Add OIDC support again (#62)

* Update readme * First try in oidc implementation * Add secrets * Add connection to fs auth provider, redirect not tested * Working prototype This commit implements the oidc compatibility with the caveat of having every subsite under the app path. For that, there is also a redirection handler to redirect the home page to the app home page. * Small cleanup * Fix access even when logged in * Update application-prod.properties * Ignore login when in test env * Fix reviews * Feature/sign in (#1) * Add OIDC support (#39) * Update readme * First try in oidc implementation * Add secrets * Add connection to fs auth provider, redirect not tested * Working prototype This commit implements the oidc compatibility with the caveat of having every subsite under the app path. For that, there is also a redirection handler to redirect the home page to the app home page. * Small cleanup * Fix access even when logged in * Update application-prod.properties * Ignore login when in test env * Fix reviews * Revert "Add OIDC support (#39)" (#60) This reverts commit 244f6cbf95. * Refine the sign in solution by Moritz921 * Fix botched rebase --------- Co-authored-by: AJMicke <7047945+AJMicke@users.noreply.github.com> Co-authored-by: Anton Micke <anton.micke@gmail.com> * Fix bugs --------- Co-authored-by: AJMicke <7047945+AJMicke@users.noreply.github.com> Co-authored-by: Anton Micke <anton.micke@gmail.com>
2026-03-12 14:01:05 +01:00 · 2025-06-13 15:06:41 +02:00
parent 5e969ac89b
commit 6ba5b7d59e
22 changed files with 217 additions and 55 deletions
--- a/src/main/resources/application-prod.properties
+++ b/src/main/resources/application-prod.properties
@@ -10,5 +10,15 @@ spring.jpa.hibernate.ddl-auto=validate
 spring.jpa.show-sql=false
 spring.jpa.open-in-view=false

+# == OIDC Configuration ==
+spring.security.oauth2.client.registration.oidc.client-id=${OIDC_CLIENT_ID}
+spring.security.oauth2.client.registration.oidc.client-secret=${OIDC_CLIENT_SECRET}
+spring.security.oauth2.client.registration.oidc.scope=openid,email,profile
+spring.security.oauth2.client.registration.oidc.redirect-uri=${OIDC_REDIRECT_URI}
+spring.security.oauth2.client.provider.oidc.jwk-set-uri=${OIDC_JWK_SET_URI}
+spring.security.oauth2.client.provider.oidc.issuer-uri=${OIDC_ISSUER_URI}
+
+vaadin.urlMapping=/app/*
+
 # In prod mode, never add the test data to the database
-spring.sql.init.mode=never
+spring.sql.init.mode=never
--- a/src/main/resources/application-test.properties
+++ b/src/main/resources/application-test.properties
@@ -1,9 +1,15 @@
 server.port=${PORT:8080}
 logging.level.org.atmosphere = warn
+logging.level.org.springframework.security=DEBUG
 spring.mustache.check-template-location = false

 spring.datasource.driver-class-name=org.h2.Driver
 spring.datasource.username=sa
 spring.datasource.password=
 spring.jpa.hibernate.ddl-auto=update
-spring.jpa.show-sql=true
+spring.jpa.show-sql=true
+
+# == OIDC Configuration ==
+spring.autoconfigure.exclude=org.springframework.boot.autoconfigure.security.servlet.SecurityAutoConfiguration
+
+vaadin.urlMapping=/app/*
--- a/src/main/resources/static/icon.png
+++ b/src/main/resources/static/icon.png