: add missing scopes

8c7cea66 · Julien Wittouck · bb378071 · 8c7cea66 · 8c7cea66 · 8c7cea66
Verified Commit 8c7cea66 authored 5 months ago by Julien Wittouck
--- a/w07-security/07-tp-security.adoc
+++ b/w07-security/07-tp-security.adoc
@@ -367,7 +367,7 @@ Rendez-vous sur la page de votre profil GitLab, dans l'onglet _Applications_ : h

 image::images/gitlab-create-app.png[]

-Cochez bien le scope `openid`, et utilisez la redirect URI suivante : `http://localhost:8080/login/oauth2/code/gitlab`.
+Cochez bien les scopes `openid`, `profile` et `email`, et utilisez la redirect URI suivante : `http://localhost:8080/login/oauth2/code/gitlab`.

 CAUTION: Pensez à adapter le port de la redirect URI si besoin (8081 ?).

@@ -437,7 +437,7 @@ Insérez les properties suivantes dans l'application.properties de game-ui, en a
 ----
 spring.security.oauth2.client.registration.gitlab.client-id=
 spring.security.oauth2.client.registration.gitlab.client-secret=
-spring.security.oauth2.client.registration.gitlab.scope=openid
+spring.security.oauth2.client.registration.gitlab.scope=openid,profile,email

 spring.security.oauth2.client.provider.gitlab.issuer-uri=https://gitlab.univ-lille.fr
 ----

--- a/w07-security/07-tp-security.html
+++ b/w07-security/07-tp-security.html
@@ -4,7 +4,7 @@
 <meta charset="UTF-8">
 <meta http-equiv="X-UA-Compatible" content="IE=edge">
 <meta name="viewport" content="width=device-width, initial-scale=1.0">
-<meta name="generator" content="Asciidoctor 2.0.18">
+<meta name="generator" content="Asciidoctor 2.0.23">
 <title>ALOM - TP 7 - Security</title>
 <link rel="stylesheet" href="https://fonts.googleapis.com/css?family=Open+Sans:300,300italic,400,400italic,600,600italic%7CNoto+Serif:400,400italic,700,700italic%7CDroid+Sans+Mono:400,700">
 <style>
@@ -140,7 +140,7 @@ p a>code:hover{color:rgba(0,0,0,.9)}
 #content::before{content:none}
 #header>h1:first-child{color:rgba(0,0,0,.85);margin-top:2.25rem;margin-bottom:0}
 #header>h1:first-child+#toc{margin-top:8px;border-top:1px solid #dddddf}
-#header>h1:only-child,body.toc2 #header>h1:nth-last-child(2){border-bottom:1px solid #dddddf;padding-bottom:8px}
+#header>h1:only-child{border-bottom:1px solid #dddddf;padding-bottom:8px}
 #header .details{border-bottom:1px solid #dddddf;line-height:1.45;padding-top:.25em;padding-bottom:.25em;padding-left:.25em;color:rgba(0,0,0,.6);display:flex;flex-flow:row wrap}
 #header .details span:first-child{margin-left:-.125em}
 #header .details span.email a{color:rgba(0,0,0,.85)}
@@ -162,6 +162,7 @@ p a>code:hover{color:rgba(0,0,0,.9)}
 #toctitle{color:#7a2518;font-size:1.2em}
 @media screen and (min-width:768px){#toctitle{font-size:1.375em}
 body.toc2{padding-left:15em;padding-right:0}
+body.toc2 #header>h1:nth-last-child(2){border-bottom:1px solid #dddddf;padding-bottom:8px}
 #toc.toc2{margin-top:0!important;background:#f8f8f7;position:fixed;width:15em;left:0;top:0;border-right:1px solid #e7e7e9;border-top-width:0!important;border-bottom-width:0!important;z-index:1000;padding:1.25em 1em;height:100%;overflow:auto}
 #toc.toc2 #toctitle{margin-top:0;margin-bottom:.8rem;font-size:1.2em}
 #toc.toc2>ul{font-size:.9em;margin-bottom:0}
@@ -208,13 +209,10 @@ table.tableblock.fit-content>caption.title{white-space:nowrap;width:0}
 .admonitionblock>table td.content{padding-left:1.125em;padding-right:1.25em;border-left:1px solid #dddddf;color:rgba(0,0,0,.6);word-wrap:anywhere}
 .admonitionblock>table td.content>:last-child>:last-child{margin-bottom:0}
 .exampleblock>.content{border:1px solid #e6e6e6;margin-bottom:1.25em;padding:1.25em;background:#fff;border-radius:4px}
-.exampleblock>.content>:first-child{margin-top:0}
-.exampleblock>.content>:last-child{margin-bottom:0}
 .sidebarblock{border:1px solid #dbdbd6;margin-bottom:1.25em;padding:1.25em;background:#f3f3f2;border-radius:4px}
-.sidebarblock>:first-child{margin-top:0}
-.sidebarblock>:last-child{margin-bottom:0}
 .sidebarblock>.content>.title{color:#7a2518;margin-top:0;text-align:center}
-.exampleblock>.content>:last-child>:last-child,.exampleblock>.content .olist>ol>li:last-child>:last-child,.exampleblock>.content .ulist>ul>li:last-child>:last-child,.exampleblock>.content .qlist>ol>li:last-child>:last-child,.sidebarblock>.content>:last-child>:last-child,.sidebarblock>.content .olist>ol>li:last-child>:last-child,.sidebarblock>.content .ulist>ul>li:last-child>:last-child,.sidebarblock>.content .qlist>ol>li:last-child>:last-child{margin-bottom:0}
+.exampleblock>.content>:first-child,.sidebarblock>.content>:first-child{margin-top:0}
+.exampleblock>.content>:last-child,.exampleblock>.content>:last-child>:last-child,.exampleblock>.content .olist>ol>li:last-child>:last-child,.exampleblock>.content .ulist>ul>li:last-child>:last-child,.exampleblock>.content .qlist>ol>li:last-child>:last-child,.sidebarblock>.content>:last-child,.sidebarblock>.content>:last-child>:last-child,.sidebarblock>.content .olist>ol>li:last-child>:last-child,.sidebarblock>.content .ulist>ul>li:last-child>:last-child,.sidebarblock>.content .qlist>ol>li:last-child>:last-child{margin-bottom:0}
 .literalblock pre,.listingblock>.content>pre{border-radius:4px;overflow-x:auto;padding:1em;font-size:.8125em}
 @media screen and (min-width:768px){.literalblock pre,.listingblock>.content>pre{font-size:.90625em}}
 @media screen and (min-width:1280px){.literalblock pre,.listingblock>.content>pre{font-size:1em}}
@@ -330,7 +328,7 @@ a.image{text-decoration:none;display:inline-block}
 a.image object{pointer-events:none}
 sup.footnote,sup.footnoteref{font-size:.875em;position:static;vertical-align:super}
 sup.footnote a,sup.footnoteref a{text-decoration:none}
-sup.footnote a:active,sup.footnoteref a:active{text-decoration:underline}
+sup.footnote a:active,sup.footnoteref a:active,#footnotes .footnote a:first-of-type:active{text-decoration:underline}
 #footnotes{padding-top:.75em;padding-bottom:.75em;margin-bottom:.625em}
 #footnotes hr{width:20%;min-width:6.25em;margin:-.25em 0 .75em;border-width:1px 0 0}
 #footnotes .footnote{padding:0 .375em 0 .225em;line-height:1.3334;font-size:.875em;margin-left:1.2em;margin-bottom:.2em}
@@ -393,7 +391,7 @@ b.conum *{color:inherit!important}
 dt,th.tableblock,td.content,div.footnote{text-rendering:optimizeLegibility}
 h1,h2,p,td.content,span.alt,summary{letter-spacing:-.01em}
 p strong,td.content strong,div.footnote strong{letter-spacing:-.005em}
-p,blockquote,dt,td.content,span.alt,summary{font-size:1.0625rem}
+p,blockquote,dt,td.content,td.hdlist1,span.alt,summary{font-size:1.0625rem}
 p{margin-bottom:1.25rem}
 .sidebarblock p,.sidebarblock dt,.sidebarblock td.content,p.tableblock{font-size:1em}
 .exampleblock>.content{background:#fffef7;border-color:#e0e0dc;box-shadow:0 1px 4px #e0e0dc}
@@ -1286,7 +1284,7 @@ C&#8217;est à travers ce protocole qu&#8217;on peut implémenter l&#8217;authen
 </div>
 </div>
 <div class="paragraph">
-<p>Cochez bien le scope <code>openid</code>, et utilisez la redirect URI suivante : <code><a href="http://localhost:8080/login/oauth2/code/gitlab" class="bare">http://localhost:8080/login/oauth2/code/gitlab</a></code>.</p>
+<p>Cochez bien les scopes <code>openid</code>, <code>profile</code> et <code>email</code>, et utilisez la redirect URI suivante : <code><a href="http://localhost:8080/login/oauth2/code/gitlab" class="bare">http://localhost:8080/login/oauth2/code/gitlab</a></code>.</p>
 </div>
 <div class="admonitionblock caution">
 <table>
@@ -1405,7 +1403,7 @@ Pour rappel, le user par défaut de spring-security est <code>user</code> et le
 <div class="content">
 <pre class="rouge highlight nowrap"><code data-lang="properties"><span class="py">spring.security.oauth2.client.registration.gitlab.client-id</span><span class="p">=</span>
 <span class="py">spring.security.oauth2.client.registration.gitlab.client-secret</span><span class="p">=</span>
-<span class="py">spring.security.oauth2.client.registration.gitlab.scope</span><span class="p">=</span><span class="s">openid</span>
+<span class="py">spring.security.oauth2.client.registration.gitlab.scope</span><span class="p">=</span><span class="s">openid,profile,email</span>

 <span class="py">spring.security.oauth2.client.provider.gitlab.issuer-uri</span><span class="p">=</span><span class="s">https://gitlab.univ-lille.fr</span></code></pre>
 </div>
@@ -1808,7 +1806,7 @@ En particulier le token <code>CSRF</code> dont nous aurons besoin pour tous les
 </div>
 <div id="footer">
 <div id="footer-text">
-Last updated 2024-11-13 11:33:50 +0100
+Last updated 2024-11-26 17:01:28 +0100
 </div>
 </div>
 <script type="text/x-mathjax-config">

--- a/w07-security/07-tp-security.pdf
+++ b/w07-security/07-tp-security.pdf
--- a/w07-security/images/gitlab-app-created.png
+++ b/w07-security/images/gitlab-app-created.png
--- a/w07-security/images/gitlab-create-app.png
+++ b/w07-security/images/gitlab-create-app.png