These are chat archives for spring-guides/tut-spring-security-and-angular-js

23rd
Apr 2015
Martin Snyman
@munitras
Apr 23 2015 06:44
Has anyone been able to successfully grow the 'double' module to operate with OAuth2Sso at the gateway? Ideally terminating oauth and offloading the authenticated session to spring-session for downstream integration with proxied services?
Dave Syer
@dsyer
Apr 23 2015 08:59
Should be easy (same as the other oauth2 samples)
Martin Snyman
@munitras
Apr 23 2015 10:56
Yeah, I thought as much... Seems to be some small issue getting it persist the session. When hitting the resource server its unable to find the session. I'm suspecting a sequencing issue somewhere between EnableOAuth2Sso/EnableZuul and EnableRedisSession -- Trying to debug it but not yet seeing light.
Dave Syer
@dsyer
Apr 23 2015 10:57
The proxy will forward the token (not the cookie) by default
Maybe you need to explicitly ask it not to?
```
proxy:
  auth:
    routes:
      resource: passthru
Something like that
Dave Syer
@dsyer
Apr 23 2015 11:18
The other oauth2 examples use token authentication in the backend
Martin Snyman
@munitras
Apr 23 2015 12:08
I'll dig in that direction ja. Makes sense.
Somehow got locked into suspecting purely the spring-session interactions -- probably had me mislead
Pascal Zwick
@pas2al
Apr 23 2015 12:15
@dsyer I will leave the forked repo using the bower_components in my github profile. I am not going to delete it, so you can use it for reference if you want.