Skip to content

officiallysingh/spring-cloud-api-grateway-azuread-auth

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits

.mvn/wrapper

.mvn/wrapper

 
 

src/main

src/main

 
 

.gitignore

.gitignore

 
 

README.md

README.md

 
 

mvnw

mvnw

 
 

mvnw.cmd

mvnw.cmd

 
 

pom.xml

pom.xml

 
 

Repository files navigation

Read Me First

Demo Spring cloud Gateway and applying Authentication using Azure AD. Demo downstream service available at spring-boot-web-auth-demo

Guides

The following guides illustrate how to use Spring cloud Gateway and applying Authentication using Azure AD:

Gateway Routes configurations

  • uri of downstream service.
  • Path predicate
  • TokenRelay to forward Access Token received from Azure AD as Authorization header to downstream services.
spring:
  cloud:
    #------------------------- API Gateway configuration -------------------------
    gateway:
      routes:
        - id: book-service
          uri: http://localhost:8081
          predicates:
            - Path=/api/**
          filters:
            - TokenRelay=

Spring boot Azure AD configurations

Update tenant-id, client-id and client-secret properties for your Azure AD settings, others remain the same.

spring:
  cloud:
    #------------------------- Azure AD configuration -------------------------
    azure:
      active-directory:
        enabled: true
        profile:
          tenant-id: ${AZURE_AD_TENANT_ID}
        credential:
          client-id: ${AZURE_AD_CLIENT_ID}
          client-secret: ${AZURE_AD_CLIENT_SECRET}

  security:
    oauth2:
      client:
        registration:
          azure:
            client-id: ${spring.cloud.azure.active-directory.credential.client-id}
            client-secret: ${spring.cloud.azure.active-directory.credential.client-secret}
            authorization-grant-type: authorization_code
            redirect-uri: "{baseUrl}/login/oauth2/code/{registrationId}"
            scope: openid, profile, email
        provider:
          azure:
            authorization-uri: https://login.microsoftonline.com/${spring.cloud.azure.active-directory.profile.tenant-id}/oauth2/v2.0/authorize
            token-uri: https://login.microsoftonline.com/${spring.cloud.azure.active-directory.profile.tenant-id}/oauth2/v2.0/token
            user-info-uri: https://graph.microsoft.com/oidc/userinfo
            jwk-set-uri: https://login.microsoftonline.com/${spring.cloud.azure.active-directory.profile.tenant-id}/discovery/v2.0/keys
            issuer-uri: https://login.microsoftonline.com/${spring.cloud.azure.active-directory.profile.tenant-id}/v2.0
#           userNameAttribute: unique_name

Run

Run the main class SpringCloudApiGratewayAzureADAuthApplication and access the URL http://localhost:8080/api/hello in browser.
It should redirect you to Azure AD login page, fill in Username and Password.
After successful authentication, you will get following response from downstream service.

Hello <You username> from Downstream stream service

About

Demo project for Spring Cloud API Gateway with AzureAD Auth

Topics

oauth2 authentication azure spring-security openid-connect azure-active-directory oidc azure-ad spring-cloud-gateway

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages