Example 1 with JwtGenerator
use of org.springframework.security.oauth2.server.authorization.JwtGenerator in project spring-authorization-server by spring-projects.
the class OAuth2RefreshTokenAuthenticationProviderTests method setUp.
@Before
public void setUp() {
this.authorizationService = mock(OAuth2AuthorizationService.class);
this.jwtEncoder = mock(JwtEncoder.class);
when(this.jwtEncoder.encode(any(), any())).thenReturn(createJwt(Collections.singleton("scope1")));
this.jwtCustomizer = mock(OAuth2TokenCustomizer.class);
JwtGenerator jwtGenerator = new JwtGenerator(this.jwtEncoder);
jwtGenerator.setJwtCustomizer(this.jwtCustomizer);
this.accessTokenCustomizer = mock(OAuth2TokenCustomizer.class);
OAuth2AccessTokenGenerator accessTokenGenerator = new OAuth2AccessTokenGenerator();
accessTokenGenerator.setAccessTokenCustomizer(this.accessTokenCustomizer);
OAuth2RefreshTokenGenerator refreshTokenGenerator = new OAuth2RefreshTokenGenerator();
OAuth2TokenGenerator<OAuth2Token> delegatingTokenGenerator = new DelegatingOAuth2TokenGenerator(jwtGenerator, accessTokenGenerator, refreshTokenGenerator);
this.tokenGenerator = spy(new OAuth2TokenGenerator<OAuth2Token>() {
@Override
public OAuth2Token generate(OAuth2TokenContext context) {
return delegatingTokenGenerator.generate(context);
}
});
this.authenticationProvider = new OAuth2RefreshTokenAuthenticationProvider(this.authorizationService, this.tokenGenerator);
ProviderSettings providerSettings = ProviderSettings.builder().issuer("https://provider.com").build();
ProviderContextHolder.setProviderContext(new ProviderContext(providerSettings, null));
}
Also used :
ProviderContext(org.springframework.security.oauth2.server.authorization.context.ProviderContext)
OAuth2Token(org.springframework.security.oauth2.core.OAuth2Token)
ProviderSettings(org.springframework.security.oauth2.server.authorization.config.ProviderSettings)
JwtEncoder(org.springframework.security.oauth2.jwt.JwtEncoder)
OAuth2TokenCustomizer(org.springframework.security.oauth2.server.authorization.OAuth2TokenCustomizer)
DelegatingOAuth2TokenGenerator(org.springframework.security.oauth2.server.authorization.DelegatingOAuth2TokenGenerator)
JwtGenerator(org.springframework.security.oauth2.server.authorization.JwtGenerator)
OAuth2RefreshTokenGenerator(org.springframework.security.oauth2.server.authorization.OAuth2RefreshTokenGenerator)
OAuth2TokenGenerator(org.springframework.security.oauth2.server.authorization.OAuth2TokenGenerator)
DelegatingOAuth2TokenGenerator(org.springframework.security.oauth2.server.authorization.DelegatingOAuth2TokenGenerator)
OAuth2TokenContext(org.springframework.security.oauth2.server.authorization.OAuth2TokenContext)
OAuth2AuthorizationService(org.springframework.security.oauth2.server.authorization.OAuth2AuthorizationService)
OAuth2AccessTokenGenerator(org.springframework.security.oauth2.server.authorization.OAuth2AccessTokenGenerator)
Before(org.junit.Before)
Example 2 with JwtGenerator
use of org.springframework.security.oauth2.server.authorization.JwtGenerator in project spring-authorization-server by spring-projects.
the class OAuth2ClientCredentialsAuthenticationProviderTests method setUp.
@Before
public void setUp() {
this.authorizationService = mock(OAuth2AuthorizationService.class);
this.jwtEncoder = mock(JwtEncoder.class);
this.jwtCustomizer = mock(OAuth2TokenCustomizer.class);
JwtGenerator jwtGenerator = new JwtGenerator(this.jwtEncoder);
jwtGenerator.setJwtCustomizer(this.jwtCustomizer);
this.accessTokenCustomizer = mock(OAuth2TokenCustomizer.class);
OAuth2AccessTokenGenerator accessTokenGenerator = new OAuth2AccessTokenGenerator();
accessTokenGenerator.setAccessTokenCustomizer(this.accessTokenCustomizer);
OAuth2TokenGenerator<OAuth2Token> delegatingTokenGenerator = new DelegatingOAuth2TokenGenerator(jwtGenerator, accessTokenGenerator);
this.tokenGenerator = spy(new OAuth2TokenGenerator<OAuth2Token>() {
@Override
public OAuth2Token generate(OAuth2TokenContext context) {
return delegatingTokenGenerator.generate(context);
}
});
this.authenticationProvider = new OAuth2ClientCredentialsAuthenticationProvider(this.authorizationService, this.tokenGenerator);
ProviderSettings providerSettings = ProviderSettings.builder().issuer("https://provider.com").build();
ProviderContextHolder.setProviderContext(new ProviderContext(providerSettings, null));
}
Also used :
ProviderContext(org.springframework.security.oauth2.server.authorization.context.ProviderContext)
OAuth2Token(org.springframework.security.oauth2.core.OAuth2Token)
ProviderSettings(org.springframework.security.oauth2.server.authorization.config.ProviderSettings)
JwtEncoder(org.springframework.security.oauth2.jwt.JwtEncoder)
OAuth2TokenCustomizer(org.springframework.security.oauth2.server.authorization.OAuth2TokenCustomizer)
DelegatingOAuth2TokenGenerator(org.springframework.security.oauth2.server.authorization.DelegatingOAuth2TokenGenerator)
JwtGenerator(org.springframework.security.oauth2.server.authorization.JwtGenerator)
OAuth2TokenGenerator(org.springframework.security.oauth2.server.authorization.OAuth2TokenGenerator)
DelegatingOAuth2TokenGenerator(org.springframework.security.oauth2.server.authorization.DelegatingOAuth2TokenGenerator)
OAuth2TokenContext(org.springframework.security.oauth2.server.authorization.OAuth2TokenContext)
OAuth2AuthorizationService(org.springframework.security.oauth2.server.authorization.OAuth2AuthorizationService)
OAuth2AccessTokenGenerator(org.springframework.security.oauth2.server.authorization.OAuth2AccessTokenGenerator)
Before(org.junit.Before)
Example 3 with JwtGenerator
use of org.springframework.security.oauth2.server.authorization.JwtGenerator in project spring-authorization-server by spring-projects.
the class OAuth2ConfigurerUtils method getTokenGenerator.
@SuppressWarnings("unchecked")
static <B extends HttpSecurityBuilder<B>> OAuth2TokenGenerator<? extends OAuth2Token> getTokenGenerator(B builder) {
OAuth2TokenGenerator<? extends OAuth2Token> tokenGenerator = builder.getSharedObject(OAuth2TokenGenerator.class);
if (tokenGenerator == null) {
tokenGenerator = getOptionalBean(builder, OAuth2TokenGenerator.class);
if (tokenGenerator == null) {
JwtGenerator jwtGenerator = getJwtGenerator(builder);
OAuth2AccessTokenGenerator accessTokenGenerator = new OAuth2AccessTokenGenerator();
OAuth2TokenCustomizer<OAuth2TokenClaimsContext> accessTokenCustomizer = getAccessTokenCustomizer(builder);
if (accessTokenCustomizer != null) {
accessTokenGenerator.setAccessTokenCustomizer(accessTokenCustomizer);
}
OAuth2RefreshTokenGenerator refreshTokenGenerator = new OAuth2RefreshTokenGenerator();
if (jwtGenerator != null) {
tokenGenerator = new DelegatingOAuth2TokenGenerator(jwtGenerator, accessTokenGenerator, refreshTokenGenerator);
} else {
tokenGenerator = new DelegatingOAuth2TokenGenerator(accessTokenGenerator, refreshTokenGenerator);
}
}
builder.setSharedObject(OAuth2TokenGenerator.class, tokenGenerator);
}
return tokenGenerator;
}
Also used :
JwtGenerator(org.springframework.security.oauth2.server.authorization.JwtGenerator)
OAuth2RefreshTokenGenerator(org.springframework.security.oauth2.server.authorization.OAuth2RefreshTokenGenerator)
OAuth2TokenGenerator(org.springframework.security.oauth2.server.authorization.OAuth2TokenGenerator)
DelegatingOAuth2TokenGenerator(org.springframework.security.oauth2.server.authorization.DelegatingOAuth2TokenGenerator)
OAuth2TokenClaimsContext(org.springframework.security.oauth2.server.authorization.OAuth2TokenClaimsContext)
OAuth2AccessTokenGenerator(org.springframework.security.oauth2.server.authorization.OAuth2AccessTokenGenerator)
DelegatingOAuth2TokenGenerator(org.springframework.security.oauth2.server.authorization.DelegatingOAuth2TokenGenerator)
Example 4 with JwtGenerator
use of org.springframework.security.oauth2.server.authorization.JwtGenerator in project spring-authorization-server by spring-projects.
the class OidcClientRegistrationAuthenticationProviderTests method setUp.
@Before
public void setUp() {
this.registeredClientRepository = mock(RegisteredClientRepository.class);
this.authorizationService = mock(OAuth2AuthorizationService.class);
this.jwtEncoder = mock(JwtEncoder.class);
JwtGenerator jwtGenerator = new JwtGenerator(this.jwtEncoder);
this.tokenGenerator = spy(new OAuth2TokenGenerator<Jwt>() {
@Override
public Jwt generate(OAuth2TokenContext context) {
return jwtGenerator.generate(context);
}
});
this.providerSettings = ProviderSettings.builder().issuer("https://provider.com").build();
ProviderContextHolder.setProviderContext(new ProviderContext(this.providerSettings, null));
this.authenticationProvider = new OidcClientRegistrationAuthenticationProvider(this.registeredClientRepository, this.authorizationService, this.tokenGenerator);
}
Also used :
JwtGenerator(org.springframework.security.oauth2.server.authorization.JwtGenerator)
OAuth2TokenGenerator(org.springframework.security.oauth2.server.authorization.OAuth2TokenGenerator)
ProviderContext(org.springframework.security.oauth2.server.authorization.context.ProviderContext)
OAuth2TokenContext(org.springframework.security.oauth2.server.authorization.OAuth2TokenContext)
OAuth2AuthorizationService(org.springframework.security.oauth2.server.authorization.OAuth2AuthorizationService)
JwtEncoder(org.springframework.security.oauth2.jwt.JwtEncoder)
RegisteredClientRepository(org.springframework.security.oauth2.server.authorization.client.RegisteredClientRepository)
Before(org.junit.Before)
Example 5 with JwtGenerator
use of org.springframework.security.oauth2.server.authorization.JwtGenerator in project cloud-security-xsuaa-integration by SAP.
the class TokenAuthenticationConverterTest method extractAuthoritiesIgnoresForeignScopes.
@Test
public void extractAuthoritiesIgnoresForeignScopes() {
Jwt jwt = new JwtGenerator().addScopes(scopeAdmin, scopeOther, scopeRead).getToken();
AbstractAuthenticationToken authenticationToken = tokenConverterLocalScopesOnly.convert(jwt);
assertThat(authenticationToken.getAuthorities().size(), is(2));
assertThat(authenticationToken.getAuthorities(), not(hasItem(new SimpleGrantedAuthority("Other"))));
}
Also used :
JwtGenerator(com.sap.cloud.security.xsuaa.test.JwtGenerator)
AbstractAuthenticationToken(org.springframework.security.authentication.AbstractAuthenticationToken)
SimpleGrantedAuthority(org.springframework.security.core.authority.SimpleGrantedAuthority)
Jwt(org.springframework.security.oauth2.jwt.Jwt)
Test(org.junit.Test)
Aggregations
Test (org.junit.Test)11
Jwt (org.springframework.security.oauth2.jwt.Jwt)11
JwtGenerator (com.sap.cloud.security.xsuaa.test.JwtGenerator)9
JwtEncoder (org.springframework.security.oauth2.jwt.JwtEncoder)7
Before (org.junit.Before)6
JwtGenerator (org.springframework.security.oauth2.server.authorization.JwtGenerator)6
AbstractAuthenticationToken (org.springframework.security.authentication.AbstractAuthenticationToken)5
SimpleGrantedAuthority (org.springframework.security.core.authority.SimpleGrantedAuthority)5
OAuth2TokenGenerator (org.springframework.security.oauth2.server.authorization.OAuth2TokenGenerator)5
ProviderContext (org.springframework.security.oauth2.server.authorization.context.ProviderContext)5
DelegatingOAuth2TokenGenerator (org.springframework.security.oauth2.server.authorization.DelegatingOAuth2TokenGenerator)4
OAuth2AccessTokenGenerator (org.springframework.security.oauth2.server.authorization.OAuth2AccessTokenGenerator)4
OAuth2AuthorizationService (org.springframework.security.oauth2.server.authorization.OAuth2AuthorizationService)4
OAuth2TokenContext (org.springframework.security.oauth2.server.authorization.OAuth2TokenContext)4
ProviderSettings (org.springframework.security.oauth2.server.authorization.config.ProviderSettings)4
OAuth2Token (org.springframework.security.oauth2.core.OAuth2Token)3
OAuth2RefreshTokenGenerator (org.springframework.security.oauth2.server.authorization.OAuth2RefreshTokenGenerator)3
OAuth2TokenCustomizer (org.springframework.security.oauth2.server.authorization.OAuth2TokenCustomizer)3
JWTClaimsSet (com.nimbusds.jwt.JWTClaimsSet)1
DefaultAuthoritiesExtractor (com.sap.cloud.security.xsuaa.extractor.DefaultAuthoritiesExtractor)1
