Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How to configure spring boot security OAuth2 for ADFS?

Tags:

java

spring-mvc

spring

spring-boot

spring-security

Has anyone successfully configured Spring Boot OAuth2 with ADFS as the identity provider? I followed this tutorial successfully for Facebook, https://spring.io/guides/tutorials/spring-boot-oauth2/, but ADFS doesn't appear to have a userInfoUri. I think ADFS returns the claims data in the token itself (JWT format?), but not sure how to make that work with Spring. Here is what I have so far in my properties file:

security:
  oauth2:
    client:
      clientId: [client id setup with ADFS]
      userAuthorizationUri: https://[adfs domain]/adfs/oauth2/authorize?resource=[MyRelyingPartyTrust]
      accessTokenUri: https://[adfs domain]/adfs/oauth2/token
      tokenName: code
      authenticationScheme: query
      clientAuthenticationScheme: form
      grant-type: authorization_code
    resource:
      userInfoUri: [not sure what to put here?]
like image 412
Erik Pearson Avatar asked Mar 31 '17 19:03

Erik Pearson

People also ask

Does Spring Boot support OAuth2 authorization?

Because one of the samples is a full OAuth2 Authorization Server we have used the shim JAR which supports bridging from Spring Boot 2.0 to the old Spring Security OAuth2 library. The simpler samples could also be implemented using the native OAuth2 support in Spring Boot security features. The configuration is very similar.

How do I enable OAuth2 auto configuration?

OAuth2 Authorization Server Auto-Configuration If we want our application to be an OAuth2 provider, we can use @EnableAuthorizationServer. On startup, we'll notice in the logs that the auto-configuration classes will generate a client id and a client secret for our authorization server, and of course a random password for basic authentication:

How do I add security to a Spring Boot application?

Default Security Setup In order to add security to our Spring Boot application, we need to add the security starter dependency: This will also include the SecurityAutoConfiguration class containing the initial/default security configuration.

What is the use of websecurityconfigureradapter in Spring Boot?

Spring Boot attaches special meaning to a WebSecurityConfigurerAdapter on the class annotated with @SpringBootApplication: It uses it to configure the security filter chain that carries the OAuth 2.0 authentication processor. The above configuration indicates a whitelist of permitted endpoints, with every other endpoint requiring authentication.

1 Answers

Although this question is old, there is no other reference on the web on how to integrate Spring OAuth2 with ADFS.

I therefore added a sample project on how to integrate with Microsoft ADFS using the out of the box spring boot auto-configuration for Oauth2 Client:

https://github.com/selvinsource/spring-security/tree/oauth2login-adfs-sample/samples/boot/oauth2login#adfs-login

like image 185
selvinsource Avatar answered Oct 25 '22 16:10

selvinsource
Sign in to Comment

Related questions

Alternatives for DatatypeConverter in Android
Android Shared Preference TinyDB putListObject frunction
Android Studio: How to exclude google-services module in product flavor?
Error while compiling in cmd but not in Netbeans
Difference between 'setExact' and 'setAlarmClock'
Regex matching imports of a class
Problems connecting to Cassandra pool from Spring application
How to stop a command being executed after 4-5 seconds through process builder?
Maven - for artifact the version cannot be empty
Java - NoSuchMethodError not caught by Exception [duplicate]
In Selenium Webdriver which is better in terms of performance Linktext or css?
What is purpose of 'accessOrder' field in LinkedHashMap?
How to compute the hash code for a stream in the same way as List.hashCode()
How to remove this use of dynamic class loading or replace this class loading?
Determine if date is weekday/weekend java [duplicate]
How do I prove that Object.hashCode() can produce same hash code for two different objects in Java?
JavaFX ScrollPane styling
Better way than Stream.peek()
How to get kafka consume lag in java program
Hibernate @CreationTimestamp @UpdateTimestamp for Calendar

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!