Examples with JwtBearerGrantRequest org.springframework.security.oauth2.client.endpoint.JwtBearerGrantRequest used on opensource projects

Example 21 with JwtBearerGrantRequest

use of org.springframework.security.oauth2.client.endpoint.JwtBearerGrantRequest in project spring-security by spring-projects.

the class WebClientReactiveJwtBearerTokenResponseClientTests method convertWhenParametersConverterAddedThenCalled.

@Test
public void convertWhenParametersConverterAddedThenCalled() throws Exception {
    ClientRegistration clientRegistration = this.clientRegistration.build();
    JwtBearerGrantRequest request = new JwtBearerGrantRequest(clientRegistration, this.jwtAssertion);
    Converter<JwtBearerGrantRequest, MultiValueMap<String, String>> addedParametersConverter = mock(Converter.class);
    MultiValueMap<String, String> parameters = new LinkedMultiValueMap<>();
    parameters.add("custom-parameter-name", "custom-parameter-value");
    given(addedParametersConverter.convert(request)).willReturn(parameters);
    this.client.addParametersConverter(addedParametersConverter);
    enqueueJson(DEFAULT_ACCESS_TOKEN_RESPONSE);
    this.client.getTokenResponse(request).block();
    verify(addedParametersConverter).convert(request);
    RecordedRequest actualRequest = this.server.takeRequest();
    assertThat(actualRequest.getBody().readUtf8()).contains("grant_type=urn%3Aietf%3Aparams%3Aoauth%3Agrant-type%3Ajwt-bearer", "custom-parameter-name=custom-parameter-value");
}

Example 22 with JwtBearerGrantRequest

use of org.springframework.security.oauth2.client.endpoint.JwtBearerGrantRequest in project spring-security by spring-projects.

the class WebClientReactiveJwtBearerTokenResponseClientTests method getTokenResponseWhenWebClientSetThenCalled.

@Test
public void getTokenResponseWhenWebClientSetThenCalled() {
    WebClient customClient = mock(WebClient.class);
    given(customClient.post()).willReturn(WebClient.builder().build().post());
    this.client.setWebClient(customClient);
    enqueueJson(DEFAULT_ACCESS_TOKEN_RESPONSE);
    ClientRegistration registration = this.clientRegistration.build();
    JwtBearerGrantRequest request = new JwtBearerGrantRequest(registration, this.jwtAssertion);
    this.client.getTokenResponse(request).block();
    verify(customClient).post();
}

Example 23 with JwtBearerGrantRequest

use of org.springframework.security.oauth2.client.endpoint.JwtBearerGrantRequest in project spring-security by spring-projects.

the class WebClientReactiveJwtBearerTokenResponseClientTests method getTokenResponseWhenResponseIncludesScopeThenAccessTokenHasResponseScope.

@Test
public void getTokenResponseWhenResponseIncludesScopeThenAccessTokenHasResponseScope() throws Exception {
    // @formatter:off
    String accessTokenResponse = "{\n" + "  \"access_token\": \"access-token-1234\",\n" + "  \"token_type\": \"bearer\",\n" + "  \"expires_in\": 3600,\n" + "  \"scope\": \"read\"\n" + "}\n";
    ClientRegistration clientRegistration = this.clientRegistration.build();
    JwtBearerGrantRequest request = new JwtBearerGrantRequest(clientRegistration, this.jwtAssertion);
    enqueueJson(accessTokenResponse);
    OAuth2AccessTokenResponse response = this.client.getTokenResponse(request).block();
    assertThat(response).isNotNull();
    assertThat(response.getAccessToken().getScopes()).containsExactly("read");
}

Example 24 with JwtBearerGrantRequest

use of org.springframework.security.oauth2.client.endpoint.JwtBearerGrantRequest in project spring-security by spring-projects.

the class WebClientReactiveJwtBearerTokenResponseClientTests method getTokenResponseWhenClientSecretPostThenSuccess.

@Test
public void getTokenResponseWhenClientSecretPostThenSuccess() throws Exception {
    // @formatter:off
    ClientRegistration clientRegistration = this.clientRegistration.clientAuthenticationMethod(ClientAuthenticationMethod.CLIENT_SECRET_POST).build();
    // @formatter:on
    JwtBearerGrantRequest request = new JwtBearerGrantRequest(clientRegistration, this.jwtAssertion);
    enqueueJson(DEFAULT_ACCESS_TOKEN_RESPONSE);
    OAuth2AccessTokenResponse response = this.client.getTokenResponse(request).block();
    assertThat(response).isNotNull();
    assertThat(response.getAccessToken().getScopes()).containsExactly("read", "write");
    RecordedRequest actualRequest = this.server.takeRequest();
    assertThat(actualRequest.getHeader(HttpHeaders.AUTHORIZATION)).isNull();
    assertThat(actualRequest.getBody().readUtf8()).isEqualTo("grant_type=urn%3Aietf%3Aparams%3Aoauth%3Agrant-type%3Ajwt-bearer&client_id=client-id&client_secret=client-secret&scope=read+write&assertion=token");
}

Example 25 with JwtBearerGrantRequest

use of org.springframework.security.oauth2.client.endpoint.JwtBearerGrantRequest in project spring-security by spring-projects.

the class WebClientReactiveJwtBearerTokenResponseClientTests method getTokenResponseWhenHeadersConverterAddedThenCalled.

@Test
public void getTokenResponseWhenHeadersConverterAddedThenCalled() throws Exception {
    ClientRegistration clientRegistration = this.clientRegistration.build();
    JwtBearerGrantRequest request = new JwtBearerGrantRequest(clientRegistration, this.jwtAssertion);
    Converter<JwtBearerGrantRequest, HttpHeaders> addedHeadersConverter = mock(Converter.class);
    HttpHeaders headers = new HttpHeaders();
    headers.put("custom-header-name", Collections.singletonList("custom-header-value"));
    given(addedHeadersConverter.convert(request)).willReturn(headers);
    this.client.addHeadersConverter(addedHeadersConverter);
    enqueueJson(DEFAULT_ACCESS_TOKEN_RESPONSE);
    this.client.getTokenResponse(request).block();
    verify(addedHeadersConverter).convert(request);
    RecordedRequest actualRequest = this.server.takeRequest();
    assertThat(actualRequest.getHeader(HttpHeaders.AUTHORIZATION)).isEqualTo("Basic Y2xpZW50LWlkOmNsaWVudC1zZWNyZXQ=");
    assertThat(actualRequest.getHeader("custom-header-name")).isEqualTo("custom-header-value");
}