Search:

You can ignore ServiceContextfilter. Thats for our internal logging.
No we don't use RestEasy. We actually are not having the Oauth2 configuration in our actual Web service. We created a separate...

You do not have the Spring dispatcher servlet in web.xml. you can refer my web.xml.

Hi Arun,
Please see below the web.xml.
We basically configured two servlets - one dispatcher and anather one to take our requests after the authentication is
done by Oauth2.


<?xml...

Ok. So then I will set up a validity for access token. Once that expires , I will send a new request for getting the access token.
Does that sound correct ?

Hi Arun,
We are using the 2 legged approach as part of Oauth2. We are having REST based web services and these are accessed by standalone Java clients. There is no end user here. We secured the REST...

Hi,
I am calling a REST based web service which is Oauth2 protected. client is a simple Java standalone client(which uses RestTemplate). Below is the calling code and configuration. I use the...

Hi,
We have RESTFul web services which we are now securing using spring security Oauth2.
The existing code in production uses a Jersey servlet to call the EJB resource.
Now I have configured a...

Thanks Dave. After removing the ClientCredentialsTokenEndpointFilter its working fine. If I send the client secret in resource then
client is getting authenticated otherwise its returning...

Hi Dave. thanks for your inputs. I configured a client at my service side with a secret.
Below are client_details :


insert into oauth_client_details
( scope , client_secret ,...

Thanks Dave for Reply. I am fine with the '/ws/claims' part. Thanks for your additional details on that.
The question is on the first part where client sends request with pattern="/oauth/token" to...

Hi, We have below architecture :
Java Service consumers are consuming spring based REST full web services.
We want to provide security for these services.
So we do not have end user but just the...

Hello Dave..As per the direction from my Architect we will be using JDBC token store. I used it and everything is working fine
with that.
Thanks for your help. I will close this post for now.

Sir, Please see below :
First Request to get the token :


Authorities: ROLE_CLIENT
2013-01-18 13:33:26,630 DEBUG [ACTIVE] ExecuteThread: '18' for queue: 'weblogic.kernel.Default (self-tuning)'...

I am loading the spring context using the ContextLoaderListener listener. This is the only listener configured in my web.xml.
Also from my logs I don't see the spring context getting loaded between...

Hi,
Please provide direction on this question. We are struggling on this.
we are trying to implement Oauth2 spring security in REST based web service.
We are calling the service using RestTemplate...