OAuth2.0 does anyone doing on Karaf?

[Davi Baldin Tavares <da...@gmail.com>]

Hi Karafers,

I'm still working on securing my HTTP context deployed on Karaf and most of
the oauth2.0 implementation references are being addressed by Spring boot.
I've found 4.2.9 has Spring Security Feature 5.3.x.

Do I either go Spring boot approach (example
https://stackoverflow.com/questions/30881786/can-spring-boot-be-used-with-osgi-if-not-any-plans-to-have-an-osgi-spring-boot)
or I have OSGi centric better option (better is simple, standard and clear)?

Cheers,

Davi

Re: OAuth2.0 does anyone doing on Karaf?

[Davi Baldin Tavares <da...@gmail.com>]

Awesome JB!

Em ter., 30 de jun. de 2020 às 04:27, Jean-Baptiste Onofre <jb...@nanthrax.net>
escreveu:

> Hi Davi,
>
> Two things:
>
> 1. You can use oauth2 without spring, pretty easily directly
> programmatically in a OSGi service. I can add an example about that. It’s
> very simple and works smoothly.
> 2. I’m working on spring-boot artifacts support in Karaf (I’m working on
> the PoC and I will send proposal with details soon).
>
> Regards
> JB
>
> Le 30 juin 2020 à 01:54, Davi Baldin Tavares <da...@gmail.com> a
> écrit :
>
> Hi Karafers,
>
> I'm still working on securing my HTTP context deployed on Karaf and most
> of the oauth2.0 implementation references are being addressed by Spring
> boot. I've found 4.2.9 has Spring Security Feature 5.3.x.
>
> Do I either go Spring boot approach (example
> https://stackoverflow.com/questions/30881786/can-spring-boot-be-used-with-osgi-if-not-any-plans-to-have-an-osgi-spring-boot)
> or I have OSGi centric better option (better is simple, standard and clear)?
>
> Cheers,
>
> Davi
>
>
>

-- 
*Davi Baldin Tavares*
(Consultoria e Serviços em T.I.)
Fone: (19) 9-9757-5166
E-mail: davi.baldin@gmail.com

Re: OAuth2.0 does anyone doing on Karaf?

[Jean-Baptiste Onofre <jb...@nanthrax.net>]

Hi,

I’m "off" today, I will get back in the game tomorrow.

Regards
JB

> Le 2 juil. 2020 à 13:04, Davi Baldin Tavares <da...@gmail.com> a écrit :
> 
> JB, the examples will be great and before, please, share with us two words: which libs and activation step (api, scr, blueprint, web-bundle, etc) would you advise?
> 
> Regards,
> 
> Davi
> 
> Em ter., 30 de jun. de 2020 às 12:14, Oleg Cohen <oleg.cohen@assurebridge.com <ma...@assurebridge.com>> escreveu:
> Hi JB,
> 
> I would love to see that example too!
> 
> I have been using Spring Security and Spring OAuth 2.4.x. It is now deprecated and the new version 5.3 no longer supports the Provider/Auth Server. How did you solve that migration?
> 
> Best,
> Oleg
> 
> On Tue, Jun 30, 2020 at 3:27 AM Jean-Baptiste Onofre <jb@nanthrax.net <ma...@nanthrax.net>> wrote:
> Hi Davi,
> 
> Two things:
> 
> 1. You can use oauth2 without spring, pretty easily directly programmatically in a OSGi service. I can add an example about that. It’s very simple and works smoothly.
> 2. I’m working on spring-boot artifacts support in Karaf (I’m working on the PoC and I will send proposal with details soon).
> 
> Regards
> JB
> 
>> Le 30 juin 2020 à 01:54, Davi Baldin Tavares <davi.baldin@gmail.com <ma...@gmail.com>> a écrit :
>> 
>> Hi Karafers,
>> 
>> I'm still working on securing my HTTP context deployed on Karaf and most of the oauth2.0 implementation references are being addressed by Spring boot. I've found 4.2.9 has Spring Security Feature 5.3.x.
>> 
>> Do I either go Spring boot approach (example https://stackoverflow.com/questions/30881786/can-spring-boot-be-used-with-osgi-if-not-any-plans-to-have-an-osgi-spring-boot <https://stackoverflow.com/questions/30881786/can-spring-boot-be-used-with-osgi-if-not-any-plans-to-have-an-osgi-spring-boot>) or I have OSGi centric better option (better is simple, standard and clear)?
>> 
>> Cheers,
>> 
>> Davi
> 
> 
> 
> -- 
> Oleg Cohen  |  Principal  |  A S S U R E B R I D G E
> Office: +1 617 564 0737 <>  |  Mobile: +1 617 455 7927 <>  |  Fax: +1 888 409 6995 <>
> Email: Oleg.Cohen@assurebridge.com <ma...@assurebridge.com>  |  www.assurebridge.com <http://www.assurebridge.com/>
> 
> -- 
> Davi Baldin Tavares
> (Consultoria e Serviços em T.I.)
> Fone: (19) 9-9757-5166
> E-mail: davi.baldin@gmail.com <ma...@gmail.com>

Re: OAuth2.0 does anyone doing on Karaf?

[Davi Baldin Tavares <da...@gmail.com>]

Hi JB,

I'm just following up on this. Next week I would like to restart oauth2
study on karaf and will be great to hear your advise.

Regards,

Davi

Em sex., 14 de ago. de 2020 às 07:56, Jean-Baptiste Onofré <jb...@nanthrax.net>
escreveu:

> Hi Davi
>
> Sorry I had to take some days off last weeks and I forgot.
>
> I will try next week.
>
> Thanks for the reminder !
>
> Regards
> JB
>
> Le ven. 14 ao?t 2020 ? 12:41, Davi Baldin Tavares <da...@gmail.com>
> a ?crit :
>
>> Hi JB, Did you have time to create some examples on this?
>>
>> Great weekend to you and all. Cheers,
>>
>> Davi
>>
>> Em qui., 2 de jul. de 2020 ?s 08:04, Davi Baldin Tavares <
>> davi.baldin@gmail.com> escreveu:
>>
>> JB, the examples will be great and before, please, share with us two
>> words: which libs and activation step (api, scr, blueprint, web-bundle,
>> etc) would you advise?
>>
>> Regards,
>>
>> Davi
>>
>> Em ter., 30 de jun. de 2020 ?s 12:14, Oleg Cohen <
>> oleg.cohen@assurebridge.com> escreveu:
>>
>> Hi JB,
>>
>> I would love to see that example too!
>>
>> I have been using Spring Security and Spring OAuth 2.4.x. It is now
>> deprecated and the new version 5.3 no longer supports the Provider/Auth
>> Server. How did you solve that migration?
>>
>> Best,
>> Oleg
>>
>> On Tue, Jun 30, 2020 at 3:27 AM Jean-Baptiste Onofre <jb...@nanthrax.net>
>> wrote:
>>
>> Hi Davi,
>>
>> Two things:
>>
>> 1. You can use oauth2 without spring, pretty easily directly
>> programmatically in a OSGi service. I can add an example about that. It?s
>> very simple and works smoothly.
>> 2. I?m working on spring-boot artifacts support in Karaf (I?m working on
>> the PoC and I will send proposal with details soon).
>>
>> Regards
>> JB
>>
>> Le 30 juin 2020 ? 01:54, Davi Baldin Tavares <da...@gmail.com> a
>> ?crit :
>>
>> Hi Karafers,
>>
>> I'm still working on securing my HTTP context deployed on Karaf and most
>> of the oauth2.0 implementation references are being addressed by Spring
>> boot. I've found 4.2.9 has Spring Security Feature 5.3.x.
>>
>> Do I either go Spring boot approach (example
>> https://stackoverflow.com/questions/30881786/can-spring-boot-be-used-with-osgi-if-not-any-plans-to-have-an-osgi-spring-boot)
>> or I have OSGi centric better option (better is simple, standard and clear)?
>>
>> Cheers,
>>
>> Davi
>>
>>
>>
>>
>>
>> --
>> *Oleg Cohen  |  Principal  |  **A S S U R E B R I D G E*
>> *Office: +1 617 564 0737  |  Mobile: +1 617 455 7927  |  Fax: +1 888 409
>> 6995*
>> *Email: Oleg.Cohen@assurebridge.com <Ol...@assurebridge.com>  **|
>>  www.assurebridge.com <http://www.assurebridge.com>*
>>
>>
>>
>>
>>

Re: OAuth2.0 does anyone doing on Karaf?

[Jean-Baptiste Onofré <jb...@nanthrax.net>]

Hi Davi

  

Sorry I had to take some days off last weeks and I forgot.

  

I will try next week.

  

Thanks for the reminder !

  

Regards

JB

  

Le ven. 14 ao?t 2020 ? 12:41, Davi Baldin Tavares <da...@gmail.com> a
?crit :  

> Hi JB, Did you have time to create some examples on this?  
>

>

>  
>

>

> Great weekend to you and all. Cheers,

>

>  
>

>

> Davi

>

>  
>

>

> Em qui., 2 de jul. de 2020 ?s 08:04, Davi Baldin Tavares
<[davi.baldin@gmail.com](mailto:davi.baldin@gmail.com)> escreveu:  
>

>

>> JB, the examples will be great and before, please, share with us two words:
which libs and activation step (api, scr, blueprint, web-bundle, etc) would
you advise?  
>

>>

>>  
>

>>

>> Regards,

>>

>>  
>

>>

>> Davi

>>

>>  
>

>>

>> Em ter., 30 de jun. de 2020 ?s 12:14, Oleg Cohen
<[oleg.cohen@assurebridge.com](mailto:oleg.cohen@assurebridge.com)> escreveu:  
>

>>

>>> Hi JB,  
>

>>>

>>>  
>

>>>

>>> I would love to see that example too!

>>>

>>>  
>

>>>

>>> I have been using Spring Security and Spring OAuth 2.4.x. It is now
deprecated and the new version 5.3 no longer supports the Provider/Auth
Server. How did you solve that migration?

>>>

>>>  
>

>>>

>>> Best,

>>>

>>> Oleg

>>>

>>>  
>

>>>

>>> On Tue, Jun 30, 2020 at 3:27 AM Jean-Baptiste Onofre
<[jb@nanthrax.net](mailto:jb@nanthrax.net)> wrote:  
>

>>>

>>>> Hi Davi,

>>>>

>>>>  
>

>>>>

>>>> Two things:

>>>>

>>>>  
>

>>>>

>>>> 1\. You can use oauth2 without spring, pretty easily directly
programmatically in a OSGi service. I can add an example about that. It?s very
simple and works smoothly.

>>>>

>>>> 2\. I?m working on spring-boot artifacts support in Karaf (I?m working on
the PoC and I will send proposal with details soon).

>>>>

>>>>  
>

>>>>

>>>> Regards

>>>>

>>>> JB  
>

>>>>

>>>>  
>

>>>>

>>>>> Le 30 juin 2020 ? 01:54, Davi Baldin Tavares
<[davi.baldin@gmail.com](mailto:davi.baldin@gmail.com)> a ?crit :

>>>>>

>>>>>  
>

>>>>>

>>>>> Hi Karafers,  
>

>>>>>

>>>>>  
>

>>>>>

>>>>> I'm still working on securing my HTTP context deployed on Karaf and most
of the oauth2.0 implementation references are being addressed by Spring boot.
I've found 4.2.9 has Spring Security Feature 5.3.x.

>>>>>

>>>>>  
>

>>>>>

>>>>> Do I either go Spring boot approach (example
[https://stackoverflow.com/questions/30881786/can-spring-boot-be-used-with-
osgi-if-not-any-plans-to-have-an-osgi-spring-
boot](https://stackoverflow.com/questions/30881786/can-spring-boot-be-used-
with-osgi-if-not-any-plans-to-have-an-osgi-spring-boot)) or I have OSGi
centric better option (better is simple, standard and clear)?  
>

>>>>>

>>>>>  
>

>>>>>

>>>>> Cheers,

>>>>>

>>>>>  
>

>>>>>

>>>>> Davi

>>>>>

>>>>>  
>  
>

>>>>

>>>>  
>

>>>

>>>  
>

>>>

>>>  
>

>>>

>>> \--  
>

>>>

>>> **Oleg Cohen  |  Principal  |  ** **A S S U R E B R I D G E**

>>>

>>>  **Office: +1  617 564 0737  |  Mobile: +1 617 455 7927  |  Fax: +1 888
409 6995** **  
> Email:   _[Oleg.Cohen@assurebridge.com](mailto:Oleg.Cohen@assurebridge.com)_
** **|  [www.assurebridge.com](http://www.assurebridge.com)**

>>>

>>>  
>  
>

>>

>>  
>

>>

>>  
>

>>

>> \--  
>

>>

>> **Davi Baldin Tavares**  
>  (Consultoria e Servi?os em T.I.)  
> Fone: (19) 9-9757-5166  
>

>>

>> E-mail: [davi.baldin@gmail.com](mailto:davi.baldin@gmail.com)  
>

>>

>>  
>  
>

>

>  
>

>

>  
>

>

> \--  
>

>

> **Davi Baldin Tavares**  
>  (Consultoria e Servi?os em T.I.)  
> Fone: (19) 9-9757-5166  
>

>

> E-mail: [davi.baldin@gmail.com](mailto:davi.baldin@gmail.com)  
>

Re: OAuth2.0 does anyone doing on Karaf?

[Davi Baldin Tavares <da...@gmail.com>]

Hi JB, Did you have time to create some examples on this?

Great weekend to you and all. Cheers,

Davi

Em qui., 2 de jul. de 2020 às 08:04, Davi Baldin Tavares <
davi.baldin@gmail.com> escreveu:

> JB, the examples will be great and before, please, share with us two
> words: which libs and activation step (api, scr, blueprint, web-bundle,
> etc) would you advise?
>
> Regards,
>
> Davi
>
> Em ter., 30 de jun. de 2020 às 12:14, Oleg Cohen <
> oleg.cohen@assurebridge.com> escreveu:
>
>> Hi JB,
>>
>> I would love to see that example too!
>>
>> I have been using Spring Security and Spring OAuth 2.4.x. It is now
>> deprecated and the new version 5.3 no longer supports the Provider/Auth
>> Server. How did you solve that migration?
>>
>> Best,
>> Oleg
>>
>> On Tue, Jun 30, 2020 at 3:27 AM Jean-Baptiste Onofre <jb...@nanthrax.net>
>> wrote:
>>
>>> Hi Davi,
>>>
>>> Two things:
>>>
>>> 1. You can use oauth2 without spring, pretty easily directly
>>> programmatically in a OSGi service. I can add an example about that. It’s
>>> very simple and works smoothly.
>>> 2. I’m working on spring-boot artifacts support in Karaf (I’m working on
>>> the PoC and I will send proposal with details soon).
>>>
>>> Regards
>>> JB
>>>
>>> Le 30 juin 2020 à 01:54, Davi Baldin Tavares <da...@gmail.com> a
>>> écrit :
>>>
>>> Hi Karafers,
>>>
>>> I'm still working on securing my HTTP context deployed on Karaf and most
>>> of the oauth2.0 implementation references are being addressed by Spring
>>> boot. I've found 4.2.9 has Spring Security Feature 5.3.x.
>>>
>>> Do I either go Spring boot approach (example
>>> https://stackoverflow.com/questions/30881786/can-spring-boot-be-used-with-osgi-if-not-any-plans-to-have-an-osgi-spring-boot)
>>> or I have OSGi centric better option (better is simple, standard and clear)?
>>>
>>> Cheers,
>>>
>>> Davi
>>>
>>>
>>>
>>
>> --
>> *Oleg Cohen  |  Principal  |  **A S S U R E B R I D G E*
>> *Office: +1 617 564 0737  |  Mobile: +1 617 455 7927  |  Fax: +1 888 409
>> 6995*
>> *Email: Oleg.Cohen@assurebridge.com <Ol...@assurebridge.com>  **|
>>  www.assurebridge.com <http://www.assurebridge.com>*
>>
>
>
> --
> *Davi Baldin Tavares*
> (Consultoria e Serviços em T.I.)
> Fone: (19) 9-9757-5166
> E-mail: davi.baldin@gmail.com
>


-- 
*Davi Baldin Tavares*
(Consultoria e Serviços em T.I.)
Fone: (19) 9-9757-5166
E-mail: davi.baldin@gmail.com

Re: OAuth2.0 does anyone doing on Karaf?

[Davi Baldin Tavares <da...@gmail.com>]

JB, the examples will be great and before, please, share with us two words:
which libs and activation step (api, scr, blueprint, web-bundle, etc)
would you advise?

Regards,

Davi

Em ter., 30 de jun. de 2020 às 12:14, Oleg Cohen <
oleg.cohen@assurebridge.com> escreveu:

> Hi JB,
>
> I would love to see that example too!
>
> I have been using Spring Security and Spring OAuth 2.4.x. It is now
> deprecated and the new version 5.3 no longer supports the Provider/Auth
> Server. How did you solve that migration?
>
> Best,
> Oleg
>
> On Tue, Jun 30, 2020 at 3:27 AM Jean-Baptiste Onofre <jb...@nanthrax.net>
> wrote:
>
>> Hi Davi,
>>
>> Two things:
>>
>> 1. You can use oauth2 without spring, pretty easily directly
>> programmatically in a OSGi service. I can add an example about that. It’s
>> very simple and works smoothly.
>> 2. I’m working on spring-boot artifacts support in Karaf (I’m working on
>> the PoC and I will send proposal with details soon).
>>
>> Regards
>> JB
>>
>> Le 30 juin 2020 à 01:54, Davi Baldin Tavares <da...@gmail.com> a
>> écrit :
>>
>> Hi Karafers,
>>
>> I'm still working on securing my HTTP context deployed on Karaf and most
>> of the oauth2.0 implementation references are being addressed by Spring
>> boot. I've found 4.2.9 has Spring Security Feature 5.3.x.
>>
>> Do I either go Spring boot approach (example
>> https://stackoverflow.com/questions/30881786/can-spring-boot-be-used-with-osgi-if-not-any-plans-to-have-an-osgi-spring-boot)
>> or I have OSGi centric better option (better is simple, standard and clear)?
>>
>> Cheers,
>>
>> Davi
>>
>>
>>
>
> --
> *Oleg Cohen  |  Principal  |  **A S S U R E B R I D G E*
> *Office: +1 617 564 0737  |  Mobile: +1 617 455 7927  |  Fax: +1 888 409
> 6995*
> *Email: Oleg.Cohen@assurebridge.com <Ol...@assurebridge.com>  **|
>  www.assurebridge.com <http://www.assurebridge.com>*
>


-- 
*Davi Baldin Tavares*
(Consultoria e Serviços em T.I.)
Fone: (19) 9-9757-5166
E-mail: davi.baldin@gmail.com

Re: OAuth2.0 does anyone doing on Karaf?

[Oleg Cohen <ol...@assurebridge.com>]

Hi JB,

I would love to see that example too!

I have been using Spring Security and Spring OAuth 2.4.x. It is now
deprecated and the new version 5.3 no longer supports the Provider/Auth
Server. How did you solve that migration?

Best,
Oleg

On Tue, Jun 30, 2020 at 3:27 AM Jean-Baptiste Onofre <jb...@nanthrax.net>
wrote:

> Hi Davi,
>
> Two things:
>
> 1. You can use oauth2 without spring, pretty easily directly
> programmatically in a OSGi service. I can add an example about that. It’s
> very simple and works smoothly.
> 2. I’m working on spring-boot artifacts support in Karaf (I’m working on
> the PoC and I will send proposal with details soon).
>
> Regards
> JB
>
> Le 30 juin 2020 à 01:54, Davi Baldin Tavares <da...@gmail.com> a
> écrit :
>
> Hi Karafers,
>
> I'm still working on securing my HTTP context deployed on Karaf and most
> of the oauth2.0 implementation references are being addressed by Spring
> boot. I've found 4.2.9 has Spring Security Feature 5.3.x.
>
> Do I either go Spring boot approach (example
> https://stackoverflow.com/questions/30881786/can-spring-boot-be-used-with-osgi-if-not-any-plans-to-have-an-osgi-spring-boot)
> or I have OSGi centric better option (better is simple, standard and clear)?
>
> Cheers,
>
> Davi
>
>
>

-- 
*Oleg Cohen  |  Principal  |  **A S S U R E B R I D G E*
*Office: +1 617 564 0737  |  Mobile: +1 617 455 7927  |  Fax: +1 888 409
6995*
*Email: Oleg.Cohen@assurebridge.com <Ol...@assurebridge.com>  **|
 www.assurebridge.com <http://www.assurebridge.com>*

Re: OAuth2.0 does anyone doing on Karaf?

[Jean-Baptiste Onofre <jb...@nanthrax.net>]

Hi Davi,

Two things:

1. You can use oauth2 without spring, pretty easily directly programmatically in a OSGi service. I can add an example about that. It’s very simple and works smoothly.
2. I’m working on spring-boot artifacts support in Karaf (I’m working on the PoC and I will send proposal with details soon).

Regards
JB

> Le 30 juin 2020 à 01:54, Davi Baldin Tavares <da...@gmail.com> a écrit :
> 
> Hi Karafers,
> 
> I'm still working on securing my HTTP context deployed on Karaf and most of the oauth2.0 implementation references are being addressed by Spring boot. I've found 4.2.9 has Spring Security Feature 5.3.x.
> 
> Do I either go Spring boot approach (example https://stackoverflow.com/questions/30881786/can-spring-boot-be-used-with-osgi-if-not-any-plans-to-have-an-osgi-spring-boot <https://stackoverflow.com/questions/30881786/can-spring-boot-be-used-with-osgi-if-not-any-plans-to-have-an-osgi-spring-boot>) or I have OSGi centric better option (better is simple, standard and clear)?
> 
> Cheers,
> 
> Davi