记录一次spring发布的oauth2服务器demo学习——第四步,client与account入库Mysql
记录一次spring发布的oauth2服务器demo学习——第四步,client与account入库Mysql
对应发行版地址:https://gitee.com/jdw-silky/silky-sso-server/releases/1.0
基础思路
- 配置数据源 Datasource(Mysql)
- 修改
RegisteredClientRepository从InMemoryRegisteredClientRepository改为JdbcRegisteredClientRepository- 修改
UserDetailsService从InMemoryUserDetailsManager改为JdbcUserDetailsManager
难点
- 相应基础sql获取
JdbcRegisteredClientRepository需要的相应sql,spring已经给出来了
JdbcUserDetailsManager需要的相应sql,我刚开始试着去源码里面找是否有类似于JdbcTokenRepositoryImpl那样的初始化sql,没找到,后来试着直接根据查询逆推,后来想着直接搜索以下,找到了大致能用的,后台调试的时候又改了下部分字段。
相应代码
@Bean
public RegisteredClientRepository registeredClientRepository(JdbcTemplate jdbcTemplate) {
JdbcRegisteredClientRepository registeredClientRepository = new JdbcRegisteredClientRepository(jdbcTemplate);
/** 此处保留作为client入库代码案例
RegisteredClient registeredClient = RegisteredClient.withId(UUID.randomUUID().toString())
.clientId("messaging-client")
.clientSecret("secret")
.clientAuthenticationMethod(ClientAuthenticationMethod.CLIENT_SECRET_BASIC)
.authorizationGrantType(AuthorizationGrantType.AUTHORIZATION_CODE)
.authorizationGrantType(AuthorizationGrantType.REFRESH_TOKEN)
.authorizationGrantType(AuthorizationGrantType.CLIENT_CREDENTIALS)
.redirectUri("http://127.0.0.1:8080/login/oauth2/code/messaging-client-oidc")
.redirectUri("http://127.0.0.1:8080/authorized")
.scope(OidcScopes.OPENID)
.scope("message.read")
.scope("message.write")
.clientSettings(ClientSettings.builder().requireAuthorizationConsent(true).build())
.build();
registeredClientRepository.save(registeredClient);*/
return registeredClientRepository;
}
@Bean
UserDetailsService userDetailsService(DataSource dataSource) {
JdbcUserDetailsManager jdbcUserDetailsManager = new JdbcUserDetailsManager(dataSource);
/** 此处保留作为 account 入库案例
UserDetails user = User.withDefaultPasswordEncoder()
.username("user1")
.password("password")
.roles("USER")
.build();
jdbcUserDetailsManager.createUser(user);*/
return jdbcUserDetailsManager;
}
浙公网安备 33010602011771号