From 1268b0414d6c84fb7d72ca41ffd89c638803a6d2 Mon Sep 17 00:00:00 2001
From: Eneko Nieto <eneko@baturamobile.com>
Date: Sun, 10 Jan 2021 01:17:08 +0100
Subject: [PATCH] auth.fosil.eu

---
 build.gradle.kts                              |  2 +-
 .../spring/conf/JWTSecurityConfig.kt          | 20 +++++++++++++++++++
 src/main/resources/application.properties     |  3 ++-
 3 files changed, 23 insertions(+), 2 deletions(-)
 create mode 100644 src/main/kotlin/eu/fosil/okupamicoche/spring/conf/JWTSecurityConfig.kt

diff --git a/build.gradle.kts b/build.gradle.kts
index 4b8d8d9..4422625 100644
--- a/build.gradle.kts
+++ b/build.gradle.kts
@@ -19,7 +19,7 @@ repositories {
 
 dependencies {
 	implementation("org.springframework.boot:spring-boot-starter-data-jpa")
-//	implementation("org.springframework.boot:spring-boot-starter-oauth2-resource-server")
+	implementation("org.springframework.boot:spring-boot-starter-oauth2-resource-server")
 	implementation("org.springframework.boot:spring-boot-starter-web")
 	implementation("com.fasterxml.jackson.module:jackson-module-kotlin")
 	implementation("org.jetbrains.kotlin:kotlin-reflect")
diff --git a/src/main/kotlin/eu/fosil/okupamicoche/spring/conf/JWTSecurityConfig.kt b/src/main/kotlin/eu/fosil/okupamicoche/spring/conf/JWTSecurityConfig.kt
new file mode 100644
index 0000000..221dc3e
--- /dev/null
+++ b/src/main/kotlin/eu/fosil/okupamicoche/spring/conf/JWTSecurityConfig.kt
@@ -0,0 +1,20 @@
+package eu.fosil.okupamicoche.spring.conf
+
+import org.springframework.context.annotation.Configuration
+import org.springframework.security.config.annotation.web.builders.HttpSecurity
+import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
+
+@Configuration
+class JWTSecurityConfig : WebSecurityConfigurerAdapter() {
+    @Throws(Exception::class)
+    override fun configure(http: HttpSecurity) {// @formatter:off
+        http.cors()
+            .and()
+                .authorizeRequests()
+                    .anyRequest()
+                        .hasAuthority("SCOPE_profile")
+            .and()
+                .oauth2ResourceServer()
+                    .jwt();
+    }//@formatter:on
+}
\ No newline at end of file
diff --git a/src/main/resources/application.properties b/src/main/resources/application.properties
index 8b13789..faa8c62 100644
--- a/src/main/resources/application.properties
+++ b/src/main/resources/application.properties
@@ -1 +1,2 @@
-
+spring.security.oauth2.resourceserver.jwt.issuer-uri=https://auth.fosil.eu/auth/realms/fosil
+spring.security.oauth2.resourceserver.jwt.jwk-set-uri=https://auth.fosil.eu/auth/realms/fosil/protocol/openid-connect/certs