Implementation v1 of oauth2 - gateway based on spring-oauth2

Author: tbolis

.gitignore

@@ -1,11 +1,32 @@
-# Compiled class file
-*.class
+### Linux template
+*~
+
+# KDE directory preferences
+.directory
+
+# Linux trash folder which might appear on any partition or disk
+.Trash-*
+### Windows template
+# Windows image file caches
+Thumbs.db
+ehthumbs.db
+
+# Folder config file
+Desktop.ini
 
-# Log file
-*.log
+# Recycle Bin used on file shares
+$RECYCLE.BIN/
 
-# BlueJ files
-*.ctxt
+# Windows Installer files
+*.cab
+*.msi
+*.msm
+*.msp
+
+# Windows shortcuts
+*.lnk
+### Java template
+*.class
 
 # Mobile Tools for Java (J2ME)
 .mtj.tmp/
@@ -14,9 +35,82 @@
 *.jar
 *.war
 *.ear
-*.zip
-*.tar.gz
-*.rar
 
 # virtual machine crash logs, see http://www.java.com/en/download/help/error_hotspot.xml
 hs_err_pid*
+### OSX template
+.DS_Store
+.AppleDouble
+.LSOverride
+
+# Icon must end with two \r
+Icon
+
+# Thumbnails
+._*
+
+# Files that might appear in the root of a volume
+.DocumentRevisions-V100
+.fseventsd
+.Spotlight-V100
+.TemporaryItems
+.Trashes
+.VolumeIcon.icns
+
+# Directories potentially created on remote AFP share
+.AppleDB
+.AppleDesktop
+Network Trash Folder
+Temporary Items
+.apdisk
+### JetBrains template
+# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio
+
+*.iml
+
+## Directory-based project format:
+.idea/
+# if you remove the above rule, at least ignore the following:
+
+# User-specific stuff:
+# .idea/workspace.xml
+# .idea/tasks.xml
+# .idea/dictionaries
+
+# Sensitive or high-churn files:
+# .idea/dataSources.ids
+# .idea/dataSources.xml
+# .idea/sqlDataSources.xml
+# .idea/dynamic.xml
+# .idea/uiDesigner.xml
+
+# Gradle:
+# .idea/gradle.xml
+# .idea/libraries
+
+# Mongo Explorer plugin:
+# .idea/mongoSettings.xml
+
+## File-based project format:
+*.ipr
+*.iws
+
+## Plugin-specific files:
+
+# IntelliJ
+/out/
+
+# mpeltonen/sbt-idea plugin
+.idea_modules/
+
+# JIRA plugin
+atlassian-ide-plugin.xml
+
+# Crashlytics plugin (for Android Studio and IntelliJ)
+com_crashlytics_export_strings.xml
+crashlytics.properties
+crashlytics-build.properties
+
+
+target/
+

LICENSE

@@ -175,18 +175,7 @@
 
    END OF TERMS AND CONDITIONS
 
-   APPENDIX: How to apply the Apache License to your work.
-
-      To apply the Apache License to your work, attach the following
-      boilerplate notice, with the fields enclosed by brackets "[]"
-      replaced with your own identifying information. (Don't include
-      the brackets!)  The text should be enclosed in the appropriate
-      comment syntax for the file format. We also recommend that a
-      file or class name and description of purpose be included on the
-      same "printed page" as the copyright notice for easier
-      identification within third-party archives.
-
-   Copyright [yyyy] [name of copyright owner]
+   Copyright 2017 Thomas Bolis
 
    Licensed under the Apache License, Version 2.0 (the "License");
    you may not use this file except in compliance with the License.

common-lib/pom.xml

@@ -0,0 +1,28 @@
+<project xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://maven.apache.org/POM/4.0.0"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <parent>
+        <artifactId>oauth2-gateway</artifactId>
+        <groupId>io.spring.oauth2</groupId>
+        <version>1.0.0-SNAPSHOT</version>
+    </parent>
+    <modelVersion>4.0.0</modelVersion>
+
+    <artifactId>common-lib</artifactId>
+    <packaging>jar</packaging>
+
+    <name>Common Lib</name>
+    <url>http://maven.apache.org</url>
+
+    <properties>
+        <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
+    </properties>
+
+    <dependencies>
+        <dependency>
+            <groupId>junit</groupId>
+            <artifactId>junit</artifactId>
+            <version>3.8.1</version>
+            <scope>test</scope>
+        </dependency>
+    </dependencies>
+</project>

common-lib/src/main/java/io/spring/oauth2/common/config/AuthorizedGrantTypes.java

@@ -0,0 +1,81 @@
+package io.spring.oauth2.common.config;
+
+/**
+ * OAuth 2 defines four grant types, each of which is useful in different cases
+ * <ul>
+ * <li>Authorization: Code for apps running on a web server</li>
+ * <li>Implicit: for browser-based or mobile apps</li>
+ * <li>Password: for logging in with a username and password</li>
+ * <li>Client credentials: for application access</li>
+ * </ul>
+ */
+public class AuthorizedGrantTypes {
+
+    /**
+     * Web server apps are the most common type of application you encounter when dealing with OAuth servers. Web apps
+     * are written in a server-side language and run on a server where the source code of the application is not
+     * available to the public.
+     * <p>
+     * Create a "Log In" link sending the user to:<br/>
+     * https://oauth2server.com/auth?response_type=code&client_id=CLIENT_ID&redirect_uri=REDIRECT_URI&scope=photos
+     * <p>
+     * The service redirects the user back to your site with an auth code:<br/>
+     * https://oauth2client.com/cb?code=AUTH_CODE_HERE
+     * <p>
+     * Your server exchanges the auth code for an access token<br/>
+     * POST https://api.oauth2server.com/token<br/>
+     * grant_type=authorization_code&<br/>
+     * code=AUTH_CODE_HERE&<br/>
+     * redirect_uri=REDIRECT_URI&<br/>
+     * client_id=CLIENT_ID&<br/>
+     * client_secret=CLIENT_SECRET<br/>
+     * <p>
+     * The server replies with an access token
+     * <p>
+     * {"access_token":"RsT5OjbzRn430zqMLgV3Ia"}<br/>
+     * or if there was an error<br/>
+     * {"error":"invalid_request" }
+     * <p>
+     * Security: Note that the service must require apps to pre-register their redirect URIs.
+     */
+    public static final String AUTHORIZATION_CODE = "authorization_code";
+
+    /**
+     * Refresh Token grant type, will generate a refresh_token to be able to refresh the validity of your token by
+     * providing a new token
+     * <p>
+     * call goes as follows :
+     * <p>
+     * POST https://oauthServer/oauth/token Authorization:"Basic ZXNzYmFja2VuZDpteVNlY3JldE9BdXRoU2VjcmV0" Content-Type:"application/x-www-form-urlencoded" Accept:"application/json"
+     * <p>
+     * refresh_token=a0c8ecb7-198f-4a55-bdbb-f18f376c55bc&<br/>
+     * grant_type=refresh_token&<br/>
+     * scope=read%20write&<br/>
+     * client_secret=mySecretOAuthSecret&<br/>
+     * client_id=essbackend& <br/>
+     */
+    public static final String REFRESH_TOKEN = "refresh_token";
+
+    /**
+     * Obtain an access token via a username, password login
+     * <p>
+     * POST localhost:8080/oauth/token Content-Type:"application/x-www-form-urlencoded" Accept:"application/json" Authorization:"Basic ZXNzYmFja2VuZDpteVNlY3JldE9BdXRoU2VjcmV0"<br/>
+     * username=admin&<br/>
+     * password=admin&<br/>
+     * grant_type=password&<br/>
+     * scope=read%20write&<br/>
+     * client_secret=mySecretOAuthSecret&<br/>
+     * client_id=essbackend&<br/>
+     */
+    public static final String PASSWORD = "password";
+
+    /**
+     * Implicit: used with Mobile Apps or Web Applications (applications that run on the user's device)
+     */
+    public static final String IMPLICIT = "implicit";
+
+    public static final String CLIENT_CREDENTIALS = "client-credentials";
+
+    private AuthorizedGrantTypes() {
+    }
+}

common-lib/src/main/java/io/spring/oauth2/common/config/Constants.java

@@ -0,0 +1,14 @@
+package io.spring.oauth2.common.config;
+
+/**
+ * Application constants.
+ */
+public final class Constants {
+
+    public static final String SYSTEM_ACCOUNT = "system";
+    public static final String RESOURCE_ID = "OAuth2Server";
+
+    private Constants() {
+        /* Prevent instantiation */
+    }
+}

domain-model/pom.xml

@@ -0,0 +1,107 @@
+<project xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://maven.apache.org/POM/4.0.0"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <parent>
+        <artifactId>oauth2-gateway</artifactId>
+        <groupId>io.spring.oauth2</groupId>
+        <version>1.0.0-SNAPSHOT</version>
+    </parent>
+    <modelVersion>4.0.0</modelVersion>
+    <artifactId>domain-model</artifactId>
+    <packaging>jar</packaging>
+    <name>Domain Model</name>
+    <url>http://maven.apache.org</url>
+    <dependencies>
+        <!--
+            Spring Boot makes it easy to create Spring-powered, production-grade applications and services with
+            absolute minimum fuss. It takes an opinionated view of the Spring platform so that new and existing
+            users can quickly get to the bits they need.
+        -->
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter</artifactId>
+        </dependency>
+        <!--
+            Support for the “Java Persistence API” including spring-data-jpa,
+            spring-orm and Hibernate
+        -->
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-data-jpa</artifactId>
+        </dependency>
+        <!--
+            Hibernate specific
+        -->
+        <dependency>
+            <groupId>org.hibernate</groupId>
+            <artifactId>hibernate-envers</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.hibernate</groupId>
+            <artifactId>hibernate-validator</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.flywaydb</groupId>
+            <artifactId>flyway-core</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.postgresql</groupId>
+            <artifactId>postgresql</artifactId>
+            <version>${postgresql.version}</version>
+        </dependency>
+        <dependency>
+            <groupId>com.zaxxer</groupId>
+            <artifactId>HikariCP</artifactId>
+            <exclusions>
+                <exclusion>
+                    <artifactId>tools</artifactId>
+                    <groupId>com.sun</groupId>
+                </exclusion>
+            </exclusions>
+        </dependency>
+        <!--
+           Jackson
+       -->
+        <dependency>
+            <groupId>com.fasterxml.jackson.datatype</groupId>
+            <artifactId>jackson-datatype-hibernate4</artifactId>
+            <version>${jackson.version}</version>
+        </dependency>
+        <dependency>
+            <groupId>com.fasterxml.jackson.datatype</groupId>
+            <artifactId>jackson-datatype-hppc</artifactId>
+            <version>${jackson.version}</version>
+        </dependency>
+        <dependency>
+            <groupId>com.fasterxml.jackson.datatype</groupId>
+            <artifactId>jackson-datatype-jsr310</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>com.fasterxml.jackson.datatype</groupId>
+            <artifactId>jackson-datatype-json-org</artifactId>
+            <version>${jackson.version}</version>
+        </dependency>
+
+        <!--
+            The javax.inject API
+        -->
+        <dependency>
+            <groupId>javax.inject</groupId>
+            <artifactId>javax.inject</artifactId>
+            <version>${javax.inject.version}</version>
+        </dependency>
+        <!--
+           Production ready features to help you monitor and manage your application
+       -->
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-actuator</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.security</groupId>
+            <artifactId>spring-security-web</artifactId>
+        </dependency>
+    </dependencies>
+    <build>
+        <finalName>${project.artifactId}</finalName>
+    </build>
+</project>