Baeldung
diff --git a/‎oauth-authorization-server-with-redis/pom.xml
Lines changed: 35 additions & 0 deletions b/‎oauth-authorization-server-with-redis/pom.xml
Lines changed: 35 additions & 0 deletions
diff --git a/‎oauth-authorization-server-with-redis/redis-authorization-server/pom.xml
Lines changed: 40 additions & 0 deletions b/‎oauth-authorization-server-with-redis/redis-authorization-server/pom.xml
Lines changed: 40 additions & 0 deletions
diff --git a/‎oauth-authorization-server-with-redis/redis-authorization-server/src/main/java/com/baeldung/OAuth2AuthorizationServerApplication.java
Lines changed: 13 additions & 0 deletions b/‎oauth-authorization-server-with-redis/redis-authorization-server/src/main/java/com/baeldung/OAuth2AuthorizationServerApplication.java
Lines changed: 13 additions & 0 deletions
diff --git a/‎oauth-authorization-server-with-redis/redis-authorization-server/src/main/java/com/baeldung/config/DefaultSecurityConfig.java
Lines changed: 61 additions & 0 deletions b/‎oauth-authorization-server-with-redis/redis-authorization-server/src/main/java/com/baeldung/config/DefaultSecurityConfig.java
Lines changed: 61 additions & 0 deletions
diff --git a/‎oauth-authorization-server-with-redis/redis-authorization-server/src/main/resources/application.yml
Lines changed: 32 additions & 0 deletions b/‎oauth-authorization-server-with-redis/redis-authorization-server/src/main/resources/application.yml
Lines changed: 32 additions & 0 deletions
diff --git a/‎oauth-authorization-server-with-redis/redis-client-server/pom.xml
Lines changed: 48 additions & 0 deletions b/‎oauth-authorization-server-with-redis/redis-client-server/pom.xml
Lines changed: 48 additions & 0 deletions
diff --git a/‎oauth-authorization-server-with-redis/redis-client-server/src/main/java/com/baeldung/OAuth2ClientApplication.java
Lines changed: 13 additions & 0 deletions b/‎oauth-authorization-server-with-redis/redis-client-server/src/main/java/com/baeldung/OAuth2ClientApplication.java
Lines changed: 13 additions & 0 deletions
diff --git a/‎oauth-authorization-server-with-redis/redis-client-server/src/main/java/com/baeldung/config/SecurityConfig.java
Lines changed: 24 additions & 0 deletions b/‎oauth-authorization-server-with-redis/redis-client-server/src/main/java/com/baeldung/config/SecurityConfig.java
Lines changed: 24 additions & 0 deletions
diff --git a/‎oauth-authorization-server-with-redis/redis-client-server/src/main/java/com/baeldung/config/WebClientConfig.java
Lines changed: 38 additions & 0 deletions b/‎oauth-authorization-server-with-redis/redis-client-server/src/main/java/com/baeldung/config/WebClientConfig.java
Lines changed: 38 additions & 0 deletions
diff --git a/‎oauth-authorization-server-with-redis/redis-client-server/src/main/java/com/baeldung/web/ArticlesController.java
Lines changed: 29 additions & 0 deletions b/‎oauth-authorization-server-with-redis/redis-client-server/src/main/java/com/baeldung/web/ArticlesController.java
Lines changed: 29 additions & 0 deletions
@@ -0,0 +1,35 @@
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <modelVersion>4.0.0</modelVersion>
+    <description>Spring Security OAuth Authorization Server Implemented With Redis</description>
+
+    <groupId>com.baeldung</groupId>
+    <artifactId>oauth-authorization-server-with-redis</artifactId>
+    <version>0.1.0-SNAPSHOT</version>
+    <packaging>pom</packaging>
+
+    <parent>
+        <groupId>org.springframework.boot</groupId>
+        <artifactId>spring-boot-starter-parent</artifactId>
+        <version>3.5.0</version>
+    </parent>
+
+    <modules>
+        <module>redis-authorization-server</module>
+        <module>redis-client-server</module>
+        <module>redis-resource-server</module>
+    </modules>
+
+    <properties>
+        <java.version>17</java.version>
+    </properties>
+
+    <build>
+        <plugins>
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-dependency-plugin</artifactId>
+            </plugin>
+        </plugins>
+    </build>
+</project>
@@ -0,0 +1,40 @@
+<project xmlns="http://maven.apache.org/POM/4.0.0"
+    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+    xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <modelVersion>4.0.0</modelVersion>
+    <artifactId>redis-authorization-server</artifactId>
+    <name>redis-authorization-server</name>
+    <packaging>jar</packaging>
+
+    <parent>
+        <groupId>com.baeldung</groupId>
+        <artifactId>oauth-authorization-server-with-redis</artifactId>
+        <version>0.1.0-SNAPSHOT</version>
+    </parent>
+
+    <dependencies>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-web</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-security</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-oauth2-authorization-server</artifactId>
+        </dependency>
+
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-test</artifactId>
+            <scope>test</scope>
+        </dependency>
+        <dependency>
+            <groupId>io.rest-assured</groupId>
+            <artifactId>rest-assured</artifactId>
+            <scope>test</scope>
+        </dependency>
+    </dependencies>
+</project>
@@ -0,0 +1,13 @@
+package com.baeldung;
+
+import org.springframework.boot.SpringApplication;
+import org.springframework.boot.autoconfigure.SpringBootApplication;
+
+@SpringBootApplication
+public class OAuth2AuthorizationServerApplication {
+
+    public static void main(String[] args) {
+        SpringApplication.run(OAuth2AuthorizationServerApplication.class, args);
+    }
+
+}
@@ -0,0 +1,61 @@
+package com.baeldung.config;
+
+import static org.springframework.security.config.Customizer.withDefaults;
+
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.core.annotation.Order;
+import org.springframework.security.config.Customizer;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
+import org.springframework.security.core.userdetails.User;
+import org.springframework.security.core.userdetails.UserDetails;
+import org.springframework.security.core.userdetails.UserDetailsService;
+import org.springframework.security.crypto.factory.PasswordEncoderFactories;
+import org.springframework.security.crypto.password.PasswordEncoder;
+import org.springframework.security.oauth2.server.authorization.config.annotation.web.configurers.OAuth2AuthorizationServerConfigurer;
+import org.springframework.security.provisioning.InMemoryUserDetailsManager;
+import org.springframework.security.web.SecurityFilterChain;
+
+@Configuration
+@EnableWebSecurity
+public class SecurityConfig {
+
+    @Bean
+    @Order(1)
+    SecurityFilterChain authorizationServerSecurityFilterChain(HttpSecurity http) throws Exception {
+        OAuth2AuthorizationServerConfigurer authorizationServerConfigurer = OAuth2AuthorizationServerConfigurer.authorizationServer()
+          .oidc(Customizer.withDefaults());
+
+        http.securityMatcher(authorizationServerConfigurer.getEndpointsMatcher())
+          .with(authorizationServerConfigurer, Customizer.withDefaults())
+          .authorizeHttpRequests((authorize) -> authorize.anyRequest()
+            .authenticated());
+
+        return http.formLogin(withDefaults())
+          .build();
+    }
+
+    @Bean
+    @Order(2)
+    SecurityFilterChain defaultSecurityFilterChain(HttpSecurity http) throws Exception {
+        http.authorizeHttpRequests(authorizeRequests -> authorizeRequests.anyRequest()
+            .authenticated())
+          .formLogin(withDefaults());
+
+        return http.build();
+    }
+
+    @Bean
+    UserDetailsService users() {
+        PasswordEncoder encoder = PasswordEncoderFactories.createDelegatingPasswordEncoder();
+        UserDetails user = User.builder()
+          .username("admin")
+          .password("password")
+          .passwordEncoder(encoder::encode)
+          .roles("USER")
+          .build();
+
+        return new InMemoryUserDetailsManager(user);
+    }
+}
@@ -0,0 +1,32 @@
+server:
+  port: 9000
+
+logging:
+  level:
+    root: INFO
+    org.springframework.web: INFO
+    org.springframework.security: INFO
+    org.springframework.security.oauth2: INFO
+
+spring:
+  security:
+    oauth2:
+      authorizationserver:
+        issuer: http://auth-server:9000
+        client:
+          articles-client:
+            registration:
+              client-id: articles-client
+              client-secret: "{noop}secret"
+              client-name: Articles Client
+              client-authentication-methods:
+                - client_secret_basic
+              authorization-grant-types:
+                - authorization_code
+                - refresh_token
+              redirect-uris:
+                - http://127.0.0.1:8080/login/oauth2/code/articles-client-oidc
+                - http://127.0.0.1:8080/authorized
+              scopes:
+                - openid
+                - articles.read
@@ -0,0 +1,48 @@
+<project xmlns="http://maven.apache.org/POM/4.0.0"
+    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+    xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <modelVersion>4.0.0</modelVersion>
+    <artifactId>redis-client-server</artifactId>
+    <name>redis-client-server</name>
+    <packaging>jar</packaging>
+
+    <parent>
+        <groupId>com.baeldung</groupId>
+        <artifactId>oauth-authorization-server-with-redis</artifactId>
+        <version>0.1.0-SNAPSHOT</version>
+    </parent>
+
+    <dependencies>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-web</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-security</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-oauth2-client</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework</groupId>
+            <artifactId>spring-webflux</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>io.projectreactor.netty</groupId>
+            <artifactId>reactor-netty</artifactId>
+        </dependency>
+
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-test</artifactId>
+            <scope>test</scope>
+        </dependency>
+        <dependency>
+            <groupId>io.rest-assured</groupId>
+            <artifactId>rest-assured</artifactId>
+            <scope>test</scope>
+        </dependency>
+    </dependencies>
+</project>
@@ -0,0 +1,13 @@
+package com.baeldung;
+
+import org.springframework.boot.SpringApplication;
+import org.springframework.boot.autoconfigure.SpringBootApplication;
+
+@SpringBootApplication
+public class OAuth2ClientApplication {
+
+    public static void main(String[] args) {
+        SpringApplication.run(OAuth2ClientApplication.class, args);
+    }
+
+}
@@ -0,0 +1,24 @@
+package com.baeldung.config;
+
+import org.springframework.context.annotation.Bean;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
+import org.springframework.security.web.SecurityFilterChain;
+
+import static org.springframework.security.config.Customizer.withDefaults;
+
+@EnableWebSecurity
+public class SecurityConfig {
+
+    @Bean
+    SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
+        http
+          .authorizeHttpRequests(authorizeRequests ->
+            authorizeRequests.anyRequest().authenticated()
+          )
+          .oauth2Login(oauth2Login ->
+            oauth2Login.loginPage("/oauth2/authorization/articles-client-oidc"))
+          .oauth2Client(withDefaults());
+        return http.build();
+    }
+}
@@ -0,0 +1,38 @@
+package com.baeldung.config;
+
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.oauth2.client.OAuth2AuthorizedClientManager;
+import org.springframework.security.oauth2.client.OAuth2AuthorizedClientProvider;
+import org.springframework.security.oauth2.client.OAuth2AuthorizedClientProviderBuilder;
+import org.springframework.security.oauth2.client.registration.ClientRegistrationRepository;
+import org.springframework.security.oauth2.client.web.DefaultOAuth2AuthorizedClientManager;
+import org.springframework.security.oauth2.client.web.OAuth2AuthorizedClientRepository;
+import org.springframework.security.oauth2.client.web.reactive.function.client.ServletOAuth2AuthorizedClientExchangeFilterFunction;
+import org.springframework.web.reactive.function.client.WebClient;
+
+@Configuration
+public class WebClientConfig {
+
+    @Bean
+    WebClient webClient(OAuth2AuthorizedClientManager authorizedClientManager) {
+        ServletOAuth2AuthorizedClientExchangeFilterFunction oauth2Client = new ServletOAuth2AuthorizedClientExchangeFilterFunction(authorizedClientManager);
+        return WebClient.builder()
+          .apply(oauth2Client.oauth2Configuration())
+          .build();
+    }
+
+    @Bean
+    OAuth2AuthorizedClientManager authorizedClientManager(ClientRegistrationRepository clientRegistrationRepository,
+      OAuth2AuthorizedClientRepository authorizedClientRepository) {
+        OAuth2AuthorizedClientProvider authorizedClientProvider = OAuth2AuthorizedClientProviderBuilder.builder()
+          .authorizationCode()
+          .refreshToken()
+          .build();
+        DefaultOAuth2AuthorizedClientManager authorizedClientManager = new DefaultOAuth2AuthorizedClientManager(clientRegistrationRepository,
+          authorizedClientRepository);
+        authorizedClientManager.setAuthorizedClientProvider(authorizedClientProvider);
+
+        return authorizedClientManager;
+    }
+}
@@ -0,0 +1,29 @@
+package com.baeldung.web;
+
+import org.springframework.security.oauth2.client.OAuth2AuthorizedClient;
+import org.springframework.security.oauth2.client.annotation.RegisteredOAuth2AuthorizedClient;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.RestController;
+import org.springframework.web.reactive.function.client.WebClient;
+
+import static org.springframework.security.oauth2.client.web.reactive.function.client.ServerOAuth2AuthorizedClientExchangeFilterFunction.oauth2AuthorizedClient;
+
+@RestController
+public class ArticlesController {
+
+    private final WebClient webClient;
+
+    public ArticlesController(WebClient webClient) {
+        this.webClient = webClient;
+    }
+
+    @GetMapping(value = "/articles")
+    public String[] getArticles(@RegisteredOAuth2AuthorizedClient("articles-client-authorization-code") OAuth2AuthorizedClient authorizedClient) {
+        return this.webClient.get()
+          .uri("http://127.0.0.1:8090/articles")
+          .attributes(oauth2AuthorizedClient(authorizedClient))
+          .retrieve()
+          .bodyToMono(String[].class)
+          .block();
+    }
+}