众泰后端
blame | 历史 | 原始文档
郑永安
2023-09-19 69185134fcfaf913ea45f1255677225a2cc311a4 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70

package com.gk.hotwork.Config.Oauth2;


 


import org.springframework.beans.factory.annotation.Autowired;


import org.springframework.beans.factory.annotation.Qualifier;


import org.springframework.context.annotation.Configuration;


import org.springframework.security.authentication.AuthenticationManager;


import org.springframework.security.oauth2.config.annotation.configurers.ClientDetailsServiceConfigurer;


import org.springframework.security.oauth2.config.annotation.web.configuration.AuthorizationServerConfigurerAdapter;


import org.springframework.security.oauth2.config.annotation.web.configuration.EnableAuthorizationServer;


import org.springframework.security.oauth2.config.annotation.web.configurers.AuthorizationServerEndpointsConfigurer;


import org.springframework.security.oauth2.config.annotation.web.configurers.AuthorizationServerSecurityConfigurer;


import org.springframework.security.oauth2.provider.token.TokenStore;


import org.springframework.security.oauth2.provider.token.store.JwtAccessTokenConverter;


 


/**


 * 配置oauth2.0


 *


 * @author zhangby


 * @date 2019/2/27 11:27 AM


 */


@Configuration


@EnableAuthorizationServer


public class OAuth2Config extends AuthorizationServerConfigurerAdapter {


 


    @Override


    public void configure(ClientDetailsServiceConfigurer clients) throws Exception {


        clients.inMemory()


                .withClient("uaa-service")


                .secret("123456")


                .scopes("service")


                .autoApprove(true)


                .authorizedGrantTypes("implicit", "refresh_token", "password", "authorization_code")


                //18小时过期


                .refreshTokenValiditySeconds(18*60*60)


                .accessTokenValiditySeconds(18*60*60);


    }


 


    @Override


    public void configure(AuthorizationServerEndpointsConfigurer endpoints) throws Exception {


        endpoints.tokenStore(tokenStore)


                .tokenEnhancer(tokenConverter)


                .reuseRefreshTokens(false)


                .authenticationManager(authenticationManager)


                .userDetailsService(userServiceDetail);


    }


 


    @Autowired


    private LoginAuthenticationFilter loginAuthenticationFilter;


 


    @Override


    public void configure(AuthorizationServerSecurityConfigurer security) throws Exception {


        security.allowFormAuthenticationForClients()


                .tokenKeyAccess("isAuthenticated()")


                .checkTokenAccess("permitAll()")


                .addTokenEndpointAuthenticationFilter(loginAuthenticationFilter);


    }


 


    @Autowired


    private UserServiceDetail userServiceDetail;


 


    @Autowired


    @Qualifier("authenticationManagerBean")


    private AuthenticationManager authenticationManager;


 


    @Autowired


    TokenStore tokenStore;


 


    @Autowired


    JwtAccessTokenConverter tokenConverter;


}