Is there a Spring Security OpenId Registration like stackoverflow?

Asked 26/8, 2010 at 1:2 Answered 7/4, 2016 at 9:9

Solved spring-security openid registration spring-social

I cannot find a complete example anywhere of a Spring Security Web App with Open Id registration similar to stackoverflows.

I would say I'm pretty techy guy but I find Spring Security extremely intimidating with its weird Spring XML DSL.

I have found bits and pieces of how one would do the good ole' stackoverflow registration using:

Spring Security Open ID sample WAR
Hillerts Blog 3 part blog posting
Spring Security Official Doc on OpenId (the email attributes are wrong see next link)
Stackoverflow posting about email attributes
JQuery OpenId library for picking your OpenId provider Stackoverflow has a modified one that seems to include Facebook
Best Article on the subject but a little long winded
Another example like previous one for Google App Engine

But no complete examples (WAR). Does anyone know or have a working example (ie WAR) that does more than just authenticate with an in-memory openid urls?

UPDATE: The latest version of Spring Social does a very good job of managing Oauth registration. We ended up using it instead. Although its not OpenId I have grown to prefer Oauth over OpenId. For those interested in there is a project to use OpenId with spring social: https://github.com/molindo/spring-social-openid

Worsted answered 26/8, 2010 at 1:2 Comment(1)

We did eventually get openid to work with spring security but I will say openid is kind of flakey. Not to mention most people these days are using Facebook and Twitter to signup. – Worsted 5/5, 2011 at 1:32

Have you looked at the latest version of the sample code (for the 3.1 release)?

It has several improvements to make it simpler to use Google and Yahoo authentication together (with different attribute exchange configurations simultaneously), uses a similar login dialog to stack overflow and performs simple registration in the case of users who have not previously accessed the app.

See this issue https://jira.springsource.org/browse/SEC-1431 (and the linked one) for more information.

Stinkhorn answered 11/3, 2011 at 14:12 Comment(1)

Yes Luke 3.1 is much better (thank you and apologies for not commenting sooner) and 3.1 also works nicely with Spring Social. I still have to go look at the Spring Security code frequently to understand whats going on (so I know your name very well :) ) as the XML DSL confuses me. I'm not a big fan of the Java config (over XML) but for Spring security config I might actually prefer but from what I understand its still not possible to do Java config with Spring security. – Worsted 3/12, 2012 at 19:3

I know this is not really helpful in answering your Question but I am currently building a Grails based web application and initailly started using Spring Security but also found it difficult to setup.

I then changed to Apache Shiro and it is much simpler to implement. But it doesn't have support for openid out of the box, but the nimble grails plugin does so you may be able to use that as an example to write your own.

Crowns answered 21/2, 2011 at 0:22 Comment(0)

Yes,

There is a war to download on http://repo1.maven.org/maven2/org/springframework/security/spring-security-samples-openid/3.0.1.RELEASE/

Maybe it can help you.

Lymphoma answered 28/2, 2011 at 17:7 Comment(0)

It's not exactly OpenID, it uses Facebook Connect, but checkout Spring's GreenHouse. That's great code written by the guys from Spring you can use to jumpstart your app.

Meridethmeridian answered 28/2, 2011 at 18:59 Comment(0)

Yes, In spring application, user can authenticate into your application with open ID provider.

1) Here is the sample example of spring open ID login application.

2) Here is the sample example of spring security social login application and blog here.

Mccahill answered 7/4, 2016 at 9:9 Comment(0)

Recommended topics

Hot tags