Example 21 with OAuth2Exception
use of org.springframework.security.oauth2.common.exceptions.OAuth2Exception in project spring-security-oauth by spring-projects.
the class AbstractDefaultTokenServicesTests method testClientSpecificTokenExpiry.
@Test
public void testClientSpecificTokenExpiry() throws Exception {
getTokenServices().setAccessTokenValiditySeconds(1000);
getTokenServices().setClientDetailsService(new ClientDetailsService() {
public ClientDetails loadClientByClientId(String clientId) throws OAuth2Exception {
BaseClientDetails client = new BaseClientDetails();
client.setAccessTokenValiditySeconds(100);
return client;
}
});
OAuth2AccessToken accessToken = getTokenServices().createAccessToken(createAuthentication());
assertTrue(100 >= accessToken.getExpiresIn());
}
Also used :
BaseClientDetails(org.springframework.security.oauth2.provider.client.BaseClientDetails)
BaseClientDetails(org.springframework.security.oauth2.provider.client.BaseClientDetails)
ClientDetails(org.springframework.security.oauth2.provider.ClientDetails)
OAuth2AccessToken(org.springframework.security.oauth2.common.OAuth2AccessToken)
ClientDetailsService(org.springframework.security.oauth2.provider.ClientDetailsService)
OAuth2Exception(org.springframework.security.oauth2.common.exceptions.OAuth2Exception)
Test(org.junit.Test)
Example 22 with OAuth2Exception
use of org.springframework.security.oauth2.common.exceptions.OAuth2Exception in project spring-security-oauth by spring-projects.
the class AbstractDefaultTokenServicesTests method testClientInvalidated.
@Test(expected = InvalidTokenException.class)
public void testClientInvalidated() throws Exception {
final AtomicBoolean deleted = new AtomicBoolean();
getTokenServices().setClientDetailsService(new ClientDetailsService() {
public ClientDetails loadClientByClientId(String clientId) throws OAuth2Exception {
if (deleted.get()) {
throw new ClientRegistrationException("No such client: " + clientId);
}
BaseClientDetails client = new BaseClientDetails();
client.setRefreshTokenValiditySeconds(100);
client.setAuthorizedGrantTypes(Arrays.asList("authorization_code", "refresh_token"));
return client;
}
});
OAuth2AccessToken token = getTokenServices().createAccessToken(createAuthentication());
deleted.set(true);
OAuth2Authentication authentication = getTokenServices().loadAuthentication(token.getValue());
assertNotNull(authentication.getOAuth2Request());
}
Also used :
BaseClientDetails(org.springframework.security.oauth2.provider.client.BaseClientDetails)
AtomicBoolean(java.util.concurrent.atomic.AtomicBoolean)
BaseClientDetails(org.springframework.security.oauth2.provider.client.BaseClientDetails)
ClientDetails(org.springframework.security.oauth2.provider.ClientDetails)
OAuth2AccessToken(org.springframework.security.oauth2.common.OAuth2AccessToken)
OAuth2Authentication(org.springframework.security.oauth2.provider.OAuth2Authentication)
ClientRegistrationException(org.springframework.security.oauth2.provider.ClientRegistrationException)
ClientDetailsService(org.springframework.security.oauth2.provider.ClientDetailsService)
OAuth2Exception(org.springframework.security.oauth2.common.exceptions.OAuth2Exception)
Test(org.junit.Test)
Example 23 with OAuth2Exception
use of org.springframework.security.oauth2.common.exceptions.OAuth2Exception in project spring-security-oauth by spring-projects.
the class AbstractDefaultTokenServicesTests method testClientSpecificRefreshTokenExpiry.
@Test
public void testClientSpecificRefreshTokenExpiry() throws Exception {
getTokenServices().setRefreshTokenValiditySeconds(1000);
getTokenServices().setClientDetailsService(new ClientDetailsService() {
public ClientDetails loadClientByClientId(String clientId) throws OAuth2Exception {
BaseClientDetails client = new BaseClientDetails();
client.setRefreshTokenValiditySeconds(100);
client.setAuthorizedGrantTypes(Arrays.asList("authorization_code", "refresh_token"));
return client;
}
});
OAuth2AccessToken accessToken = getTokenServices().createAccessToken(createAuthentication());
DefaultExpiringOAuth2RefreshToken refreshToken = (DefaultExpiringOAuth2RefreshToken) accessToken.getRefreshToken();
Date expectedExpiryDate = new Date(System.currentTimeMillis() + 102 * 1000L);
assertTrue(expectedExpiryDate.after(refreshToken.getExpiration()));
}
Also used :
BaseClientDetails(org.springframework.security.oauth2.provider.client.BaseClientDetails)
BaseClientDetails(org.springframework.security.oauth2.provider.client.BaseClientDetails)
ClientDetails(org.springframework.security.oauth2.provider.ClientDetails)
OAuth2AccessToken(org.springframework.security.oauth2.common.OAuth2AccessToken)
DefaultExpiringOAuth2RefreshToken(org.springframework.security.oauth2.common.DefaultExpiringOAuth2RefreshToken)
ClientDetailsService(org.springframework.security.oauth2.provider.ClientDetailsService)
OAuth2Exception(org.springframework.security.oauth2.common.exceptions.OAuth2Exception)
Date(java.util.Date)
Test(org.junit.Test)
Example 24 with OAuth2Exception
use of org.springframework.security.oauth2.common.exceptions.OAuth2Exception in project spring-security-oauth by spring-projects.
the class AuthorizationEndpointTests method init.
@Before
public void init() throws Exception {
client = new BaseClientDetails();
client.setRegisteredRedirectUri(Collections.singleton("http://anywhere.com"));
client.setAuthorizedGrantTypes(Arrays.asList("authorization_code", "implicit"));
endpoint.setClientDetailsService(new ClientDetailsService() {
public ClientDetails loadClientByClientId(String clientId) throws OAuth2Exception {
return client;
}
});
endpoint.setTokenGranter(new TokenGranter() {
public OAuth2AccessToken grant(String grantType, TokenRequest tokenRequest) {
return null;
}
});
endpoint.setRedirectResolver(new DefaultRedirectResolver());
endpoint.afterPropertiesSet();
}
Also used :
BaseClientDetails(org.springframework.security.oauth2.provider.client.BaseClientDetails)
BaseClientDetails(org.springframework.security.oauth2.provider.client.BaseClientDetails)
ClientDetails(org.springframework.security.oauth2.provider.ClientDetails)
TokenGranter(org.springframework.security.oauth2.provider.TokenGranter)
DefaultOAuth2AccessToken(org.springframework.security.oauth2.common.DefaultOAuth2AccessToken)
OAuth2AccessToken(org.springframework.security.oauth2.common.OAuth2AccessToken)
TokenRequest(org.springframework.security.oauth2.provider.TokenRequest)
ClientDetailsService(org.springframework.security.oauth2.provider.ClientDetailsService)
OAuth2Exception(org.springframework.security.oauth2.common.exceptions.OAuth2Exception)
Before(org.junit.Before)
Example 25 with OAuth2Exception
use of org.springframework.security.oauth2.common.exceptions.OAuth2Exception in project spring-security-oauth by spring-projects.
the class DefaultTokenServicesWithInMemoryTests method testNoRefreshTokenIfNotAuthorized.
@Test
public void testNoRefreshTokenIfNotAuthorized() throws Exception {
// create access token
getTokenServices().setAccessTokenValiditySeconds(1);
getTokenServices().setClientDetailsService(new ClientDetailsService() {
public ClientDetails loadClientByClientId(String clientId) throws OAuth2Exception {
BaseClientDetails client = new BaseClientDetails();
client.setAccessTokenValiditySeconds(1);
client.setAuthorizedGrantTypes(Arrays.asList("authorization_code"));
return client;
}
});
OAuth2Authentication expectedAuthentication = new OAuth2Authentication(RequestTokenFactory.createOAuth2Request("id", false, Collections.singleton("read")), new TestAuthentication("test2", false));
DefaultOAuth2AccessToken token = (DefaultOAuth2AccessToken) getTokenServices().createAccessToken(expectedAuthentication);
assertNull(token.getRefreshToken());
}
Also used :
BaseClientDetails(org.springframework.security.oauth2.provider.client.BaseClientDetails)
BaseClientDetails(org.springframework.security.oauth2.provider.client.BaseClientDetails)
ClientDetails(org.springframework.security.oauth2.provider.ClientDetails)
OAuth2Authentication(org.springframework.security.oauth2.provider.OAuth2Authentication)
ClientDetailsService(org.springframework.security.oauth2.provider.ClientDetailsService)
OAuth2Exception(org.springframework.security.oauth2.common.exceptions.OAuth2Exception)
DefaultOAuth2AccessToken(org.springframework.security.oauth2.common.DefaultOAuth2AccessToken)
Test(org.junit.Test)
Aggregations
OAuth2Exception (org.springframework.security.oauth2.common.exceptions.OAuth2Exception)23
Test (org.junit.Test)9
OAuth2AccessToken (org.springframework.security.oauth2.common.OAuth2AccessToken)8
OAuth2Authentication (org.springframework.security.oauth2.provider.OAuth2Authentication)7
ClientDetails (org.springframework.security.oauth2.provider.ClientDetails)6
ClientDetailsService (org.springframework.security.oauth2.provider.ClientDetailsService)6
BaseClientDetails (org.springframework.security.oauth2.provider.client.BaseClientDetails)6
InvalidTokenException (org.springframework.security.oauth2.common.exceptions.InvalidTokenException)4
IOException (java.io.IOException)3
Date (java.util.Date)3
OAuth2AccessDeniedException (org.springframework.security.oauth2.client.resource.OAuth2AccessDeniedException)3
DefaultOAuth2AccessToken (org.springframework.security.oauth2.common.DefaultOAuth2AccessToken)3
InvalidClientException (org.springframework.security.oauth2.common.exceptions.InvalidClientException)3
OAuth2Request (org.springframework.security.oauth2.provider.OAuth2Request)3
TokenRequest (org.springframework.security.oauth2.provider.TokenRequest)3
ModelAndView (org.springframework.web.servlet.ModelAndView)3
ServletException (javax.servlet.ServletException)2
ResponseEntity (org.springframework.http.ResponseEntity)2
ClientHttpResponse (org.springframework.http.client.ClientHttpResponse)2
AccessDeniedException (org.springframework.security.access.AccessDeniedException)2
