stackoom
  简体   繁体   中英

How do I use auth0 and swagger together in spring boot?

 原文  2019-06-19 17:31:33       java/ spring-boot/ gradle/ swagger-ui/ auth0

Question

I am trying to use both Swagger and Auth0. Swagger alone is working fine when I'm hitting http://localhost:8080/swagger-ui . But, after configuring auth0. It is showing 403 Forbidden Error

I'm using spring boot with gradle. I've tried to antMatchers function to permit swagger and all. 

public class SecurityConfig extends WebSecurityConfigurerAdapter {
    @Value(value = "${auth0.apiAudience}")
    private String apiAudience;
    @Value(value = "${auth0.issuer}")
    private String issuer;

    @Override
    protected void configure(HttpSecurity http) throws Exception {
        JwtWebSecurityConfigurer
                .forRS256(apiAudience, issuer)
                .configure(http)
                .cors().and().csrf().disable().authorizeRequests()
                .antMatchers("/v2/api-docs", "/swagger-resources/configuration/ui", "/swagger-resources", "/swagger-resources/configuration/security", "/swagger-ui.html", "/webjars/**").permitAll()
                .and()
                .authorizeRequests()    
                .anyRequest()
                .authenticated()
                .and()
                .csrf().disable();
    }
    @Override
    public void configure(WebSecurity web) throws Exception {
        web.ignoring().antMatchers("/v2/api-docs", "/swagger-resources/configuration/ui", "/swagger-resources", "/swagger-resources/configuration/security", "/swagger-ui.html", "/webjars/**");
    }
}

Since I'm learning and new to java and spring boot. I expect http://localhost:8080/swagger-ui even without security is enough.

1 answers

solution1
 0  2019-06-20 18:47:10

when do you encounter the 403 error? Generally in a situation like this we would commend capturing a HAR file and then we would review the flow to see where the breakdown may have been. However we need more information here to properly decide where the error is.

That being said I have attached the Auth0 quickstart for spring that may help provide some insight.

https://auth0.com/docs/quickstart/backend/java-spring-security/01-authorization

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How do I use Qualifiers in Spring boot Java Spring MVC Auth0 SSO not getting tokens (no Spring Boot) Auth0 in Java Spring MVC without Spring Boot How to use Spring boot, JOOQ and Flyway together? Add Swagger Basic AUTH to Spring Boot App Spring Boot Security and Auth0 - Cannot disable CSRF Swagger on Spring boot - How do I set example value for a POST method that requires a parameter? How do I connect REST services (inside containers) together, in Spring Boot? How can I delete Authentication parameter from swagger in spring boot? How to add I18N support for Swagger in Spring Boot
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM