Recopie de l'exemple d'OAuth

Sauf qu'en fait c'est pour authentifier une application avec une autre. Boulet !

Recopie de l'exemple d'OAuth
Sauf qu'en fait c'est pour authentifier une application avec une autre. Boulet !
Geoffrey PREUD'HOMME · Geoffrey PREUD'HOMME
1 parent 0e498f62
Showing 6 changed files with 94 additions and 19 deletions Show diff stats
src/main/java/etunicorn/CustomUserDetailsService.java
src/main/java/etunicorn/OAuth2ServerConfiguration.java
src/main/java/etunicorn/PersonneController.java
src/main/java/etunicorn/UserDetailsService.java
src/main/java/etunicorn/WebSecurityConfiguration.java
src/main/main.iml
@@ -3,13 +3,16 @@ package etunicorn;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.security.core.GrantedAuthority;
 import org.springframework.security.core.userdetails.UserDetails;
+import org.springframework.security.core.userdetails.UserDetailsService;
 import org.springframework.security.core.userdetails.UsernameNotFoundException;
+import org.springframework.stereotype.Service;
  
 import java.util.Collection;
  
 /**
  * Created by geoffrey on 29/01/17.
  */
+@Service
 public class CustomUserDetailsService implements UserDetailsService {
  
     private final PersonneRepository personneRepository;
@@ -20,7 +23,7 @@ public class CustomUserDetailsService implements UserDetailsService {
     }
  
     @Override
-    public UserDetails loadByUsername(String login) throws UsernameNotFoundException {
+    public UserDetails loadUserByUsername(String login) throws UsernameNotFoundException {
         Personne personne = personneRepository.findByLogin(login);
         if (personne == null) {
             throw new UsernameNotFoundException(String.format("L'utilisateur %s n'existe pas !", login));
@@ -0,0 +1,87 @@
+package etunicorn;
+
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.beans.factory.annotation.Qualifier;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.context.annotation.Primary;
+import org.springframework.security.authentication.AuthenticationManager;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.oauth2.config.annotation.configurers.ClientDetailsServiceConfigurer;
+import org.springframework.security.oauth2.config.annotation.web.configuration.AuthorizationServerConfigurerAdapter;
+import org.springframework.security.oauth2.config.annotation.web.configuration.EnableAuthorizationServer;
+import org.springframework.security.oauth2.config.annotation.web.configuration.EnableResourceServer;
+import org.springframework.security.oauth2.config.annotation.web.configuration.ResourceServerConfigurerAdapter;
+import org.springframework.security.oauth2.config.annotation.web.configurers.AuthorizationServerEndpointsConfigurer;
+import org.springframework.security.oauth2.config.annotation.web.configurers.ResourceServerSecurityConfigurer;
+import org.springframework.security.oauth2.provider.token.DefaultTokenServices;
+import org.springframework.security.oauth2.provider.token.TokenStore;
+import org.springframework.security.oauth2.provider.token.store.InMemoryTokenStore;
+
+/**
+ * Created by geoffrey on 29/01/17.
+ */
+@Configuration
+public class OAuth2ServerConfiguration {
+    private static final String RESOURCE_ID = "etunicornservice";
+
+    @Configuration
+    @EnableResourceServer
+    protected static class ResourceServerConfiguration extends ResourceServerConfigurerAdapter {
+
+        @Override
+        public void configure(ResourceServerSecurityConfigurer resources) {
+            resources.resourceId(RESOURCE_ID);
+        }
+
+        @Override
+        public void configure(HttpSecurity http) throws Exception {
+            http.authorizeRequests()
+                    .antMatchers("/personne").authenticated();
+        }
+    }
+
+    @Configuration
+    @EnableAuthorizationServer
+    protected static class AuthorizationServerConfiguration extends AuthorizationServerConfigurerAdapter {
+
+        private TokenStore tokenStore = new InMemoryTokenStore();
+
+        @Autowired
+        @Qualifier("authenticationManagerBean")
+        private AuthenticationManager authenticationManager;
+
+        @Autowired
+        private CustomUserDetailsService userDetailsService;
+
+        @Override
+        public void configure(ClientDetailsServiceConfigurer clients) throws Exception {
+            clients
+                    .inMemory()
+                        .withClient("clientapp")
+                            .authorizedGrantTypes("password", "refresh_token")
+                            .authorities("USER")
+                            .scopes("read", "write")
+                            .resourceIds(RESOURCE_ID)
+                            .secret("123456");
+        }
+
+        @Override
+        public void configure(AuthorizationServerEndpointsConfigurer endpoints) throws Exception {
+            endpoints
+                    .tokenStore(this.tokenStore)
+                    .authenticationManager(this.authenticationManager)
+                    .userDetailsService(userDetailsService);
+        }
+
+        @Bean
+        @Primary
+        public DefaultTokenServices tokenServices() {
+                DefaultTokenServices tokenServices = new DefaultTokenServices();
+                tokenServices.setSupportRefreshToken(true);
+                tokenServices.setTokenStore(this.tokenStore);
+                return tokenServices;
+        }
+    }
+
+}
@@ -5,16 +5,11 @@ import org.springframework.http.HttpStatus;
 import org.springframework.http.ResponseEntity;
 import org.springframework.web.bind.annotation.PathVariable;
 import org.springframework.web.bind.annotation.RequestParam;
-import org.springframework.web.bind.annotation.ResponseBody;
 import org.springframework.web.bind.annotation.RestController;
  
 import java.math.BigDecimal;
-import java.text.DateFormat;
-import java.text.ParseException;
-import java.text.SimpleDateFormat;
 import java.util.Date;
 import java.util.List;
-import java.util.Locale;
  
 /**
  * Created by geoffrey on 28/01/17.
@@ -1,11 +0,0 @@
-package etunicorn;
-
-import org.springframework.security.core.userdetails.UserDetails;
-import org.springframework.security.core.userdetails.UsernameNotFoundException;
-
-/**
- * Created by geoffrey on 29/01/17.
- */
-public interface UserDetailsService {
-    UserDetails loadByUsername(String s) throws UsernameNotFoundException;
-}
@@ -25,8 +25,8 @@ public class WebSecurityConfiguration extends WebSecurityConfigurerAdapter {
  
     @Override
     @Bean
-    public AuthenticationManager authenticationManager() throws Exception {
-        return super.authenticationManager();
+    public AuthenticationManager authenticationManagerBean() throws Exception {
+        return super.authenticationManagerBean();
     }
  
  
@@ -27,5 +27,6 @@
     <orderEntry type="library" name="Maven: org.slf4j:log4j-over-slf4j:1.7.22" level="project" />
     <orderEntry type="library" name="Maven: org.springframework.security:spring-security-core:4.1.4.RELEASE" level="project" />
     <orderEntry type="library" name="Maven: org.springframework.security:spring-security-config:4.1.4.RELEASE" level="project" />
+    <orderEntry type="library" name="Maven: org.springframework.security.oauth:spring-security-oauth2:2.0.12.RELEASE" level="project" />
   </component>
 </module>
 \ No newline at end of file