Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Spring Boot OAuth2: How to retrieve user token info details

Tags:

java

spring

oauth

spring-boot

spring-security

I'm following https://spring.io/guides/tutorials/spring-boot-oauth2/ and everything works so far. I actually even managed to hook up also Google Oauth as a second Auth provider. Now I'm trying to read out the infos from the token info endpoint in my backend to sync it with my local DB and adjust the output. But I'm somehow struggling to retrieve the information.

The tutorial creates at some point this endpoint:

@RequestMapping("/user")
public Principal user(Principal principal) {
    return principal;
}

when called, this is displaying (after successful login) correctly for me

{
    "authorities": [...],
    "details": {...},
    "authenticated": true,
    "userAuthentication": {
        "authorities": [...],
        "details": {
            "email": "[email protected]",
            "name": "Foo Bar",
            "id": "12345674890000"
        },
        "authenticated": true,
        "principal": "12345674890000",
        "credentials": "N/A",
        "name": "12345674890000"
    },
    "oauth2Request": {},
    "clientOnly": false,
    "credentials": "",
    "principal": "12345674890000",
    "name": "12345674890000"
}

so somehow spring boot security is picking up the right information. Now I'm trying to build an Interceptor (basic functionality is working, the interceptor is called on every request) to handle this information. I'm struggling to get e.g. the email address now. I found this answer, but its referring to an old version of spring boot, and just links to a new Interface, but I'm wondering if I need that (It also looks very complicated for the simple usecase I think I have). What would be the best approach to get the information from this /user endpoint in my spring app without actually calling my own endpoint to retrieve it?

the only thing i managed to pick up was via the SecurityContextHolder the principle id and other stuff which did not help me. I did not actually retrieve e.g. the email address.

like image 481
Wolli Avatar asked May 12 '17 09:05

Wolli

1 Answers

Try to use SecurityContext:

SecurityContextHolder.getContext().getAuthentication().getPrincipal();

It will contains the real user object that is currently loggedin

like image 152
Afridi Avatar answered Nov 11 '22 17:11

Afridi
Sign in to Comment

Related questions

Is this query possible using Criteria or DetachedCriteria Hibernate
Primefaces Chips Web Component
Group received messages in RabbitMQ, preferably using Spring AMQP?
How to delete, not clear row in Sheet ? Apache POI
How to fix test failing with "No ModelAndView found"?
AWS Lambda Performance issues
WebDriverWait.until no longer available in Selenium-java-3.2 and Selenium-java-3.3 releases
How to handle a dynamic collection as stream?
Javadoc tag for showing doc of another method
Spring profile default behaviour
How to execute this paralell task in Java8
cmd.exe is hanging unexpectedly depending on where the file I use is located
How to enable Adobe Flash in FireFox Selenium webdriver with FirefoxProfile
JAX-RS (Jersey 2) security, @PermitAll and @RolesAllowed not working as expected
About causing too many open files with java?
spring autoconfiguration class is missing in META-INF/spring.factories
ZonedDateTime serialize epoch milliseconds with FasterXML Jackson
Dev App Server does not support App Engine Flexible Environment applications
ExecutorService - create new instances in method vs one per class
Projection of containers, i.e. method to transform List<Object> to List<Object.Member>

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!