Spring boot OAuth 2 security get access token from Refresh token(if expired)












0















I have implemented Spring boot Oauth 2 security it works fine but when I try to get access token (if expired) from refresh token it gives me an error



{

    "error": "unauthorized",

    "error_description": "admin"

}


Console Log



Handling error: UsernameNotFoundException, admin


Following is my code



1.WebSecurityConfigure



@Configuration

@EnableWebSecurity

public class EmployeeSecurityConfiguration extends WebSecurityConfigurerAdapter {



    @Override

    public void configure(WebSecurity web) throws Exception {

        web.ignoring().antMatchers("/resources/**");

    }

    @Override

    protected void configure(HttpSecurity http) throws Exception {

        http.authorizeRequests().antMatchers("/").permitAll().antMatchers("/user/getEmployeesList")

            .hasAnyRole("USER").anyRequest().authenticated().and().formLogin()

            .permitAll().and().logout().permitAll();

        http.csrf().disable();

    }



    @Override

    public void configure(AuthenticationManagerBuilder authenticationMgr) throws Exception {

        authenticationMgr.inMemoryAuthentication().withUser("admin").password("admin")

            .authorities("ROLE_USER");

    ;

    }

}


2.AuthorizationServerConfigure



@Configuration

@EnableAuthorizationServer

public class AuthorizationServerConfig extends AuthorizationServerConfigurerAdapter {



    @Autowired

    private AuthenticationManager authenticationManager;





     @Override

        public void configure(AuthorizationServerSecurityConfigurer security) throws Exception {

            security

                    .tokenKeyAccess("permitAll()")

                    .checkTokenAccess("isAuthenticated()")

                    .allowFormAuthenticationForClients();

        }



    @Override

    public void configure(ClientDetailsServiceConfigurer clients) throws Exception {

        clients.inMemory().withClient("MagicUser").authorizedGrantTypes("authorization_code", "refresh_token","password")

                .authorities("CLIENT").scopes("openid", "read", "write", "trust").resourceIds("oauth2-resource")

                .redirectUris("http://10.9.6.31:8090/showEmployees").accessTokenValiditySeconds(5000).secret("secret")

                .refreshTokenValiditySeconds(50000);



    }

    @Override

    public void configure(AuthorizationServerEndpointsConfigurer endpoints) throws Exception {

        endpoints.authenticationManager(authenticationManager)

                .allowedTokenEndpointRequestMethods(HttpMethod.GET, HttpMethod.POST);

        ;

    }

}


Please help me to figure out this issue



Access token request (if expired)



    http://10.9.6.31:8091/oauth/token

    Body parameter

   grant_type=refresh_token

  refresh_token=78d2ab82-46a2-4b70-a9e8-e3f9e5ddfec6





spring spring-boot oauth-2.0







share|improve this question



























    0















    I have implemented Spring boot Oauth 2 security it works fine but when I try to get access token (if expired) from refresh token it gives me an error



    {
    
    "error": "unauthorized",
    
    "error_description": "admin"
    
}


    Console Log



    Handling error: UsernameNotFoundException, admin


    Following is my code



    1.WebSecurityConfigure



    @Configuration
    
@EnableWebSecurity
    
public class EmployeeSecurityConfiguration extends WebSecurityConfigurerAdapter {
    

    
    @Override
    
    public void configure(WebSecurity web) throws Exception {
    
        web.ignoring().antMatchers("/resources/**");
    
    }
    
    @Override
    
    protected void configure(HttpSecurity http) throws Exception {
    
        http.authorizeRequests().antMatchers("/").permitAll().antMatchers("/user/getEmployeesList")
    
            .hasAnyRole("USER").anyRequest().authenticated().and().formLogin()
    
            .permitAll().and().logout().permitAll();
    
        http.csrf().disable();
    
    }
    

    
    @Override
    
    public void configure(AuthenticationManagerBuilder authenticationMgr) throws Exception {
    
        authenticationMgr.inMemoryAuthentication().withUser("admin").password("admin")
    
            .authorities("ROLE_USER");
    
    ;
    
    }
    
}


    2.AuthorizationServerConfigure



    @Configuration
    
@EnableAuthorizationServer
    
public class AuthorizationServerConfig extends AuthorizationServerConfigurerAdapter {
    

    
    @Autowired
    
    private AuthenticationManager authenticationManager;
    

    

    
     @Override
    
        public void configure(AuthorizationServerSecurityConfigurer security) throws Exception {
    
            security
    
                    .tokenKeyAccess("permitAll()")
    
                    .checkTokenAccess("isAuthenticated()")
    
                    .allowFormAuthenticationForClients();
    
        }
    

    
    @Override
    
    public void configure(ClientDetailsServiceConfigurer clients) throws Exception {
    
        clients.inMemory().withClient("MagicUser").authorizedGrantTypes("authorization_code", "refresh_token","password")
    
                .authorities("CLIENT").scopes("openid", "read", "write", "trust").resourceIds("oauth2-resource")
    
                .redirectUris("http://10.9.6.31:8090/showEmployees").accessTokenValiditySeconds(5000).secret("secret")
    
                .refreshTokenValiditySeconds(50000);
    

    
    }
    
    @Override
    
    public void configure(AuthorizationServerEndpointsConfigurer endpoints) throws Exception {
    
        endpoints.authenticationManager(authenticationManager)
    
                .allowedTokenEndpointRequestMethods(HttpMethod.GET, HttpMethod.POST);
    
        ;
    
    }
    
}


    Please help me to figure out this issue



    Access token request (if expired)



        http://10.9.6.31:8091/oauth/token
    
    Body parameter
    
   grant_type=refresh_token
    
  refresh_token=78d2ab82-46a2-4b70-a9e8-e3f9e5ddfec6





    spring spring-boot oauth-2.0







    share|improve this question

























      0












      0








      0








      I have implemented Spring boot Oauth 2 security it works fine but when I try to get access token (if expired) from refresh token it gives me an error



      {
      
    "error": "unauthorized",
      
    "error_description": "admin"
      
}


      Console Log



      Handling error: UsernameNotFoundException, admin


      Following is my code



      1.WebSecurityConfigure



      @Configuration
      
@EnableWebSecurity
      
public class EmployeeSecurityConfiguration extends WebSecurityConfigurerAdapter {
      

      
    @Override
      
    public void configure(WebSecurity web) throws Exception {
      
        web.ignoring().antMatchers("/resources/**");
      
    }
      
    @Override
      
    protected void configure(HttpSecurity http) throws Exception {
      
        http.authorizeRequests().antMatchers("/").permitAll().antMatchers("/user/getEmployeesList")
      
            .hasAnyRole("USER").anyRequest().authenticated().and().formLogin()
      
            .permitAll().and().logout().permitAll();
      
        http.csrf().disable();
      
    }
      

      
    @Override
      
    public void configure(AuthenticationManagerBuilder authenticationMgr) throws Exception {
      
        authenticationMgr.inMemoryAuthentication().withUser("admin").password("admin")
      
            .authorities("ROLE_USER");
      
    ;
      
    }
      
}


      2.AuthorizationServerConfigure



      @Configuration
      
@EnableAuthorizationServer
      
public class AuthorizationServerConfig extends AuthorizationServerConfigurerAdapter {
      

      
    @Autowired
      
    private AuthenticationManager authenticationManager;
      

      

      
     @Override
      
        public void configure(AuthorizationServerSecurityConfigurer security) throws Exception {
      
            security
      
                    .tokenKeyAccess("permitAll()")
      
                    .checkTokenAccess("isAuthenticated()")
      
                    .allowFormAuthenticationForClients();
      
        }
      

      
    @Override
      
    public void configure(ClientDetailsServiceConfigurer clients) throws Exception {
      
        clients.inMemory().withClient("MagicUser").authorizedGrantTypes("authorization_code", "refresh_token","password")
      
                .authorities("CLIENT").scopes("openid", "read", "write", "trust").resourceIds("oauth2-resource")
      
                .redirectUris("http://10.9.6.31:8090/showEmployees").accessTokenValiditySeconds(5000).secret("secret")
      
                .refreshTokenValiditySeconds(50000);
      

      
    }
      
    @Override
      
    public void configure(AuthorizationServerEndpointsConfigurer endpoints) throws Exception {
      
        endpoints.authenticationManager(authenticationManager)
      
                .allowedTokenEndpointRequestMethods(HttpMethod.GET, HttpMethod.POST);
      
        ;
      
    }
      
}


      Please help me to figure out this issue



      Access token request (if expired)



          http://10.9.6.31:8091/oauth/token
      
    Body parameter
      
   grant_type=refresh_token
      
  refresh_token=78d2ab82-46a2-4b70-a9e8-e3f9e5ddfec6





      spring spring-boot oauth-2.0







      share|improve this question














      I have implemented Spring boot Oauth 2 security it works fine but when I try to get access token (if expired) from refresh token it gives me an error



      {
      
    "error": "unauthorized",
      
    "error_description": "admin"
      
}


      Console Log



      Handling error: UsernameNotFoundException, admin


      Following is my code



      1.WebSecurityConfigure



      @Configuration
      
@EnableWebSecurity
      
public class EmployeeSecurityConfiguration extends WebSecurityConfigurerAdapter {
      

      
    @Override
      
    public void configure(WebSecurity web) throws Exception {
      
        web.ignoring().antMatchers("/resources/**");
      
    }
      
    @Override
      
    protected void configure(HttpSecurity http) throws Exception {
      
        http.authorizeRequests().antMatchers("/").permitAll().antMatchers("/user/getEmployeesList")
      
            .hasAnyRole("USER").anyRequest().authenticated().and().formLogin()
      
            .permitAll().and().logout().permitAll();
      
        http.csrf().disable();
      
    }
      

      
    @Override
      
    public void configure(AuthenticationManagerBuilder authenticationMgr) throws Exception {
      
        authenticationMgr.inMemoryAuthentication().withUser("admin").password("admin")
      
            .authorities("ROLE_USER");
      
    ;
      
    }
      
}


      2.AuthorizationServerConfigure



      @Configuration
      
@EnableAuthorizationServer
      
public class AuthorizationServerConfig extends AuthorizationServerConfigurerAdapter {
      

      
    @Autowired
      
    private AuthenticationManager authenticationManager;
      

      

      
     @Override
      
        public void configure(AuthorizationServerSecurityConfigurer security) throws Exception {
      
            security
      
                    .tokenKeyAccess("permitAll()")
      
                    .checkTokenAccess("isAuthenticated()")
      
                    .allowFormAuthenticationForClients();
      
        }
      

      
    @Override
      
    public void configure(ClientDetailsServiceConfigurer clients) throws Exception {
      
        clients.inMemory().withClient("MagicUser").authorizedGrantTypes("authorization_code", "refresh_token","password")
      
                .authorities("CLIENT").scopes("openid", "read", "write", "trust").resourceIds("oauth2-resource")
      
                .redirectUris("http://10.9.6.31:8090/showEmployees").accessTokenValiditySeconds(5000).secret("secret")
      
                .refreshTokenValiditySeconds(50000);
      

      
    }
      
    @Override
      
    public void configure(AuthorizationServerEndpointsConfigurer endpoints) throws Exception {
      
        endpoints.authenticationManager(authenticationManager)
      
                .allowedTokenEndpointRequestMethods(HttpMethod.GET, HttpMethod.POST);
      
        ;
      
    }
      
}


      Please help me to figure out this issue



      Access token request (if expired)



          http://10.9.6.31:8091/oauth/token
      
    Body parameter
      
   grant_type=refresh_token
      
  refresh_token=78d2ab82-46a2-4b70-a9e8-e3f9e5ddfec6





      spring spring-boot oauth-2.0




      spring spring-boot oauth-2.0






      share|improve this question













      share|improve this question











      share|improve this question




      share|improve this question










      asked Nov 20 '18 at 6:17









      Ganesh GudgheGanesh Gudghe

      598524




      598524
























          1 Answer
          1






          active

          oldest

          votes


















          0














          You might have to send an authorization header in the request to authenticate the client.
          Check OAuth client authentication and Refreshing an access token specifications in OAuth 2.0 specification.






          share|improve this answer























            Your Answer






            StackExchange.ifUsing("editor", function () {
            StackExchange.using("externalEditor", function () {
            StackExchange.using("snippets", function () {
            StackExchange.snippets.init();
            });
            });
            }, "code-snippets");

            StackExchange.ready(function() {
            var channelOptions = {
            tags: "".split(" "),
            id: "1"
            };
            initTagRenderer("".split(" "), "".split(" "), channelOptions);

            StackExchange.using("externalEditor", function() {
            // Have to fire editor after snippets, if snippets enabled
            if (StackExchange.settings.snippets.snippetsEnabled) {
            StackExchange.using("snippets", function() {
            createEditor();
            });
            }
            else {
            createEditor();
            }
            });

            function createEditor() {
            StackExchange.prepareEditor({
            heartbeatType: 'answer',
            autoActivateHeartbeat: false,
            convertImagesToLinks: true,
            noModals: true,
            showLowRepImageUploadWarning: true,
            reputationToPostImages: 10,
            bindNavPrevention: true,
            postfix: "",
            imageUploader: {
            brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
            contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
            allowUrls: true
            },
            onDemand: true,
            discardSelector: ".discard-answer"
            ,immediatelyShowMarkdownHelp:true
            });


            }
            });














            draft saved

            draft discarded


















            StackExchange.ready(
            function () {
            StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53387279%2fspring-boot-oauth-2-security-get-access-token-from-refresh-tokenif-expired%23new-answer', 'question_page');
            }
            );

            Post as a guest















            Required, but never shown

























            1 Answer
            1






            active

            oldest

            votes








            1 Answer
            1






            active

            oldest

            votes









            active

            oldest

            votes






            active

            oldest

            votes









            0














            You might have to send an authorization header in the request to authenticate the client.
            Check OAuth client authentication and Refreshing an access token specifications in OAuth 2.0 specification.






            share|improve this answer




























              0














              You might have to send an authorization header in the request to authenticate the client.
              Check OAuth client authentication and Refreshing an access token specifications in OAuth 2.0 specification.






              share|improve this answer


























                0












                0








                0







                You might have to send an authorization header in the request to authenticate the client.
                Check OAuth client authentication and Refreshing an access token specifications in OAuth 2.0 specification.






                share|improve this answer













                You might have to send an authorization header in the request to authenticate the client.
                Check OAuth client authentication and Refreshing an access token specifications in OAuth 2.0 specification.







                share|improve this answer












                share|improve this answer



                share|improve this answer










                answered Nov 20 '18 at 8:18









                RakihthaRRRakihthaRR

                187111




                187111
































                    draft saved

                    draft discarded




















































                    Thanks for contributing an answer to Stack Overflow!


                    • Please be sure to answer the question. Provide details and share your research!

                    But avoid



                    • Asking for help, clarification, or responding to other answers.

                    • Making statements based on opinion; back them up with references or personal experience.


                    To learn more, see our tips on writing great answers.




                    draft saved


                    draft discarded














                    StackExchange.ready(
                    function () {
                    StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53387279%2fspring-boot-oauth-2-security-get-access-token-from-refresh-tokenif-expired%23new-answer', 'question_page');
                    }
                    );

                    Post as a guest















                    Required, but never shown





















































                    Required, but never shown














                    Required, but never shown












                    Required, but never shown







                    Required, but never shown

































                    Required, but never shown














                    Required, but never shown












                    Required, but never shown







                    Required, but never shown







                    -

                    Popular posts from this blog

                    How to pass form data using jquery Ajax to insert data in database?

                    Image
                    .everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty{ height:90px;width:728px;box-sizing:border-box; } 1 I have 4 tables namely stud, country_master_academic,master_state and master_city. The main problem is that my form consists of many different fields like textbox, radio buttons, dropdown and an image file, so i am getting really confused. I can't insert data in database. Please help me. I tried many times but its not working. Thanks for the help in advance. Modal in home.php page <div class="container"> <div class="modal fade" id="add_data_modal" role="dialog"> <div class="modal-dialog"> <div class="modal-content"> ...
                    Read more

                    National Museum of Racing and Hall of Fame

                    Image
                    Coordinates: 43°04′35″N 73°46′24″W  /  43.0763°N 73.7734°W  / 43.0763; -73.7734 Professional sports hall of fame in Saratoga Springs, New York National Museum of Racing and Hall of Fame National Museum of Racing and Hall of Fame Established 1951 Location Saratoga Springs, New York Type Professional sports hall of fame Director Cathy Marino Curator Victoria Tokarowski Website racingmuseum.org The National Museum of Racing and Hall of Fame was founded in 1951 in Saratoga Springs, New York, to honor the achievements of American Thoroughbred race horses, jockeys, and trainers. In 1955, the museum moved to its current location on Union Avenue near Saratoga race course, at which time inductions into the hall of fame began. Each spring, following the tabulation of the final votes, the announcement of new inductees is made, usually during Kentucky Derby Week in early May. The actual inductions are held in mid-August during the Saratoga race meeting...
                    Read more

                    Guess what letter conforming each word

                    Image
                    6 $begingroup$ This is an entry in the Fortnightly Topic Challenge #41: Short and Sweet. 1 letter only could be mean anything . With an additional letter in front , could be used as medicine component and something you definitely learn or at least heard once. Add another letter in front , you would possibly hear that many times . Add an additional letter in front , you would found an independent country . With an additional letter, in the end , you would found something related to apple . Add another letter in the end , you would found something bad . Hint: Each letter is unique . word knowledge letters chemistry share | improve this question ...
                    Read more