Example 46 with Jwt
use of org.springframework.security.oauth2.jwt.Jwt in project spring-security by spring-projects.
the class WebClientReactiveRefreshTokenTokenResponseClientTests method getTokenResponseWhenAuthenticationClientSecretJwtThenFormParametersAreSent.
@Test
public void getTokenResponseWhenAuthenticationClientSecretJwtThenFormParametersAreSent() throws Exception {
// @formatter:off
String accessTokenSuccessResponse = "{\n" + " \"access_token\": \"access-token-1234\",\n" + " \"token_type\": \"bearer\",\n" + " \"expires_in\": \"3600\"\n" + "}\n";
// @formatter:on
this.server.enqueue(jsonResponse(accessTokenSuccessResponse));
// @formatter:off
ClientRegistration clientRegistration = this.clientRegistrationBuilder.clientAuthenticationMethod(ClientAuthenticationMethod.CLIENT_SECRET_JWT).clientSecret(TestKeys.DEFAULT_ENCODED_SECRET_KEY).build();
// @formatter:on
// Configure Jwt client authentication converter
SecretKeySpec secretKey = new SecretKeySpec(clientRegistration.getClientSecret().getBytes(StandardCharsets.UTF_8), "HmacSHA256");
JWK jwk = TestJwks.jwk(secretKey).build();
Function<ClientRegistration, JWK> jwkResolver = (registration) -> jwk;
configureJwtClientAuthenticationConverter(jwkResolver);
OAuth2RefreshTokenGrantRequest refreshTokenGrantRequest = new OAuth2RefreshTokenGrantRequest(clientRegistration, this.accessToken, this.refreshToken);
this.tokenResponseClient.getTokenResponse(refreshTokenGrantRequest).block();
RecordedRequest actualRequest = this.server.takeRequest();
assertThat(actualRequest.getHeader(HttpHeaders.AUTHORIZATION)).isNull();
assertThat(actualRequest.getBody().readUtf8()).contains("grant_type=refresh_token", "client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer", "client_assertion=");
}
Also used :
ArgumentMatchers.any(org.mockito.ArgumentMatchers.any)
BeforeEach(org.junit.jupiter.api.BeforeEach)
TestOAuth2AccessTokens(org.springframework.security.oauth2.core.TestOAuth2AccessTokens)
Assertions.assertThat(org.assertj.core.api.Assertions.assertThat)
OAuth2AuthorizationException(org.springframework.security.oauth2.core.OAuth2AuthorizationException)
SecretKeySpec(javax.crypto.spec.SecretKeySpec)
Function(java.util.function.Function)
BDDMockito.given(org.mockito.BDDMockito.given)
ClientAuthenticationMethod(org.springframework.security.oauth2.core.ClientAuthenticationMethod)
MockWebServer(okhttp3.mockwebserver.MockWebServer)
Assertions.assertThatExceptionOfType(org.assertj.core.api.Assertions.assertThatExceptionOfType)
OAuth2AccessToken(org.springframework.security.oauth2.core.OAuth2AccessToken)
TestClientRegistrations(org.springframework.security.oauth2.client.registration.TestClientRegistrations)
Converter(org.springframework.core.convert.converter.Converter)
TestOAuth2AccessTokenResponses(org.springframework.security.oauth2.core.endpoint.TestOAuth2AccessTokenResponses)
TestKeys(org.springframework.security.oauth2.jose.TestKeys)
RecordedRequest(okhttp3.mockwebserver.RecordedRequest)
HttpHeaders(org.springframework.http.HttpHeaders)
TestJwks(org.springframework.security.oauth2.jose.TestJwks)
MediaType(org.springframework.http.MediaType)
HttpMethod(org.springframework.http.HttpMethod)
MultiValueMap(org.springframework.util.MultiValueMap)
Mono(reactor.core.publisher.Mono)
BodyExtractor(org.springframework.web.reactive.function.BodyExtractor)
Instant(java.time.Instant)
OAuth2AccessTokenResponse(org.springframework.security.oauth2.core.endpoint.OAuth2AccessTokenResponse)
ClientRegistration(org.springframework.security.oauth2.client.registration.ClientRegistration)
StandardCharsets(java.nio.charset.StandardCharsets)
JWK(com.nimbusds.jose.jwk.JWK)
Mockito.verify(org.mockito.Mockito.verify)
Test(org.junit.jupiter.api.Test)
AfterEach(org.junit.jupiter.api.AfterEach)
ReactiveHttpInputMessage(org.springframework.http.ReactiveHttpInputMessage)
Assertions.assertThatIllegalArgumentException(org.assertj.core.api.Assertions.assertThatIllegalArgumentException)
MockResponse(okhttp3.mockwebserver.MockResponse)
OAuth2RefreshToken(org.springframework.security.oauth2.core.OAuth2RefreshToken)
Collections(java.util.Collections)
TestOAuth2RefreshTokens(org.springframework.security.oauth2.core.TestOAuth2RefreshTokens)
LinkedMultiValueMap(org.springframework.util.LinkedMultiValueMap)
Mockito.mock(org.mockito.Mockito.mock)
RecordedRequest(okhttp3.mockwebserver.RecordedRequest)
ClientRegistration(org.springframework.security.oauth2.client.registration.ClientRegistration)
SecretKeySpec(javax.crypto.spec.SecretKeySpec)
JWK(com.nimbusds.jose.jwk.JWK)
Test(org.junit.jupiter.api.Test)
Example 47 with Jwt
use of org.springframework.security.oauth2.jwt.Jwt in project spring-security by spring-projects.
the class WebClientReactiveRefreshTokenTokenResponseClientTests method getTokenResponseWhenAuthenticationPrivateKeyJwtThenFormParametersAreSent.
@Test
public void getTokenResponseWhenAuthenticationPrivateKeyJwtThenFormParametersAreSent() throws Exception {
// @formatter:off
String accessTokenSuccessResponse = "{\n" + " \"access_token\": \"access-token-1234\",\n" + " \"token_type\": \"bearer\",\n" + " \"expires_in\": \"3600\"\n" + "}\n";
// @formatter:on
this.server.enqueue(jsonResponse(accessTokenSuccessResponse));
// @formatter:off
ClientRegistration clientRegistration = this.clientRegistrationBuilder.clientAuthenticationMethod(ClientAuthenticationMethod.PRIVATE_KEY_JWT).build();
// @formatter:on
// Configure Jwt client authentication converter
JWK jwk = TestJwks.DEFAULT_RSA_JWK;
Function<ClientRegistration, JWK> jwkResolver = (registration) -> jwk;
configureJwtClientAuthenticationConverter(jwkResolver);
OAuth2RefreshTokenGrantRequest refreshTokenGrantRequest = new OAuth2RefreshTokenGrantRequest(clientRegistration, this.accessToken, this.refreshToken);
this.tokenResponseClient.getTokenResponse(refreshTokenGrantRequest).block();
RecordedRequest actualRequest = this.server.takeRequest();
assertThat(actualRequest.getHeader(HttpHeaders.AUTHORIZATION)).isNull();
assertThat(actualRequest.getBody().readUtf8()).contains("grant_type=refresh_token", "client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer", "client_assertion=");
}
Also used :
ArgumentMatchers.any(org.mockito.ArgumentMatchers.any)
BeforeEach(org.junit.jupiter.api.BeforeEach)
TestOAuth2AccessTokens(org.springframework.security.oauth2.core.TestOAuth2AccessTokens)
Assertions.assertThat(org.assertj.core.api.Assertions.assertThat)
OAuth2AuthorizationException(org.springframework.security.oauth2.core.OAuth2AuthorizationException)
SecretKeySpec(javax.crypto.spec.SecretKeySpec)
Function(java.util.function.Function)
BDDMockito.given(org.mockito.BDDMockito.given)
ClientAuthenticationMethod(org.springframework.security.oauth2.core.ClientAuthenticationMethod)
MockWebServer(okhttp3.mockwebserver.MockWebServer)
Assertions.assertThatExceptionOfType(org.assertj.core.api.Assertions.assertThatExceptionOfType)
OAuth2AccessToken(org.springframework.security.oauth2.core.OAuth2AccessToken)
TestClientRegistrations(org.springframework.security.oauth2.client.registration.TestClientRegistrations)
Converter(org.springframework.core.convert.converter.Converter)
TestOAuth2AccessTokenResponses(org.springframework.security.oauth2.core.endpoint.TestOAuth2AccessTokenResponses)
TestKeys(org.springframework.security.oauth2.jose.TestKeys)
RecordedRequest(okhttp3.mockwebserver.RecordedRequest)
HttpHeaders(org.springframework.http.HttpHeaders)
TestJwks(org.springframework.security.oauth2.jose.TestJwks)
MediaType(org.springframework.http.MediaType)
HttpMethod(org.springframework.http.HttpMethod)
MultiValueMap(org.springframework.util.MultiValueMap)
Mono(reactor.core.publisher.Mono)
BodyExtractor(org.springframework.web.reactive.function.BodyExtractor)
Instant(java.time.Instant)
OAuth2AccessTokenResponse(org.springframework.security.oauth2.core.endpoint.OAuth2AccessTokenResponse)
ClientRegistration(org.springframework.security.oauth2.client.registration.ClientRegistration)
StandardCharsets(java.nio.charset.StandardCharsets)
JWK(com.nimbusds.jose.jwk.JWK)
Mockito.verify(org.mockito.Mockito.verify)
Test(org.junit.jupiter.api.Test)
AfterEach(org.junit.jupiter.api.AfterEach)
ReactiveHttpInputMessage(org.springframework.http.ReactiveHttpInputMessage)
Assertions.assertThatIllegalArgumentException(org.assertj.core.api.Assertions.assertThatIllegalArgumentException)
MockResponse(okhttp3.mockwebserver.MockResponse)
OAuth2RefreshToken(org.springframework.security.oauth2.core.OAuth2RefreshToken)
Collections(java.util.Collections)
TestOAuth2RefreshTokens(org.springframework.security.oauth2.core.TestOAuth2RefreshTokens)
LinkedMultiValueMap(org.springframework.util.LinkedMultiValueMap)
Mockito.mock(org.mockito.Mockito.mock)
RecordedRequest(okhttp3.mockwebserver.RecordedRequest)
ClientRegistration(org.springframework.security.oauth2.client.registration.ClientRegistration)
JWK(com.nimbusds.jose.jwk.JWK)
Test(org.junit.jupiter.api.Test)
Example 48 with Jwt
use of org.springframework.security.oauth2.jwt.Jwt in project spring-security by spring-projects.
the class WebClientReactiveAuthorizationCodeTokenResponseClientTests method getTokenResponseWhenAuthenticationClientSecretJwtThenFormParametersAreSent.
@Test
public void getTokenResponseWhenAuthenticationClientSecretJwtThenFormParametersAreSent() throws Exception {
// @formatter:off
String accessTokenSuccessResponse = "{\n" + " \"access_token\": \"access-token-1234\",\n" + " \"token_type\": \"bearer\",\n" + " \"expires_in\": \"3600\"\n" + "}\n";
// @formatter:on
this.server.enqueue(jsonResponse(accessTokenSuccessResponse));
// @formatter:off
ClientRegistration clientRegistration = this.clientRegistration.clientAuthenticationMethod(ClientAuthenticationMethod.CLIENT_SECRET_JWT).clientSecret(TestKeys.DEFAULT_ENCODED_SECRET_KEY).build();
// @formatter:on
// Configure Jwt client authentication converter
SecretKeySpec secretKey = new SecretKeySpec(clientRegistration.getClientSecret().getBytes(StandardCharsets.UTF_8), "HmacSHA256");
JWK jwk = TestJwks.jwk(secretKey).build();
Function<ClientRegistration, JWK> jwkResolver = (registration) -> jwk;
configureJwtClientAuthenticationConverter(jwkResolver);
this.tokenResponseClient.getTokenResponse(authorizationCodeGrantRequest(clientRegistration)).block();
RecordedRequest actualRequest = this.server.takeRequest();
assertThat(actualRequest.getHeader(HttpHeaders.AUTHORIZATION)).isNull();
assertThat(actualRequest.getBody().readUtf8()).contains("grant_type=authorization_code", "client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer", "client_assertion=");
}
Also used :
ArgumentMatchers.any(org.mockito.ArgumentMatchers.any)
BeforeEach(org.junit.jupiter.api.BeforeEach)
PkceParameterNames(org.springframework.security.oauth2.core.endpoint.PkceParameterNames)
Assertions.assertThat(org.assertj.core.api.Assertions.assertThat)
OAuth2AuthorizationException(org.springframework.security.oauth2.core.OAuth2AuthorizationException)
SecretKeySpec(javax.crypto.spec.SecretKeySpec)
WebClient(org.springframework.web.reactive.function.client.WebClient)
HashMap(java.util.HashMap)
Function(java.util.function.Function)
BDDMockito.given(org.mockito.BDDMockito.given)
ClientAuthenticationMethod(org.springframework.security.oauth2.core.ClientAuthenticationMethod)
Map(java.util.Map)
MockWebServer(okhttp3.mockwebserver.MockWebServer)
Assertions.assertThatExceptionOfType(org.assertj.core.api.Assertions.assertThatExceptionOfType)
OAuth2AccessToken(org.springframework.security.oauth2.core.OAuth2AccessToken)
TestClientRegistrations(org.springframework.security.oauth2.client.registration.TestClientRegistrations)
Converter(org.springframework.core.convert.converter.Converter)
OAuth2AuthorizationResponse(org.springframework.security.oauth2.core.endpoint.OAuth2AuthorizationResponse)
TestOAuth2AccessTokenResponses(org.springframework.security.oauth2.core.endpoint.TestOAuth2AccessTokenResponses)
TestKeys(org.springframework.security.oauth2.jose.TestKeys)
RecordedRequest(okhttp3.mockwebserver.RecordedRequest)
HttpHeaders(org.springframework.http.HttpHeaders)
TestJwks(org.springframework.security.oauth2.jose.TestJwks)
MediaType(org.springframework.http.MediaType)
OAuth2AuthorizationExchange(org.springframework.security.oauth2.core.endpoint.OAuth2AuthorizationExchange)
OAuth2AuthorizationRequest(org.springframework.security.oauth2.core.endpoint.OAuth2AuthorizationRequest)
Mockito.atLeastOnce(org.mockito.Mockito.atLeastOnce)
MultiValueMap(org.springframework.util.MultiValueMap)
Mono(reactor.core.publisher.Mono)
BodyExtractor(org.springframework.web.reactive.function.BodyExtractor)
Instant(java.time.Instant)
OAuth2AccessTokenResponse(org.springframework.security.oauth2.core.endpoint.OAuth2AccessTokenResponse)
ClientRegistration(org.springframework.security.oauth2.client.registration.ClientRegistration)
StandardCharsets(java.nio.charset.StandardCharsets)
JWK(com.nimbusds.jose.jwk.JWK)
Mockito.verify(org.mockito.Mockito.verify)
Test(org.junit.jupiter.api.Test)
HttpStatus(org.springframework.http.HttpStatus)
AfterEach(org.junit.jupiter.api.AfterEach)
ReactiveHttpInputMessage(org.springframework.http.ReactiveHttpInputMessage)
Assertions.assertThatIllegalArgumentException(org.assertj.core.api.Assertions.assertThatIllegalArgumentException)
MockResponse(okhttp3.mockwebserver.MockResponse)
Collections(java.util.Collections)
LinkedMultiValueMap(org.springframework.util.LinkedMultiValueMap)
Mockito.mock(org.mockito.Mockito.mock)
RecordedRequest(okhttp3.mockwebserver.RecordedRequest)
ClientRegistration(org.springframework.security.oauth2.client.registration.ClientRegistration)
SecretKeySpec(javax.crypto.spec.SecretKeySpec)
JWK(com.nimbusds.jose.jwk.JWK)
Test(org.junit.jupiter.api.Test)
Example 49 with Jwt
use of org.springframework.security.oauth2.jwt.Jwt in project spring-security by spring-projects.
the class WebClientReactiveAuthorizationCodeTokenResponseClientTests method getTokenResponseWhenAuthenticationPrivateKeyJwtThenFormParametersAreSent.
@Test
public void getTokenResponseWhenAuthenticationPrivateKeyJwtThenFormParametersAreSent() throws Exception {
// @formatter:off
String accessTokenSuccessResponse = "{\n" + " \"access_token\": \"access-token-1234\",\n" + " \"token_type\": \"bearer\",\n" + " \"expires_in\": \"3600\"\n" + "}\n";
// @formatter:on
this.server.enqueue(jsonResponse(accessTokenSuccessResponse));
// @formatter:off
ClientRegistration clientRegistration = this.clientRegistration.clientAuthenticationMethod(ClientAuthenticationMethod.PRIVATE_KEY_JWT).build();
// @formatter:on
// Configure Jwt client authentication converter
JWK jwk = TestJwks.DEFAULT_RSA_JWK;
Function<ClientRegistration, JWK> jwkResolver = (registration) -> jwk;
configureJwtClientAuthenticationConverter(jwkResolver);
this.tokenResponseClient.getTokenResponse(authorizationCodeGrantRequest(clientRegistration)).block();
RecordedRequest actualRequest = this.server.takeRequest();
assertThat(actualRequest.getHeader(HttpHeaders.AUTHORIZATION)).isNull();
assertThat(actualRequest.getBody().readUtf8()).contains("grant_type=authorization_code", "client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer", "client_assertion=");
}
Also used :
ArgumentMatchers.any(org.mockito.ArgumentMatchers.any)
BeforeEach(org.junit.jupiter.api.BeforeEach)
PkceParameterNames(org.springframework.security.oauth2.core.endpoint.PkceParameterNames)
Assertions.assertThat(org.assertj.core.api.Assertions.assertThat)
OAuth2AuthorizationException(org.springframework.security.oauth2.core.OAuth2AuthorizationException)
SecretKeySpec(javax.crypto.spec.SecretKeySpec)
WebClient(org.springframework.web.reactive.function.client.WebClient)
HashMap(java.util.HashMap)
Function(java.util.function.Function)
BDDMockito.given(org.mockito.BDDMockito.given)
ClientAuthenticationMethod(org.springframework.security.oauth2.core.ClientAuthenticationMethod)
Map(java.util.Map)
MockWebServer(okhttp3.mockwebserver.MockWebServer)
Assertions.assertThatExceptionOfType(org.assertj.core.api.Assertions.assertThatExceptionOfType)
OAuth2AccessToken(org.springframework.security.oauth2.core.OAuth2AccessToken)
TestClientRegistrations(org.springframework.security.oauth2.client.registration.TestClientRegistrations)
Converter(org.springframework.core.convert.converter.Converter)
OAuth2AuthorizationResponse(org.springframework.security.oauth2.core.endpoint.OAuth2AuthorizationResponse)
TestOAuth2AccessTokenResponses(org.springframework.security.oauth2.core.endpoint.TestOAuth2AccessTokenResponses)
TestKeys(org.springframework.security.oauth2.jose.TestKeys)
RecordedRequest(okhttp3.mockwebserver.RecordedRequest)
HttpHeaders(org.springframework.http.HttpHeaders)
TestJwks(org.springframework.security.oauth2.jose.TestJwks)
MediaType(org.springframework.http.MediaType)
OAuth2AuthorizationExchange(org.springframework.security.oauth2.core.endpoint.OAuth2AuthorizationExchange)
OAuth2AuthorizationRequest(org.springframework.security.oauth2.core.endpoint.OAuth2AuthorizationRequest)
Mockito.atLeastOnce(org.mockito.Mockito.atLeastOnce)
MultiValueMap(org.springframework.util.MultiValueMap)
Mono(reactor.core.publisher.Mono)
BodyExtractor(org.springframework.web.reactive.function.BodyExtractor)
Instant(java.time.Instant)
OAuth2AccessTokenResponse(org.springframework.security.oauth2.core.endpoint.OAuth2AccessTokenResponse)
ClientRegistration(org.springframework.security.oauth2.client.registration.ClientRegistration)
StandardCharsets(java.nio.charset.StandardCharsets)
JWK(com.nimbusds.jose.jwk.JWK)
Mockito.verify(org.mockito.Mockito.verify)
Test(org.junit.jupiter.api.Test)
HttpStatus(org.springframework.http.HttpStatus)
AfterEach(org.junit.jupiter.api.AfterEach)
ReactiveHttpInputMessage(org.springframework.http.ReactiveHttpInputMessage)
Assertions.assertThatIllegalArgumentException(org.assertj.core.api.Assertions.assertThatIllegalArgumentException)
MockResponse(okhttp3.mockwebserver.MockResponse)
Collections(java.util.Collections)
LinkedMultiValueMap(org.springframework.util.LinkedMultiValueMap)
Mockito.mock(org.mockito.Mockito.mock)
RecordedRequest(okhttp3.mockwebserver.RecordedRequest)
ClientRegistration(org.springframework.security.oauth2.client.registration.ClientRegistration)
JWK(com.nimbusds.jose.jwk.JWK)
Test(org.junit.jupiter.api.Test)
Example 50 with Jwt
use of org.springframework.security.oauth2.jwt.Jwt in project spring-security by spring-projects.
the class OidcAuthorizationCodeReactiveAuthenticationManagerTests method authenticateWhenIdTokenInvalidNonceThenOAuth2AuthenticationException.
@Test
public void authenticateWhenIdTokenInvalidNonceThenOAuth2AuthenticationException() {
// @formatter:off
OAuth2AccessTokenResponse accessTokenResponse = OAuth2AccessTokenResponse.withToken("foo").tokenType(OAuth2AccessToken.TokenType.BEARER).additionalParameters(Collections.singletonMap(OidcParameterNames.ID_TOKEN, this.idToken.getTokenValue())).build();
// @formatter:on
OAuth2AuthorizationCodeAuthenticationToken authorizationCodeAuthentication = loginToken();
Map<String, Object> claims = new HashMap<>();
claims.put(IdTokenClaimNames.ISS, "https://issuer.example.com");
claims.put(IdTokenClaimNames.SUB, "sub");
claims.put(IdTokenClaimNames.AUD, Arrays.asList("client-id"));
claims.put(IdTokenClaimNames.NONCE, "invalid-nonce-hash");
Jwt idToken = TestJwts.jwt().claims((c) -> c.putAll(claims)).build();
given(this.accessTokenResponseClient.getTokenResponse(any())).willReturn(Mono.just(accessTokenResponse));
given(this.jwtDecoder.decode(any())).willReturn(Mono.just(idToken));
this.manager.setJwtDecoderFactory((c) -> this.jwtDecoder);
assertThatExceptionOfType(OAuth2AuthenticationException.class).isThrownBy(() -> this.manager.authenticate(authorizationCodeAuthentication).block()).withMessageContaining("[invalid_nonce]");
}
Also used :
OAuth2AccessTokenResponse(org.springframework.security.oauth2.core.endpoint.OAuth2AccessTokenResponse)
BeforeEach(org.junit.jupiter.api.BeforeEach)
Arrays(java.util.Arrays)
OidcUser(org.springframework.security.oauth2.core.oidc.user.OidcUser)
TestingAuthenticationToken(org.springframework.security.authentication.TestingAuthenticationToken)
Assertions.assertThat(org.assertj.core.api.Assertions.assertThat)
OAuth2AuthorizationCodeAuthenticationToken(org.springframework.security.oauth2.client.authentication.OAuth2AuthorizationCodeAuthenticationToken)
ExtendWith(org.junit.jupiter.api.extension.ExtendWith)
BDDMockito.given(org.mockito.BDDMockito.given)
Map(java.util.Map)
Jwt(org.springframework.security.oauth2.jwt.Jwt)
ReactiveJwtDecoder(org.springframework.security.oauth2.jwt.ReactiveJwtDecoder)
StringKeyGenerator(org.springframework.security.crypto.keygen.StringKeyGenerator)
TestClientRegistrations(org.springframework.security.oauth2.client.registration.TestClientRegistrations)
MockitoExtension(org.mockito.junit.jupiter.MockitoExtension)
OAuth2AuthorizationExchange(org.springframework.security.oauth2.core.endpoint.OAuth2AuthorizationExchange)
OAuth2AuthenticationException(org.springframework.security.oauth2.core.OAuth2AuthenticationException)
TestJwts(org.springframework.security.oauth2.jwt.TestJwts)
ReactiveOAuth2AccessTokenResponseClient(org.springframework.security.oauth2.client.endpoint.ReactiveOAuth2AccessTokenResponseClient)
ClientRegistration(org.springframework.security.oauth2.client.registration.ClientRegistration)
GrantedAuthority(org.springframework.security.core.GrantedAuthority)
Test(org.junit.jupiter.api.Test)
OAuth2AuthorizationCodeGrantRequest(org.springframework.security.oauth2.client.endpoint.OAuth2AuthorizationCodeGrantRequest)
Base64(java.util.Base64)
List(java.util.List)
Base64StringKeyGenerator(org.springframework.security.crypto.keygen.Base64StringKeyGenerator)
NoSuchAlgorithmException(java.security.NoSuchAlgorithmException)
Authentication(org.springframework.security.core.Authentication)
OidcUserRequest(org.springframework.security.oauth2.client.oidc.userinfo.OidcUserRequest)
Mockito.mock(org.mockito.Mockito.mock)
ArgumentMatchers.any(org.mockito.ArgumentMatchers.any)
Mock(org.mockito.Mock)
IdTokenClaimNames(org.springframework.security.oauth2.core.oidc.IdTokenClaimNames)
OidcParameterNames(org.springframework.security.oauth2.core.oidc.endpoint.OidcParameterNames)
HashMap(java.util.HashMap)
Answer(org.mockito.stubbing.Answer)
ArgumentCaptor(org.mockito.ArgumentCaptor)
Assertions.assertThatExceptionOfType(org.assertj.core.api.Assertions.assertThatExceptionOfType)
ReactiveOAuth2UserService(org.springframework.security.oauth2.client.userinfo.ReactiveOAuth2UserService)
OAuth2AccessToken(org.springframework.security.oauth2.core.OAuth2AccessToken)
OAuth2LoginAuthenticationToken(org.springframework.security.oauth2.client.authentication.OAuth2LoginAuthenticationToken)
OAuth2AuthorizationResponse(org.springframework.security.oauth2.core.endpoint.OAuth2AuthorizationResponse)
OidcIdToken(org.springframework.security.oauth2.core.oidc.OidcIdToken)
TestOidcIdTokens(org.springframework.security.oauth2.core.oidc.TestOidcIdTokens)
OAuth2AuthorizationRequest(org.springframework.security.oauth2.core.endpoint.OAuth2AuthorizationRequest)
Mono(reactor.core.publisher.Mono)
OAuth2AccessTokenResponse(org.springframework.security.oauth2.core.endpoint.OAuth2AccessTokenResponse)
DefaultOidcUser(org.springframework.security.oauth2.core.oidc.user.DefaultOidcUser)
ArgumentMatchers.anyCollection(org.mockito.ArgumentMatchers.anyCollection)
GrantedAuthoritiesMapper(org.springframework.security.core.authority.mapping.GrantedAuthoritiesMapper)
Assertions.assertThatIllegalArgumentException(org.assertj.core.api.Assertions.assertThatIllegalArgumentException)
JwtException(org.springframework.security.oauth2.jwt.JwtException)
Collections(java.util.Collections)
AuthorityUtils(org.springframework.security.core.authority.AuthorityUtils)
HashMap(java.util.HashMap)
Jwt(org.springframework.security.oauth2.jwt.Jwt)
OAuth2AuthorizationCodeAuthenticationToken(org.springframework.security.oauth2.client.authentication.OAuth2AuthorizationCodeAuthenticationToken)
Test(org.junit.jupiter.api.Test)
Aggregations
Test (org.junit.jupiter.api.Test)139
Jwt (org.springframework.security.oauth2.jwt.Jwt)83
GrantedAuthority (org.springframework.security.core.GrantedAuthority)47
Assertions.assertThat (org.assertj.core.api.Assertions.assertThat)37
SimpleGrantedAuthority (org.springframework.security.core.authority.SimpleGrantedAuthority)36
ClientRegistration (org.springframework.security.oauth2.client.registration.ClientRegistration)36
OAuth2AccessTokenResponse (org.springframework.security.oauth2.core.endpoint.OAuth2AccessTokenResponse)30
Assertions.assertThatIllegalArgumentException (org.assertj.core.api.Assertions.assertThatIllegalArgumentException)29
BeforeEach (org.junit.jupiter.api.BeforeEach)29
Assertions.assertThatExceptionOfType (org.assertj.core.api.Assertions.assertThatExceptionOfType)27
TestClientRegistrations (org.springframework.security.oauth2.client.registration.TestClientRegistrations)24
Instant (java.time.Instant)23
HttpHeaders (org.springframework.http.HttpHeaders)22
OAuth2AccessToken (org.springframework.security.oauth2.core.OAuth2AccessToken)22
JwtDecoder (org.springframework.security.oauth2.jwt.JwtDecoder)22
Collections (java.util.Collections)21
MediaType (org.springframework.http.MediaType)21
NimbusJwtDecoder (org.springframework.security.oauth2.jwt.NimbusJwtDecoder)21
MockWebServer (okhttp3.mockwebserver.MockWebServer)20
OAuth2Error (org.springframework.security.oauth2.core.OAuth2Error)20
