正确的方式Mule OAuth2客户端凭据刷新令牌

时间:2017-05-03 13:55:06

标签: oauth-2.0 mule anypoint-studio

我正在使用mule来连接/使用某些服务。身份验证是OAuth2客户端凭据。 什么是刷新令牌的最佳方法? 一种方法是检查http.status,如

refreshTokenWhen="#[message.inboundProperties['http.status'] == 401]"

但我对此并不满意,因为刷新令牌会失败一次。 无论如何根据过期时间刷新令牌? 我的示例代码:

<mule xmlns:tracking="http://www.mulesoft.org/schema/mule/ee/tracking" xmlns:scripting="http://www.mulesoft.org/schema/mule/scripting" xmlns:metadata="http://www.mulesoft.org/schema/mule/metadata" xmlns:oauth2="http://www.mulesoft.org/schema/mule/oauth2" xmlns:http="http://www.mulesoft.org/schema/mule/http"
    xmlns="http://www.mulesoft.org/schema/mule/core" xmlns:doc="http://www.mulesoft.org/schema/mule/documentation"
    xmlns:spring="http://www.springframework.org/schema/beans" 
    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
    xsi:schemaLocation="http://www.mulesoft.org/schema/mule/http http://www.mulesoft.org/schema/mule/http/current/mule-http.xsd
http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-current.xsd
http://www.mulesoft.org/schema/mule/core http://www.mulesoft.org/schema/mule/core/current/mule.xsd
http://www.mulesoft.org/schema/mule/oauth2 http://www.mulesoft.org/schema/mule/oauth2/current/mule-oauth2.xsd
http://www.mulesoft.org/schema/mule/scripting http://www.mulesoft.org/schema/mule/scripting/current/mule-scripting.xsd
http://www.mulesoft.org/schema/mule/ee/tracking http://www.mulesoft.org/schema/mule/ee/tracking/current/mule-tracking-ee.xsd">
<http:request-config name="HTTP_Request_Configuration" protocol="HTTPS" host="${remote.host}" port="${remote.port}" basePath="${remote.path}" doc:name="HTTP Request Configuration">
    <oauth2:client-credentials-grant-type clientId="${clientid}" clientSecret="${clientSecret}" tokenManager-ref="Token_Manager_Config">
        <oauth2:token-request tokenUrl="${remote.tokenUrl}" refreshTokenWhen="#[message.inboundProperties['http.status'] == 401 ]">
            <oauth2:token-response accessToken="#[json:access_token]" expiresIn="#[json:expires_in]"/>
        </oauth2:token-request>
    </oauth2:client-credentials-grant-type>
</http:request-config>
<oauth2:token-manager-config name="Token_Manager_Config" doc:name="Token Manager Config"/>

1 个答案:

答案 0 :(得分:0)

mule中有一个chache作用域,你可以将你的gettoken流保存在缓存作用域中,你可以指定到期时间,直到它将使用缓存的令牌,当它到期时它会调用get令牌flow,它会将新令牌存储在缓存中。

示例代码:

<ee:object-store-caching-strategy name="Caching_Strategy" doc:name="Caching Strategy">
  <managed-store storeName="myManagedStore" maxEntries="1" entryTTL="${token.expiretime}" expirationInterval="${token.expireinterval}"/>
</ee:object-store-caching-strategy>    

<ee:cache cachingStrategy-ref="Caching_Strategy" doc:name="Cache">
  <flow-ref name="getTokenFlow" doc:name="getTokenFlow"/>
</ee:cache>

查看以下链接中的更多文档:
https://docs.mulesoft.com/mule-user-guide/v/3.7/cache-scope