Skip to content
/ spring-social-oidc Public

OpenID-Connect integration for Spring projects using Spring Social

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

indigo-dc/spring-social-oidc

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

20 Commits
src/main/java/org/springframework/social/oidc/deep
src/main/java/org/springframework/social/oidc/deep
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
pom.xml
pom.xml
 
 

Repository files navigation

DEEP Orchestrator and OpenID Connect support for spring social

This project provides integration with the DEEP orchestrator and OpenID connect log-in support through Spring Social to Spring projects.

Build

Maven is needed to build the source code. To build a binary just execute mvn clean install and the jar should be in the target folder.

Use in a Spring project

  1. Add the generated jar to the Spring project classpath either by a dependency management tool like Maven or Gradle or copying the jar directly to the project's classpath. For maven the dependency is:
<groupId>org.springframework.social</groupId>
<artifactId>spring-social-oidc-deep</artifactId>
<version>1.4</version>
  1. Follow the steps described in Spring social documentation to enable Spring Social in your project and create a SocialConfigurer and adding a SocialConfigurer class and add a connection factory like in this snippet:
@Override
    public void addConnectionFactories(ConnectionFactoryConfigurer connectionFactoryConfigurer, Environment environment) {

            connectionFactoryConfigurer.addConnectionFactory(
                    new OidcConnectionFactory(certKeystore, issuer, clientId, clientSecret));
    }

Where:

  • certKeystore is the location of a JKS keystore containing orchestrators certificates in case it's self-signed or invalid. If the orchestrator has a valid certificate then this parameter can be null.
  • issuer is the root URL of the IAM issuer instance
  • client-id and client-sectet are the application client identifier and secret to use to authenticate through the code workflow.

Getting access to the DEEP Orchestrator client

In Spring beans and components whose scope is bound to the request, the DEEP orchestrator can be directly injected using the @Inject or @Autowired annotations:

@Autowired
private DeepOrchestrator orchestratorClient;

In Spring beans whose scope is not bound to the actual request, the DEEP orchestrator can be obtained by the following snippet:

@Autowired
private ConnectionRepository repository;

private DeepOrchestrator getClient() {
    Connection<DeepOrchestrator> connection = repository.findPrimaryConnection(DeepOrchestrator.class);
    DeepOrchestrator deepOrchestrator = connection != null ? connection.getApi() : null;
    return deepOrchestrator;
}

Getting access and refresh tokens from the code

It's not recommended to access the IAM token directly and instead it's strongly preferred to implement further operations and services in this plug in and then access them as client with the method defined above, however, if necessary, once configured, you can get the current access and refresh tokens from the current user by:

  • Add a reference to the ConnectionRepository object in your class:
@Inject
private ConnectionRepository connRepository;
  • Access the tokens with the following snippet:
connRepository.getPrimaryConnection(DeepOrchestrator.class).createData()

About

OpenID-Connect integration for Spring projects using Spring Social

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

9 watching

Forks

0 forks
Report repository

Releases 2

Multiple orchestrators Latest
Oct 23, 2019
+ 1 release

Packages

No packages published

Languages