update spring oauth

Author: Doha2012

spring-oauth/src/main/java/org/baeldung/web/RedditController.java

@@ -1,6 +1,6 @@
 ################### DataSource Configuration ##########################
 jdbc.driverClassName=com.mysql.jdbc.Driver
-jdbc.url=jdbc:mysql://localhost:3306/registration_02?createDatabaseIfNotExist=true
+jdbc.url=jdbc:mysql://localhost:3606/registration_02?createDatabaseIfNotExist=true
 jdbc.user=tutorialuser
 jdbc.pass=tutorialmy5ql
 init-db=false

spring-security-login-and-registration/src/main/resources/persistence.properties

@@ -1,6 +1,6 @@
 <?xml version="1.0" encoding="UTF-8"?>
 <projectDescription>
-	<name>spring-oauth</name>
+	<name>spring-security-oauth</name>
 	<comment></comment>
 	<projects>
 	</projects>

spring-oauth/.classpath spring-security-oauth/.classpathspring-oauth/.classpath renamed to spring-security-oauth/.classpath

@@ -1,10 +1,10 @@
 <project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
     <modelVersion>4.0.0</modelVersion>
     <groupId>org.baeldung</groupId>
-    <artifactId>spring-oauth</artifactId>
+    <artifactId>spring-security-oauth</artifactId>
     <version>0.1-SNAPSHOT</version>
 
-    <name>spring-oauth</name>
+    <name>spring-security-oauth</name>
     <packaging>war</packaging>
 
     <dependencies>
@@ -251,7 +251,7 @@
     </dependencies>
 
     <build>
-        <finalName>spring-oauth</finalName>
+        <finalName>spring-security-oauth</finalName>
         <resources>
             <resource>
                 <directory>src/main/resources</directory>

spring-oauth/.project spring-security-oauth/.projectspring-oauth/.project renamed to spring-security-oauth/.project

@@ -0,0 +1,134 @@
+package org.baeldung.config;
+
+import java.util.Collections;
+import java.util.List;
+
+import org.springframework.security.access.AccessDeniedException;
+import org.springframework.security.authentication.AnonymousAuthenticationToken;
+import org.springframework.security.authentication.InsufficientAuthenticationException;
+import org.springframework.security.core.Authentication;
+import org.springframework.security.core.context.SecurityContextHolder;
+import org.springframework.security.oauth2.client.resource.OAuth2AccessDeniedException;
+import org.springframework.security.oauth2.client.resource.OAuth2ProtectedResourceDetails;
+import org.springframework.security.oauth2.client.resource.UserRedirectRequiredException;
+import org.springframework.security.oauth2.client.token.AccessTokenProvider;
+import org.springframework.security.oauth2.client.token.AccessTokenRequest;
+import org.springframework.security.oauth2.client.token.ClientTokenServices;
+import org.springframework.security.oauth2.client.token.OAuth2AccessTokenSupport;
+import org.springframework.security.oauth2.common.OAuth2AccessToken;
+import org.springframework.security.oauth2.common.OAuth2RefreshToken;
+import org.springframework.security.oauth2.common.exceptions.OAuth2Exception;
+
+public class MyAccessTokenProviderChain extends OAuth2AccessTokenSupport implements AccessTokenProvider {
+
+    private final List<AccessTokenProvider> chain;
+
+    private ClientTokenServices clientTokenServices;
+
+    public MyAccessTokenProviderChain(List<? extends AccessTokenProvider> chain) {
+        this.chain = chain == null ? Collections.<AccessTokenProvider> emptyList() : Collections.unmodifiableList(chain);
+    }
+
+    public void setClientTokenServices(ClientTokenServices clientTokenServices) {
+        this.clientTokenServices = clientTokenServices;
+    }
+
+    public boolean supportsResource(OAuth2ProtectedResourceDetails resource) {
+        for (AccessTokenProvider tokenProvider : chain) {
+            if (tokenProvider.supportsResource(resource)) {
+                return true;
+            }
+        }
+        return false;
+    }
+
+    public boolean supportsRefresh(OAuth2ProtectedResourceDetails resource) {
+        for (AccessTokenProvider tokenProvider : chain) {
+            if (tokenProvider.supportsRefresh(resource)) {
+                return true;
+            }
+        }
+        return false;
+    }
+
+    public OAuth2AccessToken obtainAccessToken(OAuth2ProtectedResourceDetails resource, AccessTokenRequest request) throws UserRedirectRequiredException, AccessDeniedException {
+        System.out.println("Obtain new token=====");
+        OAuth2AccessToken accessToken = null;
+        OAuth2AccessToken existingToken = null;
+        Authentication auth = SecurityContextHolder.getContext().getAuthentication();
+        System.out.println("The authentication is ---- " + auth);
+        if (auth instanceof AnonymousAuthenticationToken) {
+            if (!resource.isClientOnly()) {
+                throw new InsufficientAuthenticationException("Authentication is required to obtain an access token (anonymous not allowed)");
+            }
+        }
+
+        if (resource.isClientOnly() || (auth != null && auth.isAuthenticated())) {
+            existingToken = request.getExistingToken();
+            System.out.println("checking existing token =====");
+            if (existingToken == null && clientTokenServices != null) {
+                System.out.println("get existing token from clientTokenServices ==== ");
+                existingToken = clientTokenServices.getAccessToken(resource, auth);
+            }
+
+            if (existingToken != null) {
+                if (existingToken.isExpired()) {
+                    System.out.println("expired token");
+                    if (clientTokenServices != null) {
+                        clientTokenServices.removeAccessToken(resource, auth);
+                    }
+                    OAuth2RefreshToken refreshToken = existingToken.getRefreshToken();
+                    if (refreshToken != null) {
+                        System.out.println("let's refresh it");
+                        accessToken = refreshAccessToken(resource, refreshToken, request);
+                    }
+                } else {
+                    System.out.println("use existing because not expired yet");
+                    accessToken = existingToken;
+                }
+            }
+        }
+
+        if (accessToken == null) {
+            System.out.println("no token so let get it");
+            accessToken = obtainNewAccessTokenInternal(resource, request);
+
+            if (accessToken == null) {
+                throw new IllegalStateException("An OAuth 2 access token must be obtained or an exception thrown.");
+            }
+        }
+
+        if (clientTokenServices != null && auth != null && auth.isAuthenticated()) {
+            clientTokenServices.saveAccessToken(resource, auth, accessToken);
+        }
+
+        return accessToken;
+    }
+
+    protected OAuth2AccessToken obtainNewAccessTokenInternal(OAuth2ProtectedResourceDetails details, AccessTokenRequest request) throws UserRedirectRequiredException, AccessDeniedException {
+
+        if (request.isError()) {
+            throw OAuth2Exception.valueOf(request.toSingleValueMap());
+        }
+
+        for (AccessTokenProvider tokenProvider : chain) {
+            if (tokenProvider.supportsResource(details)) {
+                System.out.println("we will use this provider to get it => " + tokenProvider.getClass().getName());
+                return tokenProvider.obtainAccessToken(details, request);
+            }
+        }
+
+        throw new OAuth2AccessDeniedException("Unable to obtain a new access token for resource '" + details.getId() + "'. The provider manager is not configured to support it.", details);
+    }
+
+    public OAuth2AccessToken refreshAccessToken(OAuth2ProtectedResourceDetails resource, OAuth2RefreshToken refreshToken, AccessTokenRequest request) throws UserRedirectRequiredException {
+        for (AccessTokenProvider tokenProvider : chain) {
+            if (tokenProvider.supportsRefresh(resource)) {
+                System.out.println("we will use this provider to refresh it => " + tokenProvider.getClass().getName());
+                return tokenProvider.refreshAccessToken(resource, refreshToken, request);
+            }
+        }
+        throw new OAuth2AccessDeniedException("Unable to obtain a new access token for resource '" + resource.getId() + "'. The provider manager is not configured to support it.", resource);
+    }
+
+}