spring-boot-security-oauth-client-sample

2024-06-18 10:18:34 +08:00
parent 80337f7ad3
commit 22c40f1e1d
10 changed files with 361 additions and 1 deletions
--- a/integrations/spring-boot-security-oauth-client-sample/README.md
+++ b/integrations/spring-boot-security-oauth-client-sample/README.md
@@ -0,0 +1,89 @@
+# spring-oauth-client-sample
+
+## spring-boot-security-oauth-client-sample
+
+### Application
+
+```java
+@SpringBootApplication
+public class SpringBootOauthClientApplication {
+
+	public static void main(String[] args) {
+		SpringApplication.run(SpringBootOauthClientApplication.class, args);
+	}
+
+}
+```
+
+### application.yml
+
+```ini
+# 授权服务地址
+maxkey-auth-url: http://sso.maxkey.top/sign
+
+security:
+  oauth2:
+    client:
+      client-id: 1000185112135991296
+      client-secret: 8Nv7MTcwNjIwMjQyMDU5Mzg5MDU65R
+      scope: all
+      user-authorization-uri: ${maxkey-auth-url}/authz/oauth/v20/authorize
+      access-token-uri: ${maxkey-auth-url}/authz/oauth/v20/token
+    resource:
+      # 检查令牌
+      #token-info-uri: ${maxkey-auth-url}/authz/oauth/v20/token
+      # 用户信息
+      user-info-uri: ${maxkey-auth-url}/api/oauth/v20/me
+```
+
+### ResourceServerConfiguration
+
+```java
+@Configuration
+@EnableOAuth2Sso
+public class ResourceServerConfiguration extends WebSecurityConfigurerAdapter {
+	Logger log = LoggerFactory.getLogger(ResourceServerConfiguration.class);
+	
+	@Value("${maxkey-auth-url}") 
+	String maxkeyAuthUrl;
+	
+	@Value("${security.oauth2.client.user-authorization-uri}") 
+	String userAuthorizationUri;
+	
+	@Value("${security.oauth2.client.access-token-uri}") 
+	String accessTokenUri;
+	
+	@Value("${security.oauth2.resource.user-info-uri}") 
+	String userInfoUri;
+	
+    @Override
+    public void configure(HttpSecurity http) throws Exception {
+       //http.antMatcher("/orgs/**").antMatcher("/userinfo").antMatcher("/login").authorizeRequests().anyRequest().authenticated();
+    	http.authorizeRequests().anyRequest().authenticated().and().csrf().disable();
+    	log.info("UserAuthorizationUri {}" ,userAuthorizationUri);
+    	log.info("AccessTokenUri {}" ,accessTokenUri);
+    	log.info("UserInfoUri {}" ,userInfoUri);
+    	if(accessTokenUri.startsWith("https")) {
+    		HttpsTrusts.beforeConnection();
+    	}
+    	log.debug("ResourceServerConfiguration");
+ 
+    }
+}
+```
+
+### ResourceController
+
+```java
+@RestController
+public class ResourceController {
+	Logger log = LoggerFactory.getLogger(ResourceController.class);
+			
+    @GetMapping("/")
+    public String index() {
+    	Authentication authentication = SecurityContextHolder.getContext().getAuthentication();
+        return authentication.getPrincipal().toString();
+    }
+}
+
+```