├── .editorconfig
├── .gitignore
├── pom.xml
└── src
    └── main
        └── resources
            └── config
                └── uaa.yml


/.editorconfig:
--------------------------------------------------------------------------------
 1 | # EditorConfig helps developers define and maintain consistent
 2 | # coding styles between different editors and IDEs
 3 | # editorconfig.org
 4 | 
 5 | root = true
 6 | 
 7 | [*]
 8 | 
 9 | # Change these settings to your own preference
10 | indent_style = space
11 | indent_size = 4
12 | 
13 | # We recommend you to keep these unchanged
14 | end_of_line = lf
15 | charset = utf-8
16 | trim_trailing_whitespace = true
17 | insert_final_newline = true
18 | 
19 | [*.md]
20 | trim_trailing_whitespace = false
21 | 
22 | [{package,bower}.json]
23 | indent_style = space
24 | indent_size = 2
25 | 


--------------------------------------------------------------------------------
/.gitignore:
--------------------------------------------------------------------------------
  1 | ######################
  2 | # Project Specific
  3 | ######################
  4 | /src/main/webapp/dist
  5 | 
  6 | ######################
  7 | # Node
  8 | ######################
  9 | /node/**
 10 | /node_modules/**
 11 | 
 12 | ######################
 13 | # SASS
 14 | ######################
 15 | .sass-cache/**
 16 | 
 17 | ######################
 18 | # Eclipse
 19 | ######################
 20 | *.pydevproject
 21 | .project
 22 | .metadata
 23 | .factorypath
 24 | /bin/**
 25 | /tmp/**
 26 | /tmp/**/*
 27 | *.tmp
 28 | *.bak
 29 | *.swp
 30 | *~.nib
 31 | local.properties
 32 | .classpath
 33 | .settings/**
 34 | .loadpath
 35 | /src/main/resources/rebel.xml
 36 | 
 37 | # External tool builders
 38 | .externalToolBuilders/**
 39 | 
 40 | # Locally stored "Eclipse launch configurations"
 41 | *.launch
 42 | 
 43 | # CDT-specific
 44 | .cproject
 45 | 
 46 | # PDT-specific
 47 | .buildpath
 48 | 
 49 | ######################
 50 | # Intellij
 51 | ######################
 52 | .idea/**
 53 | *.iml
 54 | *.iws
 55 | *.ipr
 56 | *.ids
 57 | *.orig
 58 | 
 59 | ######################
 60 | # Maven
 61 | ######################
 62 | /log/**
 63 | /target/**
 64 | 
 65 | ######################
 66 | # Gradle
 67 | ######################
 68 | .gradle/**
 69 | 
 70 | ######################
 71 | # Package Files
 72 | ######################
 73 | *.jar
 74 | *.war
 75 | *.ear
 76 | *.db
 77 | 
 78 | ######################
 79 | # Windows
 80 | ######################
 81 | # Windows image file caches
 82 | Thumbs.db
 83 | 
 84 | # Folder config file
 85 | Desktop.ini
 86 | 
 87 | ######################
 88 | # Mac OSX
 89 | ######################
 90 | .DS_Store
 91 | .svn
 92 | 
 93 | # Thumbnails
 94 | ._*
 95 | 
 96 | # Files that might appear on external disk
 97 | .Spotlight-V100
 98 | .Trashes
 99 | 
100 | ######################
101 | # Directories
102 | ######################
103 | /build/**
104 | /bin/**
105 | /spring_loaded/**
106 | /deploy/**
107 | 
108 | ######################
109 | # Logs
110 | ######################
111 | *.log
112 | 
113 | ######################
114 | # Others
115 | ######################
116 | *.class
117 | *.*~
118 | *~
119 | .merge_file*
120 | 
121 | ######################
122 | # Gradle Wrapper
123 | ######################
124 | !gradle/wrapper/gradle-wrapper.jar
125 | 
126 | ######################
127 | # Maven Wrapper
128 | ######################
129 | !.mvn/wrapper/maven-wrapper.jar
130 | 


--------------------------------------------------------------------------------
/pom.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 3 |          xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
 4 |     <modelVersion>4.0.0</modelVersion>
 5 | 
 6 |     <groupId>io.github.jhipster</groupId>
 7 |     <artifactId>jhipster-openid-connect</artifactId>
 8 |     <version>0.0.1-SNAPSHOT</version>
 9 | 
10 |     <name>JHipster OpenID Connect</name>
11 |     <description>JHipster OpenID Connect server, made with CloudFoundry UAA</description>
12 | 
13 |     <dependencies>
14 |         <dependency>
15 |             <groupId>org.cloudfoundry.identity</groupId>
16 |             <artifactId>cloudfoundry-identity-uaa</artifactId>
17 |             <version>3.1.0</version>
18 |             <type>war</type>
19 |         </dependency>
20 |     </dependencies>
21 | 
22 |     <build>
23 |         <defaultGoal>cargo:run</defaultGoal>
24 |         <plugins>
25 |             <plugin>
26 |                 <groupId>org.codehaus.cargo</groupId>
27 |                 <artifactId>cargo-maven2-plugin</artifactId>
28 |                 <configuration>
29 |                     <container>
30 |                         <containerId>tomcat8x</containerId>
31 |                         <type>embedded</type>
32 |                         <systemProperties>
33 |                             <UAA_CONFIG_PATH>${project.basedir}/src/main/resources/config</UAA_CONFIG_PATH>
34 |                         </systemProperties>
35 |                     </container>
36 |                     <configuration>
37 |                         <properties>
38 |                             <cargo.servlet.port>8999</cargo.servlet.port>
39 |                         </properties>
40 |                     </configuration>
41 |                     <deployables>
42 |                         <deployable>
43 |                             <groupId>org.cloudfoundry.identity</groupId>
44 |                             <artifactId>cloudfoundry-identity-uaa</artifactId>
45 |                             <type>war</type>
46 |                             <properties>
47 |                                 <context>uaa</context>
48 |                             </properties>
49 |                         </deployable>
50 |                     </deployables>
51 |                 </configuration>
52 |             </plugin>
53 |         </plugins>
54 |     </build>
55 | </project>
56 | 


--------------------------------------------------------------------------------
/src/main/resources/config/uaa.yml:
--------------------------------------------------------------------------------
 1 | oauth:
 2 |     user:
 3 |     authorities:
 4 |         - openid
 5 |         - scim.me
 6 |         - cloud_controller.read
 7 |         - cloud_controller.write
 8 |         - cloud_controller_service_permissions.read
 9 |         - password.write
10 |         - scim.userids
11 |         - uaa.user
12 |         - approvals.me
13 |         - oauth.approvals
14 |         - profile
15 |         - roles
16 |         - user_attributes
17 |         - role_user
18 |         - role_admin
19 | 
20 |     clients:
21 |         gateway:
22 |             secret: secret
23 |             authorized-grant-types: authorization_code
24 |             scope: openid,role_user,role_admin
25 |             authorities: uaa.resource
26 |             redirect-uri: http://localhost:8080
27 | 
28 | scim:
29 |     groups:
30 |         zones.read: Read identity zones
31 |         zones.write: Create and update identity zones
32 |         idps.read: Retrieve identity providers
33 |         idps.write: Create and update identity providers
34 |         clients.admin: Create, modify and delete OAuth clients
35 |         clients.write: Create and modify OAuth clients
36 |         clients.read: Read information about OAuth clients
37 |         clients.secret: Change the password of an OAuth client
38 |         scim.write: Create, modify and delete SCIM entities, i.e. users and groups
39 |         scim.read: Read all SCIM entities, i.e. users and groups
40 |         scim.create: Create users
41 |         scim.userids: Read user IDs and retrieve users by ID
42 |         scim.zones: Control a user's ability to manage a zone
43 |         scim.invite: Send invitations to users
44 |         password.write: Change your password
45 |         oauth.approval: Manage approved scopes
46 |         oauth.login: Authenticate users outside of the UAA
47 |         openid: Access profile information, i.e. email, first and last name, and phone number
48 |         groups.update: Update group information and memberships
49 |         uaa.user: Act as a user in the UAA
50 |         uaa.resource: Serve resources protected by the UAA
51 |         uaa.admin: Act as an administrator throughout the UAA
52 |         uaa.none: Forbid acting as a user
53 |         role_admin: JHipster admin
54 |         role_user: JHipster user
55 |     users:
56 |         - admin|admin|admin@jhipster.github.io|JHipster|Admin|role_admin,role_user
57 |         - user|user|user@jhipster.github.io|JHipster|User|role_user
58 | 
59 | jwt:
60 |     token:
61 |         verification-key: |
62 |             -----BEGIN PUBLIC KEY-----
63 |             MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0m59l2u9iDnMbrXHfqkO
64 |             rn2dVQ3vfBJqcDuFUK03d+1PZGbVlNCqnkpIJ8syFppW8ljnWweP7+LiWpRoz0I7
65 |             fYb3d8TjhV86Y997Fl4DBrxgM6KTJOuE/uxnoDhZQ14LgOU2ckXjOzOdTsnGMKQB
66 |             LCl0vpcXBtFLMaSbpv1ozi8h7DJyVZ6EnFQZUWGdgTMhDrmqevfx95U/16c5WBDO
67 |             kqwIn7Glry9n9Suxygbf8g5AzpWcusZgDLIIZ7JTUldBb8qU2a0Dl4mvLZOn4wPo
68 |             jfj9Cw2QICsc5+Pwf21fP+hzf+1WSRHbnYv8uanRO0gZ8ekGaghM/2H6gqJbo2nI
69 |             JwIDAQAB
70 |             -----END PUBLIC KEY-----
71 |         signing-key: |
72 |             -----BEGIN RSA PRIVATE KEY-----
73 |             MIIEowIBAAKCAQEA0m59l2u9iDnMbrXHfqkOrn2dVQ3vfBJqcDuFUK03d+1PZGbV
74 |             lNCqnkpIJ8syFppW8ljnWweP7+LiWpRoz0I7fYb3d8TjhV86Y997Fl4DBrxgM6KT
75 |             JOuE/uxnoDhZQ14LgOU2ckXjOzOdTsnGMKQBLCl0vpcXBtFLMaSbpv1ozi8h7DJy
76 |             VZ6EnFQZUWGdgTMhDrmqevfx95U/16c5WBDOkqwIn7Glry9n9Suxygbf8g5AzpWc
77 |             usZgDLIIZ7JTUldBb8qU2a0Dl4mvLZOn4wPojfj9Cw2QICsc5+Pwf21fP+hzf+1W
78 |             SRHbnYv8uanRO0gZ8ekGaghM/2H6gqJbo2nIJwIDAQABAoIBAHPV9rSfzllq16op
79 |             zoNetIJBC5aCcU4vJQBbA2wBrgMKUyXFpdSheQphgY7GP/BJTYtifRiS9RzsHAYY
80 |             pAlTQEQ9Q4RekZAdd5r6rlsFrUzL7Xj/CVjNfQyHPhPocNqwrkxp4KrO5eL06qcw
81 |             UzT7UtnoiCdSLI7IL0hIgJZP8J1uPNdXH+kkDEHE9xzU1q0vsi8nBLlim+ioYfEa
82 |             Q/Q/ovMNviLKVs+ZUz+wayglDbCzsevuU+dh3Gmfc98DJw6n6iClpd4fDPqvhxUO
83 |             BDeQT1mFeHxexDse/kH9nygxT6E4wlU1sw0TQANcT6sHReyHT1TlwnWlCQzoR3l2
84 |             RmkzUsECgYEA8W/VIkfyYdUd5ri+yJ3iLdYF2tDvkiuzVmJeA5AK2KO1fNc7cSPK
85 |             /sShHruc0WWZKWiR8Tp3d1XwA2rHMFHwC78RsTds+NpROs3Ya5sWd5mvmpEBbL+z
86 |             cl3AU9NLHVvsZjogmgI9HIMTTl4ld7GDsFMt0qlCDztqG6W/iguQCx8CgYEA3x/j
87 |             UkP45/PaFWd5c1DkWvmfmi9UxrIM7KeyBtDExGIkffwBMWFMCWm9DODw14bpnqAA
88 |             jH5AhQCzVYaXIdp12b+1+eOOckYHwzjWOFpJ3nLgNK3wi067jVp0N0UfgV5nfYw/
89 |             +YoHfYRCGsM91fowh7wLcyPPwmSAbQAKwbOZKfkCgYEAnccDdZ+m2iA3pitdIiVr
90 |             RaDzuoeHx/IfBHjMD2/2ZpS1aZwOEGXfppZA5KCeXokSimj31rjqkWXrr4/8E6u4
91 |             PzTiDvm1kPq60r7qi4eSKx6YD15rm/G7ByYVJbKTB+CmoDekToDgBt3xo+kKeyna
92 |             cUQqUdyieunM8bxja4ca3ukCgYAfrDAhomJ30qa3eRvFYcs4msysH2HiXq30/g0I
93 |             aKQ12FSjyZ0FvHEFuQvMAzZM8erByKarStSvzJyoXFWhyZgHE+6qDUJQOF6ruKq4
94 |             DyEDQb1P3Q0TSVbYRunOWrKRM6xvJvSB4LUVfSvBDsv9TumKqwfZDVFVn9yXHHVq
95 |             b6sjSQKBgDkcyYkAjpOHoG3XKMw06OE4OKpP9N6qU8uZOuA8ZF9ZyR7vFf4bCsKv
96 |             QH+xY/4h8tgL+eASz5QWhj8DItm8wYGI5lKJr8f36jk0JLPUXODyDAeN6ekXY9LI
97 |             fudkijw0dnh28LJqbkFF5wLNtATzyCfzjp+czrPMn9uqLNKt/iVD
98 |             -----END RSA PRIVATE KEY-----
99 | 


--------------------------------------------------------------------------------