This is a simple REST service that provides a single RESTful endpoint protected by OAuth 2.
Just run with maven
mvn clean package spring-boot:run Open http://localhost:8080/greeting in your browser or some HTTP client (like a Postman).
You receive the following JSON response, which indicates you are not authorized to access the resource:
{ "error": "unauthorized", "error_description": "An Authentication object was not found in the SecurityContext" } In order to access the protected resource, you must first request an access token via the OAuth. Request OAuth authorization:
curl -X POST -vu clientapp:123456 http://localhost:8080/oauth/token -H "Accept: application/json" -d "password=spring&username=admin&grant_type=password&scope=read%20write&client_secret=123456&client_id=clientapp" A successful authorization results in the following JSON response:
{ "access_token": "ff16372e-38a7-4e29-88c2-1fb92897f558", "token_type": "bearer", "refresh_token": "f554d386-0b0a-461b-bdb2-292831cecd57", "expires_in": 43199, "scope": "read write" } Use the access_token returned in the previous request to make the authorized request to the protected endpoint:
curl http://localhost:8080/greeting -H "Authorization: Bearer ff16372e-38a7-4e29-88c2-1fb92897f558" If the request is successful, you will see the following JSON response:
{ "id": 1, "content": "Hello, Roy!" } After the specified time period, the access_token will expire. Use the refresh_token that was returned in the original OAuth authorization to retrieve a new access_token:
curl -X POST -vu clientapp:123456 http://localhost:8080/oauth/token -H "Accept: application/json" -d "grant_type=refresh_token&refresh_token=f554d386-0b0a-461b-bdb2-292831cecd57&client_secret=123456&client_id=clientapp"