Add authorization by auth server

2025-02-15 17:24:10 +03:00 · 2025-02-15 17:24:10 +03:00 · 7dbfd77547
commit 7dbfd77547
parent e98789a1ee
10 changed files with 75 additions and 28 deletions
--- a/build.gradle.kts
+++ b/build.gradle.kts
@ -1,49 +1,51 @@
 plugins {
-	java
+    java
-	id("org.springframework.boot") version "3.4.1"
+    id("org.springframework.boot") version "3.4.1"
-	id("io.spring.dependency-management") version "1.1.7"
+    id("io.spring.dependency-management") version "1.1.7"
-	id("com.vaadin") version "24.6.0"
+    id("com.vaadin") version "24.6.0"
 }
 group = "ru.vyatsu"
 version = "1.0.0"
 java {
-	toolchain {
+    toolchain {
-		languageVersion = JavaLanguageVersion.of(17)
+        languageVersion = JavaLanguageVersion.of(17)
-	}
+    }
 }
 configurations {
-	compileOnly {
+    compileOnly {
-		extendsFrom(configurations.annotationProcessor.get())
+        extendsFrom(configurations.annotationProcessor.get())
-	}
+    }
 }
 repositories {
-	mavenCentral()
+    mavenCentral()
 }
 extra["vaadinVersion"] = "24.6.0"
 dependencies {
-	implementation("org.springframework.boot:spring-boot-starter-data-jpa")
+    implementation("org.springframework.boot:spring-boot-starter-data-jpa")
-	implementation("org.springframework.boot:spring-boot-starter-web")
+    implementation("org.springframework.boot:spring-boot-starter-web")
-	implementation("com.vaadin:vaadin-spring-boot-starter")
+    implementation("com.vaadin:vaadin-spring-boot-starter")
-	implementation("org.yaml:snakeyaml")
+    implementation("org.springframework.boot:spring-boot-starter-oauth2-client")
-	compileOnly("org.projectlombok:lombok")
+
-	annotationProcessor("org.projectlombok:lombok")
+    implementation("org.yaml:snakeyaml")
-	runtimeOnly("org.postgresql:postgresql")
+    compileOnly("org.projectlombok:lombok")
-	testImplementation("org.springframework.boot:spring-boot-starter-test")
+    annotationProcessor("org.projectlombok:lombok")
-	testRuntimeOnly("org.junit.platform:junit-platform-launcher")
+    runtimeOnly("org.postgresql:postgresql")
    testImplementation("org.springframework.boot:spring-boot-starter-test")
    testRuntimeOnly("org.junit.platform:junit-platform-launcher")
 }
 dependencyManagement {
-	imports {
+    imports {
-		mavenBom("com.vaadin:vaadin-bom:${property("vaadinVersion")}")
+        mavenBom("com.vaadin:vaadin-bom:${property("vaadinVersion")}")
-	}
+    }
 }
 tasks.withType<Test> {
-	useJUnitPlatform()
+    useJUnitPlatform()
 }
--- a/src/main/java/ru/vyatsu/qr_access_admin/client/view/ClientView.java
+++ b/src/main/java/ru/vyatsu/qr_access_admin/client/view/ClientView.java
@ -7,6 +7,7 @@ import com.vaadin.flow.component.orderedlayout.HorizontalLayout;
 import com.vaadin.flow.component.orderedlayout.VerticalLayout;
 import com.vaadin.flow.router.PageTitle;
 import com.vaadin.flow.router.Route;
 import jakarta.annotation.security.PermitAll;
 import ru.vyatsu.qr_access_admin.client.component.ClientEditor;
 import ru.vyatsu.qr_access_admin.client.entity.ClientEntity;
 import ru.vyatsu.qr_access_admin.client.entity.ClientRepository;
@ -16,6 +17,7 @@ import java.util.List;
@Route(value = "clients", layout = MainLayout.class)
@PageTitle("Клиенты")
@PermitAll
 public class ClientView extends VerticalLayout {
    private final ClientRepository repository;
    private final Grid<ClientEntity> grid;
--- a/src/main/java/ru/vyatsu/qr_access_admin/common/config/SecurityConfiguration.java
+++ b/src/main/java/ru/vyatsu/qr_access_admin/common/config/SecurityConfiguration.java
@ -0,0 +1,17 @@
 package ru.vyatsu.qr_access_admin.common.config;
 import com.vaadin.flow.spring.security.VaadinWebSecurity;
 import org.springframework.context.annotation.Configuration;
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
@Configuration
@EnableWebSecurity
 public class SecurityConfiguration extends VaadinWebSecurity {
    @Override
    protected void configure(HttpSecurity http) throws Exception {
        super.configure(http);
        http.oauth2Login(c -> c.loginProcessingUrl("/login/oauth2/code/own"));
    }
 }
--- a/src/main/java/ru/vyatsu/qr_access_admin/common/view/MainView.java
+++ b/src/main/java/ru/vyatsu/qr_access_admin/common/view/MainView.java
@ -1,12 +1,14 @@
 package ru.vyatsu.qr_access_admin.common.view;
 import ru.vyatsu.qr_access_admin.common.MainLayout;
 import com.vaadin.flow.component.orderedlayout.VerticalLayout;
 import com.vaadin.flow.router.PageTitle;
 import com.vaadin.flow.router.Route;
 import jakarta.annotation.security.PermitAll;
 import ru.vyatsu.qr_access_admin.common.MainLayout;
@Route(value = "", layout = MainLayout.class)
@PageTitle("Start")
@PermitAll
 public class MainView extends VerticalLayout {
 }
--- a/src/main/java/ru/vyatsu/qr_access_admin/door/view/DoorView.java
+++ b/src/main/java/ru/vyatsu/qr_access_admin/door/view/DoorView.java
@ -7,6 +7,7 @@ import com.vaadin.flow.component.orderedlayout.HorizontalLayout;
 import com.vaadin.flow.component.orderedlayout.VerticalLayout;
 import com.vaadin.flow.router.PageTitle;
 import com.vaadin.flow.router.Route;
 import jakarta.annotation.security.PermitAll;
 import jakarta.persistence.EntityManager;
 import jakarta.persistence.EntityManagerFactory;
 import jakarta.persistence.Query;
@ -22,6 +23,7 @@ import java.util.List;
@Route(value = "doors", layout = MainLayout.class)
@PageTitle("Двери")
@PermitAll
 public class DoorView extends VerticalLayout {
    private final Grid<DoorEntity> grid;
    private final DoorRepository repository;
--- a/src/main/java/ru/vyatsu/qr_access_admin/partner/view/PartnerView.java
+++ b/src/main/java/ru/vyatsu/qr_access_admin/partner/view/PartnerView.java
@ -7,6 +7,7 @@ import com.vaadin.flow.component.orderedlayout.HorizontalLayout;
 import com.vaadin.flow.component.orderedlayout.VerticalLayout;
 import com.vaadin.flow.router.PageTitle;
 import com.vaadin.flow.router.Route;
 import jakarta.annotation.security.PermitAll;
 import ru.vyatsu.qr_access_admin.common.MainLayout;
 import ru.vyatsu.qr_access_admin.partner.component.PartnerEditor;
 import ru.vyatsu.qr_access_admin.partner.entity.PartnerEntity;
@ -16,6 +17,7 @@ import java.util.List;
@Route(value = "partners", layout = MainLayout.class)
@PageTitle("Партнеры")
@PermitAll
 public class PartnerView extends VerticalLayout {
    private final PartnerRepository repository;
    private final Grid<PartnerEntity> grid;
--- a/src/main/java/ru/vyatsu/qr_access_admin/qr/view/QrView.java
+++ b/src/main/java/ru/vyatsu/qr_access_admin/qr/view/QrView.java
@ -7,6 +7,7 @@ import com.vaadin.flow.component.orderedlayout.HorizontalLayout;
 import com.vaadin.flow.component.orderedlayout.VerticalLayout;
 import com.vaadin.flow.router.PageTitle;
 import com.vaadin.flow.router.Route;
 import jakarta.annotation.security.PermitAll;
 import ru.vyatsu.qr_access_admin.common.MainLayout;
 import ru.vyatsu.qr_access_admin.door.entity.DoorRepository;
 import ru.vyatsu.qr_access_admin.qr.component.QrEditor;
@ -17,6 +18,7 @@ import java.util.List;
@Route(value = "qrs", layout = MainLayout.class)
@PageTitle("Коды")
@PermitAll
 public class QrView extends VerticalLayout {
    private final QrRepository repository;
    private final Grid<QrEntity> grid;
--- a/src/main/java/ru/vyatsu/qr_access_admin/slot/view/SlotView.java
+++ b/src/main/java/ru/vyatsu/qr_access_admin/slot/view/SlotView.java
@ -7,6 +7,7 @@ import com.vaadin.flow.component.orderedlayout.HorizontalLayout;
 import com.vaadin.flow.component.orderedlayout.VerticalLayout;
 import com.vaadin.flow.router.PageTitle;
 import com.vaadin.flow.router.Route;
 import jakarta.annotation.security.PermitAll;
 import ru.vyatsu.qr_access_admin.common.MainLayout;
 import ru.vyatsu.qr_access_admin.slot.component.SlotEditor;
 import ru.vyatsu.qr_access_admin.slot.entity.SlotEntity;
@ -16,6 +17,7 @@ import java.util.List;
@Route(value = "slots", layout = MainLayout.class)
@PageTitle("Слоты")
@PermitAll
 public class SlotView extends VerticalLayout {
    private final SlotRepository repository;
    private final Grid<SlotEntity> grid;
--- a/src/main/java/ru/vyatsu/qr_access_admin/unit/view/UnitView.java
+++ b/src/main/java/ru/vyatsu/qr_access_admin/unit/view/UnitView.java
@ -7,6 +7,7 @@ import com.vaadin.flow.component.orderedlayout.HorizontalLayout;
 import com.vaadin.flow.component.orderedlayout.VerticalLayout;
 import com.vaadin.flow.router.PageTitle;
 import com.vaadin.flow.router.Route;
 import jakarta.annotation.security.PermitAll;
 import ru.vyatsu.qr_access_admin.common.MainLayout;
 import ru.vyatsu.qr_access_admin.unit.component.UnitEditor;
 import ru.vyatsu.qr_access_admin.unit.entity.UnitEntity;
@ -18,6 +19,7 @@ import java.util.List;
@Route(value = "units", layout = MainLayout.class)
@PageTitle("Устройства")
@PermitAll
 public class UnitView extends VerticalLayout {
    private final UnitRepository unitRepository;
--- a/src/main/resources/application.yaml
+++ b/src/main/resources/application.yaml
@ -9,6 +9,20 @@ spring:
    password: 123
  security:
    oauth2:
-      resourceserver:
+      client:
-        jwt:
+        registration:
-          jwk-set-uri: http://localhost:8081/oauth2/jwks
+          own:
            clientId: ${CLIENT_ID:admin}
            clientSecret: ${CLIENT_SECRET:}
            authorizationGrantType: authorization_code
            clientAuthenticationMethod: none
            scope:
              - admin
              - openid
            redirectUri: "{baseUrl}/login/oauth2/code/{registrationId}"
        provider:
          own:
            issuerUri: http://127.0.0.1:8081
            jwkSetUri: http://127.0.0.1:8081/oauth2/jwks
            tokenUri: http://127.0.0.1:8081/oauth2/token
            authorizationUri: http://127.0.0.1:8081/oauth2/authorize