spring-security-oauth2

I'm trying to move my project to Spring Boot 1.5.1 and right now my configuration of Outh2 + JWT tokens stopped working. Right now I receive 401 error while performing a following test: RestTemplate restTemplate = new RestTemplate(); CreateDecisionRequest decisionRequest = new CreateDecisionRequest(name, description, url, imageUrl, parentDecisionId, tenantId); HttpHeaders headers = new HttpHeaders(); headers.setAccept(Arrays.asList(MediaType.APPLICATION_JSON)); headers.add(SecurityTestUtils.AUTH_HEADER_NAME, "Bearer " + accessToken); HttpEntity<CreateDecisionRequest> requestEntity = new

I am trying to implement Microservices architecture backend using Spring Boot 1.5.6.RELEASE and Spring Cloud Dalston.SR3 that would be consumed by mobile/web endpoints. API Gateway application @SpringBootApplicatio @EnableEurekaClient @EnableZuulProxy public class GatewayApplication { public static void main(String[] args) { SpringApplication.run(GatewayApplication.class, args); } } API security @Configuration @EnableWebSecurity @Order(ManagementServerProperties.ACCESS_OVERRIDE_ORDER) @EnableOAuth2Sso public class WebSecurityConfiguration extends WebSecurityConfigurerAdapter { @Override public

What I'm trying to do is to add an extra parameter openid.realm to my authorization request. My problem is very similar to https://github.com/spring-projects/spring-security-oauth/issues/123 and I tried to follow the outlined to way solve it: // Create an enhancer that adds openid.realm DefaultRequestEnhancer enhancer = new DefaultRequestEnhancer(); enhancer.setParameterIncludes(Arrays.asList("openid.realm")); // Create tokenprovider that use the enhancer AuthorizationCodeAccessTokenProvider tokenProvider = new AuthorizationCodeAccessTokenProvider(); tokenProvider

I have two resource servers: one that has an API for emailing notifications and one that runs scheduled tasks. When a scheduled task starts, I want to call out to the email service to notify users that their task is starting. Both services use OAuth2 for authentication. The scheduled task service has client credentials set up so that it can get an access token by presenting it's client credentials: To accomplish this, I'm using Spring Boot with Spring Security OAuth2. The Task service has an OAuth2RestTemplate to make the call out to the Email service. When the scheduled task fires up and

I am following Part V of Getting Started with Spring Boot Security to secure my RESTful microservices. The simple flow that I intend to implement is:- If unauthenticated, the user is redirected to a custom login page at say '/login'. User provides his credentials. On successful authentication user is redirected to home page ('/home'). I should be able to access my REST endpoint (behind a Zuul Proxy Server) after providing the access token in the request. The Getting Started guide in the above mentioned link uses Basic Auth and dummy user configured in .properties or .yml file. This is how I