Example 1 with JwtBearerOAuth2AuthorizedClientProvider
use of org.springframework.security.oauth2.client.JwtBearerOAuth2AuthorizedClientProvider in project spring-security by spring-projects.
the class JwtBearerOAuth2AuthorizedClientProviderTests method setup.
@BeforeEach
public void setup() {
this.authorizedClientProvider = new JwtBearerOAuth2AuthorizedClientProvider();
this.accessTokenResponseClient = mock(OAuth2AccessTokenResponseClient.class);
this.authorizedClientProvider.setAccessTokenResponseClient(this.accessTokenResponseClient);
// @formatter:off
this.clientRegistration = ClientRegistration.withRegistrationId("jwt-bearer").clientId("client-id").clientSecret("client-secret").clientAuthenticationMethod(ClientAuthenticationMethod.CLIENT_SECRET_BASIC).authorizationGrantType(AuthorizationGrantType.JWT_BEARER).scope("read", "write").tokenUri("https://example.com/oauth2/token").build();
// @formatter:on
this.jwtAssertion = TestJwts.jwt().build();
this.principal = new TestingAuthenticationToken(this.jwtAssertion, this.jwtAssertion);
}
Also used :
OAuth2AccessTokenResponseClient(org.springframework.security.oauth2.client.endpoint.OAuth2AccessTokenResponseClient)
TestingAuthenticationToken(org.springframework.security.authentication.TestingAuthenticationToken)
BeforeEach(org.junit.jupiter.api.BeforeEach)
Example 2 with JwtBearerOAuth2AuthorizedClientProvider
use of org.springframework.security.oauth2.client.JwtBearerOAuth2AuthorizedClientProvider in project spring-security by spring-projects.
the class ServletOAuth2AuthorizedClientExchangeFilterFunctionTests method setup.
@BeforeEach
public void setup() {
this.authentication = new TestingAuthenticationToken("test", "this");
JwtBearerOAuth2AuthorizedClientProvider jwtBearerAuthorizedClientProvider = new JwtBearerOAuth2AuthorizedClientProvider();
jwtBearerAuthorizedClientProvider.setAccessTokenResponseClient(this.jwtBearerTokenResponseClient);
// @formatter:off
OAuth2AuthorizedClientProvider authorizedClientProvider = OAuth2AuthorizedClientProviderBuilder.builder().authorizationCode().refreshToken((configurer) -> configurer.accessTokenResponseClient(this.refreshTokenTokenResponseClient)).clientCredentials((configurer) -> configurer.accessTokenResponseClient(this.clientCredentialsTokenResponseClient)).password((configurer) -> configurer.accessTokenResponseClient(this.passwordTokenResponseClient)).provider(jwtBearerAuthorizedClientProvider).build();
// @formatter:on
this.authorizedClientManager = new DefaultOAuth2AuthorizedClientManager(this.clientRegistrationRepository, this.authorizedClientRepository);
this.authorizedClientManager.setAuthorizedClientProvider(authorizedClientProvider);
this.function = new ServletOAuth2AuthorizedClientExchangeFilterFunction(this.authorizedClientManager);
}
Also used :
CharSequenceEncoder(org.springframework.core.codec.CharSequenceEncoder)
BeforeEach(org.junit.jupiter.api.BeforeEach)
TestingAuthenticationToken(org.springframework.security.authentication.TestingAuthenticationToken)
ArgumentMatchers.eq(org.mockito.ArgumentMatchers.eq)
OAuth2RefreshTokenGrantRequest(org.springframework.security.oauth2.client.endpoint.OAuth2RefreshTokenGrantRequest)
RequestContextHolder(org.springframework.web.context.request.RequestContextHolder)
ClientRequest(org.springframework.web.reactive.function.client.ClientRequest)
DefaultClientCredentialsTokenResponseClient(org.springframework.security.oauth2.client.endpoint.DefaultClientCredentialsTokenResponseClient)
ExtendWith(org.junit.jupiter.api.extension.ExtendWith)
BDDMockito.given(org.mockito.BDDMockito.given)
Duration(java.time.Duration)
Map(java.util.Map)
SecurityContextHolder(org.springframework.security.core.context.SecurityContextHolder)
ClientResponse(org.springframework.web.reactive.function.client.ClientResponse)
FormHttpMessageWriter(org.springframework.http.codec.FormHttpMessageWriter)
Context(reactor.util.context.Context)
OAuth2AuthorizationContext(org.springframework.security.oauth2.client.OAuth2AuthorizationContext)
TestJwts(org.springframework.security.oauth2.jwt.TestJwts)
MockHttpServletRequest(org.springframework.mock.web.MockHttpServletRequest)
OAuth2PasswordGrantRequest(org.springframework.security.oauth2.client.endpoint.OAuth2PasswordGrantRequest)
ClientRegistration(org.springframework.security.oauth2.client.registration.ClientRegistration)
StandardCharsets(java.nio.charset.StandardCharsets)
GrantedAuthority(org.springframework.security.core.GrantedAuthority)
OAuth2AuthorizedClientProvider(org.springframework.security.oauth2.client.OAuth2AuthorizedClientProvider)
OAuth2User(org.springframework.security.oauth2.core.user.OAuth2User)
MockClientHttpRequest(org.springframework.mock.http.client.reactive.MockClientHttpRequest)
Mockito.mock(org.mockito.Mockito.mock)
HttpServletRequest(jakarta.servlet.http.HttpServletRequest)
Mock(org.mockito.Mock)
DefaultRefreshTokenTokenResponseClient(org.springframework.security.oauth2.client.endpoint.DefaultRefreshTokenTokenResponseClient)
JwtBearerOAuth2AuthorizedClientProvider(org.springframework.security.oauth2.client.JwtBearerOAuth2AuthorizedClientProvider)
MockHttpServletResponse(org.springframework.mock.web.MockHttpServletResponse)
ArrayList(java.util.ArrayList)
Assertions.assertThatExceptionOfType(org.assertj.core.api.Assertions.assertThatExceptionOfType)
OAuth2AccessToken(org.springframework.security.oauth2.core.OAuth2AccessToken)
RequestEntity(org.springframework.http.RequestEntity)
OAuth2AuthorizationFailureHandler(org.springframework.security.oauth2.client.OAuth2AuthorizationFailureHandler)
HttpMethod(org.springframework.http.HttpMethod)
Mono(reactor.core.publisher.Mono)
RestOperations(org.springframework.web.client.RestOperations)
OAuth2AccessTokenResponse(org.springframework.security.oauth2.core.endpoint.OAuth2AccessTokenResponse)
HttpStatus(org.springframework.http.HttpStatus)
AfterEach(org.junit.jupiter.api.AfterEach)
OAuth2AuthorizedClientRepository(org.springframework.security.oauth2.client.web.OAuth2AuthorizedClientRepository)
Mockito.never(org.mockito.Mockito.never)
Assertions.assertThatIllegalArgumentException(org.assertj.core.api.Assertions.assertThatIllegalArgumentException)
OAuth2Error(org.springframework.security.oauth2.core.OAuth2Error)
OAuth2RefreshToken(org.springframework.security.oauth2.core.OAuth2RefreshToken)
AuthorityUtils(org.springframework.security.core.authority.AuthorityUtils)
HttpMessageWriter(org.springframework.http.codec.HttpMessageWriter)
AuthorizationGrantType(org.springframework.security.oauth2.core.AuthorizationGrantType)
Assertions.assertThat(org.assertj.core.api.Assertions.assertThat)
WebClient(org.springframework.web.reactive.function.client.WebClient)
BodyInserter(org.springframework.web.reactive.function.BodyInserter)
Mockito.verifyNoInteractions(org.mockito.Mockito.verifyNoInteractions)
ServerSentEventHttpMessageWriter(org.springframework.http.codec.ServerSentEventHttpMessageWriter)
URI(java.net.URI)
Jwt(org.springframework.security.oauth2.jwt.Jwt)
ServerHttpRequest(org.springframework.http.server.reactive.ServerHttpRequest)
TestClientRegistrations(org.springframework.security.oauth2.client.registration.TestClientRegistrations)
MockitoExtension(org.mockito.junit.jupiter.MockitoExtension)
HttpHeaders(org.springframework.http.HttpHeaders)
Instant(java.time.Instant)
Test(org.junit.jupiter.api.Test)
List(java.util.List)
Optional(java.util.Optional)
Authentication(org.springframework.security.core.Authentication)
OAuth2ClientCredentialsGrantRequest(org.springframework.security.oauth2.client.endpoint.OAuth2ClientCredentialsGrantRequest)
ClientAuthorizationException(org.springframework.security.oauth2.client.ClientAuthorizationException)
ArgumentMatchers.any(org.mockito.ArgumentMatchers.any)
RefreshTokenOAuth2AuthorizedClientProvider(org.springframework.security.oauth2.client.RefreshTokenOAuth2AuthorizedClientProvider)
OAuth2ParameterNames(org.springframework.security.oauth2.core.endpoint.OAuth2ParameterNames)
MultipartHttpMessageWriter(org.springframework.http.codec.multipart.MultipartHttpMessageWriter)
ByteBufferEncoder(org.springframework.core.codec.ByteBufferEncoder)
ResourceHttpMessageWriter(org.springframework.http.codec.ResourceHttpMessageWriter)
OAuth2AuthorizationException(org.springframework.security.oauth2.core.OAuth2AuthorizationException)
HashMap(java.util.HashMap)
Jackson2JsonEncoder(org.springframework.http.codec.json.Jackson2JsonEncoder)
Captor(org.mockito.Captor)
ArgumentCaptor(org.mockito.ArgumentCaptor)
EncoderHttpMessageWriter(org.springframework.http.codec.EncoderHttpMessageWriter)
ClientAuthenticationMethod(org.springframework.security.oauth2.core.ClientAuthenticationMethod)
JwtBearerGrantRequest(org.springframework.security.oauth2.client.endpoint.JwtBearerGrantRequest)
Assertions.assertThatIllegalStateException(org.assertj.core.api.Assertions.assertThatIllegalStateException)
ExchangeFunction(org.springframework.web.reactive.function.client.ExchangeFunction)
TestOAuth2AccessTokenResponses(org.springframework.security.oauth2.core.endpoint.TestOAuth2AccessTokenResponses)
OAuth2AuthorizedClientProviderBuilder(org.springframework.security.oauth2.client.OAuth2AuthorizedClientProviderBuilder)
ServletRequestAttributes(org.springframework.web.context.request.ServletRequestAttributes)
OAuth2AuthenticationToken(org.springframework.security.oauth2.client.authentication.OAuth2AuthenticationToken)
OAuth2ErrorCodes(org.springframework.security.oauth2.core.OAuth2ErrorCodes)
Assertions.entry(org.assertj.core.api.Assertions.entry)
OAuth2AuthorizedClient(org.springframework.security.oauth2.client.OAuth2AuthorizedClient)
Mockito.verify(org.mockito.Mockito.verify)
Consumer(java.util.function.Consumer)
OAuth2AccessTokenResponseClient(org.springframework.security.oauth2.client.endpoint.OAuth2AccessTokenResponseClient)
DefaultOAuth2AuthorizedClientManager(org.springframework.security.oauth2.client.web.DefaultOAuth2AuthorizedClientManager)
ResponseEntity(org.springframework.http.ResponseEntity)
WebClientResponseException(org.springframework.web.reactive.function.client.WebClientResponseException)
HttpServletResponse(jakarta.servlet.http.HttpServletResponse)
Collections(java.util.Collections)
ClientRegistrationRepository(org.springframework.security.oauth2.client.registration.ClientRegistrationRepository)
StringUtils(org.springframework.util.StringUtils)
JwtBearerOAuth2AuthorizedClientProvider(org.springframework.security.oauth2.client.JwtBearerOAuth2AuthorizedClientProvider)
OAuth2AuthorizedClientProvider(org.springframework.security.oauth2.client.OAuth2AuthorizedClientProvider)
JwtBearerOAuth2AuthorizedClientProvider(org.springframework.security.oauth2.client.JwtBearerOAuth2AuthorizedClientProvider)
RefreshTokenOAuth2AuthorizedClientProvider(org.springframework.security.oauth2.client.RefreshTokenOAuth2AuthorizedClientProvider)
TestingAuthenticationToken(org.springframework.security.authentication.TestingAuthenticationToken)
DefaultOAuth2AuthorizedClientManager(org.springframework.security.oauth2.client.web.DefaultOAuth2AuthorizedClientManager)
BeforeEach(org.junit.jupiter.api.BeforeEach)
Aggregations
BeforeEach (org.junit.jupiter.api.BeforeEach)2
TestingAuthenticationToken (org.springframework.security.authentication.TestingAuthenticationToken)2
OAuth2AccessTokenResponseClient (org.springframework.security.oauth2.client.endpoint.OAuth2AccessTokenResponseClient)2
HttpServletRequest (jakarta.servlet.http.HttpServletRequest)1
HttpServletResponse (jakarta.servlet.http.HttpServletResponse)1
URI (java.net.URI)1
StandardCharsets (java.nio.charset.StandardCharsets)1
Duration (java.time.Duration)1
Instant (java.time.Instant)1
ArrayList (java.util.ArrayList)1
Collections (java.util.Collections)1
HashMap (java.util.HashMap)1
List (java.util.List)1
Map (java.util.Map)1
Optional (java.util.Optional)1
Consumer (java.util.function.Consumer)1
Assertions.assertThat (org.assertj.core.api.Assertions.assertThat)1
Assertions.assertThatExceptionOfType (org.assertj.core.api.Assertions.assertThatExceptionOfType)1
Assertions.assertThatIllegalArgumentException (org.assertj.core.api.Assertions.assertThatIllegalArgumentException)1
Assertions.assertThatIllegalStateException (org.assertj.core.api.Assertions.assertThatIllegalStateException)1
