Spring Security OAuth2 - 是否可以更改表名和列名?

【问题标题】:Spring Security OAuth2 - Is it Possible to Change Table and Column Names?Spring Security OAuth2 - 是否可以更改表名和列名?
【发布时间】:2018-07-08 11:09:20
【问题描述】:

我正在使用 Spring Boot 和 Spring Security 构建启用 OAuth2 的应用程序。最初,我使用了here 的架构。有了这个,我至少能够让应用程序正常运行。但是,我希望数据库对象的名称稍有不同——特别是使用 PascalCase 而不是下划线。

例如,而不是

CREATE TABLE [dbo].[oauth_client_details](
    [client_id] [varchar](256) NOT NULL,
    [resource_ids] [varchar](256) NULL,
    [client_secret] [varchar](256) NULL,
    [scope] [varchar](256) NULL,
    [authorized_grant_types] [varchar](256) NULL,
    [web_server_redirect_uri] [varchar](256) NULL,
    [authorities] [varchar](256) NULL,
    [access_token_validity] [int] NULL,
    [refresh_token_validity] [int] NULL,
    [additional_information] [varchar](4096) NULL,
    [autoapprove] [varchar](256) NULL,
PRIMARY KEY CLUSTERED 
(
    [client_id] ASC
)

我想要:

CREATE TABLE [dbo].[OAuthClientDetails](
    [ClientID] [nvarchar](256) NOT NULL,
    [ResourceIDs] [nvarchar](256) NULL,
    [ClientSecret] [nvarchar](256) NOT NULL,
    [Scope] [nvarchar](256) NULL,
    [AuthorizedGrantTypes] [nvarchar](256) NOT NULL,
    [AccessTokenValidity] [int] NULL,
    [RefreshTokenValidity] [int] NULL,
 CONSTRAINT [PK_OAuthClientDetails] PRIMARY KEY CLUSTERED 
(
    [ClientID] ASC
)

我不肯定如何(或是否有可能)超越这些期望。例如,当我尝试使用 PascalCase 数据库时,它仍然期待原来的命名风格。我在请求令牌时收到以下信息:

"message": "PreparedStatementCallback; bad SQL grammar [select client_id, client_secret, resource_ids, scope, authorized_grant_types, web_server_redirect_uri, authorities, access_token_validity, refresh_token_validity, additional_information, autoapprove from oauth_client_details where client_id = ?]; nested exception is com.microsoft.sqlserver.jdbc.SQLServerException: Invalid object name 'oauth_client_details'.",
"path": "/oauth/token"

我的 AuthServerConfig:

 @EnableAuthorizationServer


 @Configuration
public class AuthServerConfig extends AuthorizationServerConfigurerAdapter{
    @Autowired
    private TokenStore tokenStore;

@Autowired
private AccessTokenConverter converter;

 private final AppConfig appConfig; 

private AuthenticationManager authenticationManager;

@Autowired
public AuthServerConfig(AuthenticationManager authenticationManager, AppConfig appConfig) {
    this.authenticationManager = authenticationManager;
    this.appConfig = appConfig;
}

@Override
public void configure(AuthorizationServerSecurityConfigurer security) throws Exception {
    security.checkTokenAccess("permitAll()");
    security.tokenKeyAccess("permitAll()");
}

@Override
public void configure(ClientDetailsServiceConfigurer configurer) throws Exception {


    configurer.jdbc(appConfig.dataSource());
}

@Override
public void configure(AuthorizationServerEndpointsConfigurer endpoints) throws Exception {
    TokenEnhancerChain enhancerChain = new TokenEnhancerChain();
    endpoints.tokenStore(tokenStore)
            .accessTokenConverter(converter)
        .authenticationManager(authenticationManager);
}



   @Bean
   @Primary //Making this primary to avoid any accidental duplication with another token service instance of the same name
   public DefaultTokenServices tokenServices() {
      DefaultTokenServices defaultTokenServices = new DefaultTokenServices();
      defaultTokenServices.setTokenStore(tokenStore);
      defaultTokenServices.setSupportRefreshToken(true);
      return defaultTokenServices;
   }

我的 AppConfig 类:

@Configuration
public class AppConfig {


    @Value("${spring.datasource.url}")
    private String datasourceUrl;

    @Value("${spring.datasource.driverClassName}")
    private String dbDriverClassName;

    @Value("${spring.datasource.username}")
    private String dbUsername;

    @Value("${spring.datasource.password}")
    private String dbPassword;

    @Bean
    public PasswordEncoder passwordEncoder() {
        return new BCryptPasswordEncoder();
    }

    @Bean
    public DataSource dataSource() {
        final DriverManagerDataSource dataSource = new DriverManagerDataSource();

        dataSource.setDriverClassName(dbDriverClassName);
        dataSource.setUrl(datasourceUrl);
        dataSource.setUsername(dbUsername);
        dataSource.setPassword(dbPassword);

        return dataSource;
    }    

    // Reference: http://www.baeldung.com/spring-security-oauth-jwt

    /* !!!!!!!!!!!!!!!!!!!!!!!!!! 
    ** TODO 
    * Secure key file for deployment.
    !!!!!!!!!!!!!!!!!!!! */
       @Bean
       public JwtAccessTokenConverter accessTokenConverter() {
          JwtAccessTokenConverter converter = new JwtAccessTokenConverter();
          KeyStoreKeyFactory keyStoreKeyFactory = 
                  new KeyStoreKeyFactory(new ClassPathResource("mytest.jks"), "mypass".toCharArray());
                converter.setKeyPair(keyStoreKeyFactory.getKeyPair("mytest"));
          return converter;
       }


       @Bean
       public TokenStore tokenStore() {
          return new JwtTokenStore(accessTokenConverter());
       }

根据Spring Security OAuth Documentation

NOTE: the schema for the JDBC service is not packaged with the library (because there are too many variations you might like to use in practice), but there is an example you can start from in the test code in github.

但是,它似乎确实对结构做出了一些假设。例如,我从未明确“告诉”应用程序使用名为 o_auth_client_details 的表。

任何指导将不胜感激。谢谢。

【问题讨论】:

    标签: java spring spring-security oauth


    【解决方案1】:

    你可以自定义JdbcClientDetailsService,见

    并将其添加到您的配置器中,请参阅ClientDetailsServiceConfigurer#withClientDetails:

    withClientDetails

    public ClientDetailsServiceBuilder<?> withClientDetails(ClientDetailsService clientDetailsService) throws Exception

    您修改后的代码:

    @Override
public void configure(ClientDetailsServiceConfigurer configurer) throws Exception {

     JdbcClientDetailsService clientDetailsService= new JdbcClientDetailsService(appConfig.dataSource()); 
     clientDetailsService.setDeleteClientDetailsSql(myDeleteClientDetailsSql);
     clientDetailsService.setFindClientDetailsSql(myFindClientDetailsSql); 
     clientDetailsService.setInsertClientDetailsSql(myInsertClientDetailsSql); 
     clientDetailsService.setInsertClientDetailsSql(myInsertClientDetailsSql); 
     clientDetailsService.setSelectClientDetailsSql(mySelectClientDetailsSql); 
     clientDetailsService.setUpdateClientDetailsSql(myUpdateClientDetailsSql); 
     clientDetailsService.setUpdateClientSecretSql(myUpdateClientSecretSql); 

     configurer.withClientDetails(clientDetailsService);
}

    【讨论】:

      【解决方案2】:

      就是这么简单。 请按以下步骤操作:

      1. 从 oauth2 jar 文件或 spring-security.xml 配置文件中此类的用户中找到 JdbcClientDetailsS​​erviceJdbcTokenStore
      <bean id="tokenStore" class="org.springframework.security.oauth2.provider.token.store.JdbcTokenStor*">
     <constructor-arg ref="dataSource" />
</bean>
      1. 复制每个类并在您的程序中创建一个新的。然后将表和列的名称更改为您的适当名称(我更改表和列名称)。
      public class CustomeJdbcTokenStore implements TokenStore { 
    private String insertAccessTokenSql = "insert oauthAccessToken
        (tokenId, token, authenticationId, username, clientId, authentication, refreshToken) 
        values (?, ?, ?, ?, ?, ?, ?)";

    private String selectAccessTokenSql = "select tokenId, token from 
         oauthAccessToken where tokenId = ?";

    private String selectAccessTokenAuthenticationSql = "select tokenId, authentication from 
         oauthAccessToken where tokenId = ?";
      1. 将新类添加到 spring-security.xml 文件中。
      <bean id="tokenStore" class="ir.hossein.irtms.service.CustomJdbcTokenStore**">
     <constructor-arg ref="dataSource" />
</bean>

      【讨论】:

        猜你喜欢
        • 2020-07-20
        • 1970-01-01
        • 2016-08-12
        • 2018-12-08
        • 2016-08-28
        • 1970-01-01
        • 1970-01-01
        • 2016-07-31
        • 1970-01-01
        相关资源
        最近更新 更多
        热门标签
        Java Python linux javascript Mysql C# Docker 算法 前端 SpringBoot Redis Vue spring 设计模式 .net core .net kubernetes c++ 数据库 数据结构 大数据 js 机器学习 微服务 Android Go 程序员 面试 JVM ASP.net core 云原生 人工智能 后端 PHP git CSS golang k8s Nginx Django mybatis 深度学习 多线程 React 架构 devops 爬虫 云计算 Spring Boot LeetCode