项目作者: dineschandgr
项目描述 :
oauth2 authorization code flow using Facebook as Authorization and Resource server
高级语言: Java
项目地址: git://github.com/dineschandgr/spring-security-OAuth2-Facebook.git
spring-security-OAuth2-Facebook
oauth2 authorization code flow using Facebook as Authorization and Resource server
- Create an App using Facebook for developers
- Obtain the Client ID and Client Secret provided by facebook
- Download pom.xml to download all required dependenices (only annotation required is @EnableOAuth2Sso)
- Make a request to http://localhost:8080
- The application will redirect the user to the
userAuthorizationUri: https://www.facebook.com/dialog/oauth - Once facebook verifies the client from the client Id and client secret, it redirects the user to facebook login form
- Once user enters user id and password, facebook will authenticate the user and provides the authorization code to the client
- The Client now will provide the authorization code to the url
accessTokenUri: https://graph.facebook.com/oauth/access_token to obtain the access token - Now the client uses the access token to the facebook resource server to request the user data from facebook
- Here facebook is both the Authorization and Resource server. In some cases, both the servers can be separate entities
Similarly, the client app can be created in many platforms like Github, Google, Okta etc and the respective client id and client secret along
with respective urls should be used in the property file
You can also get the access token from postman app. use postman console or the chrome developer tools Network tab to check the request and response header/body
