无法使用 spring boot 和 kotlin 获取 access_token
问题描述 投票:0回答:0
我需要帮助实施我已经做了几天,但它不起作用,因为当我尝试邮递员时,我得到以下回应:
我正在使用 Maven,这些是依赖项:
<?xml version="1.0" encoding="UTF-8"?>
<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 https://maven.apache.org/xsd/maven-4.0.0.xsd">
<modelVersion>4.0.0</modelVersion>
<parent>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-parent</artifactId>
<version>2.7.9</version>
<relativePath/> <!-- lookup parent from repository -->
</parent>
<groupId>com.viergegroup</groupId>
<artifactId>switch-prosa</artifactId>
<version>0.0.1-SNAPSHOT</version>
<packaging>war</packaging>
<name>switch-prosa</name>
<description>Switch Prosa</description>
<properties>
<java.version>11</java.version>
<kotlin.version>1.6.21</kotlin.version>
</properties>
<dependencies>
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-security</artifactId>
</dependency>
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-oauth2-resource-server</artifactId>
</dependency>
<dependency>
<groupId>org.postgresql</groupId>
<artifactId>postgresql</artifactId>
</dependency>
<dependency>
<groupId>commons-beanutils</groupId>
<artifactId>commons-beanutils</artifactId>
<version>1.9.4</version>
</dependency>
</dependencies>
这些是我实现的类:
package com.viergegroup.switchprosa.websecuritybearer
import com.nimbusds.jose.jwk.JWKSelector
import com.nimbusds.jose.jwk.JWKSet
import com.nimbusds.jose.jwk.RSAKey
import com.nimbusds.jose.jwk.source.JWKSource
import com.nimbusds.jose.proc.SecurityContext
import com.shared.commons.AppSettings
import org.springframework.beans.factory.annotation.Autowired
import org.springframework.context.annotation.Bean
import org.springframework.context.annotation.Configuration
import org.springframework.core.Ordered
import org.springframework.core.annotation.Order
import org.springframework.security.config.Customizer
import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder
import org.springframework.security.config.annotation.web.builders.HttpSecurity
import org.springframework.security.config.annotation.web.configuration.OAuth2AuthorizationServerConfiguration
import org.springframework.security.crypto.password.PasswordEncoder
import org.springframework.security.oauth2.core.AuthorizationGrantType
import org.springframework.security.oauth2.core.ClientAuthenticationMethod
import org.springframework.security.oauth2.core.oidc.OidcScopes
import org.springframework.security.oauth2.server.authorization.client.InMemoryRegisteredClientRepository
import org.springframework.security.oauth2.server.authorization.client.RegisteredClient
import org.springframework.security.oauth2.server.authorization.client.RegisteredClientRepository
import org.springframework.security.oauth2.server.authorization.config.ClientSettings
import org.springframework.security.oauth2.server.authorization.config.ProviderSettings
import org.springframework.security.web.SecurityFilterChain
import java.security.KeyPair
import java.security.KeyPairGenerator
import java.security.interfaces.RSAPrivateKey
import java.security.interfaces.RSAPublicKey
import java.util.*
@Configuration(proxyBeanMethods = false)
class AuthorizationServerConfig {
@Autowired
private lateinit var passwordEncoder: PasswordEncoder
@Autowired
private lateinit var customAuthenticationProvider: CustomAuthenticationProvider
@Autowired
fun bindAuthenticationProvider(authenticationManagerBuilder: AuthenticationManagerBuilder) {
authenticationManagerBuilder
.authenticationProvider(customAuthenticationProvider);
}
@Bean
@Order(Ordered.HIGHEST_PRECEDENCE)
fun authServerSecurityFilterChain(http: HttpSecurity): SecurityFilterChain? {
OAuth2AuthorizationServerConfiguration.applyDefaultSecurity(http)
// return http.formLogin(Customizer.withDefaults()).build()
return http.build()
}
@Bean
fun registeredClientRepository(): RegisteredClientRepository {
var clientSecret =AppSettings.getInstance().oauthClientSecret
if(AppSettings.getInstance().encryptClientSecret)
clientSecret = passwordEncoder.encode(clientSecret)
println("clientSecret: $clientSecret")
val client= ClientSettings.builder().requireAuthorizationConsent(true).build()
val registeredClient = RegisteredClient.withId(UUID.randomUUID().toString())
.clientId(AppSettings.getInstance().oauthApiClientId)
.clientSecret(clientSecret)
.clientAuthenticationMethod(ClientAuthenticationMethod.CLIENT_SECRET_BASIC)
.authorizationGrantType(AuthorizationGrantType.AUTHORIZATION_CODE)
.authorizationGrantType(AuthorizationGrantType.PASSWORD)
.authorizationGrantType(AuthorizationGrantType.CLIENT_CREDENTIALS)
.authorizationGrantType(AuthorizationGrantType.REFRESH_TOKEN)
.redirectUri(AppSettings.getInstance().oauthPrimaryRedirectUri)
.redirectUri(AppSettings.getInstance().oauthSecondaryRedirectUri)
.scope(OidcScopes.OPENID)
.scope(AppSettings.getInstance().oauthScope)
.clientSettings(client)
.build()
return InMemoryRegisteredClientRepository(registeredClient)
}
@Bean
fun jwkSource(): JWKSource<SecurityContext?> {
val rsaKey: RSAKey = generateRsa()
val jwkSet: JWKSet = JWKSet(rsaKey)
return JWKSource<SecurityContext?> { jwkSelector: JWKSelector, securityContext: SecurityContext? ->
jwkSelector.select(
jwkSet
)
}
}
private fun generateRsa(): RSAKey {
val keyPair: KeyPair = generateRsaKey()
val publicKey: RSAPublicKey = keyPair.public as RSAPublicKey
val privateKey: RSAPrivateKey = keyPair.private as RSAPrivateKey
return RSAKey.Builder(publicKey)
.privateKey(privateKey)
.keyID(UUID.randomUUID().toString())
.build()
}
private fun generateRsaKey(): KeyPair {
val keyPair: KeyPair = try {
val keyPairGenerator: KeyPairGenerator = KeyPairGenerator.getInstance("RSA")
keyPairGenerator.initialize(2048)
keyPairGenerator.generateKeyPair()
} catch (ex: java.lang.Exception) {
throw IllegalStateException(ex)
}
return keyPair
}
@Bean
fun providerSettings(): ProviderSettings? {
return ProviderSettings.builder()
.issuer(AppSettings.getInstance().oauthSecondaryRedirectUri)
.build()
}
}
package com.viergegroup.switchprosa.websecuritybearer
import com.shared.commons.AppSettings
import org.springframework.beans.factory.annotation.Autowired
import org.springframework.context.annotation.Bean
import org.springframework.http.HttpMethod
import org.springframework.security.config.Customizer
import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder
import org.springframework.security.config.annotation.web.builders.HttpSecurity
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity
import org.springframework.security.web.SecurityFilterChain
@EnableWebSecurity
class DefaultSecurityConfig {
@Autowired
private lateinit var customAuthenticationProvider: CustomAuthenticationProvider
@Bean
@Throws(Exception::class)
fun defaultSecurityFilterChain(http: HttpSecurity): SecurityFilterChain? {
http
.authorizeRequests()
.antMatchers(HttpMethod.POST,*(AppSettings.getInstance().disabledOauthUris.toTypedArray())).permitAll()
.anyRequest().authenticated()
http
.formLogin(Customizer.withDefaults())
return http.build()
}
@Autowired
fun bindAuthenticationProvider(authenticationManagerBuilder: AuthenticationManagerBuilder) {
authenticationManagerBuilder
.authenticationProvider(customAuthenticationProvider);
}
}
和:
package com.viergegroup.switchprosa.websecuritybearer
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.security.authentication.AuthenticationProvider;
import org.springframework.security.authentication.BadCredentialsException;
import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
import org.springframework.security.core.Authentication;
import org.springframework.security.core.AuthenticationException;
import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.security.crypto.password.PasswordEncoder;
import org.springframework.stereotype.Service;
@Service
class CustomAuthenticationProvider: AuthenticationProvider {
@Autowired
private lateinit var userService: UserService
@Autowired
private lateinit var passwordEncoder: PasswordEncoder
@Throws(AuthenticationException::class)
override fun authenticate(authentication: Authentication): Authentication? {
val username: String = authentication.getName()
val password: String = authentication.getCredentials().toString()
val user: UserDetails? = userService.loadUserByUsername(username)
if(user==null) throw Exception("AuthenticationException")
return checkPassword(user, password)
}
fun checkPassword(user: UserDetails, rawPassword: String): Authentication {
return if (passwordEncoder.matches(rawPassword, user.password)) {
UsernamePasswordAuthenticationToken(
user.username,
user.password,
user.authorities
)
} else {
throw BadCredentialsException("Bad Credentials")
}
}
override fun supports(authentication: Class<*>?): Boolean {
return UsernamePasswordAuthenticationToken::class.java.isAssignableFrom(authentication)
}
}
如果您知道如何修复它,我将不胜感激。 谢谢
我希望有人能给我一些想法来解决我的问题
最新问题
- Zustand 对象函数未设置状态/不工作
- MS SSAS MDX 确保 UI(例如 Excel)在刷新时显示维度的最新成员
- 如何以编程方式获取 Steam 应用程序的客户端图标哈希
- Jetpack Compose 卡的列标高不断增加
- 无法使用Selenium从网页抓取数据
- 查看 Azure 函数的日志输出
- Xcode 需要很长时间才能打印调试结果。
- SwiftUI:组不能包含在正文中,错误:无法为表达式生成诊断;请提交错误报告
- 如何导入 LCIA 分数级别的汇总(即从摇篮到大门)?
- 标题和艺术家姓名未显示,无法控制 AudioService 上的 Seekbar,“应用程序正在运行”
- Intellij 在 node_modules/@firebase/firestore 中找不到类型,而是想从 compat 包导入
- XAMPP:PHP 主页显示 404 页面未找到,但 HTML 主页可以工作
- “: &&”命令有什么意义
- 使用 InvokeCommandAction 将额外参数传递给命令
- 当我们明确将 url 设置为 4576 时,localstack 尝试连接到 localhost:4566
- 如何在同一个 Google 表格单元格中为自身添加价值?
- 如何在roi框架中进行物体检测
- 如何在日期列上使用 PIVOT 函数编写动态 SQL 查询
- 从 java 中的 Futures 列表中收集结果
- 将今天的日期设置为 Google 表格中最近添加的工作表的名称
© www.soinside.com 2019 - 2024. All rights reserved.