Java 用户注册及;使用Spring Security OAuth 2.0登录| SSO
我正在尝试使用SpringSecurityOAuth2.0和Google作为身份验证提供者来实现用户注册和登录flow | SSOJava 用户注册及;使用Spring Security OAuth 2.0登录| SSO,java,oauth-2.0,oauth2client,spring-security-oauth2,google-oauth-java-client,Java,Oauth 2.0,Oauth2client,Spring Security Oauth2,Google Oauth Java Client,我正在尝试使用SpringSecurityOAuth2.0和Google作为身份验证提供者来实现用户注册和登录flow | SSO 我应该如何启动注册和登录流程?需要应用什么过滤器 在注册流程中,我需要将用户的详细信息(姓名、电子邮件)保存在本地数据库中,这些信息是成功授权响应的一部分。我该怎么处理 oauth2:client id=“oauth2ClientFilter”的用途是什么 以下是我的应用程序上下文文件的外观:- <?xml version="1.0" encoding="
- 我应该如何启动注册和登录流程?需要应用什么过滤器
- 在注册流程中,我需要将用户的详细信息(姓名、电子邮件)保存在本地数据库中,这些信息是成功授权响应的一部分。我该怎么处理
- oauth2:client id=“oauth2ClientFilter”的用途是什么
<?xml version="1.0" encoding="UTF-8"?>
<beans:beans xmlns="http://www.springframework.org/schema/mvc"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:beans="http://www.springframework.org/schema/beans"
xmlns:context="http://www.springframework.org/schema/context"
xmlns:jdbc="http://www.springframework.org/schema/jdbc" xmlns:c="http://www.springframework.org/schema/c"
xmlns:security="http://www.springframework.org/schema/security"
xmlns:oauth2="http://www.springframework.org/schema/security/oauth2"
xsi:schemaLocation="http://www.springframework.org/schema/jdbc http://www.springframework.org/schema/jdbc/spring-jdbc-3.0.xsd
http://www.springframework.org/schema/security/oauth2 http://www.springframework.org/schema/security/spring-security-oauth2.xsd
http://www.springframework.org/schema/mvc http://www.springframework.org/schema/mvc/spring-mvc.xsd
http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security-3.2.xsd
http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd
http://www.springframework.org/schema/context http://www.springframework.org/schema/context/spring-context.xsd">
<!-- DispatcherServlet Context: defines this servlet's request-processing
infrastructure -->
<!-- Enables the Spring MVC @Controller programming model -->
<annotation-driven />
<!-- Handles HTTP GET requests for /resources/** by efficiently serving
up static resources in the ${webappRoot}/resources directory -->
<resources mapping="/resources/**" location="/resources/" />
<!-- Resolves views selected for rendering by @Controllers to .jsp resources
in the /WEB-INF/views directory -->
<beans:bean
class="org.springframework.web.servlet.view.InternalResourceViewResolver">
<beans:property name="prefix" value="/WEB-INF/views/" />
<beans:property name="suffix" value=".jsp" />
</beans:bean>
<context:component-scan base-package="com.samsoft.spring" />
<!-- ================================================== SECURITY START ================================================== -->
<security:http security="none" pattern="/" />
<security:http security="none" pattern="/resources/**" />
<security:global-method-security
secured-annotations="enabled" />
<security:http auto-config="true">
<security:intercept-url pattern="/**"
requires-channel="https" access="IS_AUTHENTICATED_FULLY" />
<security:custom-filter ref="oauth2ClientFilter"
after="EXCEPTION_TRANSLATION_FILTER" />
</security:http>
<oauth2:client id="oauth2ClientFilter" />
<oauth2:resource id="googleOauth2Resource" type="authorization_code"
client-id="530420474177-clientid.apps.googleusercontent.com"
client-secret="client-secret-here" access-token-uri="https://accounts.google.com/o/oauth2/token"
user-authorization-uri="https://accounts.google.com/o/oauth2/auth"
scope="https://www.googleapis.com/auth/calendar"
client-authentication-scheme="form"
pre-established-redirect-uri="https://ohad.sealdoc.com/oauth2-client/hello" />
<oauth2:rest-template id="googleOauthRestTemplate"
resource="googleOauth2Resource" />
<security:authentication-manager>
<security:authentication-provider>
<security:user-service>
<security:user name="test" authorities="ROLE_USER" password="test"/>
</security:user-service>
</security:authentication-provider>
</security:authentication-manager>
<!-- ================================================== SECURITY END ================================================== -->
我正在寻找Oauth 2.0的等效配置。您是否在谷歌注册了客户端应用程序?这就是oAuth2的工作原理。。。客户端应在提供程序中注册,并获取客户端ID和客户端机密。在XML中,您似乎没有注册:
client-secret="client-secret-here"
阅读
更新
至于您更新的问题,我认为您看到的行为是因为您的应用程序应该允许访问security.xml文件中的“/oauth2/google”。是的,我注册了。资源标记具有客户端密钥和机密。请澄清您的问题:什么不起作用?登录?注册?您使用oAuth还是openID?在这两种情况下,您为什么需要注册?(除非您注册oauth客户端…@OhadR:请查看更新的问题。