Movatterモバイル変換

[0]ホーム
URL:

Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

 Sign up
Appearance settings

REST service built with Spring Boot and Spring Security OAuth2

NotificationsYou must be signed in to change notification settings

atereshkov/spring-boot-security-oauth2

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
 
 
 
 
 
 
 
 

Repository files navigation

This is a simple REST service that provides a single RESTful endpoint protected by OAuth 2.

How to build and run

Just run with maven

mvn clean package spring-boot:run

How to use

Openhttp://localhost:8080/greeting in your browser or some HTTP client (like a Postman).

You receive the following JSON response, which indicates you are not authorized to access the resource:

{  "error": "unauthorized",  "error_description": "An Authentication object was not found in the SecurityContext"}

In order to access the protected resource, you must first request an access token via the OAuth.Request OAuth authorization:

curl -X POST -vu clientapp:123456 http://localhost:8080/oauth/token -H "Accept: application/json" -d "password=spring&username=admin&grant_type=password&scope=read%20write&client_secret=123456&client_id=clientapp"

A successful authorization results in the following JSON response:

{  "access_token": "ff16372e-38a7-4e29-88c2-1fb92897f558",  "token_type": "bearer",  "refresh_token": "f554d386-0b0a-461b-bdb2-292831cecd57",  "expires_in": 43199,  "scope": "read write"}

Use the access_token returned in the previous request to make the authorized request to the protected endpoint:

curl http://localhost:8080/greeting -H "Authorization: Bearer ff16372e-38a7-4e29-88c2-1fb92897f558"

If the request is successful, you will see the following JSON response:

{  "id": 1,  "content": "Hello, Roy!"}

After the specified time period, the access_token will expire. Use the refresh_token that was returned in the original OAuth authorization to retrieve a new access_token:

curl -X POST -vu clientapp:123456 http://localhost:8080/oauth/token -H "Accept: application/json" -d "grant_type=refresh_token&refresh_token=f554d386-0b0a-461b-bdb2-292831cecd57&client_secret=123456&client_id=clientapp"

About

REST service built with Spring Boot and Spring Security OAuth2

Topics

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

[8]ページ先頭
©2009-2025 Movatter.jp