Merge pull request #17 from Nasruddin/feature/authorization-server-impl

cleaning oauth flow

Author: Nasruddin

config-repo/course-composite.yml

@@ -9,14 +9,14 @@ springdoc:
   cache:
     disabled: true
   swagger-ui:
-    oauth2-redirect-url: https://localhost:8443/webjars/swagger-ui/oauth2-redirect.html
+    oauth2-redirect-url: http://localhost:8443/webjars/swagger-ui/oauth2-redirect.html
     oauth:
       clientId: writer
       clientSecret: secret
       useBasicAuthenticationWithAccessCodeGrant: true
   oAuthFlow:
-    authorizationUrl: https://localhost:8443/oauth2/authorize
-    tokenUrl: https://localhost:8443/oauth2/token
+    authorizationUrl: http://localhost:8443/oauth2/authorize
+    tokenUrl: http://localhost:8443/oauth2/token
 
 server.forward-headers-strategy: framework
 

images/build.png

@@ -1,12 +1,14 @@
 package io.javatab.microservices.composite.course.configuration;
 
 import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
 import org.springframework.security.config.annotation.web.reactive.EnableWebFluxSecurity;
 import org.springframework.security.config.web.server.ServerHttpSecurity;
 import org.springframework.security.web.server.SecurityWebFilterChain;
 
 import static org.springframework.http.HttpMethod.*;
 
+@Configuration
 @EnableWebFluxSecurity
 public class SecurityConfig {
 

images/docker-compose.png

@@ -115,8 +115,8 @@ public RegisteredClientRepository registeredClientRepository() {
                 .authorizationGrantType(AuthorizationGrantType.AUTHORIZATION_CODE)
                 .authorizationGrantType(AuthorizationGrantType.REFRESH_TOKEN)
                 .authorizationGrantType(AuthorizationGrantType.CLIENT_CREDENTIALS)
-                .redirectUri("https://my.redirect.uri")
-                .redirectUri("https://localhost:8443/openapi/webjars/swagger-ui/oauth2-redirect.html")
+                .redirectUri("http://my.redirect.uri")
+                .redirectUri("http://localhost:8443/openapi/webjars/swagger-ui/oauth2-redirect.html")
                 .scope(OidcScopes.OPENID)
                 .scope("course:read")
                 .scope("course:write")
@@ -131,8 +131,8 @@ public RegisteredClientRepository registeredClientRepository() {
                 .authorizationGrantType(AuthorizationGrantType.AUTHORIZATION_CODE)
                 .authorizationGrantType(AuthorizationGrantType.REFRESH_TOKEN)
                 .authorizationGrantType(AuthorizationGrantType.CLIENT_CREDENTIALS)
-                .redirectUri("https://my.redirect.uri")
-                .redirectUri("https://localhost:8443/openapi/webjars/swagger-ui/oauth2-redirect.html")
+                .redirectUri("http://my.redirect.uri")
+                .redirectUri("http://localhost:8443/openapi/webjars/swagger-ui/oauth2-redirect.html")
                 .scope(OidcScopes.OPENID)
                 .scope("course:read")
                 .clientSettings(ClientSettings.builder().requireAuthorizationConsent(true).build())
@@ -157,7 +157,7 @@ public JwtDecoder jwtDecoder(JWKSource<SecurityContext> jwkSource) {
 
     @Bean
     public AuthorizationServerSettings authorizationServerSettings() {
-        return AuthorizationServerSettings.builder().issuer("http://auth-server").build();
+        return AuthorizationServerSettings.builder().issuer("http://auth-server:9999").build();
     }
 
     private Consumer<List<AuthenticationProvider>> configureAuthenticationValidator() {