Update Spring Boot 3 version to Spring Boot 3.4.7

Author: thomasdarimont

apps/backend-api-springboot3/pom.xml

@@ -5,7 +5,7 @@
     <parent>
         <groupId>org.springframework.boot</groupId>
         <artifactId>spring-boot-starter-parent</artifactId>
-        <version>3.3.13</version>
+        <version>3.4.7</version>
         <relativePath/> <!-- lookup parent from repository -->
     </parent>
     <groupId>com.example</groupId>

apps/backend-api-springboot3/src/main/java/com/acme/backend/springboot/users/web/UsersController.java

@@ -11,7 +11,6 @@
 import java.util.HashMap;
 import java.util.Map;
 
-
 @Slf4j
 @RestController
 @RequestMapping("/api/users")

apps/bff-springboot3/pom.xml

@@ -5,7 +5,7 @@
     <parent>
         <groupId>org.springframework.boot</groupId>
         <artifactId>spring-boot-starter-parent</artifactId>
-        <version>3.3.13</version>
+        <version>3.4.7</version>
         <relativePath/> <!-- lookup parent from repository -->
     </parent>
     <groupId>com.github.thomasdarimont.training</groupId>

apps/frontend-webapp-springboot3/pom.xml

@@ -5,7 +5,7 @@
     <parent>
         <groupId>org.springframework.boot</groupId>
         <artifactId>spring-boot-starter-parent</artifactId>
-        <version>3.3.13</version>
+        <version>3.4.7</version>
         <relativePath/> <!-- lookup parent from repository -->
     </parent>
     <modelVersion>4.0.0</modelVersion>

apps/frontend-webapp-springboot3/src/main/java/com/github/thomasdarimont/keycloak/webapp/config/KeycloakWebClientConfig.java

@@ -31,7 +31,8 @@ public RestClient keycloakWebClient(OAuth2AuthorizedClientManager authorizedClie
 
         var clientRegistration = clientRegistrations.findByRegistrationId("keycloak");
 
-        ClientHttpRequestInterceptor oauthInterceptor = new OAuth2ClientInterceptor(authorizedClientManager, clientRegistration);
+        var oauthInterceptor = new OAuth2ClientInterceptor(authorizedClientManager, clientRegistration);
+
         return RestClient.builder() //
                 .requestInterceptor(oauthInterceptor) //
                 .defaultHeaders(headers -> {

apps/frontend-webapp-springboot3/src/main/java/com/github/thomasdarimont/keycloak/webapp/config/WebSecurityConfig.java

@@ -2,7 +2,10 @@
 
 import com.github.thomasdarimont.keycloak.webapp.support.HttpSessionOAuth2AuthorizedClientService;
 import com.github.thomasdarimont.keycloak.webapp.support.security.KeycloakLogoutHandler;
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
 import lombok.RequiredArgsConstructor;
+import lombok.extern.slf4j.Slf4j;
 import org.springframework.boot.actuate.autoconfigure.endpoint.web.CorsEndpointProperties;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
@@ -12,8 +15,10 @@
 import org.springframework.security.core.authority.mapping.GrantedAuthoritiesMapper;
 import org.springframework.security.oauth2.client.OAuth2AuthorizedClientService;
 import org.springframework.security.oauth2.client.endpoint.DefaultAuthorizationCodeTokenResponseClient;
+import org.springframework.security.oauth2.client.endpoint.OAuth2AccessTokenResponseClient;
 import org.springframework.security.oauth2.client.endpoint.OAuth2AuthorizationCodeGrantRequest;
 import org.springframework.security.oauth2.client.endpoint.OAuth2AuthorizationCodeGrantRequestEntityConverter;
+import org.springframework.security.oauth2.client.endpoint.RestClientAuthorizationCodeTokenResponseClient;
 import org.springframework.security.oauth2.client.registration.ClientRegistrationRepository;
 import org.springframework.security.oauth2.client.web.AuthorizationRequestRepository;
 import org.springframework.security.oauth2.client.web.DefaultOAuth2AuthorizationRequestResolver;
@@ -28,8 +33,8 @@
 import org.springframework.util.MultiValueMap;
 
 import java.util.HashSet;
-import java.util.List;
 
+@Slf4j
 @Configuration
 @RequiredArgsConstructor
 class WebSecurityConfig {
@@ -76,20 +81,37 @@ public SecurityFilterChain filterChain(HttpSecurity http, ClientRegistrationRepo
     private static void customizeTokenEndpointRequest(OAuth2LoginConfigurer<HttpSecurity> o2lc) {
         // customize the token endpoint request parameters
         o2lc.tokenEndpoint(tec -> {
-            DefaultAuthorizationCodeTokenResponseClient accessTokenResponseClient = new DefaultAuthorizationCodeTokenResponseClient();
-            accessTokenResponseClient.setRequestEntityConverter(new OAuth2AuthorizationCodeGrantRequestEntityConverter(){
-                @Override
-                protected MultiValueMap<String, String> createParameters(OAuth2AuthorizationCodeGrantRequest authorizationCodeGrantRequest) {
-
-                    // if used with instance specific backchannel logout url: https://${application.session.host}:4633/webapp/logout
-                    MultiValueMap<String, String> parameters = super.createParameters(authorizationCodeGrantRequest);
-                    parameters.add("client_session_state", "bubu123");
-                    parameters.add("client_session_host", "apps.acme.test");
-                    return parameters;
-                }
-            });
-            tec.accessTokenResponseClient(accessTokenResponseClient);
+
+            tec.accessTokenResponseClient(
+                    createCustomAccessTokenResponseClientNew()
+                    // createCustomAccessTokenResponseClientOld()
+            );
+        });
+    }
+
+    private static OAuth2AccessTokenResponseClient<OAuth2AuthorizationCodeGrantRequest> createCustomAccessTokenResponseClientNew() {
+        var accessTokenResponseClient = new RestClientAuthorizationCodeTokenResponseClient();
+        accessTokenResponseClient.setParametersCustomizer(parameters -> {
+            parameters.add("client_session_state", "bubu123");
+            parameters.add("client_session_host", "apps.acme.test");
+        });
+        return accessTokenResponseClient;
+    }
+
+    private static OAuth2AccessTokenResponseClient<OAuth2AuthorizationCodeGrantRequest> createCustomAccessTokenResponseClientOld() {
+        var accessTokenResponseClient = new DefaultAuthorizationCodeTokenResponseClient();
+        accessTokenResponseClient.setRequestEntityConverter(new OAuth2AuthorizationCodeGrantRequestEntityConverter(){
+            @Override
+            protected MultiValueMap<String, String> createParameters(OAuth2AuthorizationCodeGrantRequest authorizationCodeGrantRequest) {
+
+                // if used with instance specific backchannel logout url: https://${application.session.host}:4633/webapp/logout
+                MultiValueMap<String, String> parameters = super.createParameters(authorizationCodeGrantRequest);
+                parameters.add("client_session_state", "bubu123");
+                parameters.add("client_session_host", "apps.acme.test");
+                return parameters;
+            }
         });
+        return accessTokenResponseClient;
     }
 
     /**
@@ -112,8 +134,7 @@ public OAuth2AuthorizedClientRepository authorizedClientRepository() {
     @Bean
     public OAuth2AuthorizedClientService oAuth2AuthorizedClientService(OAuth2AuthorizedClientRepository clientRegistrationRepository) {
 //        var oauthAuthorizedClientService = new InMemoryOAuth2AuthorizedClientService(clientRegistrationRepository);
-        var oauthAuthorizedClientService = new HttpSessionOAuth2AuthorizedClientService(clientRegistrationRepository);
-        return oauthAuthorizedClientService;
+        return new HttpSessionOAuth2AuthorizedClientService(clientRegistrationRepository);
     }
 
     private GrantedAuthoritiesMapper userAuthoritiesMapper() {
@@ -129,6 +150,7 @@ private GrantedAuthoritiesMapper userAuthoritiesMapper() {
                     // TODO extract roles from userInfo response
 //                    List<SimpleGrantedAuthority> groupAuthorities = userInfo.getClaimAsStringList("groups").stream().map(g -> new SimpleGrantedAuthority("ROLE_" + g.toUpperCase())).collect(Collectors.toList());
 //                    mappedAuthorities.addAll(groupAuthorities);
+                    log.info("Got userinfo. userinfo={}", userInfo);
                 }
             });
 

apps/frontend-webapp-springboot3/src/main/java/com/github/thomasdarimont/keycloak/webapp/support/security/KeycloakLogoutHandler.java

@@ -33,7 +33,7 @@ public void logout(HttpServletRequest request, HttpServletResponse response, Aut
         try {
             response.sendRedirect(logoutUrl);
         } catch (IOException e) {
-            e.printStackTrace();
+            log.error("Could not send redirect to logoutUrl", e);
         }
 
     }

apps/jwt-client-authentication/pom.xml

@@ -5,7 +5,7 @@
     <parent>
         <groupId>org.springframework.boot</groupId>
         <artifactId>spring-boot-starter-parent</artifactId>
-        <version>3.3.13</version>
+        <version>3.4.7</version>
         <relativePath/> <!-- lookup parent from repository -->
     </parent>
     <groupId>com.github.thomasdarimont.keycloak</groupId>

apps/offline-session-client/pom.xml

@@ -7,7 +7,7 @@
     <parent>
         <groupId>org.springframework.boot</groupId>
         <artifactId>spring-boot-starter-parent</artifactId>
-        <version>3.3.13</version>
+        <version>3.4.7</version>
         <relativePath/> <!-- lookup parent from repository -->
     </parent>
 

apps/spring-boot-device-flow-client/pom.xml

@@ -5,7 +5,7 @@
     <parent>
         <groupId>org.springframework.boot</groupId>
         <artifactId>spring-boot-starter-parent</artifactId>
-        <version>3.3.13</version>
+        <version>3.4.7</version>
         <relativePath/> <!-- lookup parent from repository -->
     </parent>
     <groupId>com.github.thomasdarimont.keycloak</groupId>