Merge pull request #261 from bci-oss/bugfix/fix-handle-oauth-token

Fixed handling of Oauth (Bearer token)
eclipse-tractusx · Dec 1, 2023 · a6c43d8 · a6c43d8
2 parents 8cfb2ca + c044035
commit a6c43d8
Show file tree

Hide file tree

Showing 2 changed files with 11 additions and 3 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -4,6 +4,12 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## 0.3.21
+### Added
+
+## fixed
+- Fixed handling of Oauth (Bearer token).
+
 ## 0.3.20
 ### Added
 - Length for Column "SUB_PROTOCOL_BODY" has been extended to 2048.

diff --git a/...d/src/main/java/org/eclipse/tractusx/semantics/registry/security/OAuthSecurityConfig.java b/...d/src/main/java/org/eclipse/tractusx/semantics/registry/security/OAuthSecurityConfig.java
@@ -69,9 +69,11 @@ protected SecurityFilterChain configure(HttpSecurity http) throws Exception {
                     //getDescription allowed for reader
                     .requestMatchers( HttpMethod.GET, "/**/description" ).access( "@authorizationEvaluator.hasRoleViewDigitalTwin()" )
               )
-              .csrf(CsrfConfigurer::disable)
-              .sessionManagement(sessionManagement -> sessionManagement.sessionCreationPolicy(SessionCreationPolicy.STATELESS))
-              .oauth2ResourceServer(oauth2ResourceServerConfigurer -> oauth2ResourceServerConfigurer.jwt());
+              .csrf().disable()
+              .sessionManagement().sessionCreationPolicy( SessionCreationPolicy.STATELESS )
+              .and()
+              .oauth2ResourceServer()
+              .jwt();
 
         return http.build();
     }