目录
一、OAuth2的项目介绍
1.搭建OAuth2流程演示
2.创建项目结构
① 客户
② 认证服务器
③ 资源所有者
④ 资源服务器
⑤ 客户发送请求
3.流程
一、OAuth2的项目介绍
1.搭建OAuth2流程演示
① 下载代码
演示代码下载:
https://gitee.com/lisenaq/oauth2-example.git
https://gitee.com/lisenaq/oauth2-example.git
② 打开IDEA导入代码
③导入好了之后一定要记得改为我们自己配置好的maven,改好了之后我们关闭IDEA,重新打开它就会借助我们本地的aliyun进行下载。当它maven在下载东西的时候,它这里的地址就是http:aliyun.com。
- client 客户
- authorization-server 认证服务
- resource-owner 资源所有者
- resource-server 资源服务器
流程:
- 客户向资源所有者申请授权码
- 资源所有者下发授权码
- 客户拿到授权码后向认证服务器申请令牌
- 认证服务器接到申请下方令牌
- 客户获取令牌后向资源服务器请求数据
2.创建项目结构
① 客户
创建springboot项目,加入配置必要的依赖包
pom.xml
<?xml version="1.0" encoding="UTF-8"?>
<project xmlns="http://maven.apache.org/POM/4.0.0"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
<parent>
<artifactId>OAuth2-example</artifactId>
<groupId>org.lisen</groupId>
<version>1.0-SNAPSHOT</version>
</parent>
<modelVersion>4.0.0</modelVersion>
<artifactId>client</artifactId>
<dependencies>
<dependency>
<groupId>org.apache.oltu.oauth2</groupId>
<artifactId>org.apache.oltu.oauth2.client</artifactId>
</dependency>
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-web</artifactId>
</dependency>
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-test</artifactId>
</dependency>
<dependency>
<groupId>org.projectlombok</groupId>
<artifactId>lombok</artifactId>
<optional>true</optional>
</dependency>
</dependencies>
</project>application.yml
spring:
application:
name: OAuth2-client
server:
port: 8080② 认证服务器
pom.xml
<?xml version="1.0" encoding="UTF-8"?>
<project xmlns="http://maven.apache.org/POM/4.0.0"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
<parent>
<artifactId>OAuth2-example</artifactId>
<groupId>org.lisen</groupId>
<version>1.0-SNAPSHOT</version>
</parent>
<modelVersion>4.0.0</modelVersion>
<artifactId>authorization-server</artifactId>
<dependencies>
<dependency>
<groupId>org.apache.oltu.oauth2</groupId>
<artifactId>org.apache.oltu.oauth2.authzserver</artifactId>
</dependency>
<dependency>
<groupId>org.apache.oltu.oauth2</groupId>
<artifactId>org.apache.oltu.oauth2.resourceserver</artifactId>
</dependency>
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-web</artifactId>
</dependency>
<dependency>
<groupId>org.projectlombok</groupId>
<artifactId>lombok</artifactId>
<optional>true</optional>
</dependency>
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-test</artifactId>
<scope>test</scope>
</dependency>
</dependencies>
</project>application.yml
spring:
application:
name: OAuth2-authorization-server
server:
port: 8081③ 资源所有者
pom.xml
<?xml version="1.0" encoding="UTF-8"?>
<project xmlns="http://maven.apache.org/POM/4.0.0"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
<parent>
<artifactId>OAuth2-example</artifactId>
<groupId>org.lisen</groupId>
<version>1.0-SNAPSHOT</version>
</parent>
<modelVersion>4.0.0</modelVersion>
<artifactId>resource-owner</artifactId>
<dependencies>
<dependency>
<groupId>org.apache.oltu.oauth2</groupId>
<artifactId>org.apache.oltu.oauth2.authzserver</artifactId>
</dependency>
<dependency>
<groupId>org.apache.oltu.oauth2</groupId>
<artifactId>org.apache.oltu.oauth2.resourceserver</artifactId>
</dependency>
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-web</artifactId>
</dependency>
<dependency>
<groupId>org.projectlombok</groupId>
<artifactId>lombok</artifactId>
<optional>true</optional>
</dependency>
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-test</artifactId>
<scope>test</scope>
</dependency>
</dependencies>
</project>application.yml
spring:
application:
name: OAuth2-resource-owner
server:
port: 8082
④ 资源服务器
pom.xml
<?xml version="1.0" encoding="UTF-8"?>
<project xmlns="http://maven.apache.org/POM/4.0.0"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
<parent>
<artifactId>OAuth2-example</artifactId>
<groupId>org.lisen</groupId>
<version>1.0-SNAPSHOT</version>
</parent>
<modelVersion>4.0.0</modelVersion>
<artifactId>resource-server</artifactId>
<dependencies>
<dependency>
<groupId>org.apache.oltu.oauth2</groupId>
<artifactId>org.apache.oltu.oauth2.authzserver</artifactId>
</dependency>
<dependency>
<groupId>org.apache.oltu.oauth2</groupId>
<artifactId>org.apache.oltu.oauth2.resourceserver</artifactId>
</dependency>
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-web</artifactId>
</dependency>
<dependency>
<groupId>org.projectlombok</groupId>
<artifactId>lombok</artifactId>
<optional>true</optional>
</dependency>
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-test</artifactId>
<scope>test</scope>
</dependency>
</dependencies>
</project>application.yml
spring:
application:
name: oauth2-resource-server
server:
port: 8083⑤ 客户发送请求
启动项目如下图所示:
客户访问调式:http://localhost:8080/client/getCode
3.流程
① 资源所有者
资源所有者接到客户的请求,需要返回授权码
② 客户
编写一个controller,向资源所有者发送请求来获取授权码
③ 客户
资源所有者生成授权码后,需要回调客户的一个借口,将授权码传回,客户得到授权码后,需要向认证服务器发出请求,申请令牌
④ 认证服务器
认证服务器接到客户请求,生成令牌,并返回令牌数据
⑤ 客户
客户获取了令牌,并使用令牌向资源服务器请求数据
⑤ 资源服务器
资源服务器接到请求,返回数据
](https://img-blog.csdnimg.cn/9712415c3add452f943c523eadc6605a.png)
