Skip to content
/ spring-boot-oauth2-basics Public

Spring (Boot, Data, Security) with OAuth2 implementation.

3 stars 7 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

dtreb/spring-boot-oauth2-basics

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
src
src
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
pom.xml
pom.xml
 
 

Repository files navigation

Spring (Boot, Data, Security) with OAuth2 implementation.

Info

This is a very simple project that demonstrates usage of:

  1. Spring Boot for project setup.
  2. Simple Java Mail for emailing.
  3. Swagger2 for API description.
  4. Basic security tests with Mockito.
  5. H2 as temporary storage.
  6. HikariCP as connection pool implementation.
  7. metrics-spring for endpoints, pool, memory and other metrics.

Setup:

  1. Adjust config at mail.properties with your mail credentials.
  2. Adjust other settings at application.properties if needed.
  3. Run application via $ mvn spring-boot:run
  4. Then browse to: http://localhost:8888/ping
  5. [Optional] Check http://localhost:8888/metrics?pretty=true for endpoints metrics.

API

Note:

  • Use http://localhost:8888/swagger-ui.html to get detailed info about every endpoint.
  • Always check that you use OAuth2 pair "dtreb:secret" to obtain "access_token" and "refresh_token".
  • Use proper "access_token" retrieved from the authorization response as "Authorization: Bearer CODE" header for all /api/... requests.
TYPE URL Parameters (^ - required) Curl Info
GET /ping curl http://localhost:8888/ping Ping
GET /oauth/token ^username: String, ^token: String, ^grant_type: "password" curl -vu dtreb:secret "http://localhost:8888/oauth/token" -d "username=user&password=user&grant_type=password" Authenticate (OAuth2).
GET /oauth/token ^refresh_token: String, ^grant_type: "refresh_token" curl -vu dtreb:secret "http://localhost:8888/oauth/token" -d "grant_type=refresh_token&refresh_token=12345" Get new token. Pass refresh_token to get new access_token.
POST /register ^login: String, ^password: String, ^email: String curl -X POST --data "login=den&password=den&[email protected]" "http://localhost:8888/register" Register new user.
POST /activate ^activationKey: String, ^email: String curl -X POST --data "activationKey=12345&[email protected]" "http://localhost:8888/activate" Activate user.
POST /lostPassword ^email: String curl -X POST --data "[email protected]" "http://localhost:8888/lostPassword" Searches existing user by email, sets resetPasswordKey for it. Assumes /resetPassword call afterwards.
POST /resetPassword ^email: String, ^newPassword: String, ^resetPasswordKey: String curl -X POST --data "[email protected]&newPassword=den1&resetPasswordKey=12345" "http://localhost:8888/resetPassword" Uses resetPasswordKey to update user's password.
GET /api/user curl -H "Authorization: Bearer 12345" "http://localhost:8888/api/user" Get current user info.

Feel free to use, comment or collaborate.

About

Spring (Boot, Data, Security) with OAuth2 implementation.

Topics

bootstrap jquery oauth2 mail spring spring-boot maven spring-data mockito jackson spring-security java8 swagger-ui spring-data-jpa h2 spring-boot-maven swagger2

Resources

Readme
Activity

Stars

3 stars

Watchers

2 watching

Forks

7 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages