Yet another... in progress...
+-----+ +-----+ +---------------+
| B | -- (1) protected resource ----> | | -- (4) authorization grant -> | authorization |
| R | <- (2) unauthorized ----------- | A | <- (5) access token --------- | server |
\O_ | O | -- (3) authorization ---------> | | +---------------+
| | W | | P |
/ \ | S | | | +---------------+
| E | <- (8) protected resource ----- | P | -- (6) access token --------> | resource |
| R | | | <- (7) protected resource --- | server |
+-----+ +-----+ +---------------+
- using java 14, build and run apps:
brew cask reinstall adoptopenjdk14 ./mvnw clean ; ./mvnw -pl :authorization-server,:app java -jar authorization-server/target/*.jar & java -jar app/target/*.jar &
- open in browser: http://127.0.0.1:8080
- click register
- you should be redirected with url: http://localhost:8081/oauth/authorize?grant_type=authorization_code&response_type=code&client_id=first-client
- authenticate with:
enduser/enduserpassword - you should be redirected on authorization page
- allow or deny...
- once allowed, click Authorize
- you should be redirected back to target page with authorization code present in a browser url
./mvnw clean package jib:docker__
jdk14
./mvnw -f step-1/step-1-authorization-server
java -jar ./step-1/step-1-authorization-server/target/*.jar
curl -sS first-client:noonewilleverguess@0:8081/oauth/token -d grant_type=client_credentials -d scope=any
curl -sS first-client:noonewilleverguess@0:8081/oauth/token -d grant_type=password -d scope=any -d username=enduser -d password=enduserpassword__
jdk14
./mvnw -f step-0/step-0-authorization-server
java -jar ./step-0/step-0-authorization-server/target/*.jar
curl first-client:noonewilleverguess@localhost:8081/oauth/token -dgrant_type=client_credentials -dscope=any