溫馨提示×
您好,登錄后才能下訂單哦!
點擊 登錄注冊 即表示同意《億速云用戶服務條款》
您好,登錄后才能下訂單哦!
Spring Boot 整合 OAuth2 安全框架是一個常見的需求,特別是在構建現代 Web 應用時。以下是一個基本的步驟指南,幫助你整合 Spring Boot 和 OAuth2。
首先,在你的 pom.xml 文件中添加必要的依賴項。你需要 Spring Security 和 Spring Boot 的 OAuth2 支持。
<dependencies>
<!-- Spring Security -->
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-security</artifactId>
</dependency>
<!-- Spring Security OAuth2 -->
<dependency>
<groupId>org.springframework.security.oauth.boot</groupId>
<artifactId>spring-security-oauth2-autoconfigure</artifactId>
</dependency>
<!-- Spring Boot Starter Web for creating RESTful services -->
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-web</artifactId>
</dependency>
</dependencies>
在你的 application.yml 或 application.properties 文件中配置 OAuth2 客戶端信息。
spring:
security:
oauth2:
client:
registration:
my-client:
client-id: your-client-id
client-secret: your-client-secret
authorization-grant-type: password
scope: read,write
provider:
my-provider:
issuer-uri: https://your-auth-server/oauth/token
spring.security.oauth2.client.registration.my-client.client-id=your-client-id
spring.security.oauth2.client.registration.my-client.client-secret=your-client-secret
spring.security.oauth2.client.registration.my-client.authorization-grant-type=password
spring.security.oauth2.client.registration.my-client.scope=read,write
spring.security.oauth2.provider.my-provider.issuer-uri=https://your-auth-server/oauth/token
創建一個配置類來設置 Spring Security 和 OAuth2。
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
import org.springframework.security.crypto.password.PasswordEncoder;
import org.springframework.security.oauth2.client.registration.ClientRegistrationRepository;
import org.springframework.security.oauth2.client.web.OAuth2AuthorizedClientRepository;
import org.springframework.security.oauth2.server.resource.authentication.JwtBearerAuthenticationConverter;
import org.springframework.security.web.SecurityFilterChain;
@Configuration
@EnableWebSecurity
public class SecurityConfig {
@Bean
public PasswordEncoder passwordEncoder() {
return new BCryptPasswordEncoder();
}
@Bean
public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
http
.authorizeRequests(authorize -> authorize
.antMatchers("/actuator/**").permitAll()
.anyRequest().authenticated()
)
.oauth2Login(oauth2 -> oauth2
.loginPage("/login")
.defaultSuccessUrl("/home")
);
return http.build();
}
}
創建一個簡單的登錄頁面 src/main/resources/templates/login.html。
<!DOCTYPE html>
<html xmlns:th="http://www.thymeleaf.org">
<head>
<title>Login</title>
</head>
<body>
<h1>Login</h1>
<form method="post" action="/login">
<label for="username">Username:</label>
<input type="text" id="username" name="username" required><br><br>
<label for="password">Password:</label>
<input type="password" id="password" name="password" required><br><br>
<button type="submit">Login</button>
</form>
</body>
</html>
創建一個簡單的 RESTful 服務來測試保護資源。
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.RestController;
@RestController
public class MyController {
@GetMapping("/home")
public String home() {
return "Welcome to the home page!";
}
@GetMapping("/protected")
public String protectedResource(OAuth2AuthorizedClient authorizedClient) {
return "This is a protected resource. User: " + authorizedClient.getName();
}
}
啟動你的 Spring Boot 應用,并嘗試訪問受保護的資源。你應該會被重定向到 OAuth2 登錄頁面,登錄成功后可以訪問受保護的資源。
以上步驟涵蓋了 Spring Boot 整合 OAuth2 的基本流程。你可以根據需要進一步擴展和定制配置,例如添加更多的授權類型、配置客戶端憑證授權等。
免責聲明:本站發布的內容(圖片、視頻和文字)以原創、轉載和分享為主,文章觀點不代表本網站立場,如果涉及侵權請聯系站長郵箱:is@yisu.com進行舉報,并提供相關證據,一經查實,將立刻刪除涉嫌侵權內容。
