11 | @REM
12 | @REM Unless required by applicable law or agreed to in writing,
13 | @REM software distributed under the License is distributed on an
14 | @REM "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
15 | @REM KIND, either express or implied. See the License for the
16 | @REM specific language governing permissions and limitations
17 | @REM under the License.
18 | @REM ----------------------------------------------------------------------------
19 |
20 | @REM ----------------------------------------------------------------------------
21 | @REM Maven2 Start Up Batch script
22 | @REM
23 | @REM Required ENV vars:
24 | @REM JAVA_HOME - location of a JDK home dir
25 | @REM
26 | @REM Optional ENV vars
27 | @REM M2_HOME - location of maven2's installed home dir
28 | @REM MAVEN_BATCH_ECHO - set to 'on' to enable the echoing of the batch commands
29 | @REM MAVEN_BATCH_PAUSE - set to 'on' to wait for a key stroke before ending
30 | @REM MAVEN_OPTS - parameters passed to the Java VM when running Maven
31 | @REM e.g. to debug Maven itself, use
32 | @REM set MAVEN_OPTS=-Xdebug -Xrunjdwp:transport=dt_socket,server=y,suspend=y,address=8000
33 | @REM MAVEN_SKIP_RC - flag to disable loading of mavenrc files
34 | @REM ----------------------------------------------------------------------------
35 |
36 | @REM Begin all REM lines with '@' in case MAVEN_BATCH_ECHO is 'on'
37 | @echo off
38 | @REM set title of command window
39 | title %0
40 | @REM enable echoing my setting MAVEN_BATCH_ECHO to 'on'
41 | @if "%MAVEN_BATCH_ECHO%" == "on" echo %MAVEN_BATCH_ECHO%
42 |
43 | @REM set %HOME% to equivalent of $HOME
44 | if "%HOME%" == "" (set "HOME=%HOMEDRIVE%%HOMEPATH%")
45 |
46 | @REM Execute a user defined script before this one
47 | if not "%MAVEN_SKIP_RC%" == "" goto skipRcPre
48 | @REM check for pre script, once with legacy .bat ending and once with .cmd ending
49 | if exist "%HOME%\mavenrc_pre.bat" call "%HOME%\mavenrc_pre.bat"
50 | if exist "%HOME%\mavenrc_pre.cmd" call "%HOME%\mavenrc_pre.cmd"
51 | :skipRcPre
52 |
53 | @setlocal
54 |
55 | set ERROR_CODE=0
56 |
57 | @REM To isolate internal variables from possible post scripts, we use another setlocal
58 | @setlocal
59 |
60 | @REM ==== START VALIDATION ====
61 | if not "%JAVA_HOME%" == "" goto OkJHome
62 |
63 | echo.
64 | echo Error: JAVA_HOME not found in your environment. >&2
65 | echo Please set the JAVA_HOME variable in your environment to match the >&2
66 | echo location of your Java installation. >&2
67 | echo.
68 | goto error
69 |
70 | :OkJHome
71 | if exist "%JAVA_HOME%\bin\java.exe" goto init
72 |
73 | echo.
74 | echo Error: JAVA_HOME is set to an invalid directory. >&2
75 | echo JAVA_HOME = "%JAVA_HOME%" >&2
76 | echo Please set the JAVA_HOME variable in your environment to match the >&2
77 | echo location of your Java installation. >&2
78 | echo.
79 | goto error
80 |
81 | @REM ==== END VALIDATION ====
82 |
83 | :init
84 |
85 | @REM Find the project base dir, i.e. the directory that contains the folder ".mvn".
86 | @REM Fallback to current working directory if not found.
87 |
88 | set MAVEN_PROJECTBASEDIR=%MAVEN_BASEDIR%
89 | IF NOT "%MAVEN_PROJECTBASEDIR%"=="" goto endDetectBaseDir
90 |
91 | set EXEC_DIR=%CD%
92 | set WDIR=%EXEC_DIR%
93 | :findBaseDir
94 | IF EXIST "%WDIR%"\.mvn goto baseDirFound
95 | cd ..
96 | IF "%WDIR%"=="%CD%" goto baseDirNotFound
97 | set WDIR=%CD%
98 | goto findBaseDir
99 |
100 | :baseDirFound
101 | set MAVEN_PROJECTBASEDIR=%WDIR%
102 | cd "%EXEC_DIR%"
103 | goto endDetectBaseDir
104 |
105 | :baseDirNotFound
106 | set MAVEN_PROJECTBASEDIR=%EXEC_DIR%
107 | cd "%EXEC_DIR%"
108 |
109 | :endDetectBaseDir
110 |
111 | IF NOT EXIST "%MAVEN_PROJECTBASEDIR%\.mvn\jvm.config" goto endReadAdditionalConfig
112 |
113 | @setlocal EnableExtensions EnableDelayedExpansion
114 | for /F "usebackq delims=" %%a in ("%MAVEN_PROJECTBASEDIR%\.mvn\jvm.config") do set JVM_CONFIG_MAVEN_PROPS=!JVM_CONFIG_MAVEN_PROPS! %%a
115 | @endlocal & set JVM_CONFIG_MAVEN_PROPS=%JVM_CONFIG_MAVEN_PROPS%
116 |
117 | :endReadAdditionalConfig
118 |
119 | SET MAVEN_JAVA_EXE="%JAVA_HOME%\bin\java.exe"
120 | set WRAPPER_JAR="%MAVEN_PROJECTBASEDIR%\.mvn\wrapper\maven-wrapper.jar"
121 | set WRAPPER_LAUNCHER=org.apache.maven.wrapper.MavenWrapperMain
122 |
123 | set DOWNLOAD_URL="https://repo.maven.apache.org/maven2/io/takari/maven-wrapper/0.4.2/maven-wrapper-0.4.2.jar"
124 | FOR /F "tokens=1,2 delims==" %%A IN (%MAVEN_PROJECTBASEDIR%\.mvn\wrapper\maven-wrapper.properties) DO (
125 | IF "%%A"=="wrapperUrl" SET DOWNLOAD_URL=%%B
126 | )
127 |
128 | @REM Extension to allow automatically downloading the maven-wrapper.jar from Maven-central
129 | @REM This allows using the maven wrapper in projects that prohibit checking in binary data.
130 | if exist %WRAPPER_JAR% (
131 | echo Found %WRAPPER_JAR%
132 | ) else (
133 | echo Couldn't find %WRAPPER_JAR%, downloading it ...
134 | echo Downloading from: %DOWNLOAD_URL%
135 | powershell -Command "(New-Object Net.WebClient).DownloadFile('%DOWNLOAD_URL%', '%WRAPPER_JAR%')"
136 | echo Finished downloading %WRAPPER_JAR%
137 | )
138 | @REM End of extension
139 |
140 | %MAVEN_JAVA_EXE% %JVM_CONFIG_MAVEN_PROPS% %MAVEN_OPTS% %MAVEN_DEBUG_OPTS% -classpath %WRAPPER_JAR% "-Dmaven.multiModuleProjectDirectory=%MAVEN_PROJECTBASEDIR%" %WRAPPER_LAUNCHER% %MAVEN_CONFIG% %*
141 | if ERRORLEVEL 1 goto error
142 | goto end
143 |
144 | :error
145 | set ERROR_CODE=1
146 |
147 | :end
148 | @endlocal & set ERROR_CODE=%ERROR_CODE%
149 |
150 | if not "%MAVEN_SKIP_RC%" == "" goto skipRcPost
151 | @REM check for post script, once with legacy .bat ending and once with .cmd ending
152 | if exist "%HOME%\mavenrc_post.bat" call "%HOME%\mavenrc_post.bat"
153 | if exist "%HOME%\mavenrc_post.cmd" call "%HOME%\mavenrc_post.cmd"
154 | :skipRcPost
155 |
156 | @REM pause the script if MAVEN_BATCH_PAUSE is set to 'on'
157 | if "%MAVEN_BATCH_PAUSE%" == "on" pause
158 |
159 | if "%MAVEN_TERMINATE_CMD%" == "on" exit %ERROR_CODE%
160 |
161 | exit /B %ERROR_CODE%
162 |
--------------------------------------------------------------------------------
/spring-security-oauth2-example-1/pom.xml:
--------------------------------------------------------------------------------
1 |
2 |
5 | 4.0.0
6 |
7 | com.spring.security
8 | jar
9 | spring-security-oauth2-example-2
10 | 0.0.1-SNAPSHOT
11 | spring-security-oauth2-example-2
12 | Demo project for Spring Boot
13 |
14 |
15 | org.springframework.boot
16 | spring-boot-starter-parent
17 | 1.4.7.RELEASE
18 |
19 |
20 |
21 |
22 | UTF-8
23 | UTF-8
24 | 1.8
25 |
26 |
27 |
28 |
29 | org.springframework.boot
30 | spring-boot-starter-data-jpa
31 |
32 |
33 | org.springframework.boot
34 | spring-boot-starter-web
35 |
36 |
37 |
38 | org.apache.derby
39 | derby
40 | runtime
41 |
42 |
43 | org.springframework.boot
44 | spring-boot-starter-test
45 | test
46 |
47 |
48 | mysql
49 | mysql-connector-java
50 | 5.1.46
51 |
52 |
53 | org.springframework.boot
54 | spring-boot-starter-security
55 |
56 |
57 | org.springframework.security
58 | spring-security-jwt
59 | 1.0.9.RELEASE
60 |
61 |
62 | org.springframework.security.oauth
63 | spring-security-oauth2
64 | 2.3.0.RELEASE
65 |
66 |
67 |
68 | org.springframework.boot
69 | spring-boot-devtools
70 | runtime
71 |
72 |
73 |
74 |
75 |
76 |
77 |
78 | org.springframework.boot
79 | spring-boot-maven-plugin
80 |
81 |
82 |
83 |
84 |
85 |
86 |
--------------------------------------------------------------------------------
/spring-security-oauth2-example-1/src/main/java/com/spring/security/SpringSecurityOauth2Example1Application.java:
--------------------------------------------------------------------------------
1 | package com.spring.security;
2 |
3 | import org.springframework.boot.SpringApplication;
4 | import org.springframework.boot.autoconfigure.EnableAutoConfiguration;
5 | import org.springframework.boot.autoconfigure.SpringBootApplication;
6 |
7 | @EnableAutoConfiguration
8 | @SpringBootApplication
9 | public class SpringSecurityOauth2Example1Application {
10 |
11 | public static void main(String[] args) {
12 | SpringApplication.run(SpringSecurityOauth2Example1Application.class, args);
13 | }
14 |
15 | }
16 |
--------------------------------------------------------------------------------
/spring-security-oauth2-example-1/src/main/java/com/spring/security/configuration/OAuthConfiguration.java:
--------------------------------------------------------------------------------
1 | package com.spring.security.configuration;
2 |
3 | import org.springframework.beans.factory.annotation.Autowired;
4 | import org.springframework.beans.factory.annotation.Qualifier;
5 | import org.springframework.context.annotation.Bean;
6 | import org.springframework.context.annotation.Configuration;
7 | import org.springframework.security.authentication.AuthenticationManager;
8 | import org.springframework.security.core.userdetails.UserDetailsService;
9 | import org.springframework.security.oauth2.config.annotation.configurers.ClientDetailsServiceConfigurer;
10 | import org.springframework.security.oauth2.config.annotation.web.configuration.AuthorizationServerConfigurerAdapter;
11 | import org.springframework.security.oauth2.config.annotation.web.configuration.EnableAuthorizationServer;
12 | import org.springframework.security.oauth2.config.annotation.web.configurers.AuthorizationServerEndpointsConfigurer;
13 | import org.springframework.security.oauth2.config.annotation.web.configurers.AuthorizationServerSecurityConfigurer;
14 | import org.springframework.security.oauth2.provider.token.TokenStore;
15 | import org.springframework.security.oauth2.provider.token.store.JwtAccessTokenConverter;
16 | import org.springframework.security.oauth2.provider.token.store.JwtTokenStore;
17 |
18 | @Configuration
19 | @EnableAuthorizationServer
20 | public class OAuthConfiguration extends AuthorizationServerConfigurerAdapter {
21 |
22 | @Autowired
23 | @Qualifier("authenticationManagerBean")
24 | private AuthenticationManager authenticationManager;
25 |
26 | @Autowired
27 | UserDetailsService userDetailsService;
28 |
29 | @Override
30 | public void configure(final AuthorizationServerSecurityConfigurer oauthServer) throws Exception {
31 | oauthServer.tokenKeyAccess("permitAll()").checkTokenAccess("isAuthenticated()");
32 | }
33 |
34 | @Override
35 | public void configure(ClientDetailsServiceConfigurer clients) throws Exception {
36 | clients.inMemory()
37 | .withClient("fooClientId").secret("secret")
38 | .authorizedGrantTypes("password", "authorization_code", "refresh_token").scopes("read","write")
39 | .authorities("ROLE_CLIENT", "ROLE_TRUSTED_CLIENT", "USER","ADMIN")
40 | .autoApprove(true)
41 | .accessTokenValiditySeconds(180)//Access token is only valid for 3 minutes.
42 | .refreshTokenValiditySeconds(600);//Refresh token is only valid for 10 minutes.;
43 | }
44 |
45 | @Override
46 | public void configure(final AuthorizationServerEndpointsConfigurer endpoints) throws Exception {
47 | endpoints.tokenStore(tokenStore()).authenticationManager(authenticationManager).accessTokenConverter(defaultAccessTokenConverter())
48 | .userDetailsService(userDetailsService);
49 | }
50 |
51 | @Bean
52 | public TokenStore tokenStore(){
53 | return new JwtTokenStore(defaultAccessTokenConverter());
54 | }
55 |
56 | @Bean
57 | public JwtAccessTokenConverter defaultAccessTokenConverter() {
58 | JwtAccessTokenConverter converter = new JwtAccessTokenConverter();
59 | converter.setSigningKey("123");
60 | return converter;
61 | }
62 | }
63 |
--------------------------------------------------------------------------------
/spring-security-oauth2-example-1/src/main/java/com/spring/security/configuration/ResourceServerConfiguration.java:
--------------------------------------------------------------------------------
1 | package com.spring.security.configuration;
2 |
3 | import org.springframework.context.annotation.Configuration;
4 | import org.springframework.security.config.annotation.web.builders.HttpSecurity;
5 | import org.springframework.security.oauth2.config.annotation.web.configuration.EnableResourceServer;
6 | import org.springframework.security.oauth2.config.annotation.web.configuration.ResourceServerConfigurerAdapter;
7 | import org.springframework.security.oauth2.config.annotation.web.configurers.ResourceServerSecurityConfigurer;
8 |
9 | @Configuration
10 | @EnableResourceServer
11 | public class ResourceServerConfiguration extends ResourceServerConfigurerAdapter {
12 | private static final String RESOURCE_ID = "resource-server-rest-api";
13 | private static final String SECURED_READ_SCOPE = "#oauth2.hasScope('read')";
14 | private static final String SECURED_WRITE_SCOPE = "#oauth2.hasScope('write')";
15 | private static final String SECURED_PATTERN = "/secured/**";
16 | @Override
17 | public void configure(ResourceServerSecurityConfigurer resources) {
18 | resources.resourceId(RESOURCE_ID);
19 | }
20 | @Override
21 | public void configure(HttpSecurity http) throws Exception {
22 | /*http.requestMatchers()
23 | .antMatchers(SECURED_PATTERN).and().authorizeRequests()
24 | .antMatchers(HttpMethod.POST, SECURED_PATTERN).access(SECURED_WRITE_SCOPE)
25 | .anyRequest().access(SECURED_READ_SCOPE);*/
26 | http.antMatcher("/**")
27 | .authorizeRequests().anyRequest().authenticated();
28 | }
29 | }
30 |
31 |
--------------------------------------------------------------------------------
/spring-security-oauth2-example-1/src/main/java/com/spring/security/configuration/SecurityConfig.java:
--------------------------------------------------------------------------------
1 | package com.spring.security.configuration;
2 |
3 | import org.springframework.beans.factory.annotation.Autowired;
4 | import org.springframework.context.annotation.Bean;
5 | import org.springframework.http.HttpMethod;
6 | import org.springframework.security.authentication.AuthenticationManager;
7 | import org.springframework.security.authentication.dao.DaoAuthenticationProvider;
8 | import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
9 | import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity;
10 | import org.springframework.security.config.annotation.web.builders.HttpSecurity;
11 | import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
12 | import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
13 | import org.springframework.security.config.http.SessionCreationPolicy;
14 | import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
15 |
16 | import com.spring.security.service.UserDetailsServiceImpl;
17 |
18 |
19 | @EnableWebSecurity
20 | @EnableGlobalMethodSecurity(securedEnabled = true)
21 | public class SecurityConfig extends WebSecurityConfigurerAdapter {
22 |
23 | @Autowired
24 | UserDetailsServiceImpl userDetailsService;
25 |
26 |
27 | @Override
28 | protected void configure(HttpSecurity http) throws Exception {
29 | http.csrf().disable().sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS)
30 | .and().authorizeRequests().antMatchers("/oauth/token")
31 | .permitAll().anyRequest().authenticated()
32 | .and()
33 | .authorizeRequests().antMatchers(HttpMethod.GET,"/user").hasRole("ADMIN");
34 | }
35 |
36 | @Bean
37 | public DaoAuthenticationProvider authenticationProvider() {
38 | DaoAuthenticationProvider provider = new DaoAuthenticationProvider();
39 | provider.setPasswordEncoder( bCryptPasswordEncoder() );
40 | provider.setUserDetailsService(userDetailsService);
41 | return provider;
42 | }
43 |
44 | // @Autowired
45 | // public void globalUserDetails(AuthenticationManagerBuilder auth) throws Exception {
46 | // auth.inMemoryAuthentication()
47 | // .withUser("bill").password("abc123").roles("ADMIN").and()
48 | // .withUser("bob").password("abc123").roles("USER");
49 | // }
50 |
51 | @Bean
52 | public BCryptPasswordEncoder bCryptPasswordEncoder() {
53 | return new BCryptPasswordEncoder();
54 | }
55 |
56 | @Override
57 | @Bean
58 | public AuthenticationManager authenticationManagerBean() throws Exception {
59 | return super.authenticationManagerBean();
60 | }
61 |
62 | @Autowired
63 | public void configureGlobal(AuthenticationManagerBuilder auth) throws Exception {
64 | auth.authenticationProvider(authenticationProvider());
65 | }
66 | }
--------------------------------------------------------------------------------
/spring-security-oauth2-example-1/src/main/java/com/spring/security/contoller/UserController.java:
--------------------------------------------------------------------------------
1 | package com.spring.security.contoller;
2 |
3 | import java.util.List;
4 |
5 | import org.springframework.beans.factory.annotation.Autowired;
6 | import org.springframework.http.HttpHeaders;
7 | import org.springframework.http.HttpStatus;
8 | import org.springframework.http.ResponseEntity;
9 | import org.springframework.web.bind.annotation.DeleteMapping;
10 | import org.springframework.web.bind.annotation.GetMapping;
11 | import org.springframework.web.bind.annotation.PathVariable;
12 | import org.springframework.web.bind.annotation.PostMapping;
13 | import org.springframework.web.bind.annotation.PutMapping;
14 | import org.springframework.web.bind.annotation.RequestBody;
15 | import org.springframework.web.bind.annotation.RequestHeader;
16 | import org.springframework.web.bind.annotation.RestController;
17 |
18 | import com.spring.security.model.UserInfo;
19 | import com.spring.security.service.UserInfoService;
20 |
21 | @RestController
22 | public class UserController {
23 | @Autowired
24 | private UserInfoService userService;
25 |
26 | @GetMapping("/user")
27 | public Object getAllUser(@RequestHeader HttpHeaders requestHeader) {
28 | List userInfos = userService.getAllActiveUserInfo();
29 | if (userInfos == null || userInfos.isEmpty()) {
30 | return new ResponseEntity(HttpStatus.NO_CONTENT);
31 | }
32 | return userInfos;
33 | }
34 |
35 | @PostMapping("/user")
36 | public UserInfo addUser(@RequestBody UserInfo userRecord) {
37 | return userService.addUser(userRecord);
38 | }
39 |
40 | @PutMapping("/user/{id}")
41 | public UserInfo updateUser(@RequestBody UserInfo userRecord, @PathVariable Integer id) {
42 | return userService.updateUser(id,userRecord);
43 | }
44 |
45 | @PutMapping("/user/changePassword/{id}")
46 | public UserInfo updateUserPassword(@RequestBody UserInfo userRecord, @PathVariable Integer id) {
47 | return userService.updatePassword(id,userRecord);
48 | }
49 |
50 | @PutMapping("/user/changeRole/{id}")
51 | public UserInfo updateUserRole(@RequestBody UserInfo userRecord, @PathVariable Integer id) {
52 | return userService.updateRole(id,userRecord);
53 | }
54 |
55 | @DeleteMapping("/user/{id}")
56 | public void deleteUser(@PathVariable Integer id) {
57 | userService.deleteUser(id);
58 | }
59 |
60 | @GetMapping("/user/{id}")
61 | public ResponseEntity getUserById(@PathVariable Integer id) {
62 | UserInfo userInfo = userService.getUserInfoById(id);
63 | if (userInfo == null) {
64 | return new ResponseEntity<>(HttpStatus.NO_CONTENT);
65 | }
66 | return new ResponseEntity<>(userInfo, HttpStatus.OK);
67 | }
68 | }
69 |
--------------------------------------------------------------------------------
/spring-security-oauth2-example-1/src/main/java/com/spring/security/model/UserInfo.java:
--------------------------------------------------------------------------------
1 | package com.spring.security.model;
2 |
3 | import java.io.Serializable;
4 |
5 | import javax.persistence.Column;
6 | import javax.persistence.Entity;
7 | import javax.persistence.GeneratedValue;
8 | import javax.persistence.GenerationType;
9 | import javax.persistence.Id;
10 | import javax.persistence.Table;
11 |
12 | @Entity
13 | @Table(name = "users")
14 | public class UserInfo implements Serializable {
15 | private static final long serialVersionUID = 1L;
16 |
17 | @Id
18 | @GeneratedValue(strategy = GenerationType.AUTO)
19 | @Column(name = "id", length = 25)
20 | private Integer id;
21 |
22 | @Column(name = "username", length = 50)
23 | private String userName;
24 |
25 | @Column(name = "password", length = 800)
26 | private String password;
27 |
28 | @Column(name = "role", length = 50)
29 | private String role;
30 |
31 | @Column(name = "enabled")
32 | private short enabled;
33 |
34 | public String getUserName() {
35 | return userName;
36 | }
37 |
38 | public void setUserName(String userName) {
39 | this.userName = userName;
40 | }
41 |
42 | public String getPassword() {
43 | return password;
44 | }
45 |
46 | public void setPassword(String password) {
47 | this.password = password;
48 | }
49 |
50 | /**
51 | * @return the id
52 | */
53 | public Integer getId() {
54 | return id;
55 | }
56 |
57 | /**
58 | * @param id the id to set
59 | */
60 | public void setId(Integer id) {
61 | this.id = id;
62 | }
63 |
64 | public String getRole() {
65 | return role;
66 | }
67 |
68 | public void setRole(String role) {
69 | this.role = role;
70 | }
71 |
72 | public short getEnabled() {
73 | return enabled;
74 | }
75 |
76 | public void setEnabled(short enabled) {
77 | this.enabled = enabled;
78 | }
79 |
80 | @Override
81 | public String toString() {
82 | return String.format("UserInfo [id=%s, userName=%s, password=%s, role=%s, enabled=%s]", id, userName, password,
83 | role, enabled);
84 | }
85 |
86 | }
87 |
--------------------------------------------------------------------------------
/spring-security-oauth2-example-1/src/main/java/com/spring/security/repository/UserDetailsRepository.java:
--------------------------------------------------------------------------------
1 | package com.spring.security.repository;
2 |
3 | import java.util.List;
4 |
5 | import javax.transaction.Transactional;
6 |
7 | import org.springframework.data.repository.CrudRepository;
8 | import org.springframework.stereotype.Repository;
9 |
10 | import com.spring.security.model.UserInfo;
11 |
12 | @Repository
13 | @Transactional
14 | public interface UserDetailsRepository extends CrudRepository {
15 | public UserInfo findByUserNameAndEnabled(String userName, short enabled);
16 |
17 | public List findAllByEnabled(short enabled);
18 |
19 | public UserInfo findById(Integer id);
20 | //
21 | // @Override
22 | // public UserInfo save(UserInfo userInfo);
23 |
24 | public void deleteById(Integer id);
25 | }
26 |
--------------------------------------------------------------------------------
/spring-security-oauth2-example-1/src/main/java/com/spring/security/service/UserDetailsServiceImpl.java:
--------------------------------------------------------------------------------
1 | package com.spring.security.service;
2 |
3 | import java.util.Arrays;
4 |
5 | import org.springframework.beans.factory.annotation.Autowired;
6 | import org.springframework.security.core.GrantedAuthority;
7 | import org.springframework.security.core.authority.SimpleGrantedAuthority;
8 | import org.springframework.security.core.userdetails.User;
9 | import org.springframework.security.core.userdetails.UserDetails;
10 | import org.springframework.security.core.userdetails.UserDetailsService;
11 | import org.springframework.security.core.userdetails.UsernameNotFoundException;
12 | import org.springframework.stereotype.Service;
13 |
14 | import com.spring.security.model.UserInfo;
15 |
16 | @Service
17 | public class UserDetailsServiceImpl implements UserDetailsService {
18 | @Autowired
19 | private UserInfoService userInfoDAO;
20 |
21 | @Override
22 | public UserDetails loadUserByUsername(String userName) throws UsernameNotFoundException {
23 | UserInfo userInfo = userInfoDAO.getUserInfoByUserName(userName);
24 | GrantedAuthority authority = new SimpleGrantedAuthority(userInfo.getRole());
25 | return new User(userInfo.getUserName(), userInfo.getPassword(), Arrays.asList(authority));
26 | }
27 | }
28 |
--------------------------------------------------------------------------------
/spring-security-oauth2-example-1/src/main/java/com/spring/security/service/UserInfoService.java:
--------------------------------------------------------------------------------
1 | package com.spring.security.service;
2 |
3 | import java.util.List;
4 |
5 | import org.springframework.beans.factory.annotation.Autowired;
6 | import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
7 | import org.springframework.stereotype.Repository;
8 | import org.springframework.transaction.annotation.Transactional;
9 |
10 | import com.spring.security.model.UserInfo;
11 | import com.spring.security.repository.UserDetailsRepository;
12 |
13 | @Repository
14 | @Transactional
15 | public class UserInfoService {
16 |
17 | @Autowired
18 | private UserDetailsRepository userDatailsRepository;
19 |
20 | public UserInfo getUserInfoByUserName(String userName) {
21 | short enabled = 1;
22 | return userDatailsRepository.findByUserNameAndEnabled(userName, enabled);
23 | }
24 |
25 | public List getAllActiveUserInfo() {
26 | return userDatailsRepository.findAllByEnabled((short) 1);
27 | }
28 |
29 | public UserInfo getUserInfoById(Integer id) {
30 | return userDatailsRepository.findById(id);
31 | }
32 |
33 | public UserInfo addUser(UserInfo userInfo) {
34 | userInfo.setPassword(new BCryptPasswordEncoder().encode(userInfo.getPassword()));
35 | return userDatailsRepository.save(userInfo);
36 | }
37 |
38 | public UserInfo updateUser(Integer id, UserInfo userRecord) {
39 | UserInfo userInfo = userDatailsRepository.findById(id);
40 | userInfo.setUserName(userRecord.getUserName());
41 | userInfo.setPassword(userRecord.getPassword());
42 | userInfo.setRole(userRecord.getRole());
43 | userInfo.setEnabled(userRecord.getEnabled());
44 | return userDatailsRepository.save(userInfo);
45 | }
46 |
47 | public void deleteUser(Integer id) {
48 | userDatailsRepository.deleteById(id);
49 | }
50 |
51 | public UserInfo updatePassword(Integer id, UserInfo userRecord) {
52 | UserInfo userInfo = userDatailsRepository.findById(id);
53 | userInfo.setPassword(userRecord.getPassword());
54 | return userDatailsRepository.save(userInfo);
55 | }
56 |
57 | public UserInfo updateRole(Integer id, UserInfo userRecord) {
58 | UserInfo userInfo = userDatailsRepository.findById(id);
59 | userInfo.setRole(userRecord.getRole());
60 | return userDatailsRepository.save(userInfo);
61 | }
62 | }
--------------------------------------------------------------------------------
/spring-security-oauth2-example-1/src/main/resources/application.properties:
--------------------------------------------------------------------------------
1 | # DataSource settings: set here your own configurations for the database
2 | # connection. In this example we have "dojsb" as database name and
3 | # "root" as username and password.
4 | spring.datasource.url = jdbc:mysql://localhost:3306/test
5 | spring.datasource.username = root
6 | spring.datasource.password = root
7 |
8 | # Hibernate ddl auto (create, create-drop, update)
9 | spring.jpa.hibernate.ddl-auto = update
10 |
11 | # Naming strategy
12 | spring.jpa.hibernate.naming-strategy = org.hibernate.cfg.ImprovedNamingStrategy
13 |
14 | # Use spring.jpa.properties.* for Hibernate native properties (the prefix is
15 | # stripped before adding them to the entity manager)
16 |
17 | # The SQL dialect makes Hibernate generate better SQL for the chosen database
18 | spring.jpa.properties.hibernate.dialect = org.hibernate.dialect.MySQL5Dialect
19 | spring.datasource.driver-class-name=com.mysql.jdbc.Driver
20 | server.port = 8080
21 |
--------------------------------------------------------------------------------
/spring-security-oauth2-example-1/src/test/java/com/spring/security/SpringSecurityOauth2Example1ApplicationTests.java:
--------------------------------------------------------------------------------
1 | package com.spring.security;
2 |
3 | import org.junit.Test;
4 | import org.junit.runner.RunWith;
5 | import org.springframework.boot.test.context.SpringBootTest;
6 | import org.springframework.test.context.junit4.SpringRunner;
7 |
8 | @RunWith(SpringRunner.class)
9 | @SpringBootTest
10 | public class SpringSecurityOauth2Example1ApplicationTests {
11 |
12 | @Test
13 | public void contextLoads() {
14 | }
15 |
16 | }
17 |
--------------------------------------------------------------------------------