2 * ============LICENSE_START=======================================================
3 * Copyright (C) 2019 Nordix Foundation.
4 * ================================================================================
5 * Licensed under the Apache License, Version 2.0 (the "License");
6 * you may not use this file except in compliance with the License.
7 * You may obtain a copy of the License at
9 * http://www.apache.org/licenses/LICENSE-2.0
11 * Unless required by applicable law or agreed to in writing, software
12 * distributed under the License is distributed on an "AS IS" BASIS,
13 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14 * See the License for the specific language governing permissions and
15 * limitations under the License.
17 * SPDX-License-Identifier: Apache-2.0
18 * ============LICENSE_END=========================================================
21 package org.onap.so.adapters.vnfmadapter.oauth;
23 import org.onap.so.utils.CryptoUtils;
24 import org.springframework.beans.factory.annotation.Value;
25 import org.springframework.context.annotation.Configuration;
26 import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
27 import org.springframework.security.oauth2.config.annotation.configurers.ClientDetailsServiceConfigurer;
28 import org.springframework.security.oauth2.config.annotation.web.configuration.AuthorizationServerConfigurerAdapter;
29 import org.springframework.security.oauth2.config.annotation.web.configuration.EnableAuthorizationServer;
32 @EnableAuthorizationServer
34 * Configures the authorization server for oauth token based authentication.
36 public class AuthorizationServerConfig extends AuthorizationServerConfigurerAdapter {
38 private static final int ONE_DAY = 60 * 60 * 24;
40 @Value("${vnfmadapter.auth:E39823AAB2739CC654C4E92B52C05BC34149342D0A46451B00CA508C8EDC62242CE4E9DA9445D3C01A3F13}")
41 private String vnfmAdapterAuth;
44 private String msoEncryptionKey;
47 public void configure(final ClientDetailsServiceConfigurer clients) throws Exception {
48 final String[] decrypedAuth = CryptoUtils.decrypt(vnfmAdapterAuth, msoEncryptionKey).split(":");
49 final BCryptPasswordEncoder passwordEncoder = new BCryptPasswordEncoder();
50 clients.inMemory().withClient(decrypedAuth[0]).secret(passwordEncoder.encode(decrypedAuth[1]))
51 .authorizedGrantTypes("client_credentials").scopes("write").accessTokenValiditySeconds(ONE_DAY)
52 .refreshTokenValiditySeconds(ONE_DAY);