A simple Password Flow demo with Spring Security OAuth 2
You can use Postman to test it.
-
Create a POST request for the address: http://localhost:8080/oauth/token
-
You have to pass Basic Auth too, this is the client credentials, not the user. In this example the username is "client" and password "clientpassword" (without quotes).
The authorization header will looks like: Authorization : Basic Y2xpZW50OmNsaWVudHBhc3N3b3Jk
- Set the Content-Type header to application/x-www-form-urlencoded
- Set the body
You'll have to choose x-www-form-urlencoded and set the values:
client_id client
username user
password user
grant_type password
When you hit the send button, you'll get something like that:
{
"access_token": "bd999429-898b-4201-908e-40e846ec0105",
"token_type": "bearer",
"expires_in": 3599,
"scope": "read write"
}Now you are able to call the API using the access token
-
Create a GET request in Postman with the URL http://localhost:8080/products
-
Set the Authorization header with Bearer
Key: Authorization
Value: Bearer bd999429-898b-4201-908e-40e846ec0105
That's all! When you hit the Send button, you'll receive:
[
{
"name": "Mug for Coffee",
"value": 12.99
},
{
"name": "Coffee cup",
"value": 4.21
}
]