hatter/spring-oidc-application
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

update oidc config and outputs user info

Browse Source
This commit is contained in:
Hatter Jiang
2022-03-06 11:09:24 +08:00
parent 6880dd513e
commit 2c0273dd76
3 changed files with 11 additions and 18 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
src/main/java/me/hatter/sample/SampleController.java
View File

@@ -3,26 +3,21 @@ package me.hatter.sample;
import org.springframework.security.core.Authentication; import org.springframework.security.core.Authentication;
import org.springframework.security.core.annotation.AuthenticationPrincipal; import org.springframework.security.core.annotation.AuthenticationPrincipal;
import org.springframework.security.core.context.SecurityContextHolder; import org.springframework.security.core.context.SecurityContextHolder;
import org.springframework.security.oauth2.core.oidc.user.OidcUser; import org.springframework.security.oauth2.core.user.OAuth2User;
import org.springframework.web.bind.annotation.GetMapping; import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.RestController; import org.springframework.web.bind.annotation.RestController;
@RestController @RestController
public class SampleController { public class SampleController {
@GetMapping("/oidc-principal") @GetMapping("/oauth2-principal")
public OidcUser getOidcUserPrincipal( public OAuth2User getOidcUserPrincipal(
@AuthenticationPrincipal OidcUser principal) { @AuthenticationPrincipal OAuth2User principal) {
return principal; return principal;
} }
@GetMapping("/oidc-principal2") @GetMapping("/oauth2-principal2")
public Object getOidcUserPrincipal2() { public Object getOidcUserPrincipal2() {
Authentication authentication = SecurityContextHolder.getContext().getAuthentication(); Authentication authentication = SecurityContextHolder.getContext().getAuthentication();
if (authentication.getPrincipal() instanceof OidcUser) { return authentication.getPrincipal();
OidcUser principal = ((OidcUser) authentication.getPrincipal());
return principal;
} else {
return authentication.getPrincipal();
}
} }
} }

7
src/main/java/me/hatter/sample/SecurityConfig.java
View File

@@ -8,12 +8,9 @@ import org.springframework.security.config.annotation.web.configuration.WebSecur
public class SecurityConfig extends WebSecurityConfigurerAdapter { public class SecurityConfig extends WebSecurityConfigurerAdapter {
@Override @Override
protected void configure(HttpSecurity http) throws Exception { protected void configure(HttpSecurity http) throws Exception {
http// only disable these during testing or for non-browser clients http.authorizeRequests()
// .cors().disable()
// .csrf().disable()
.authorizeRequests()
.anyRequest().authenticated() .anyRequest().authenticated()
.and() .and()
.oauth2Login().loginPage("/oauth2/authorization/google"); .oauth2Login();
} }
} }

5
src/main/resources/application.properties
View File

@@ -4,5 +4,6 @@ application.title=This is SpringBoot sample application
spring.mvc.throw-exception-if-no-handler-found=true spring.mvc.throw-exception-if-no-handler-found=true
spring.resources.add-mappings=false spring.resources.add-mappings=false
spring.security.oauth2.client.registration.google.client-id=test spring.security.oauth2.client.provider.login.issuer-uri=<issuer>
spring.security.oauth2.client.registration.google.client-secret=test spring.security.oauth2.client.registration.login.client-id=<client-id>
spring.security.oauth2.client.registration.login.client-secret=<client-secret>