Questions tagged [spring-oauth2]

Official tutorial: https://spring.io/guides/tutorials/spring-boot-oauth2/

708 questions
0
votes
1 answer

spring oauth error Full authentication is required to access this resource

Our application is using spring security to secure the application,i just added one rest controller which supporting spring oauth security, for oauth token validation, will be called by some other application following are my controller…
john
  • 11
  • 1
  • 1
  • 4
0
votes
1 answer

Spring Zuul Eureka Security Authentication get user info from Zuul

I'm using @EnableOAuth2Sso to authenticate a user with a third party authentication server on the Zuul server. I need to pass user info from Zuul to the routed servers. I've set up the request endpoint /userinfo to return a jsonified representation…
George
  • 2,820
  • 4
  • 29
  • 56
0
votes
1 answer

Registering Spring OAuth2 token endpoints in Dropwizard application

How can we register Spring OAuth2 token endpoints into the Dropwizard Application? I tried to register it explicitly but no luck. So, I debugged my code and found JerseyEnvironment.class needs @Path annotation over the class to register resources…
0
votes
0 answers

How to add additional custom criteria for authorization or token creation in Spring Oauth?

We have implemented Spring Oauth authorization+resource server that can be used for external applications. Now we would like to add custom checks before some oauth calls returns in the authorization server, most importantly for the authorization…
0
votes
0 answers

Spring Boot OAuth2 Resource server configs not reflecting

Hi I am setting up spring boot Oauth2, for some reason the resource server configs are not being recognised. I am able to generate the bearer token but when I try to hit any of the url the response is the login page from basic http spring…
SlOtErJaCk
  • 13
  • 9
0
votes
1 answer

Spring boot 1.5.4 oauth2 Resource Server with Spring boot 1.2.4 oauth2 authorization server

I am new to Spring boot and Spring oauth2 and somehow after googling got examples using spring boot 1.2.4 with mongodb. The following are the setup: Spring boot 1.2.4 and Spring oauth2 2.0.7 for Authorization Server Spring boot 1.5.4 and spring…
chiku
  • 485
  • 2
  • 8
  • 23
0
votes
1 answer

How to configure a Oauth2 authorization server with Spring?

I'm trying to configure a simple Authorization Server based on one of the examples in Github but I got stuck in the token verification part. My current aim is to provide a basic implementation that secures a gateway. What I understand is that Spring…
Juan Vega
  • 1,030
  • 1
  • 16
  • 32
0
votes
1 answer

@EnableOAuth2Sso and csrf

I am trying to build a complete sample code for Gateway, UI , Resource . Every thing worked perfect except when i tried to do post . I noticed first that i have double csrf one from gateway and one from the UI . So my decision which i am not sure is…
Shahbour
  • 1,323
  • 1
  • 16
  • 42
0
votes
1 answer

Spring Security OAuth2 Protected Resource not actually protected... Filters Not Working?

Literally able to hit the endpoint: http://localhost:8080/oauth2-password/helloworld and still get the String "Hello World!".. Check out my configurations below and please tell me why. This is extremely frustrating. AUTHORIZATION…
0
votes
1 answer

@EnableZuulProxy+ @EnableOAuth2Sso + AuthenticationFailureHandler

How can I intercept authentication failures when using @EnableZuulProxy + @EnableOAuth2Sso annotations? I have an authorization server that authenticates the users against a Microsoft Active Directory server. As I could tell, in Spring Cloud the…
0
votes
1 answer

OAuth2 multiple keys, public key migration, Resource Server

My System: A Security Provider generates JWT Tokens based on a Private Key. The Private Key belongs to a Certificate which will expire. Is it possible to set multiple Public Keys in Resource Server? I would like to do a rolling Update, so for a…
kirill1722
  • 21
  • 1
0
votes
0 answers

Spring OAuth2 custom authentication implementation failed

In my application, I just want to authenticate two access token, one is in my 'Authorization barer header' and other is from a custom header. I just implemented a custom authenticator/filter for the same but while running it failed due to a null…
Anoop M Nair
  • 1,057
  • 1
  • 13
  • 31
0
votes
1 answer

java.net.SocketException: Connection reset, large HTTP headers

I'm using org.apache.http.impl.client.CloseableHttpClient to send a request. Whenever the size of one of the headers is large (around 103452 bytes), I get a: java.net.SocketException: Connection reset The connection is probably not being reset by…
ealfonso
  • 6,622
  • 5
  • 39
  • 67
0
votes
1 answer

spring oAuth2 not protecting the resources

I'm trying to setup a pure resource server using spring oAuth2 which will validate access token from a authorization server. I'm not able to protect my resources. I'm directly able to hit the api. example:…
0
votes
1 answer

Spring boot Oauth 2 configuration cause to 401 even with the permitall antMatchers

I am little new Spring boot and Aouth 2. I tried to secure my spring boot application with OAuth2. But My authentication is nit working and it causes for 401 error even with unsecured url. My code can be found in the git hub with under url I used…
Dilee
  • 246
  • 1
  • 4
  • 15