Home Esplora Aiuto
Registrati Accedi
github
/
spring-authorization-server
mirror da https://github.com/spring-projects/spring-authorization-server
2
0
Forka 0
File Problemi 0 Wiki
Sfoglia il codice sorgente

Polish gh-168

Joe Grandja 4 anni fa
parent
7c7e664bb7
commit
8c71e56350
3 ha cambiato i file con 6 aggiunte e 7 eliminazioni
Visualizzazione separata Mostra Diff Stats
  1. 1 2
      oauth2-authorization-server/src/main/java/org/springframework/security/oauth2/server/authorization/authentication/OAuth2AuthorizationCodeAuthenticationProvider.java
  2. 3 2
      oauth2-authorization-server/src/test/java/org/springframework/security/oauth2/server/authorization/authentication/OAuth2AuthorizationCodeAuthenticationProviderTests.java
  3. 2 3
      samples/boot/oauth2-integration/authorizationserver/src/main/java/sample/config/AuthorizationServerConfig.java

+ 1 - 2
oauth2-authorization-server/src/main/java/org/springframework/security/oauth2/server/authorization/authentication/OAuth2AuthorizationCodeAuthenticationProvider.java
Vedi File 

@@ -127,8 +127,7 @@ public class OAuth2AuthorizationCodeAuthenticationProvider implements Authentica
 
 				.accessToken(accessToken);
 
 
 		OAuth2RefreshToken refreshToken = null;
 
-		if (registeredClient.getAuthorizationGrantTypes()
 
-				.contains(AuthorizationGrantType.REFRESH_TOKEN)) {
 
+		if (registeredClient.getAuthorizationGrantTypes().contains(AuthorizationGrantType.REFRESH_TOKEN)) {
 
 			refreshToken = OAuth2TokenIssuerUtil.issueRefreshToken(registeredClient.getTokenSettings().refreshTokenTimeToLive());
 
 			tokensBuilder.refreshToken(refreshToken);
 
 		}

+ 3 - 2
oauth2-authorization-server/src/test/java/org/springframework/security/oauth2/server/authorization/authentication/OAuth2AuthorizationCodeAuthenticationProviderTests.java
Vedi File 

@@ -19,6 +19,7 @@ import org.junit.Before;
 
 import org.junit.Test;
 
 import org.mockito.ArgumentCaptor;
 
 import org.springframework.security.authentication.TestingAuthenticationToken;
 
+import org.springframework.security.oauth2.core.AuthorizationGrantType;
 
 import org.springframework.security.oauth2.core.ClientAuthenticationMethod;
 
 import org.springframework.security.oauth2.core.OAuth2AuthenticationException;
 
 import org.springframework.security.oauth2.core.OAuth2ErrorCodes;
 
@@ -292,9 +293,9 @@ public class OAuth2AuthorizationCodeAuthenticationProviderTests {
 
 	}
 
 
 	@Test
 
-	public void authenticateWhenRefreshTokenDisabledThenRefreshTokenNull() {
 
+	public void authenticateWhenRefreshTokenGrantNotConfiguredThenRefreshTokenNotIssued() {
 
 		RegisteredClient registeredClient = TestRegisteredClients.registeredClient()
 
-				.tokenSettings(tokenSettings -> tokenSettings.enableRefreshTokens(false))
 
+				.authorizationGrantTypes(grantTypes -> grantTypes.remove(AuthorizationGrantType.REFRESH_TOKEN))
 
 				.build();
 
 
 		OAuth2Authorization authorization = TestOAuth2Authorizations.authorization(registeredClient).build();

+ 2 - 3
samples/boot/oauth2-integration/authorizationserver/src/main/java/sample/config/AuthorizationServerConfig.java
Vedi File 

@@ -41,14 +41,13 @@ public class AuthorizationServerConfig {
 
 	@Bean
 
 	public RegisteredClientRepository registeredClientRepository() {
 
 		RegisteredClient registeredClient = RegisteredClient.withId(UUID.randomUUID().toString())
 
-				.clientId("client")
 
+				.clientId("messaging-client")
 
 				.clientSecret("secret")
 
 				.clientAuthenticationMethod(ClientAuthenticationMethod.BASIC)
 
 				.authorizationGrantType(AuthorizationGrantType.AUTHORIZATION_CODE)
 
-//				.authorizationGrantType(AuthorizationGrantType.REFRESH_TOKEN)
 
 				.authorizationGrantType(AuthorizationGrantType.CLIENT_CREDENTIALS)
 
 				.redirectUri("http://localhost:8080/authorized")
 
-				.scope("read")
 
+				.scope("message.read")
 
 				.scope("message.write")
 
 				.clientSettings(clientSettings -> clientSettings.requireUserConsent(true))
 
 				.build();