devbox
我家小花儿
这个屌丝很懒,什么也没留下!
关注作者
热门标签
热门文章
当前位置:   article > 正文

Spring Boot + Spring Security + OAuth2 搭建 (一)_springboot springsecurity-oauth2-autoconfig

作者:我家小花儿 | 2024-02-15 10:07:45

springboot springsecurity-oauth2-autoconfig

源代码地址:https://download.csdn.net/download/wllovar/10963011

具体那里有疑问可以给我发邮件1044560183@qq.com

最近应项目需求想搞一些类似微信公众平台那样的提供第三方访问的API,这就要用到OAuth2,具体OAuth2的认证流程如下图所示

好了废话不多说,我们开始干活

1.打开我们新建的SpringBoot项目,打开pom.xml,引入maven依赖包

  1. <?xml version="1.0" encoding="UTF-8"?>
  2. <project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
  3. 	xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
  4. 	<modelVersion>4.0.0</modelVersion>
  5. 	<parent>
  6. 		<groupId>org.springframework.boot</groupId>
  7. 		<artifactId>spring-boot-starter-parent</artifactId>
  8. 		<version>2.1.1.RELEASE</version>
  9. 		<relativePath/> <!-- lookup parent from repository -->
  10. 	</parent>
  11. 	<groupId>com.pdl</groupId>
  12. 	<artifactId>springboot</artifactId>
  13. 	<version>0.0.1-SNAPSHOT</version>
  14. 	<name>SpringBoot</name>
  15. 	<description>Demo project for Spring Boot</description>
  16.  
  17. 	<properties>
  18. 		<java.version>1.8</java.version>
  19. 	</properties>
  20.  
  21. 	<dependencies>
  22. 		<dependency>
  23. 			<groupId>org.springframework.boot</groupId>
  24. 			<artifactId>spring-boot-starter-web</artifactId>
  25. 		</dependency>
  26.  
  27. 		<dependency>
  28. 			<groupId>org.springframework.boot</groupId>
  29. 			<artifactId>spring-boot-starter-test</artifactId>
  30. 			<scope>test</scope>
  31. 		</dependency>
  32.  
  33. 		<!-- 加载postgresql驱动 -->
  34. 		<dependency>
  35. 			<groupId>org.postgresql</groupId>
  36. 			<artifactId>postgresql</artifactId>
  37. 			<scope>runtime</scope>
  38. 		</dependency>
  39. 		<!--加载postgresql驱动-->
  40. 		<dependency>
  41. 			<groupId>mysql</groupId>
  42. 			<artifactId>mysql-connector-java</artifactId>
  43. 			<scope>runtime</scope>
  44. 		</dependency>
  45. 		<!-- 加载jdbc连接数据库 -->
  46. 		<dependency>
  47. 			<groupId>org.springframework.boot</groupId>
  48. 			<artifactId>spring-boot-starter-jdbc</artifactId>
  49. 		</dependency>
  50. 		<!-- 加载mybatis jar包 -->
  51. 		<dependency>
  52. 			<groupId>org.mybatis.spring.boot</groupId>
  53. 			<artifactId>mybatis-spring-boot-starter</artifactId>
  54. 			<version>1.3.2</version>
  55. 		</dependency>
  56. 		<!-- aop依赖 jar包 -->
  57. 		<dependency>
  58. 			<groupId>org.springframework.boot</groupId>
  59. 			<artifactId>spring-boot-starter-aop</artifactId>
  60. 		</dependency>
  61.  
  62. 		<!-- alibaba的druid数据库连接池 -->
  63. 		<dependency>
  64. 			<groupId>com.alibaba</groupId>
  65. 			<artifactId>druid-spring-boot-starter</artifactId>
  66. 			<version>1.1.9</version>
  67. 		</dependency>
  68. 		<!-- 分页插件 -->
  69. 		<dependency>
  70. 			<groupId>com.github.pagehelper</groupId>
  71. 			<artifactId>pagehelper-spring-boot-starter</artifactId>
  72. 			<version>1.2.5</version>
  73. 		</dependency>
  74. 		<!--json插件-->
  75. 		<dependency>
  76. 			<groupId>com.fasterxml.jackson.core</groupId>
  77. 			<artifactId>jackson-core</artifactId>
  78. 		</dependency>
  79. 		<dependency>
  80. 			<groupId>com.fasterxml.jackson.core</groupId>
  81. 			<artifactId>jackson-databind</artifactId>
  82. 		</dependency>
  83. 		<dependency>
  84. 			<groupId>com.fasterxml.jackson.datatype</groupId>
  85. 			<artifactId>jackson-datatype-joda</artifactId>
  86. 		</dependency>
  87. 		<dependency>
  88. 			<groupId>com.fasterxml.jackson.module</groupId>
  89. 			<artifactId>jackson-module-parameter-names</artifactId>
  90. 		</dependency>
  91. 		<dependency>
  92. 			<groupId>org.springframework.boot</groupId>
  93. 			<artifactId>spring-boot-starter-jta-atomikos</artifactId>
  94. 		</dependency>
  95. 		<dependency>
  96. 			<groupId>org.springframework.boot</groupId>
  97. 			<artifactId>spring-boot-starter-redis</artifactId>
  98. 			<version>1.4.7.RELEASE</version>
  99. 		</dependency>
  100. 		<!--安全框架 security-->
  101. 		<dependency>
  102. 			<groupId>org.springframework.boot</groupId>
  103. 			<artifactId>spring-boot-starter-security</artifactId>
  104. 		</dependency>
  105. 		<dependency>
  106. 			<groupId>org.springframework.security.oauth.boot</groupId>
  107. 			<artifactId>spring-security-oauth2-autoconfigure</artifactId>
  108. 			<version>2.0.3.RELEASE</version>
  109. 		</dependency>
  110. 		<!-- redis中 不用可以去除-->
  111. 		<dependency>
  112. 			<groupId>org.springframework.boot</groupId>
  113. 			<artifactId>spring-boot-starter-data-redis</artifactId>
  114. 		</dependency>
  115.  
  116. 		<dependency>
  117. 			<groupId>commons-lang</groupId>
  118. 			<artifactId>commons-lang</artifactId>
  119. 			<version>2.6</version>
  120. 		</dependency>
  121. 		<dependency>
  122. 			<groupId>org.projectlombok</groupId>
  123. 			<artifactId>lombok</artifactId>
  124. 			<optional>true</optional>
  125. 		</dependency>
  126.  
  127. 		<!-- mybatis-plus -->
  128. 		<dependency>
  129. 			<groupId>com.baomidou</groupId>
  130. 			<artifactId>mybatis-plus-boot-starter</artifactId>
  131. 			<version>3.0.4</version>
  132. 		</dependency>
  133.  
  134. 		<!--swagger start-->
  135. 		<dependency>
  136. 			<groupId>io.springfox</groupId>
  137. 			<artifactId>springfox-swagger2</artifactId>
  138. 			<version>2.9.2</version>
  139. 		</dependency>
  140.  
  141. 		<dependency>
  142. 			<groupId>io.springfox</groupId>
  143. 			<artifactId>springfox-swagger-ui</artifactId>
  144. 			<version>2.9.2</version>
  145. 		</dependency>
  146. 		<dependency>
  147. 			<groupId>org.springframework.boot</groupId>
  148. 			<artifactId>spring-boot-starter-thymeleaf</artifactId>
  149. 		</dependency>
  150. 		<!--swagger end-->
  151. 		 
  152. 	</dependencies>
  153.  
  154. 	<build>
  155. 		<plugins>
  156. 			<plugin>
  157. 				<groupId>org.springframework.boot</groupId>
  158. 				<artifactId>spring-boot-maven-plugin</artifactId>
  159. 			</plugin>
  160. 		</plugins>
  161. 	</build>
  162.  
  163. </project>

2.在config目录下新建认证服务端配置AuthorizationServerConfiguration.java

  1. package com.pdl.config;
  2.  
  3.  
  4. import com.pdl.security.BootClientDetailsService;
  5. import org.springframework.beans.factory.annotation.Autowired;
  6. import org.springframework.context.annotation.Configuration;
  7. import org.springframework.data.redis.connection.RedisConnectionFactory;
  8. import org.springframework.http.HttpMethod;
  9. import org.springframework.security.authentication.AuthenticationManager;
  10. import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
  11. import org.springframework.security.crypto.password.PasswordEncoder;
  12. import org.springframework.security.oauth2.config.annotation.configurers.ClientDetailsServiceConfigurer;
  13. import org.springframework.security.oauth2.config.annotation.web.configuration.AuthorizationServerConfigurerAdapter;
  14. import org.springframework.security.oauth2.config.annotation.web.configuration.EnableAuthorizationServer;
  15. import org.springframework.security.oauth2.config.annotation.web.configurers.AuthorizationServerEndpointsConfigurer;
  16. import org.springframework.security.oauth2.config.annotation.web.configurers.AuthorizationServerSecurityConfigurer;
  17. import org.springframework.security.oauth2.provider.token.TokenStore;
  18. import org.springframework.security.oauth2.provider.token.store.InMemoryTokenStore;
  19.  
  20.  
  21. @Configuration
  22. @EnableAuthorizationServer
  23. public class AuthorizationServerConfiguration extends AuthorizationServerConfigurerAdapter {
  24.  
  25.     @Autowired
  26.     private AuthenticationManager authenticationManager;
  27.  
  28.     @Autowired
  29.     private PasswordEncoder passwordEncoder;
  30.  
  31.     @Autowired
  32.     private BootClientDetailsService clientDetailsService;
  33.  
  34.  
  35.     @Override
  36.     public void configure(AuthorizationServerSecurityConfigurer security) throws Exception {
  37.         // 允许表单登录
  38.         security.allowFormAuthenticationForClients();
  39.     }
  40.  
  41.     @Override
  42.     public void configure(ClientDetailsServiceConfigurer clients) throws Exception {
  43.  
  44.         clients.withClientDetails(clientDetailsService);
  45.     }
  46.  
  47.     @Override
  48.     public void configure(AuthorizationServerEndpointsConfigurer endpoints) throws Exception {
  49.         endpoints
  50.                 // tonken 存储于内存中
  51.                 .allowedTokenEndpointRequestMethods(HttpMethod.GET, HttpMethod.POST)// add get method
  52.                 .tokenStore(new InMemoryTokenStore())
  53.                 .authenticationManager(authenticationManager);
  54.     }
  55.  
  56. }

3.在config目录下新建认证资源配置ResourceServerConfiguration.java

  1. package com.pdl.config;
  2.  
  3. import org.springframework.context.annotation.Configuration;
  4. import org.springframework.security.config.annotation.web.builders.HttpSecurity;
  5. import org.springframework.security.config.http.SessionCreationPolicy;
  6. import org.springframework.security.oauth2.config.annotation.web.configuration.EnableResourceServer;
  7. import org.springframework.security.oauth2.config.annotation.web.configuration.ResourceServerConfigurerAdapter;
  8. import org.springframework.security.oauth2.config.annotation.web.configurers.ResourceServerSecurityConfigurer;
  9.  
  10. @Configuration
  11. @EnableResourceServer
  12. public class ResourceServerConfiguration extends ResourceServerConfigurerAdapter {
  13.  
  14.     @Override
  15.     public void configure(ResourceServerSecurityConfigurer resources) throws Exception {
  16.         super.configure(resources);
  17.     }
  18.  
  19.     @Override
  20.     public void configure(HttpSecurity http) throws Exception {
  21.         http
  22.                 .authorizeRequests()
  23.                 .antMatchers("/register").permitAll()
  24.                 .antMatchers("/druid/*").permitAll()
  25.                 .anyRequest()
  26.                 .authenticated();
  27.     }
  28.  
  29. }

注:如果需要开放某个接口不许认证操作时应该在ResourceServerConfiguration放开该方法的认证,具体实现是

.antMatchers("/register").permitAll()

如果不加这句话访问/register会一直报

{
    "error": "unauthorized",
    "error_description": "Full authentication is required to access this resource"
}

这个坑坑我了一天,解决后特此标注一下,以便小伙伴们不再趟坑

4.在config目录下新建WebSecurity 配置

  1. package com.pdl.config;
  2.  
  3.  
  4. import com.pdl.security.BootUserDetailService;
  5. import org.springframework.beans.factory.annotation.Autowired;
  6. import org.springframework.context.annotation.Bean;
  7. import org.springframework.context.annotation.Configuration;
  8. import org.springframework.core.annotation.Order;
  9. import org.springframework.security.authentication.AuthenticationManager;
  10. import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
  11. import org.springframework.security.config.annotation.web.builders.HttpSecurity;
  12. import org.springframework.security.config.annotation.web.builders.WebSecurity;
  13. import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
  14. import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
  15. import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
  16. import org.springframework.security.crypto.password.PasswordEncoder;
  17.  
  18. /**
  19.  * Created by wangle on 2018/12/28.
  20.  */
  21. @Configuration
  22. @EnableWebSecurity
  23. @Order(1)
  24. public class SecurityConfiguration extends WebSecurityConfigurerAdapter {
  25.  
  26.     @Autowired
  27.     private BootUserDetailService userDetailService;
  28.  
  29.  
  30.     /**
  31.      * 让Security 忽略这些url,不做拦截处理
  32.      * @param web
  33.      * @throws Exception
  34.      */
  35.     @Override
  36.     public void configure(WebSecurity web) throws Exception {
  37.         web.ignoring().antMatchers
  38.                 ("/swagger-ui.html/**", "/webjars/**",
  39.                         "/swagger-resources/**", "/v2/api-docs/**",
  40.                         "/swagger-resources/configuration/ui/**", "/swagger-resources/configuration/security/**",
  41.                         "/images/**");
  42.     }
  43.  
  44.     @Override
  45.     protected void configure(HttpSecurity http) throws Exception {
  46.  
  47.         http
  48.                 .formLogin().and()
  49.                 .requestMatchers()
  50.                 .antMatchers("/login","/oauth/authorize")
  51.                 .and()
  52.                 .authorizeRequests()
  53.                 .anyRequest()
  54.                 .authenticated();
  55.  
  56.         http.httpBasic().disable();
  57.     }
  58.  
  59.     @Override
  60.     protected void configure(AuthenticationManagerBuilder auth) throws Exception {
  61.         auth.userDetailsService(userDetailService);
  62.     }
  63.  
  64.  
  65.     @Override
  66.     @Bean
  67.     public AuthenticationManager authenticationManager() throws Exception {
  68.         return super.authenticationManager();
  69.     }
  70.  
  71.     @Bean
  72.     public PasswordEncoder passwordEncoder() {
  73.         return new BCryptPasswordEncoder();
  74.     }
  75.  
  76.  
  77.  
  78. }

5.自定义自定义 UserDetailsService 和 BootClientDetailsService

  1. package com.pdl.security;
  2.  
  3. import com.pdl.domain.User;
  4. import com.pdl.service.AdminService;
  5. import com.pdl.service.UserService;
  6. import org.apache.commons.lang.StringUtils;
  7.  
  8. import org.slf4j.Logger;
  9. import org.slf4j.LoggerFactory;
  10. import org.springframework.beans.factory.annotation.Autowired;
  11. import org.springframework.security.core.GrantedAuthority;
  12. import org.springframework.security.core.authority.AuthorityUtils;
  13. import org.springframework.security.core.authority.SimpleGrantedAuthority;
  14.  
  15. import org.springframework.security.core.userdetails.UserDetails;
  16. import org.springframework.security.core.userdetails.UserDetailsService;
  17. import org.springframework.security.core.userdetails.UsernameNotFoundException;
  18. import org.springframework.stereotype.Component;
  19.  
  20. import java.util.ArrayList;
  21. import java.util.List;
  22.  
  23. @Component
  24. public class BootUserDetailService implements UserDetailsService {
  25.  
  26.     @Autowired
  27.     private UserService userService;
  28.  
  29.     private Logger logger = LoggerFactory.getLogger(getClass());
  30.  
  31.     @Override
  32.     public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {
  33.  
  34.         User user= this.userService.selectUserByUsername(username);
  35.         if(user==null) {
  36.             throw new UsernameNotFoundException("用户名不存在");
  37.         }
  38.         GrantedAuthority authority = new SimpleGrantedAuthority("ROLE_USER");
  39.  
  40.         List <GrantedAuthority>authorities = new ArrayList<>();
  41.         authorities.add(authority);
  42.         user.setAuthorities(authorities);
  43.         return user;
  44.     }
  45. }

新建类 BootClientDetailsService 实现ClientDetailsService 接口,覆盖loadClientByClientId(String clientId)方法,将其声明为spring组件,方便后面配置使用

  1. package com.pdl.security;
  2.  
  3. import com.pdl.domain.Client;
  4. import com.pdl.service.AdminService;
  5. import com.pdl.service.UserService;
  6. import org.springframework.beans.factory.annotation.Autowired;
  7. import org.springframework.security.oauth2.provider.ClientDetails;
  8. import org.springframework.security.oauth2.provider.ClientDetailsService;
  9. import org.springframework.security.oauth2.provider.ClientRegistrationException;
  10. import org.springframework.stereotype.Component;
  11.  
  12. @Component
  13. public final class BootClientDetailsService implements ClientDetailsService {
  14.  
  15.     @Autowired
  16.     private UserService userService;
  17.  
  18.     @Override
  19.     public ClientDetails loadClientByClientId(String clientId) throws ClientRegistrationException {
  20.  
  21.         Client client = userService.selectClientByClientId(clientId);
  22.  
  23.         if(client==null){
  24.             throw new ClientRegistrationException("客户端不存在");
  25.         }
  26.  
  27.         return new BootClientDetails(client);
  28.     }
  29.  
  30. }
  1. package com.pdl.security;
  2.  
  3.  
  4. import com.pdl.domain.Client;
  5. import com.pdl.util.CommonUtils;
  6. import lombok.Data;
  7. import org.springframework.security.core.GrantedAuthority;
  8. import org.springframework.security.core.authority.AuthorityUtils;
  9. import org.springframework.security.oauth2.provider.ClientDetails;
  10.  
  11. import java.util.Collection;
  12. import java.util.Map;
  13. import java.util.Set;
  14.  
  15. /**
  16.  * @author wangle
  17.  * @date 2018/10/16  15:36
  18.  *
  19.  **/
  20. @Data
  21. @SuppressWarnings("unchecked")
  22. public final class BootClientDetails implements ClientDetails {
  23.  
  24.     private Client client;
  25.     private Set<String> scope;
  26.  
  27.     public BootClientDetails(Client client) {
  28.         this.client = client;
  29.     }
  30.  
  31.     public BootClientDetails() {
  32.     }
  33.  
  34.     @Override
  35.     public String getClientId() {
  36.         return client.getClientId();
  37.     }
  38.  
  39.     @Override
  40.     public Set<String> getResourceIds() {
  41.         return client.getResourceIds()!=null?
  42.                 CommonUtils.transformStringToSet(client.getResourceIds(),String.class):null;
  43.     }
  44.  
  45.     @Override
  46.     public boolean isSecretRequired() {
  47.         return client.getIsSecretRequired();
  48.     }
  49.  
  50.     @Override
  51.     public String getClientSecret() {
  52.         return client.getClientSecret();
  53.     }
  54.  
  55.     @Override
  56.     public boolean isScoped() {
  57.         return client.getIsScoped();
  58.     }
  59.  
  60.     @Override
  61.     public Set<String> getScope() {
  62.  
  63.         this.scope = client.getScope()!=null?
  64.                 CommonUtils.transformStringToSet(client.getScope(),String.class):null;
  65.  
  66.         return client.getScope()!=null?
  67.                 CommonUtils.transformStringToSet(client.getScope(),String.class):null;
  68.     }
  69.  
  70.     @Override
  71.     public Set<String> getAuthorizedGrantTypes() {
  72.         return client.getAuthorizedGrantTypes()!=null?
  73.                 CommonUtils.transformStringToSet(client.getAuthorizedGrantTypes(),String.class):null;
  74.     }
  75.  
  76.     @Override
  77.     public Set<String> getRegisteredRedirectUri() {
  78.         return client.getRegisteredRedirectUri()!=null?
  79.                 CommonUtils.transformStringToSet(client.getRegisteredRedirectUri(),String.class):null;
  80.     }
  81.  
  82.     @Override
  83.     public Collection<GrantedAuthority> getAuthorities() {
  84.         return (client.getAuthorities()!=null&&client.getAuthorities().trim().length()>0)?
  85.                 AuthorityUtils.commaSeparatedStringToAuthorityList(client.getAuthorities()):null;
  86.     }
  87.  
  88.     @Override
  89.     public Integer getAccessTokenValiditySeconds() {
  90.         return client.getAccessTokenValiditySeconds();
  91.     }
  92.  
  93.     @Override
  94.     public Integer getRefreshTokenValiditySeconds() {
  95.         return client.getRefreshTokenValiditySeconds();
  96.     }
  97.  
  98.     @Override
  99.     public boolean isAutoApprove(String scope) {
  100.         return  this.client.getIsAutoApprove()==null ? false: this
  101.                 .client.getIsAutoApprove();
  102.     }
  103.  
  104.     @Override
  105.     public Map<String, Object> getAdditionalInformation() {
  106.         return null;
  107.     }
  108. }

6.在DAO层新建UserMapper.java

  1. package com.pdl.dao.crm;
  2.  
  3. import com.pdl.domain.Client;
  4. import com.pdl.domain.User;
  5. import org.apache.ibatis.annotations.Mapper;
  6. import org.apache.ibatis.annotations.Param;
  7.  
  8. import java.util.HashMap;
  9. import java.util.List;
  10.  
  11. @Mapper
  12. public interface UserMapper {
  13.  
  14.     List<User> selectAllUser();
  15.  
  16.     void insert(HashMap params);
  17.  
  18.     User selectUserByUserName( @Param("username") String username);
  19.  
  20.     Client selectClientByClientId(@Param("clientId") String clientId);
  21.  
  22.     int insertClient(Client client);
  23.  
  24.  
  25. }

7.在domain层新建实体类Client.java和User.java

  1. package com.pdl.domain;
  2.  
  3. import com.baomidou.mybatisplus.annotation.TableField;
  4. import com.baomidou.mybatisplus.annotation.TableId;
  5. import com.baomidou.mybatisplus.annotation.TableName;
  6. import lombok.Data;
  7.  
  8. import javax.validation.constraints.NotNull;
  9.  
  10. /**
  11.  * @author wangle
  12.  * @date  2018/10/16  9:23
  13.  *
  14.  **/
  15. @Data
  16. @TableName("clients")
  17. public class Client  {
  18.  
  19.     @TableId
  20.     private String id;
  21.     @TableField("clientId")
  22.     @NotNull
  23.     private String clientId;
  24.     @TableField("resourceIds")
  25.     private String resourceIds;
  26.     @TableField("isSecretRequired")
  27.     private Boolean isSecretRequired;
  28.     @TableField("clientSecret")
  29.     @NotNull
  30.     private String clientSecret;
  31.     @TableField("isScoped")
  32.     private Boolean isScoped;
  33.     @TableField("scope")
  34.     private String scope;
  35.     @TableField("authorizedGrantTypes")
  36.     @NotNull
  37.     private String authorizedGrantTypes;
  38.     @TableField("registeredRedirectUri")
  39.     @NotNull
  40.     private String registeredRedirectUri;
  41.     @TableField("authorities")
  42.     private String authorities;
  43.     @TableField("isAutoApprove")
  44.     private Boolean isAutoApprove;
  45.     @TableField("accessTokenValiditySeconds")
  46.     @NotNull
  47.     private Integer accessTokenValiditySeconds;
  48.     @TableField("refreshTokenValiditySeconds")
  49.     @NotNull
  50.     private Integer refreshTokenValiditySeconds;
  51.     @TableField("createTime")
  52.     @NotNull
  53.     private String createTime;
  54.     @TableField("modifyTime")
  55.     @NotNull
  56.     private String modifyTime;
  57.  
  58.  
  59.  
  60. }
  1. package com.pdl.domain;
  2.  
  3.  
  4. import com.baomidou.mybatisplus.annotation.TableField;
  5. import com.baomidou.mybatisplus.annotation.TableId;
  6. import com.baomidou.mybatisplus.annotation.TableName;
  7. import lombok.Data;
  8. import org.springframework.security.core.GrantedAuthority;
  9. import org.springframework.security.core.userdetails.UserDetails;
  10.  
  11. import java.util.Collection;
  12. import java.util.List;
  13.  
  14. /**
  15.  * @author wangle
  16.  * @date 2018/10/9  15:43
  17.  *
  18.  **/
  19. @Data
  20. @TableName("user")
  21. public class User implements UserDetails {
  22.     @TableId
  23.     private String id;
  24.     private String username;
  25.     private String email;
  26.     @TableField("isEnable")
  27.     private Boolean isEnable;
  28.     @TableField("isExpired")
  29.     private Boolean isExpired;
  30.     @TableField("isLocked")
  31.     private Boolean isLocked;
  32.     private String password;
  33.     private String gender;
  34.  
  35.     @TableField(exist = false)
  36.     private List<GrantedAuthority> authorities;
  37.  
  38.     @Override
  39.     public List<? extends GrantedAuthority> getAuthorities() {
  40.         return authorities;
  41.     }
  42.  
  43.     @Override
  44.     public String getPassword() {
  45.         return password;
  46.     }
  47.  
  48.     @Override
  49.     public String getUsername() {
  50.         return username;
  51.     }
  52.  
  53.     @Override
  54.     public boolean isAccountNonExpired() {
  55.         return true;
  56.     }
  57.  
  58.     @Override
  59.     public boolean isAccountNonLocked() {
  60.         return this.isLocked;
  61.     }
  62.  
  63.     @Override
  64.     public boolean isCredentialsNonExpired() {
  65.         return true;
  66.     }
  67.  
  68.     @Override
  69.     public boolean isEnabled() {
  70.         return this.isEnable;
  71.     }
  72. }

8.在service层新建UserService类

  1. package com.pdl.service;
  2.  
  3. import com.pdl.dao.crm.UserMapper;
  4. import com.pdl.domain.Client;
  5. import com.pdl.domain.User;
  6. import org.springframework.beans.factory.annotation.Autowired;
  7. import org.springframework.stereotype.Service;
  8.  
  9. import java.util.HashMap;
  10. import java.util.List;
  11. import java.util.Map;
  12.  
  13. @Service
  14. public class UserService {
  15.  
  16.     @Autowired
  17.     private UserMapper userMapper;
  18.  
  19.     public Map selectUser(){
  20.         Map data = new HashMap();
  21.         List<User> userList = userMapper.selectAllUser();
  22.         data.put("recordList",userList);
  23.         data.put("total",userList.size());
  24.         return data;
  25.     }
  26.  
  27.  
  28.  
  29.     public User selectUserByUsername(String username){
  30.         User user = userMapper.selectUserByUserName(username);
  31.         return user;
  32.     }
  33.  
  34.  
  35.     public Client selectClientByClientId(String clientId){
  36.         Client client = userMapper.selectClientByClientId(clientId);
  37.         return client;
  38.     }
  39.  
  40.     public boolean addClient(Client client){
  41.         boolean flag = false;
  42.         int res = userMapper.insertClient(client);
  43.         if(res==1){
  44.             flag = true;
  45.         }
  46.         return flag;
  47.     }
  48.  
  49.  
  50.  
  51. }
  52.

9.在controller层新建ClientController.java

  1. package com.pdl.controller;
  2.  
  3. import com.pdl.domain.Client;
  4. import com.pdl.security.response.BaseResponse;
  5. import com.pdl.security.response.HttpResponse;
  6. import com.pdl.service.UserService;
  7.  
  8. import org.springframework.beans.factory.annotation.Autowired;
  9. import org.springframework.security.crypto.password.PasswordEncoder;
  10. import org.springframework.web.bind.annotation.PostMapping;
  11. import org.springframework.web.bind.annotation.RequestBody;
  12. import org.springframework.web.bind.annotation.RequestMapping;
  13. import org.springframework.web.bind.annotation.RestController;
  14.  
  15. import javax.validation.Valid;
  16. import java.util.UUID;
  17.  
  18. @RestController
  19. public class ClientController {
  20.  
  21.     @Autowired
  22.     private UserService userService;
  23.  
  24.     @Autowired
  25.     private PasswordEncoder passwordEncoder;
  26.  
  27.     @PostMapping("/register")
  28.     public BaseResponse clientRegistered(@RequestBody @Valid Client client){
  29.         client.setId(UUID.randomUUID().toString());
  30.         client.setClientSecret(passwordEncoder.encode(client.getClientSecret()));
  31.         boolean i = userService.addClient(client);
  32.         return HttpResponse.baseResponse(200);
  33.     }
  34.  
  35. }
  36.

10.配置application.yml文件

  1. server:
  2.   port: 8060
  3. spring:
  4.   datasource:
  5.     druid:
  6.       crm:
  7.         #配置监控统计拦截的filters,去掉后监控界面SQL无法进行统计,'wall'用于防火墙
  8.         filters: stat,wall
  9.         driver-class-name:  com.mysql.jdbc.Driver
  10.         url: jdbc:mysql://localhost:3306/pdl_oauth?useUnicode=true&characterEncoding=UTF-8&allowMultiQueries=true&serverTimezone=GMT%2B8
  11.         username: root
  12.         password: 123456
  13.         #初始化大小
  14.         initial-size: 50
  15.         #最小连接数
  16.         min-idle: 50
  17.         #最大连接数
  18.         max-active: 200
  19.         #获取连接等待超时时间
  20.         max-wait: 60000
  21.         #间隔多久才进行一次检测,检测需要关闭的空闲连接,单位毫秒
  22.         time-between-eviction-runs-millis: 60000
  23.         #一个连接在池中最小生存的时间,单位是毫秒
  24.         min-evictable-idle-time-millis: 30000
  25.         #测试语句是否执行正确
  26.         validation-query: SELECT 'x'
  27.         #指明连接是否被空闲连接回收器(如果有)进行检验.如果检测失败,则连接将被从池中去除.
  28.         test-while-idle: true
  29.         #借出连接时不要测试,否则很影响性能
  30.         test-on-borrow: false
  31.         test-on-return: false
  32.         #打开PSCache,并指定每个连接上PSCache的大小。oracle设为true,mysql设为false。分库分表较多推荐设置为false
  33.         pool-prepared-statements: false
  34.         #与Oracle数据库PSCache有关,再druid下可以设置的比较高
  35.         max-pool-prepared-statement-per-connection-size: 20
  36.       #数据源2
  37.       hr:
  38.         filters: stat,wall
  39.         driver-class-name: org.postgresql.Driver
  40.         url: jdbc:postgresql://localhost:5432/pdl_hr?useUnicode=true&characterEncoding=UTF-8&allowMultiQueries=true
  41.         username: postgres
  42.         password: 123456
  43.         initial-size: 50
  44.         min-idle: 50
  45.         max-active: 200
  46.         max-wait: 60000
  47.         time-between-eviction-runs-millis: 60000
  48.         min-evictable-idle-time-millis: 30000
  49.         validation-query: SELECT 'x'
  50.         test-while-idle: true
  51.         test-on-borrow: false
  52.         test-on-return: false
  53.         pool-prepared-statements: false
  54.         max-pool-prepared-statement-per-connection-size: 20
  55.   redis:
  56.     host: 127.0.0.1
  57.     port: 6379
  58.     jedis:
  59.       pool:
  60.         max-active: 8
  61.         max-wait: -1s
  62.         min-idle: 0
  63.         max-idle: 8
  64.   security:
  65.  
  66.  
  67.  
  68.  
  69.  
  70.  
  71.  
  72.  
  73.

到此为止我们的项目搭建工作已经完成

访问http://localhost:8060/oauth/authorize?response_type=code&client_id=lovar&redirect_uri=http://www.baidu.com&scope=all

输入账号:admin ,密码:123qwe,进行登录进入授权页面

授权完成后会获得授权码https://www.baidu.com/?code=OJN1hB

接下来在postman上进行操作

授权码的操作已完成,下面我们开始测试注册客户端,打开http://localhost:8060/swagger-ui.html

访问/register接口进行客户端注册

  1. {
  2.   "accessTokenValiditySeconds": 1800,
  3.   "authorities": "ADMIN",
  4.   "authorizedGrantTypes": "refresh_token,authorization_code",
  5.   "clientId": "lovar",
  6.   "clientSecret": "123456",
  7.   "isAutoApprove": false,
  8.   "isSecretRequired": true,
  9.   "refreshTokenValiditySeconds": 3600,
  10.   "registeredRedirectUri": "http://localhost:8060",
  11.   "scope": "all",
  12.   "scoped": true,
  13.   "secretRequired": true,
  14.   "createTime": "2019-02-18 00:12:10",
  15.   "modifyTime": "2019-02-18 00:12:10",
  16.   "resourceIds": "boot-server"
  17. }

 

 

声明:本文内容由网友自发贡献,版权归原作者所有,本站不承担相应法律责任。如您发现有侵权的内容,请联系我们。转载请注明出处:【wpsshop博客】
推荐阅读
相关标签

Copyright © 2003-2013 www.wpsshop.cn 版权所有,并保留所有权利。

  

闽ICP备14008679号