How to run inlicit for swagger?

D

Dmitry2021-10-10 18:57:19

symfony

Dmitry, 2021-10-10 18:57:19

Good evening.
There is a project on Symfony 5.3. Tricoder/oauth2-bundle and swagger are
connected to the project . On the page localhost:8080/docs/ the output of the documentation for the site api. If you send a test request to the /token address from the documentation page, then the response is 200 and the request token is returned

curl -X 'POST' \
  'http://localhost:8080/token' \
  -H 'accept: application/json' \
  -H 'Content-Type: application/json' \
  -d '{
  "grant_type": "password",
  "username": "[email protected]",
  "password": "password",
  "client_id": "app",
  "client_secret": "secret",
  "access_type": "string"
}'

answer

{
  "token_type": "Bearer",
  "expires_in": 3600,
  "access_token": "eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJhdWQiOiJhcHAiLCJqdGkiOiJkND.......",
  "refresh_token": "def50200908df002c1681a983023859e5d30b5a36989aca2b00be20eаab6........"
}

When I try to authorize using the /authorize address to test closed addresses, I get a 401 response.
Although the client is the same as for the token request.

{
  "error": "invalid_client",
  "error_description": "Client authentication failed",
  "message": "Client authentication failed"
}

answer

Cache-Control	max-age=0, must-revalidate, private
Connection	keep-alive
Content-Type	application/json
Date	Sun, 10 Oct 2021 15:33:31 GMT
Expires	Sun, 10 Oct 2021 15:33:31 GMT
Server	nginx
Transfer-Encoding	chunked
X-Debug-Token	68448c
X-Debug-Token-Link	http://localhost:8080/_profiler/68448c
X-Robots-Tag	noindex

request

Accept	text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Encoding	gzip, deflate
Accept-Language	ru-RU,ru;q=0.8,en-US;q=0.5,en;q=0.3
Cache-Control	max-age=0
Connection	keep-alive
Host	localhost:8080
Referer	http://localhost:8080/login
Sec-Fetch-Dest	document
Sec-Fetch-Mode	navigate
Sec-Fetch-Site	same-origin
Sec-Fetch-User	?1
Upgrade-Insecure-Requests	1
User-Agent	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:93.0) Gecko/20100101 Firefox/93.0

The corresponding client is created in the database.
Resolvers have been created to search for a user

namespace App\Security\OAuth\Server;

use Symfony\Component\EventDispatcher\EventSubscriberInterface;
use Trikoder\Bundle\OAuth2Bundle\Event\AuthorizationRequestResolveEvent;
use Trikoder\Bundle\OAuth2Bundle\OAuth2Events;

final class RequestResolver implements EventSubscriberInterface
{
    public static function getSubscribedEvents(): array
    {
        return [
            OAuth2Events::AUTHORIZATION_REQUEST_RESOLVE => 'onRequestResolve',
        ];
    }

    public function onRequestResolve(AuthorizationRequestResolveEvent $event): void
    {
        $user = $event->getUser();

        if (null === $user) {
            return;
        }

        $event->resolveAuthorization(AuthorizationRequestResolveEvent::AUTHORIZATION_APPROVED);
    }
}

namespace App\Security\OAuth\Server;

use App\Model\User\Service\PasswordHasher;
use Symfony\Component\EventDispatcher\EventSubscriberInterface;
use Symfony\Component\Security\Core\User\UserProviderInterface;
use Trikoder\Bundle\OAuth2Bundle\Event\UserResolveEvent;
use Trikoder\Bundle\OAuth2Bundle\OAuth2Events;

final class UserResolver implements EventSubscriberInterface
{
    private $userProvider;
    private $hasher;

    public function __construct(UserProviderInterface $userProvider, PasswordHasher $hasher)
    {
        $this->userProvider = $userProvider;
        $this->hasher = $hasher;
    }

    public static function getSubscribedEvents(): array
    {
        return [
            OAuth2Events::USER_RESOLVE => 'onUserResolve',
        ];
    }

    public function onUserResolve(UserResolveEvent $event): void
    {
        $user = $this->userProvider->loadUserByUsername($event->getUsername());

        if (null === $user) {
            return;
        }

        if (!$user->getPassword()) {
            return;
        }

        if (!$this->hasher->validate($event->getPassword(), $user->getPassword())) {
            return;
        }

        $event->setUser($user);
    }
}

Both resolvers are registered with the system

"trikoder.oauth2.authorization_request_resolve" event
-----------------------------------------------------

 ------- ---------------------------------------------------------------------------------------------------------------- ---------- 
  Order   Callable                                                                                                         Priority  
 ------- ---------------------------------------------------------------------------------------------------------------- ---------- 
  #1      Trikoder\Bundle\OAuth2Bundle\EventListener\AuthorizationRequestUserResolvingListener::onAuthorizationRequest()   1024      
  #2      App\Security\OAuth\Server\RequestResolver::onRequestResolve()                                                    0         
 ------- ---------------------------------------------------------------------------------------------------------------- ---------- 

"trikoder.oauth2.user_resolve" event
------------------------------------

 ------- --------------------------------------------------------- ---------- 
  Order   Callable                                                  Priority  
 ------- --------------------------------------------------------- ---------- 
  #1      App\Security\OAuth\Server\UserResolver::onUserResolve()   0         
 ------- --------------------------------------------------------- ----------

How to overcome the problem?

Reply

Answer the question

In order to leave comments, you need to log in

0 answer(s)