What does the @enableoauth2client annotation do?

While researching it, I read the documentation for the @EnableOauth2Client annotation, which says: Enable configuration for an OAuth2 client in a web application that uses Spring Security and wants to use the Authorization Code Grant from one or more OAuth2 Authorization servers.

What is @enableoauth2client in Spring Security?

The @EnableOAuth2Client enables for an OAuth2 client configuration in Spring Security Web application. The @EnableOAuth2Client allows using the Authorization Code Grant from one or more OAuth2 Authorization servers. To use @EnableOAuth2Client we need to register OAuth2ClientContextFilter in our application.

Does Spring Boot support OAuth2 authorization?

Because one of the samples is a full OAuth2 Authorization Server we have used the shim JAR which supports bridging from Spring Boot 2.0 to the old Spring Security OAuth2 library. The simpler samples could also be implemented using the native OAuth2 support in Spring Boot security features. The configuration is very similar.

What is oauth2clientcontextfilter in servlet?

It registers filters in Servlet 3.0 container in Spring Boot application. OAuth2ClientContextFilter: This is the security filter for an OAuth2 client. OAuth2ClientAuthenticationProcessingFilter: This is the OAuth2 client filter that acquires an OAuth2 access token from an authorization server.

Manual Configuration of OAuth2 Client using @EnableOAuth2Client not working

People also ask

Is OAuth2RestTemplate deprecated?

RELEASE classes such as OAuth2RestTemplate , OAuth2ProtectedResourceDetails and ClientCredentialsAccessTokenProvider have all been marked as deprecated.

What is spring boot starter OAuth2 client?

boot:spring-boot-starter-oauth2-client . This includes Spring Security's OAuth 2.0 Client support and provides Spring Boot auto-configuration to set up OAuth2/Open ID Connect clients. You can read about how to configure client in the Spring Boot reference documentation.

How does OAuth2 work in spring boot?

Spring Security OAuth2 − Implements the OAUTH2 structure to enable the Authorization Server and Resource Server. Spring Security JWT − Generates the JWT Token for Web security. Spring Boot Starter JDBC − Accesses the database to ensure the user is available or not. Spring Boot Starter Web − Writes HTTP endpoints.

What is ClientRegistrationRepository?

The ClientRegistrationRepository serves as a repository for OAuth 2.0 / OpenID Connect 1.0 ClientRegistration (s). Note. Client registration information is ultimately stored and owned by the associated Authorization Server.

I am following this tutorial from the official spring docs to Manually Configure OAuth2 Client using @EnableOAuth2Client. For some reason it is not working. When I run the app and visit http://localhost:8080/login I see the basic form login instead of Google Sign in options. (I need to make this manual configuration work because of my use case.)

However the @EnableOauth2Sso code works fine where I don't do any manual configuration using OAuth2AuthenticationProcessingFilters. In this case I get the google sign in options on visiting my login page. Can someone please help me. I have added the code below:

This is with @EnableOAuth2Sso, which works perfectly

@Configuration
@EnableWebSecurity
@EnableOAuth2Sso
@PropertySource({ "classpath:/oauth2.properties" })
@EnableGlobalMethodSecurity(prePostEnabled = true, jsr250Enabled = true)
public class SecurityConfig extends WebSecurityConfigurerAdapter {

    @Autowired
    OAuth2ClientContext oauth2ClientContext;

    @Value("${security.oauth2.resource.userInfoUri}")
    String userInfoUri;

    @Value("${security.oauth2.client.clientId}")
    String clientId;

    @Bean
    public RequestContextListener requestContextListener() {
        return new RequestContextListener();
    }

    @Override
    protected void configure(HttpSecurity http) throws Exception {
        super.configure(http);
//      http.antMatcher("/**").addFilterBefore(ssoFilter(), BasicAuthenticationFilter.class);
    }
}

This is with @EnableOAuth2Client, which doesn't work and I get form login instead

@Configuration
@EnableWebSecurity
@EnableOAuth2Client
@PropertySource({ "classpath:/oauth2.properties" })
@EnableGlobalMethodSecurity(prePostEnabled = true, jsr250Enabled = true)
public class SecurityConfig extends WebSecurityConfigurerAdapter {

    @Autowired
    OAuth2ClientContext oauth2ClientContext;

    @Value("${security.oauth2.resource.userInfoUri}")
    String userInfoUri;

    @Value("${security.oauth2.client.clientId}")
    String clientId;

    @Bean
    public RequestContextListener requestContextListener() {
        return new RequestContextListener();
    }

    @Override
    protected void configure(HttpSecurity http) throws Exception {
        super.configure(http);
        http.antMatcher("/**").addFilterBefore(ssoFilter(), BasicAuthenticationFilter.class);
    }

    private Filter ssoFilter() {
        OAuth2ClientAuthenticationProcessingFilter googleFilter = new OAuth2ClientAuthenticationProcessingFilter("/login");
        OAuth2RestTemplate googleTemplate = new OAuth2RestTemplate(google(), oauth2ClientContext);
        googleFilter.setRestTemplate(googleTemplate);
        googleFilter.setTokenServices(new UserInfoTokenServices(googleResource().getUserInfoUri(), google().getClientId()));
        return googleFilter;
    }

    @Bean
    @ConfigurationProperties("security.oauth2.client")
    public AuthorizationCodeResourceDetails google() {
        return new AuthorizationCodeResourceDetails();
    }

    @Bean
    @ConfigurationProperties("security.oauth2.resource")
    public ResourceServerProperties googleResource() {
        return new ResourceServerProperties();
    }

    @Bean
    public FilterRegistrationBean oauth2ClientFilterRegistration(
            OAuth2ClientContextFilter filter) {
        FilterRegistrationBean registration = new FilterRegistrationBean();
        registration.setFilter(filter);
        registration.setOrder(-100);
        return registration;
    }

}

Related questions
                            
                                Cast "pointer to const" to "pointer to const VLA"
                            
                                Difference between Memory Mapped I/O and Programmed I/O
                            
                                iOS Notification Trigger: fortnightly and/or quarterly
                            
                                Quit Browser-sync from terminal
                            
                                IntelliJ Idea 2016 memory problems on OSX
                            
                                IntelliJ doesn't Understand java libraries on Java9-ea
                            
                                Which characters are illegal within a git remote name?
                            
                                Format a text on cell in two color in Coldfusion
                            
                                DeviceOrientationEvent: how to deal with crazy gamma when beta approaches/hits 90deg?
                            
                                Are elements of @_ reused for new subroutine call or new @_ is created?
                            
                                How to Load HighChart dynamically within angular UI Accorion(uib-Accordion)?
                            
                                ALS model - how to generate full_u * v^t * v?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!

Donate Us With

Manual Configuration of OAuth2 Client using @EnableOAuth2Client not working

Tags:

People also ask

Recent Activity

Donate For Us