stackoom
  简体   繁体   中英

spring-security-oauth2-authorization-server:0.1.1 get token error invalid_client

 原文  2021-07-05 02:37:11       java/ spring-boot/ authorization/ spring-security-oauth2/ spring-oauth2

Question

i'm using spring authorization server, but i cannot get token. This is my code and example. pls help me know correct request

@Bean
public RegisteredClientRepository registeredClientRepository() {
    RegisteredClient registeredClient = RegisteredClient.withId(UUID.randomUUID().toString())
            .clientId("client")
            .clientSecret("secret")
            .clientAuthenticationMethod(ClientAuthenticationMethod.CLIENT_SECRET_BASIC)
            .clientAuthenticationMethod(ClientAuthenticationMethod.CLIENT_SECRET_JWT)
            .clientAuthenticationMethod(ClientAuthenticationMethod.CLIENT_SECRET_POST)
            .clientAuthenticationMethod(ClientAuthenticationMethod.PRIVATE_KEY_JWT)
            .authorizationGrantType(AuthorizationGrantType.PASSWORD)
            .authorizationGrantType(AuthorizationGrantType.REFRESH_TOKEN)
            .authorizationGrantType(AuthorizationGrantType.CLIENT_CREDENTIALS)
            .authorizationGrantType(AuthorizationGrantType.JWT_BEARER)
            .clientSettings(clientSettings -> clientSettings.requireUserConsent(true))
            .build();
    return new InMemoryRegisteredClientRepository(registeredClient);
}

This is my request with basic auth client/secret

curl --location --request POST 'http://localhost:9000/oauth2/token'
--header 'Authorization: Basic Y2xpZW50OnNlY3JldA=='
--header 'Content-Type: application/x-www-form-urlencoded'
--header 'Cookie: JSESSIONID=557C0348994EFC10DB8E7F06C2FDFF21'
--data-urlencode 'grant_type=client_credentials'

response 401:

{ "error": "invalid_client" }

2 answers

solution1
 0  2021-08-29 19:14:20

You can try upgrading spring-security-oauth2-authorization-server to newer version 0.2.0

I ran into the same problem with client_secret_post , but then upgrading the version works for me.

solution2
 0  2022-09-10 12:56:56

What is the groupId of the artifact you are using? 0.1.2 appears to be the latest version of the groupId = org.springframework.security.experimental

If you change your groupId to org.springframework.security you'll see version 0.2.2 and higher

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Spring Authorization Server 1.0.0: invalid_client error while requesting /oauth2/token Can't get an authorization code from spring-security-oauth2-authorization-server 1.0.0 Getting invalid_client error when trying to revoke an access token in Spring Authorization Server Redirecting user to oauth2 authorization server to get token Spring Boot Spring Security Oauth2 Client get access token fails with invalid request code=415, message=Unsupported Media Type invalid_client in jsonresponse in oauth2 android invalid_client when requesting Amazon Cognito token with code from java spring back end spring-security-oauth2 client need to authenticated(relogin) again after get authorization code How to get additional information which is part of access token response from authorization server in OAuth2 client app Spring boot Oauth2 - Security incompatibility between Authorization and Resource server
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM