堆棧內存溢出
  簡體   English   中英

自定義Spring OAUTH2授權請求URL

[英]Customize Spring OAUTH2 authorization request URL

 原文  2022-11-13 19:13:41       spring/ spring-security-oauth2/ auth0

問題描述

如何自定義由 Spring 發送到我配置的身份提供商的 OAUTH2 授權請求 URL?

1 個解決方案

解決方案1
 0 已采納  2022-11-13 19:24:46

實施OAuth2AuthorizationRequestResolver

@Component
public class CustomAuthorizationRequestResolver implements OAuth2AuthorizationRequestResolver {

    private final CustomAuthorizationRequestResolver defaultResolver;

    public CustomAuthorizationRequestResolver(OAuth2ClientProperties oauth2ClientProperties){
        ClientRegistration auth0 =
                OAuth2ClientPropertiesRegistrationAdapter.getClientRegistrations(oauth2ClientProperties).get("auth0");
        InMemoryClientRegistrationRepository clientRegistrationRepository =
                new InMemoryClientRegistrationRepository(auth0);
        this.defaultResolver = new DefaultOAuth2AuthorizationRequestResolver(clientRegistrationRepository, "/oauth2/authorization");
    }

    @Override
    public OAuth2AuthorizationRequest resolve(HttpServletRequest request) {
        OAuth2AuthorizationRequest req = defaultResolver.resolve(request);
        if(req != null){
            req = customizeAuthorizationRequest(req);
        }
        return req;
    }

    @Override
    public OAuth2AuthorizationRequest resolve(HttpServletRequest request, String clientRegistrationId) {
        OAuth2AuthorizationRequest req = defaultResolver.resolve(request, clientRegistrationId);
        if(req != null){
            req = customizeAuthorizationRequest(req);
        }
        return req;
    }

    // Customize request here
    private OAuth2AuthorizationRequest customizeAuthorizationRequest(OAuth2AuthorizationRequest req) {
        Map<String,Object> extraParams = new HashMap<>(req.getAdditionalParameters());
        extraParams.put("connection", "my-connection-name");
        return OAuth2AuthorizationRequest.from(req).additionalParameters(extraParams).build();
    }
}

在您的 Spring 安全配置上設置授權請求解析器:

 @Override
 public void configure(HttpSecurity http) throws Exception {
     http
     ...
      .oauth2Login()
      .authorizationEndpoint()             
      .authorizationRequestResolver(customAuthorizationRequestResolver)
     ...
}

暫無
暫無

聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.

相關問題 如何修改 spring boot reactive oauth2 授權請求的正文 帶有oauth2的Spring Security將其他參數添加到授權URL? Spring Security OAuth2 - 向授權 URL 添加參數 具有OAuth2授權的Spring WebClient spring oauth2 授權服務器上 /oauth/token 請求的“訪問此資源需要完整身份驗證” Spring Security OAuth2在重定向之前操縱請求URL Spring Security Oauth2自定義嘗試次數 Spring MVC應用程序和OAuth2授權 春季OAuth2檢索授權代碼授予 Spring OAuth2客戶端未發送授權標頭
相關標簽
 
粵ICP備18138465號  © 2020-2024 STACKOOM.COM