Use spring to test oauth2 in messaging protocols

MarcialRosales · MarcialRosales · commit ec7a07832ce9 · 2025-06-16T15:47:20.000+02:00
diff --git a/selenium/bin/components/spring b/selenium/bin/components/spring
@@ -11,7 +11,7 @@ ensure_spring() {
 }
 init_spring() {
   SPRING_CONFIG_DIR=${TEST_CONFIG_PATH}/spring
-  SPRING_URL=${SPRING_URL:-OAUTH_PROVIDER_URL}
+  SPRING_URL=${SPRING_URL:-$OAUTH_PROVIDER_URL}
 
   print "> SPRING_CONFIG_DIR: ${SPRING_CONFIG_DIR}"
   print "> SPRING_URL: ${SPRING_URL}"
diff --git a/selenium/test/authnz-msg-protocols/env.auth-oauth-spring b/selenium/test/authnz-msg-protocols/env.auth-oauth-spring
@@ -1,2 +1,4 @@
+export SPRING_URL=https://spring:8443/
 export OAUTH_PROVIDER_URL=https://spring:8443/
-export OAUTH_NODE_EXTRA_CA_CERTS=spring/ca_spring_certificate.pem
+export SPRING_CA_CERT=/config/ca_spring_certificate.pem
+export OAUTH_NODE_EXTRA_CA_CERTS=/config/ca_spring_certificate.pem
diff --git a/selenium/test/authnz-msg-protocols/spring/application.yml b/selenium/test/authnz-msg-protocols/spring/application.yml
@@ -0,0 +1,64 @@
+server:
+  port: 8443
+  ssl:
+    bundle: spring-authorizationserver
+  
+spring:
+  ssl:
+    bundle:
+      jks:
+        spring-authorizationserver:
+          key:
+            alias: server-spring-tls
+            password: foobar
+          keystore:
+            location: /config/server_spring.jks
+            password: foobar
+            type: PKCS12
+  security:
+    oauth2:
+      users:
+        - username: rabbit_admin
+          password: rabbit_admin 
+          scopes: 
+            - openid 
+            - profile 
+            - rabbitmq.tag:administrator
+          audiencies: 
+            - rabbitmq
+      authorizationserver:
+        client:
+          mgt_api_client:
+            registration:
+              provider: spring
+              client-id: mgt_api_client
+              authorization-grant-types: 
+                - client_credentials
+              client-authentication-methods:
+                - client_secret_basic
+              token-settings:
+                access-token-format: reference              
+              scopes: 
+                - openid
+                - profile
+                - rabbitmq.tag:management
+              client-name: mgt_api_client
+          rabbitmq_client_code:
+            registration:
+              provider: spring
+              client-id: rabbitmq_client_code
+              require-proof-key: true              
+              authorization-grant-types: 
+                - authorization_code
+              client-authentication-methods:
+                - none
+              redirect-uris: 
+                - "${RABBITMQ_SCHEME}://${RABBITMQ_HOST}${RABBITMQ_PATH}/js/oidc-oauth/login-callback.html"
+              post-logout-redirect-uris:
+                - "${RABBITMQ_SCHEME}://${RABBITMQ_HOST}${RABBITMQ_PATH}/"
+              scopes: 
+                - openid 
+                - profile 
+                - rabbitmq.tag:administrator
+                - rabbitmq.tag:management
+              client-name: rabbitmq_client_code
diff --git a/selenium/test/authnz-msg-protocols/spring/openssl.cnf.in b/selenium/test/authnz-msg-protocols/spring/openssl.cnf.in
@@ -0,0 +1,3 @@
+[ client_alt_names ]
+email.1 = rabbit_client@localhost
+URI.1 = rabbit_client_id_uri

Original file line number	Diff line number	Diff line change
`@@ -11,7 +11,7 @@ ensure_spring() {`
`11`	`11`	`}`
`12`	`12`	`init_spring() {`
`13`	`13`	`SPRING_CONFIG_DIR=${TEST_CONFIG_PATH}/spring`
`14`		`- SPRING_URL=${SPRING_URL:-OAUTH_PROVIDER_URL}`
	`14`	`+ SPRING_URL=${SPRING_URL:-$OAUTH_PROVIDER_URL}`
`15`	`15`
`16`	`16`	`print "> SPRING_CONFIG_DIR: ${SPRING_CONFIG_DIR}"`
`17`	`17`	`print "> SPRING_URL: ${SPRING_URL}"`
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+[ client_alt_names ]`
	`2`	`+email.1 = rabbit_client@localhost`
	`3`	`+URI.1 = rabbit_client_id_uri`