-
Notifications
You must be signed in to change notification settings - Fork 15
/
OAuth2Client.java
63 lines (50 loc) · 2.46 KB
/
OAuth2Client.java
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
package com.onegini.oidc.security;
import static org.springframework.security.oauth2.common.AuthenticationScheme.header;
import java.util.Arrays;
import javax.annotation.Resource;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.context.annotation.Scope;
import org.springframework.context.annotation.ScopedProxyMode;
import org.springframework.security.oauth2.client.OAuth2ClientContext;
import org.springframework.security.oauth2.client.OAuth2RestOperations;
import org.springframework.security.oauth2.client.resource.OAuth2ProtectedResourceDetails;
import org.springframework.security.oauth2.client.token.grant.code.AuthorizationCodeResourceDetails;
import org.springframework.security.oauth2.config.annotation.web.configuration.EnableOAuth2Client;
import org.springframework.web.client.RestTemplate;
import com.onegini.oidc.config.ApplicationProperties;
import com.onegini.oidc.model.OpenIdDiscovery;
@Configuration
@EnableOAuth2Client
public class OAuth2Client {
private static final String DISCOVERY_PATH = "/.well-known/openid-configuration"; //NOSONAR
@Resource
private ApplicationProperties applicationProperties;
@SuppressWarnings("SpringJavaAutowiringInspection") // Provided by Spring Boot
@Resource
private OAuth2ClientContext oAuth2ClientContext;
@Resource
private RestTemplate restTemplate;
@Bean
public OpenIdDiscovery getOpenIdDiscovery() {
return restTemplate.getForObject(applicationProperties.getIssuer() + DISCOVERY_PATH, OpenIdDiscovery.class);
}
@Bean
public OAuth2ProtectedResourceDetails protectedResourceDetails(final OpenIdDiscovery configuration) {
//setup OAuth
final AuthorizationCodeResourceDetails conf = new AuthorizationCodeResourceDetails();
conf.setAuthenticationScheme(header);
conf.setClientAuthenticationScheme(header);
conf.setClientId(applicationProperties.getClientId());
conf.setClientSecret(applicationProperties.getClientSecret());
conf.setUserAuthorizationUri(configuration.getAuthorizationEndpoint());
conf.setAccessTokenUri(configuration.getTokenEndpoint());
conf.setScope(Arrays.asList("openid", "profile"));
return conf;
}
@Bean
@Scope(value = "session", proxyMode = ScopedProxyMode.INTERFACES)
public OAuth2RestOperations oAuth2RestOperations(final OpenIdDiscovery configuration) {
return new OidcRestTemplate(protectedResourceDetails(configuration), oAuth2ClientContext);
}
}