Example 1 with JwtBearerGrant
use of org.apache.cxf.rs.security.oauth2.grants.jwt.JwtBearerGrant in project cxf by apache.
the class BigQueryServer method getAccessToken.
private static ClientAccessToken getAccessToken(PrivateKey privateKey, String issuer) {
JwsHeaders headers = new JwsHeaders(JoseType.JWT, SignatureAlgorithm.RS256);
JwtClaims claims = new JwtClaims();
claims.setIssuer(issuer);
claims.setAudience("https://www.googleapis.com/oauth2/v3/token");
long issuedAt = OAuthUtils.getIssuedAt();
claims.setIssuedAt(issuedAt);
claims.setExpiryTime(issuedAt + 60 * 60);
claims.setProperty("scope", "https://www.googleapis.com/auth/bigquery.readonly");
JwtToken token = new JwtToken(headers, claims);
JwsJwtCompactProducer p = new JwsJwtCompactProducer(token);
String base64UrlAssertion = p.signWith(privateKey);
JwtBearerGrant grant = new JwtBearerGrant(base64UrlAssertion);
WebClient accessTokenService = WebClient.create("https://www.googleapis.com/oauth2/v3/token", Arrays.asList(new OAuthJSONProvider(), new AccessTokenGrantWriter()));
WebClient.getConfig(accessTokenService).getInInterceptors().add(new LoggingInInterceptor());
accessTokenService.type(MediaType.APPLICATION_FORM_URLENCODED).accept(MediaType.APPLICATION_JSON);
return accessTokenService.post(grant, ClientAccessToken.class);
}
Also used :
JwtToken(org.apache.cxf.rs.security.jose.jwt.JwtToken)
JwsHeaders(org.apache.cxf.rs.security.jose.jws.JwsHeaders)
JwsJwtCompactProducer(org.apache.cxf.rs.security.jose.jws.JwsJwtCompactProducer)
JwtClaims(org.apache.cxf.rs.security.jose.jwt.JwtClaims)
JwtBearerGrant(org.apache.cxf.rs.security.oauth2.grants.jwt.JwtBearerGrant)
AccessTokenGrantWriter(org.apache.cxf.rs.security.oauth2.client.AccessTokenGrantWriter)
OAuthJSONProvider(org.apache.cxf.rs.security.oauth2.provider.OAuthJSONProvider)
LoggingInInterceptor(org.apache.cxf.interceptor.LoggingInInterceptor)
WebClient(org.apache.cxf.jaxrs.client.WebClient)
Example 2 with JwtBearerGrant
use of org.apache.cxf.rs.security.oauth2.grants.jwt.JwtBearerGrant in project cxf by apache.
the class JAXRSOAuth2Test method testJWTBearerGrant.
@Test
public void testJWTBearerGrant() throws Exception {
String address = "https://localhost:" + PORT + "/oauth2/token";
WebClient wc = createWebClient(address);
// Create the JWT Token
String token = OAuth2TestUtils.createToken("resourceOwner", "alice", address, true, true);
JwtBearerGrant grant = new JwtBearerGrant(token);
ClientAccessToken at = OAuthClientUtils.getAccessToken(wc, new Consumer("alice", "alice"), grant, false);
assertNotNull(at.getTokenKey());
}
Also used :
Consumer(org.apache.cxf.rs.security.oauth2.client.Consumer)
JwtBearerGrant(org.apache.cxf.rs.security.oauth2.grants.jwt.JwtBearerGrant)
ClientAccessToken(org.apache.cxf.rs.security.oauth2.common.ClientAccessToken)
WebClient(org.apache.cxf.jaxrs.client.WebClient)
Test(org.junit.Test)
Aggregations
WebClient (org.apache.cxf.jaxrs.client.WebClient)2
JwtBearerGrant (org.apache.cxf.rs.security.oauth2.grants.jwt.JwtBearerGrant)2
LoggingInInterceptor (org.apache.cxf.interceptor.LoggingInInterceptor)1
JwsHeaders (org.apache.cxf.rs.security.jose.jws.JwsHeaders)1
JwsJwtCompactProducer (org.apache.cxf.rs.security.jose.jws.JwsJwtCompactProducer)1
JwtClaims (org.apache.cxf.rs.security.jose.jwt.JwtClaims)1
JwtToken (org.apache.cxf.rs.security.jose.jwt.JwtToken)1
AccessTokenGrantWriter (org.apache.cxf.rs.security.oauth2.client.AccessTokenGrantWriter)1
Consumer (org.apache.cxf.rs.security.oauth2.client.Consumer)1
ClientAccessToken (org.apache.cxf.rs.security.oauth2.common.ClientAccessToken)1
OAuthJSONProvider (org.apache.cxf.rs.security.oauth2.provider.OAuthJSONProvider)1
Test (org.junit.Test)1
