discord oauth2

src/main/java/example/oauth2/discord/Application.java

@@ -0,0 +1,13 @@
+package example.oauth2.discord;
+
+import org.springframework.boot.SpringApplication;
+import org.springframework.boot.autoconfigure.SpringBootApplication;
+
+@SpringBootApplication
+public class Application {
+
+	public static void main(String[] args) {
+		SpringApplication.run(Application.class, args);
+	}
+
+}

src/main/java/example/oauth2/discord/config/DiscordOAuth2Config.java

@@ -0,0 +1,58 @@
+package example.oauth2.discord.config;
+
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.core.env.Environment;
+import org.springframework.security.oauth2.client.InMemoryOAuth2AuthorizedClientService;
+import org.springframework.security.oauth2.client.OAuth2AuthorizedClientService;
+import org.springframework.security.oauth2.client.registration.ClientRegistration;
+import org.springframework.security.oauth2.client.registration.ClientRegistrationRepository;
+import org.springframework.security.oauth2.client.registration.InMemoryClientRegistrationRepository;
+import org.springframework.security.oauth2.core.AuthorizationGrantType;
+import org.springframework.security.oauth2.core.ClientAuthenticationMethod;
+
+/*
+Отдельное спасибо
+- https://www.baeldung.com/spring-security-5-oauth2-login
+- https://github.com/spring-projects/spring-security/blob/main/config/src/main/java/org/springframework/security/config/oauth2/client/CommonOAuth2Provider.java
+ */
+
+@Configuration
+public class DiscordOAuth2Config {
+    private static final String DISCORD_CLIENT_PROPERTY_KEY = "spring.security.oauth2.client.registration.discord";
+    private static final String DEFAULT_REDIRECT_URL = "{baseUrl}/{action}/oauth2/code/{registrationId}";
+
+    private final Environment env;
+
+    public DiscordOAuth2Config(Environment env) {
+        this.env = env;
+    }
+
+    @Bean
+    public ClientRegistrationRepository discordClientRegistrationRepository() {
+        String clientId = env.getProperty(DISCORD_CLIENT_PROPERTY_KEY + ".client-id");
+        String clientSecret = env.getProperty(DISCORD_CLIENT_PROPERTY_KEY + ".client-secret");
+
+        ClientRegistration clientRegistration = ClientRegistration.withRegistrationId("discord")
+                .clientAuthenticationMethod(ClientAuthenticationMethod.CLIENT_SECRET_BASIC)
+                .authorizationGrantType(AuthorizationGrantType.AUTHORIZATION_CODE)
+                .redirectUri(DEFAULT_REDIRECT_URL)
+                .scope("identify", "email")
+                .authorizationUri("https://discord.com/api/oauth2/authorize")
+                .tokenUri("https://discord.com/api/oauth2/token")
+                .userInfoUri("https://discord.com/api/users/@me")
+                // revokeTokenUri: https://discord.com/api/oauth2/token/revoke
+                .userNameAttributeName("username")
+                .clientName("Discord")
+                .clientId(clientId)
+                .clientSecret(clientSecret)
+                .build();
+
+        return new InMemoryClientRegistrationRepository(clientRegistration);
+    }
+
+    @Bean
+    public OAuth2AuthorizedClientService discordAuthorizedClientService(ClientRegistrationRepository clientRegistrationRepository) {
+        return new InMemoryOAuth2AuthorizedClientService(clientRegistrationRepository);
+    }
+}

src/main/java/example/oauth2/discord/config/MvcConfig.java

@@ -0,0 +1,15 @@
+package example.oauth2.discord.config;
+
+import org.springframework.context.annotation.Configuration;
+import org.springframework.web.servlet.config.annotation.ViewControllerRegistry;
+import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
+
+@Configuration
+public class MvcConfig implements WebMvcConfigurer {
+
+    @Override
+    public void addViewControllers(ViewControllerRegistry registry) {
+        registry.addViewController("/").setViewName("index");
+        registry.addViewController("/secret").setViewName("secret");
+    }
+}

src/main/java/example/oauth2/discord/config/WebSecurityConfig.java

@@ -0,0 +1,37 @@
+package example.oauth2.discord.config;
+
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
+import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
+import org.springframework.security.oauth2.client.OAuth2AuthorizedClientService;
+import org.springframework.security.oauth2.client.registration.ClientRegistrationRepository;
+
+@EnableWebSecurity
+@Configuration
+public class WebSecurityConfig extends WebSecurityConfigurerAdapter {
+
+    private final ClientRegistrationRepository clientRegistrationRepository;
+    private final OAuth2AuthorizedClientService authorizedClientService;
+
+    public WebSecurityConfig(ClientRegistrationRepository discordClientRegistrationRepository,
+                             OAuth2AuthorizedClientService discordAuthorizedClientService) {
+        this.clientRegistrationRepository = discordClientRegistrationRepository;
+        this.authorizedClientService = discordAuthorizedClientService;
+    }
+
+    @Override
+    protected void configure(HttpSecurity http) throws Exception {
+        //@formatter:off
+        http
+                .authorizeRequests()
+                    .antMatchers("/").permitAll() //Доступ разрешен всем пользователей
+                    .anyRequest().authenticated() //Все остальные страницы требуют аутентификации
+                    .and()
+                .oauth2Login()
+                    .clientRegistrationRepository(clientRegistrationRepository)
+                    .authorizedClientService(authorizedClientService)
+                ;
+        //@formatter:on
+    }
+}

src/main/resources/application.yml

@@ -0,0 +1,14 @@
+server:
+  address: 127.0.0.1
+  port: 8080
+
+debug: false
+
+spring:
+  security:
+    oauth2:
+      client:
+        registration:
+          discord:
+            client-id: 965013316982423632
+            client-secret: yhb13RP26WxfOru9fcQ6CxPcAUWr_2q6

src/main/resources/templates/index.html

@@ -0,0 +1,18 @@
+<!DOCTYPE html>
+<html lang="ru"
+      xmlns="http://www.w3.org/1999/xhtml"
+      xmlns:th="https://www.thymeleaf.org">
+<head>
+    <title>Discord OAuth2 Example</title>
+    <link rel="icon" href="data:;base64,=">
+</head>
+<body>
+<h1>Discord OAuth2 Example</h1>
+<hr>
+<p>
+    Home public page<br>
+    ---&gt; <a th:href="@{/secret}">Secret Page</a> &lt;---<br>
+    [ <a th:href="@{/oauth2/authorization/discord}">Login Discord</a> ]
+</p>
+</body>
+</html>

src/main/resources/templates/secret.html

@@ -0,0 +1,12 @@
+<!DOCTYPE html>
+<html lang="ru">
+<head>
+    <title>Discord OAuth2 Example</title>
+    <link rel="icon" href="data:;base64,=">
+</head>
+<body>
+<h1>Discord OAuth2 Example</h1>
+<hr>
+<p style="color: red">[TOP SECRET PAGE]</p>
+</body>
+</html>