OAuthConfiguration.java example

Explorer

Oauth-Resource-Servers-master
- karthik-server
  - karthik-auth
    - src
      - main
        java
        karthik
        oauth
        AccountConnectionSignUpService.java
        ConvertersConfiguration.java
        OAuthConfiguration.java
        OauthServerMain.java
        SecurityConfiguration.java
        SimpleSocialUsersDetailService.java
        SocialConfig.java
        UserConnection.java
        UserProfile.java
        UsersDao.java
        domain
        ClientController.java
        IndexController.java
        UserDetailsService.java
        editors
        AuthorityPropertyEditor.java
        SplitCollectionEditor.java
  - karthik-commons
    - src
      - main
        java
        karthik
        oauth
        domain
        AbstractAuditingEntity.java
        Authority.java
        User.java
        UserRepository.java
        security
        SimpleCORSFilter.java
        UserNotActivatedException.java
        org
        hibernate
        dialect
        SQLiteDialect.java
  - karthik-resource
    - src
      - main
        java
        karthik
        OAuthConfiguration.java
        ResourceServerMain.java
        SwaggerConfig.java
        config
        Constants.java
        repository
        AuthorityRepository.java
        restDTO
        SpinDTO.java
        TournamenDTO.java
        UserDTO.java
        restcontrollers
        AccountResource.java
        security
        AuthoritiesConstants.java
        SecurityUtils.java
        SpringSecurityAuditorAware.java
        service
        AccountService.java
        UserService.java
        util
        RandomUtil.java

package karthik;

import org.springframework.boot.autoconfigure.jdbc.DataSourceBuilder;
import org.springframework.boot.context.properties.ConfigurationProperties;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.http.HttpMethod;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.oauth2.config.annotation.web.configuration.EnableResourceServer;
import org.springframework.security.oauth2.config.annotation.web.configuration.ResourceServerConfigurerAdapter;
import org.springframework.security.oauth2.config.annotation.web.configurers.ResourceServerSecurityConfigurer;
import org.springframework.security.oauth2.provider.token.TokenStore;
import org.springframework.security.oauth2.provider.token.store.JdbcTokenStore;

import javax.sql.DataSource;


@Configuration
@EnableResourceServer
public class OAuthConfiguration extends ResourceServerConfigurerAdapter {

    @Bean
    @ConfigurationProperties(prefix = "spring.datasource_oauth")
    public DataSource oauthDataSource() {
        return DataSourceBuilder.create().build();
    }

    @Override
    public void configure(ResourceServerSecurityConfigurer resources) throws Exception {
        TokenStore tokenStore = new JdbcTokenStore(oauthDataSource());
        resources.resourceId("todo-services")
                .tokenStore(tokenStore);
    }

    @Override
    public void configure(HttpSecurity http) throws Exception {
        http
            // For some reason we cant just "permitAll" OPTIONS requests which are needed for CORS support. Spring Security
            // will respond with an HTTP 401 nonetheless.
            // So we just put all other requests types under OAuth control and exclude OPTIONS.
            .authorizeRequests()
                .antMatchers(HttpMethod.GET, "/**").access("#oauth2.hasScope('read')")
                .antMatchers(HttpMethod.POST, "/**").access("#oauth2.hasScope('write')")
                .antMatchers(HttpMethod.PATCH, "/**").access("#oauth2.hasScope('write')")
                .antMatchers(HttpMethod.PUT, "/**").access("#oauth2.hasScope('write')")
                .antMatchers(HttpMethod.DELETE, "/**").access("#oauth2.hasScope('write')")
        /*.and()
            // Add headers required for CORS requests.
            .headers().addHeaderWriter((request, response) -> {
                response.addHeader("Access-Control-Allow-Origin", "*");
                if (request.getMethod().equals("OPTIONS")) {
                    response.setHeader("Access-Control-Allow-Methods", request.getHeader("Access-Control-Request-Method"));
                    response.setHeader("Access-Control-Allow-Headers", request.getHeader("Access-Control-Request-Headers"));
                }
            })*/;
    }
}