Example 56 with OAuth2AuthenticationException
use of org.springframework.security.oauth2.core.OAuth2AuthenticationException in project spring-security by spring-projects.
the class DefaultBearerTokenResolver method resolveFromRequestParameters.
private static String resolveFromRequestParameters(HttpServletRequest request) {
String[] values = request.getParameterValues("access_token");
if (values == null || values.length == 0) {
return null;
}
if (values.length == 1) {
return values[0];
}
BearerTokenError error = BearerTokenErrors.invalidRequest("Found multiple bearer tokens in the request");
throw new OAuth2AuthenticationException(error);
}
Also used :
BearerTokenError(org.springframework.security.oauth2.server.resource.BearerTokenError)
OAuth2AuthenticationException(org.springframework.security.oauth2.core.OAuth2AuthenticationException)
Example 57 with OAuth2AuthenticationException
use of org.springframework.security.oauth2.core.OAuth2AuthenticationException in project OsmAnd-tools by osmandapp.
the class WebSecurityConfiguration method oauthGithubUserService.
private DefaultOAuth2UserService oauthGithubUserService() {
// authorize with admin for specific group
RestTemplate restTemplate = new RestTemplate();
restTemplate.setErrorHandler(new DefaultResponseErrorHandler() {
@Override
public void handleError(ClientHttpResponse response) throws IOException {
}
});
DefaultOAuth2UserService service = new DefaultOAuth2UserService() {
@Override
public OAuth2User loadUser(OAuth2UserRequest userRequest) throws OAuth2AuthenticationException {
OAuth2User user = super.loadUser(userRequest);
if (user == null) {
return null;
}
Set<GrantedAuthority> authorities = new LinkedHashSet<>();
if (!Algorithms.isEmpty(adminOauth2Url) && user.getAttribute("url") != null && user.getAttribute("url").toString().contains("github.com")) {
Map<String, Object> orgs = checkPermissionAccess(adminOauth2Url, userRequest, user);
// orgs.get("privacy").equals("closed");
if (orgs != null) {
authorities.add(new SimpleGrantedAuthority(ROLE_ADMIN));
}
}
String userNameAttributeName = userRequest.getClientRegistration().getProviderDetails().getUserInfoEndpoint().getUserNameAttributeName();
return new DefaultOAuth2User(authorities, user.getAttributes(), userNameAttributeName);
}
private Map<String, Object> checkPermissionAccess(Object orgUrl, OAuth2UserRequest userRequest, OAuth2User user) {
String organizationUrl = String.valueOf(orgUrl);
HttpHeaders headers = new HttpHeaders();
headers.setBearerAuth(userRequest.getAccessToken().getTokenValue());
headers.setAccept(Collections.singletonList(MediaType.APPLICATION_JSON));
URI uri = UriComponentsBuilder.fromUriString(organizationUrl).build().toUri();
RequestEntity<?> request = new RequestEntity<>(headers, HttpMethod.GET, uri);
ResponseEntity<Map<String, Object>> res = restTemplate.exchange(request, new ParameterizedTypeReference<Map<String, Object>>() {
});
if (!res.getStatusCode().is2xxSuccessful()) {
return null;
}
return res.getBody();
}
};
return service;
}
Also used :
LinkedHashSet(java.util.LinkedHashSet)
DefaultOAuth2User(org.springframework.security.oauth2.core.user.DefaultOAuth2User)
OAuth2User(org.springframework.security.oauth2.core.user.OAuth2User)
HttpHeaders(org.springframework.http.HttpHeaders)
DefaultResponseErrorHandler(org.springframework.web.client.DefaultResponseErrorHandler)
GrantedAuthority(org.springframework.security.core.GrantedAuthority)
SimpleGrantedAuthority(org.springframework.security.core.authority.SimpleGrantedAuthority)
OAuth2UserRequest(org.springframework.security.oauth2.client.userinfo.OAuth2UserRequest)
IOException(java.io.IOException)
DefaultOAuth2UserService(org.springframework.security.oauth2.client.userinfo.DefaultOAuth2UserService)
URI(java.net.URI)
SimpleGrantedAuthority(org.springframework.security.core.authority.SimpleGrantedAuthority)
RestTemplate(org.springframework.web.client.RestTemplate)
DefaultOAuth2User(org.springframework.security.oauth2.core.user.DefaultOAuth2User)
RequestEntity(org.springframework.http.RequestEntity)
ClientHttpResponse(org.springframework.http.client.ClientHttpResponse)
Map(java.util.Map)
Aggregations
OAuth2AuthenticationException (org.springframework.security.oauth2.core.OAuth2AuthenticationException)52
OAuth2Error (org.springframework.security.oauth2.core.OAuth2Error)31
Test (org.junit.jupiter.api.Test)27
BearerTokenError (org.springframework.security.oauth2.server.resource.BearerTokenError)21
MockHttpServletRequest (org.springframework.mock.web.MockHttpServletRequest)10
MockHttpServletResponse (org.springframework.mock.web.MockHttpServletResponse)10
OAuth2AccessToken (org.springframework.security.oauth2.core.OAuth2AccessToken)9
SimpleGrantedAuthority (org.springframework.security.core.authority.SimpleGrantedAuthority)8
ClientRegistration (org.springframework.security.oauth2.client.registration.ClientRegistration)8
OAuth2AuthorizationRequest (org.springframework.security.oauth2.core.endpoint.OAuth2AuthorizationRequest)7
OAuth2AuthorizationResponse (org.springframework.security.oauth2.core.endpoint.OAuth2AuthorizationResponse)7
OAuth2User (org.springframework.security.oauth2.core.user.OAuth2User)7
Map (java.util.Map)6
Authentication (org.springframework.security.core.Authentication)6
AuthenticationException (org.springframework.security.core.AuthenticationException)6
GrantedAuthority (org.springframework.security.core.GrantedAuthority)6
OAuth2LoginAuthenticationToken (org.springframework.security.oauth2.client.authentication.OAuth2LoginAuthenticationToken)6
Mono (reactor.core.publisher.Mono)6
NoSuchAlgorithmException (java.security.NoSuchAlgorithmException)5
Base64 (java.util.Base64)5
