게이트웨이 토큰 인증

2019-09-17 10:11:16 +09:00
parent 904d5d1780
commit 04b7ecd793
5 changed files with 142 additions and 96 deletions
--- a/src/main/java/com/example/template/ResourceServerConfiguration.java
+++ b/src/main/java/com/example/template/ResourceServerConfiguration.java
@@ -1,42 +1,42 @@
-//package com.example.template;
-//import org.springframework.context.annotation.Bean;
-//import org.springframework.context.annotation.Configuration;
-//import org.springframework.core.io.ClassPathResource;
-//import org.springframework.security.config.annotation.web.reactive.EnableWebFluxSecurity;
-//import org.springframework.security.config.web.server.ServerHttpSecurity;
-//import org.springframework.security.oauth2.provider.token.store.KeyStoreKeyFactory;
-//import org.springframework.security.web.server.SecurityWebFilterChain;
-//
-//import java.security.KeyPair;
-//
-//@Configuration
-//@EnableWebFluxSecurity
-//public class ResourceServerConfiguration {
-//
-//    @Bean
-//    SecurityWebFilterChain springSecurityFilterChain(ServerHttpSecurity http) throws Exception {
-//
-//        http
-//                .cors().and()
-//                .csrf().disable()
-//                .authorizeExchange()
-//                .pathMatchers("/oauth/**","/login/**","/.well-known/jwks.json").permitAll()
-//                .anyExchange().authenticated()
-//                .and()
-//                .oauth2ResourceServer()
-//                .jwt()
-//                ;
-//
-//        return http.build();
-//    }
-//
-//    @Bean
-//    public KeyPair makeKeyPair(){
-//        KeyPair keyPair = new KeyStoreKeyFactory(
-//                new ClassPathResource("server.jks"), "qweqwe".toCharArray())
-//                .getKeyPair("uengine", "qweqwe".toCharArray());
-//        return keyPair;
-//    }
-//
-//
-//}
+package com.example.template;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.core.io.ClassPathResource;
+import org.springframework.security.config.annotation.web.reactive.EnableWebFluxSecurity;
+import org.springframework.security.config.web.server.ServerHttpSecurity;
+import org.springframework.security.oauth2.provider.token.store.KeyStoreKeyFactory;
+import org.springframework.security.web.server.SecurityWebFilterChain;
+
+import java.security.KeyPair;
+
+@Configuration
+@EnableWebFluxSecurity
+public class ResourceServerConfiguration {
+
+    @Bean
+    SecurityWebFilterChain springSecurityFilterChain(ServerHttpSecurity http) throws Exception {
+
+        http
+                .cors().and()
+                .csrf().disable()
+                .authorizeExchange()
+                .pathMatchers("/oauth/**","/login/**","/.well-known/jwks.json").permitAll()
+                .anyExchange().authenticated()
+                .and()
+                .oauth2ResourceServer()
+                .jwt()
+                ;
+
+        return http.build();
+    }
+
+    @Bean
+    public KeyPair makeKeyPair(){
+        KeyPair keyPair = new KeyStoreKeyFactory(
+                new ClassPathResource("server.jks"), "qweqwe".toCharArray())
+                .getKeyPair("uengine", "qweqwe".toCharArray());
+        return keyPair;
+    }
+
+
+}