fun getSsoAccessToken(): String? {
val restTemplate = RestTemplate()
restTemplate.interceptors = listOf(RequestResponseLoggingInterceptor())
val headers = HttpHeaders()
headers.contentType = MediaType.APPLICATION_FORM_URLENCODED
headers.accept = listOf(MediaType.APPLICATION_JSON)
headers.setBasicAuth("<client-id>", "<client-secret>")
val map = LinkedMultiValueMap<String, String>()
map.add("grant_type", "password")
map.add("scope", "openid")
map.add("username", "<username>")
map.add("password", "<password>")
val request = HttpEntity<MultiValueMap<String, String>>(map, headers)
val responseEntity = restTemplate.exchange("https://<base-url>/oauth/token", HttpMethod.POST, request, JsonNode::class.java)
if(responseEntity.statusCode.is2xxSuccessful) {
return responseEntity.body?.get("access_token")?.asText()
} else {
throw IllegalStateException("Error occurs during token generation")
}
}OAuth2 protected resources using RestTemplate
Carvia Tech | May 05, 2019 | 2 min read | 63 views
An OAuth2 Authorization Server is responsible for issuing JWT accessToken/refreshToken when a resource owner presents its credentials. credentials typically consists of ClientId/ClientSecret, username/password, grant_type and scope of the request.
In this tutorial we will use RestTemplate library to hit the token endpoint on authorization server and generate the accessToken.
Issue AccessToken based on resource owner credentials
| 1 | client-id and client-secret are basic credentials provided by OAuth2 Provider |
Now this accessToken can be used to make calls to the protected resource server using the below syntax:
Making Call to actual service using recently acquired AccessToken
fun deleteAssessment(token: String?, id: String): String? {
val headers = HttpHeaders()
headers.add("Authorization", "bearer $token")
headers.contentType = MediaType.APPLICATION_JSON
val httpEntity = HttpEntity<String>(headers)
val typeRef = object : ParameterizedTypeReference<ServiceResponse<JsonNode>>() {}
val responseEntity = restTemplate.exchange("https://<base-url>/assessment/id/1", HttpMethod.DELETE, httpEntity, typeRef)
if (responseEntity.statusCode.is2xxSuccessful) {
println("Successfully deleted assessment: $questionnaireId")
val response = responseEntity.body
return response?.data?.toString()
}
return null
}| 1 | Passing the OAuth2 AccessToken in request. |
That’s all!
If you are looking for same tutorial but using restassured, then follow this article- OAuth2 Login with Rest Assured Testcases
Top articles in this category:
- Top 50 SDET Java Programming Interview Questions & Answers
- OAuth2 protected resources in Rest Assured Testcases
- Commonly used Http methods in RESTful services
- Basic Authentication using RestAssured
- Self signed HttpClient and RestTemplate for testing
- How will you compare two java objects
- Write a program to reverse the order of words in a string
Find more on this topic:
SDET Interviews
End to end automation testing using Selenium Web Driver, Rest Assured, JMeter, Junit, TestNG etc.
Last updated 1 month ago
Recommended books for interview preparation:
You may also be interested in..
You may also be interested in..
You may also be interested in..
You may also be interested in..
Facebook Page
Similar Posts
- File upload in RestAssured
- Basic Authentication using RestAssured
- What is difference between Enumeration and Iterator in Java
- Creating custom exceptions in Java
- Find two numbers of which the product is maximum in an array
- Write a program to reverse the order of words in a string
- Check whether given number is even or odd
- Check a number is Prime: Java Coding Problem
- Create anagram buckets from a given input array of words
- Java program to check if two strings are anagrams
Free Email Updates
Enter your email address to subscribe to this blog and receive notifications of new posts by email.