Inicio Explorar Axuda
Rexistro Iniciar sesión
github
/
spring-security
réplica de https://github.com/spring-projects/spring-security
2
0
Fork 0
Ficheiros Incidencias 0 Wiki
Explorar o código

Polish oauth2 client ExchangeFilterFunction's

Fixes gh-6355
Joe Grandja %!s(int64=6) %!d(string=hai) anos
pai
d8d9abed2a
achega
673a2adf26
Modificáronse 2 ficheiros con 16 adicións e 17 borrados
Dividir vista Mostrar estatísticas de Diff
  1. 6 5
      oauth2/oauth2-client/src/main/java/org/springframework/security/oauth2/client/web/reactive/function/client/ServerOAuth2AuthorizedClientExchangeFilterFunction.java
  2. 10 12
      oauth2/oauth2-client/src/main/java/org/springframework/security/oauth2/client/web/reactive/function/client/ServletOAuth2AuthorizedClientExchangeFilterFunction.java

+ 6 - 5
oauth2/oauth2-client/src/main/java/org/springframework/security/oauth2/client/web/reactive/function/client/ServerOAuth2AuthorizedClientExchangeFilterFunction.java
Ver ficheiro 

@@ -253,9 +253,9 @@ public final class ServerOAuth2AuthorizedClientExchangeFilterFunction implements
 
 		if (isClientCredentialsGrantType(clientRegistration) && hasTokenExpired(authorizedClient)) {
 
 			return createRequest(request)
 
 					.flatMap(r -> authorizeWithClientCredentials(clientRegistration, r));
 
-		} else if (shouldRefresh(authorizedClient)) {
 
+		} else if (shouldRefreshToken(authorizedClient)) {
 
 			return createRequest(request)
 
-				.flatMap(r -> refreshAuthorizedClient(next, authorizedClient, r));
 
+				.flatMap(r -> authorizeWithRefreshToken(next, authorizedClient, r));
 
 		}
 
 		return Mono.just(authorizedClient);
 
 	}
 
@@ -273,8 +273,9 @@ public final class ServerOAuth2AuthorizedClientExchangeFilterFunction implements
 
 						.thenReturn(result));
 
 	}
 
 
-	private Mono<OAuth2AuthorizedClient> refreshAuthorizedClient(ExchangeFunction next,
 
-			OAuth2AuthorizedClient authorizedClient, OAuth2AuthorizedClientResolver.Request r) {
 
+	private Mono<OAuth2AuthorizedClient> authorizeWithRefreshToken(ExchangeFunction next,
 
+																	OAuth2AuthorizedClient authorizedClient,
 
+																	OAuth2AuthorizedClientResolver.Request r) {
 
 		ServerWebExchange exchange = r.getExchange();
 
 		Authentication authentication = r.getAuthentication();
 
 		ClientRegistration clientRegistration = authorizedClient
 
@@ -293,7 +294,7 @@ public final class ServerOAuth2AuthorizedClientExchangeFilterFunction implements
 
 						.thenReturn(result));
 
 	}
 
 
-	private boolean shouldRefresh(OAuth2AuthorizedClient authorizedClient) {
 
+	private boolean shouldRefreshToken(OAuth2AuthorizedClient authorizedClient) {
 
 		if (this.authorizedClientRepository == null) {
 
 			return false;
 
 		}

+ 10 - 12
oauth2/oauth2-client/src/main/java/org/springframework/security/oauth2/client/web/reactive/function/client/ServletOAuth2AuthorizedClientExchangeFilterFunction.java
Ver ficheiro 

@@ -333,7 +333,7 @@ public final class ServletOAuth2AuthorizedClientExchangeFilterFunction implement
 
 			throw new IllegalArgumentException("Could not find ClientRegistration with id " + clientRegistrationId);
 
 		}
 
 		if (isClientCredentialsGrantType(clientRegistration)) {
 
-			return getAuthorizedClient(clientRegistration, attrs);
 
+			return authorizeWithClientCredentials(clientRegistration, attrs);
 
 		}
 
 		throw new ClientAuthorizationRequiredException(clientRegistrationId);
 
 	}
 
@@ -342,10 +342,8 @@ public final class ServletOAuth2AuthorizedClientExchangeFilterFunction implement
 
 		return AuthorizationGrantType.CLIENT_CREDENTIALS.equals(clientRegistration.getAuthorizationGrantType());
 
 	}
 
 
-
 
-	private OAuth2AuthorizedClient getAuthorizedClient(ClientRegistration clientRegistration,
 
-			Map<String, Object> attrs) {
 
-
 
+	private OAuth2AuthorizedClient authorizeWithClientCredentials(
 
+			ClientRegistration clientRegistration, Map<String, Object> attrs) {
 
 		HttpServletRequest request = getRequest(attrs);
 
 		HttpServletResponse response = getResponse(attrs);
 
 		OAuth2ClientCredentialsGrantRequest clientCredentialsGrantRequest =
 
@@ -372,16 +370,16 @@ public final class ServletOAuth2AuthorizedClientExchangeFilterFunction implement
 
 	private Mono<OAuth2AuthorizedClient> authorizedClient(ClientRequest request, ExchangeFunction next, OAuth2AuthorizedClient authorizedClient) {
 
 		ClientRegistration clientRegistration = authorizedClient.getClientRegistration();
 
 		if (isClientCredentialsGrantType(clientRegistration) && hasTokenExpired(authorizedClient)) {
 
-			//Client credentials grant do not have refresh tokens but can expire so we need to get another one
 
-			return Mono.fromSupplier(() -> getAuthorizedClient(clientRegistration, request.attributes()));
 
-		} else if (shouldRefresh(authorizedClient)) {
 
-			return refreshAuthorizedClient(request, next, authorizedClient);
 
+			// Client credentials grant do not have refresh tokens but can expire so we need to get another one
 
+			return Mono.fromSupplier(() -> authorizeWithClientCredentials(clientRegistration, request.attributes()));
 
+		} else if (shouldRefreshToken(authorizedClient)) {
 
+			return authorizeWithRefreshToken(request, next, authorizedClient);
 
 		}
 
 		return Mono.just(authorizedClient);
 
 	}
 
 
-	private Mono<OAuth2AuthorizedClient> refreshAuthorizedClient(ClientRequest request, ExchangeFunction next,
 
-			OAuth2AuthorizedClient authorizedClient) {
 
+	private Mono<OAuth2AuthorizedClient> authorizeWithRefreshToken(ClientRequest request, ExchangeFunction next,
 
+																	OAuth2AuthorizedClient authorizedClient) {
 
 		ClientRegistration clientRegistration = authorizedClient
 
 				.getClientRegistration();
 
 		String tokenUri = clientRegistration
 
@@ -407,7 +405,7 @@ public final class ServletOAuth2AuthorizedClientExchangeFilterFunction implement
 
 				.publishOn(Schedulers.elastic());
 
 	}
 
 
-	private boolean shouldRefresh(OAuth2AuthorizedClient authorizedClient) {
 
+	private boolean shouldRefreshToken(OAuth2AuthorizedClient authorizedClient) {
 
 		if (this.authorizedClientRepository == null) {
 
 			return false;
 
 		}