verifoo/backend
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

🚧 redirect uri

Browse Source
This commit is contained in:
Andreas Dinauer 2026-03-15 11:31:02 +01:00
parent 99cdd0fe5d
commit 279b478014
2 changed files with 19 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

20
src/main/java/de/tavolio/oidc/OidcResource.java
View File

@ -5,6 +5,10 @@ import de.tavolio.oidc.auth.model.AuthorizationCreation;
import de.tavolio.oidc.token.ClientTokenService; import de.tavolio.oidc.token.ClientTokenService;
import de.tavolio.oidc.token.model.TokenResponse; import de.tavolio.oidc.token.model.TokenResponse;
import de.tavolio.oidc.token.UserTokenService; import de.tavolio.oidc.token.UserTokenService;
import de.tavolio.realm.RealmEntity;
import de.tavolio.realm.RealmService;
import de.tavolio.realm.client.ClientEntity;
import de.tavolio.realm.client.ClientService;
import jakarta.annotation.security.RolesAllowed; import jakarta.annotation.security.RolesAllowed;
import jakarta.enterprise.context.RequestScoped; import jakarta.enterprise.context.RequestScoped;
import jakarta.inject.Inject; import jakarta.inject.Inject;
@ -35,6 +39,12 @@ public class OidcResource
@Inject @Inject
ClientTokenService clientTokenService; ClientTokenService clientTokenService;
@Inject
ClientService clientService;
@Inject
RealmService realmService;
@GET @GET
@Path("/certs") @Path("/certs")
public Map<String, Object> certs() public Map<String, Object> certs()
@ -46,8 +56,14 @@ public class OidcResource
@Path("/auth") @Path("/auth")
public Response auth(@QueryParam("client_id") String clientId, @FormParam("email") String email, @FormParam("password") String password) public Response auth(@QueryParam("client_id") String clientId, @FormParam("email") String email, @FormParam("password") String password)
{ {
String code = authorizationService.generateBySessionCreation(realmKey, clientId, new AuthorizationCreation(email, password)); RealmEntity realm = realmService.requireByKey(realmKey);
return Response.status(302).location(URI.create("http://localhost:8080/callback?code=" + code + "&state=d")).build(); ClientEntity client = clientService.findByIdAndRealm(clientId, realm);
if (client != null)
{
String code = authorizationService.generateBySessionCreation(realmKey, clientId, new AuthorizationCreation(email, password));
return Response.status(302).location(URI.create(client.getRedirectURI() + "?code=" + code + "&state=d")).build();
}
throw new BadRequestException();
} }
@POST @POST

2
src/main/resources/application.properties
View File

@ -27,7 +27,7 @@ quarkus.flyway.migrate-at-start=true
quarkus.http.access-log.enabled=true quarkus.http.access-log.enabled=true
quarkus.http.auth.basic=true quarkus.http.auth.basic=true
io.verifoo.http.origin=http://localhost:8089 %dev.io.verifoo.http.origin=http://localhost:8089
%dev.io.verifoo.bootstrap.config.location=/home/andreas/Documents/dev/iam-backend/src/main/resources/bootstrap.yaml %dev.io.verifoo.bootstrap.config.location=/home/andreas/Documents/dev/iam-backend/src/main/resources/bootstrap.yaml
%dev.io.verifoo.superuser.username=admin %dev.io.verifoo.superuser.username=admin