# spring-security-oauth2-tutorial **Repository Path**: tjn_lp/spring-security-oauth2-tutorial ## Basic Information - **Project Name**: spring-security-oauth2-tutorial - **Description**: Spring Security 5.6 OAuth2系列教程,包含了Spring Authorization Server、OAuth2 Client、OAuth2 Login、 OAuth2 Resource Server、OAuth2.1、OIDC 1.0等 - **Primary Language**: Java - **License**: Apache-2.0 - **Default Branch**: main - **Homepage**: None - **GVP Project**: No ## Statistics - **Stars**: 0 - **Forks**: 76 - **Created**: 2022-04-06 - **Last Updated**: 2022-05-24 ## Categories & Tags **Categories**: Uncategorized **Tags**: None ## README ## Spring Security OAuth2相关教程 详细讲解参见[Spring Security 与 OAuth2](https://blog.csdn.net/qq_35067322/category_11691173.html)专题教程 ### 为什么这么多分支? 我把所有的DEMO放在一个分支里,相关的知识点太多,不容易消化,每个分支都有不同的侧重点。 目前的分支有: - [x] **main** 体验Gitee三方授权。 - [x] **wechat** 微信网页授权实现,对非标准OAuth2的定制改造,强调自定义能力。 - [x] **oauth2client** 体验Spring Security OAuth2 Client功能。 - [x] **resourceserver** 体验OAuth2 资源服务器功能。 - [x] **jose** jose规范讲解体验,十分重要,必须熟练掌握。 - [x] **springauthserver** Spring Authorization Server初步体验入门。 - [x] **customconsent** Spring Authorization Server自定义授权确认(consent required)页面。 - [x] **privatekeyjwt** OAuth2客户端授权方式(Client Authentication Method)`private_key_jwt`实现(独家)。 - [x] **clientsecretjwt** OAuth2客户端授权方式(Client Authentication Method)`client_secret_jwt`实现(独家)。 - [ ] **其它新分支持续更新中** ### 目录 - [1-Spring Security OAuth2专栏介绍](https://blog.csdn.net/qq_35067322/article/details/123536510) - [2-直观体验OAuth2](https://felord.blog.csdn.net/article/details/123536984) - [3-OAuth2登录流程分析](https://felord.blog.csdn.net/article/details/123537245) - [4-OAuth2.0协议简单认识](https://felord.blog.csdn.net/article/details/123537835) - [5-OAuth2.1的已知变动](https://felord.blog.csdn.net/article/details/123538070) - [6-Spring Security OAuth2配置项详解](https://felord.blog.csdn.net/article/details/123538253) - [7-OAuth2AuthorizationRequestRedirectFilter](https://felord.blog.csdn.net/article/details/123538416) - [8-OAuth2LoginAuthenticationFilter](https://felord.blog.csdn.net/article/details/123538530) - [9-Spring Boot中OAuth2的自动配置](https://felord.blog.csdn.net/article/details/123538820) - [10-微信OAuth2授权登录](https://felord.blog.csdn.net/article/details/123538976) - [11-OAuth2登录的配置逻辑](https://felord.blog.csdn.net/article/details/123539201) - [12-OAuth2LoginConfigurer的初始化](https://felord.blog.csdn.net/article/details/123539323) - [13-OAuth2LoginConfigurer的配置](https://felord.blog.csdn.net/article/details/123539955) - [14-OAuth2ClientConfigurer](https://felord.blog.csdn.net/article/details/123540308) - [15-JOSE规范](https://felord.blog.csdn.net/article/details/123540390) - [16-Spring Security中的JOSE类库](https://felord.blog.csdn.net/article/details/123540550) - [17-什么是资源服务器](https://felord.blog.csdn.net/article/details/123540636) - [18-Spring Security中的资源服务器](https://felord.blog.csdn.net/article/details/123540672) - [19-Spring Security资源服务器配置详解](https://felord.blog.csdn.net/article/details/123540727) - [20-BearerTokenAuthenticationFilter](https://felord.blog.csdn.net/article/details/123540745) - [21-Spring Authorization Server介绍](https://felord.blog.csdn.net/article/details/123544148) - [22-Spring Authorization Server初体验](https://felord.blog.csdn.net/article/details/123551894) - [23-Spring Authorization Server结合客户端](https://felord.blog.csdn.net/article/details/123569931) - [24-Spring Authorization Server执行日志分析](https://felord.blog.csdn.net/article/details/123573929) - [25-Spring Authorization Server的配置总览](https://felord.blog.csdn.net/article/details/123600038) - [26-ProviderContextFilter](https://felord.blog.csdn.net/article/details/123610574) - [27-令牌自省OAuth2TokenIntrospectionEndpointFilter](https://blog.csdn.net/qq_35067322/article/details/123634847) - [28-JWKSet公钥令牌端点过滤器](https://blog.csdn.net/qq_35067322/article/details/123656408) - [29-授权服务器配置信息端点过滤器](https://blog.csdn.net/qq_35067322/article/details/123656531) - [30-OAuth2授权端点配置类](https://blog.csdn.net/qq_35067322/article/details/123685646) - [31-授权服务器如何处理客户端授权请求](https://blog.csdn.net/qq_35067322/article/details/123712758) - [32-Spring Authorization Server 0.2.3 的变化](https://blog.csdn.net/qq_35067322/article/details/123742600) - [33-授权码授权请求的具体逻辑](https://felord.blog.csdn.net/article/details/123795807) - [34-自定义OAuth2授权确认页面](https://felord.blog.csdn.net/article/details/123821842) - [35-OAuth2授权服务器客户端认证配置](https://felord.blog.csdn.net/article/details/123871892) - [36-OAuth2客户端认证过滤器详解](https://felord.blog.csdn.net/article/details/123899496) - 未上架,待补充 [催更](https://asset.felord.cn/blog/20210224102609.png) ### Gitee OAuth2登录规范类库相关DEMO > 忽略 oauth2-clients 和 oauth2-server - 具体参见启动`Oauth2TutorialApplication`。