eugenp · ulisseslima · Jun 9, 2025 · May 21, 2025 · May 24, 2025 · Jun 4, 2025
diff --git a/spring-boot-modules/spring-boot-keycloak-2/pom.xml b/spring-boot-modules/spring-boot-keycloak-2/pom.xml
@@ -72,6 +72,59 @@
             <version>${keycloak.version}</version>
         </dependency>
 
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-oauth2-resource-server</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-data-jpa</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-test</artifactId>
+            <scope>test</scope>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-oauth2-client</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-security</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-web</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.hsqldb</groupId>
+            <artifactId>hsqldb</artifactId>
+            <scope>runtime</scope>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-thymeleaf</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>wsdl4j</groupId>
+            <artifactId>wsdl4j</artifactId>
+            <version>${wsdl4j.version}</version>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.boot</groupId>
+            <artifactId>spring-boot-starter-web-services</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.security</groupId>
+            <artifactId>spring-security-test</artifactId>
+            <scope>test</scope>
+        </dependency>
+        <dependency>
+            <groupId>org.glassfish.jaxb</groupId>
+            <artifactId>jaxb-runtime</artifactId>
+            <version>${jaxb-runtime.version}</version>
+        </dependency>
     </dependencies>
 
     <build>
@@ -80,12 +133,37 @@
                 <groupId>org.springframework.boot</groupId>
                 <artifactId>spring-boot-maven-plugin</artifactId>
             </plugin>
+            <plugin>
+                <groupId>org.codehaus.mojo</groupId>
+                <artifactId>jaxb2-maven-plugin</artifactId>
+                <version>${jaxb2-maven-plugin.version}</version>
+                <executions>
+                    <execution>
+                        <id>xjc</id>
+                        <goals>
+                            <goal>xjc</goal>
+                        </goals>
+                    </execution>
+                </executions>
+                <configuration>
+                    <packageName>com.baeldung</packageName>
+                    <sources>
+                        <source>/${project.basedir}/src/main/resources/products.xsd</source>
+                    </sources>
+                </configuration>
+            </plugin>
         </plugins>
     </build>
 
     <properties>
         <keycloak.version>21.0.1</keycloak.version>
-        <start-class>com.baeldung.disablingkeycloak.App</start-class>
+        <!--<start-class>com.baeldung.disablingkeycloak.App</start-class>-->
+        <start-class>com.baeldung.keycloak.key.SpringBootKeycloakApp</start-class>
+        <jaxb-runtime.version>4.0.0</jaxb-runtime.version>
+        <wsdl4j.version>1.6.3</wsdl4j.version>
+        <jaxb2-maven-plugin.version>3.1.0</jaxb2-maven-plugin.version>
+        <maven.compiler.release>17</maven.compiler.release>
+        <keycloak-adapter-bom.version>15.0.2</keycloak-adapter-bom.version>
     </properties>
 
 </project>
diff --git a/...ot-keycloak-2/src/main/java/com/baeldung/keycloak/keycloaksoap/KeycloakRoleConverter.java b/...ot-keycloak-2/src/main/java/com/baeldung/keycloak/keycloaksoap/KeycloakRoleConverter.java
@@ -0,0 +1,33 @@
+package com.baeldung.keycloak.keycloaksoap;
+
+import java.util.Collection;
+import java.util.List;
+import java.util.Map;
+import java.util.stream.Collectors;
+
+import org.springframework.core.convert.converter.Converter;
+import org.springframework.security.core.GrantedAuthority;
+import org.springframework.security.core.authority.SimpleGrantedAuthority;
+import org.springframework.security.oauth2.jwt.Jwt;
+
+public class KeycloakRoleConverter implements Converter<Jwt, Collection<GrantedAuthority>> {
+
+    private final String clientId;
+
+    public KeycloakRoleConverter(String clientId) {
+        this.clientId = clientId;
+    }
+
+    @Override
+    @SuppressWarnings("unchecked")
+    public Collection<GrantedAuthority> convert(Jwt jwt) {
+        Map<String, Object> resourceAccess = jwt.getClaim("resource_access");
+
+        Map<String, Object> client = (Map<String, Object>) resourceAccess.get(clientId);
+        List<String> roles = (List<String>) client.get("roles");
+
+        return roles.stream()
+            .map(role -> new SimpleGrantedAuthority("ROLE_" + role))
+            .collect(Collectors.toList());
+    }
+}
diff --git a/...t-keycloak-2/src/main/java/com/baeldung/keycloak/keycloaksoap/KeycloakSecurityConfig.java b/...t-keycloak-2/src/main/java/com/baeldung/keycloak/keycloaksoap/KeycloakSecurityConfig.java
@@ -0,0 +1,40 @@
+package com.baeldung.keycloak.keycloaksoap;
+
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.boot.autoconfigure.condition.ConditionalOnProperty;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.config.annotation.method.configuration.EnableMethodSecurity;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
+import org.springframework.security.config.annotation.web.configurers.AbstractHttpConfigurer;
+import org.springframework.security.oauth2.server.resource.authentication.JwtAuthenticationConverter;
+import org.springframework.security.web.SecurityFilterChain;
+
+@Configuration
+@EnableWebSecurity
+@ConditionalOnProperty(name = "keycloak.enabled", havingValue = "true")
+@EnableMethodSecurity(jsr250Enabled = true)
+public class KeycloakSecurityConfig {
+
+    @Value("${client.id}")
+    private String clientId;
+
+    @Bean
+    public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
+        http.csrf(AbstractHttpConfigurer::disable)
+            .authorizeHttpRequests(auth -> auth.anyRequest()
+                .authenticated())
+            .oauth2ResourceServer(oauth2 -> oauth2
+                .jwt(jwt -> jwt.jwtAuthenticationConverter(jwtAuthenticationConverter()))
+            );
+        return http.build();
+    }
+
+    @Bean
+    public JwtAuthenticationConverter jwtAuthenticationConverter() {
+        JwtAuthenticationConverter converter = new JwtAuthenticationConverter();
+        converter.setJwtGrantedAuthoritiesConverter(new KeycloakRoleConverter(clientId));
+        return converter;
+    }
+}
diff --git a/...k-2/src/main/java/com/baeldung/keycloak/keycloaksoap/KeycloakSoapServicesApplication.java b/...k-2/src/main/java/com/baeldung/keycloak/keycloaksoap/KeycloakSoapServicesApplication.java
@@ -0,0 +1,23 @@
+package com.baeldung.keycloak.keycloaksoap;
+
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.boot.SpringApplication;
+import org.springframework.boot.autoconfigure.SpringBootApplication;
+import org.springframework.core.env.Environment;
+
+import jakarta.annotation.PostConstruct;
+
+@SpringBootApplication
+public class KeycloakSoapServicesApplication {
+
+    @Autowired
+    private Environment environment;
+
+    public static void main(String[] args) {
+        SpringApplication application = new SpringApplication(KeycloakSoapServicesApplication.class);
+        application.setAdditionalProfiles("keycloak");
+        application.run(args);
+    }
+
+}
+
diff --git a/...ng-boot-keycloak-2/src/main/java/com/baeldung/keycloak/keycloaksoap/ProductsEndpoint.java b/...ng-boot-keycloak-2/src/main/java/com/baeldung/keycloak/keycloaksoap/ProductsEndpoint.java
@@ -0,0 +1,44 @@
+package com.baeldung.keycloak.keycloaksoap;
+
+import com.baeldung.DeleteProductRequest;
+import com.baeldung.DeleteProductResponse;
+import com.baeldung.GetProductDetailsRequest;
+import com.baeldung.GetProductDetailsResponse;
+import com.baeldung.Product;
+
+import org.springframework.security.access.prepost.PreAuthorize;
+import org.springframework.ws.server.endpoint.annotation.Endpoint;
+import org.springframework.ws.server.endpoint.annotation.PayloadRoot;
+import org.springframework.ws.server.endpoint.annotation.RequestPayload;
+import org.springframework.ws.server.endpoint.annotation.ResponsePayload;
+
+import jakarta.annotation.security.RolesAllowed;
+import java.util.Map;
+
+@Endpoint
+public class ProductsEndpoint {
+
+    private final Map<String, Product> productMap;
+
+    public ProductsEndpoint(Map<String, Product> productMap) {
+        this.productMap = productMap;
+    }
+
+    @RolesAllowed("user")
+    @PayloadRoot(namespace = "http://www.baeldung.com/springbootsoap/keycloak", localPart = "getProductDetailsRequest")
+    @ResponsePayload
+    public GetProductDetailsResponse getProductDetails(@RequestPayload GetProductDetailsRequest request) {
+        GetProductDetailsResponse response = new GetProductDetailsResponse();
+        response.setProduct(productMap.get(request.getId()));
+        return response;
+    }
+
+    @RolesAllowed("admin")
+    @PayloadRoot(namespace = "http://www.baeldung.com/springbootsoap/keycloak", localPart = "deleteProductRequest")
+    @ResponsePayload
+    public DeleteProductResponse deleteProduct(@RequestPayload DeleteProductRequest request) {
+        DeleteProductResponse response = new DeleteProductResponse();
+        response.setMessage("Success! Deleted the product with the id - "+request.getId());
+        return response;
+    }
+}
diff --git a/...ng-boot-keycloak-2/src/main/java/com/baeldung/keycloak/keycloaksoap/WebServiceConfig.java b/...ng-boot-keycloak-2/src/main/java/com/baeldung/keycloak/keycloaksoap/WebServiceConfig.java
@@ -0,0 +1,75 @@
+package com.baeldung.keycloak.keycloaksoap;
+
+import com.baeldung.Product;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.boot.web.servlet.ServletRegistrationBean;
+import org.springframework.context.ApplicationContext;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.core.io.ClassPathResource;
+import org.springframework.ws.config.annotation.EnableWs;
+import org.springframework.ws.config.annotation.WsConfigurerAdapter;
+import org.springframework.ws.transport.http.MessageDispatcherServlet;
+import org.springframework.ws.wsdl.wsdl11.DefaultWsdl11Definition;
+import org.springframework.xml.xsd.SimpleXsdSchema;
+import org.springframework.xml.xsd.XsdSchema;
+
+import java.util.HashMap;
+import java.util.Map;
+
+@EnableWs
+@Configuration
+public class WebServiceConfig extends WsConfigurerAdapter {
+
+    @Value("${ws.api.path:/ws/api/v1/*}")
+    private String webserviceApiPath;
+    @Value("${ws.port.type.name:ProductsPort}")
+    private String webservicePortTypeName;
+    @Value("${ws.target.namespace:http://www.baeldung.com/springbootsoap/keycloak}")
+    private String webserviceTargetNamespace;
+    @Value("${ws.location.uri:http://localhost:18080/ws/api/v1/}")
+    private String locationUri;
+
+    @Bean
+    public ServletRegistrationBean<MessageDispatcherServlet> messageDispatcherServlet(ApplicationContext applicationContext) {
+        MessageDispatcherServlet servlet = new MessageDispatcherServlet();
+        servlet.setApplicationContext(applicationContext);
+        servlet.setTransformWsdlLocations(true);
+        return new ServletRegistrationBean<>(servlet, webserviceApiPath);
+    }
+
+    @Bean(name = "products")
+    public DefaultWsdl11Definition defaultWsdl11Definition(XsdSchema productsSchema) {
+        DefaultWsdl11Definition wsdl11Definition = new DefaultWsdl11Definition();
+        wsdl11Definition.setPortTypeName(webservicePortTypeName);
+        wsdl11Definition.setTargetNamespace(webserviceTargetNamespace);
+        wsdl11Definition.setLocationUri(locationUri);
+        wsdl11Definition.setSchema(productsSchema);
+        return wsdl11Definition;
+    }
+
+    @Bean
+    public XsdSchema productsSchema() {
+        return new SimpleXsdSchema(new ClassPathResource("products.xsd"));
+    }
+
+    @Bean
+    public Map<String, Product> getProducts()
+    {
+        Map<String, Product> map = new HashMap<>();
+        Product foldsack= new Product();
+        foldsack.setId("1");
+        foldsack.setName("Fjallraven - Foldsack No. 1 Backpack, Fits 15 Laptops");
+        foldsack.setDescription("Your perfect pack for everyday use and walks in the forest. ");
+
+        Product shirt= new Product();
+        shirt.setId("2");
+        shirt.setName("Mens Casual Premium Slim Fit T-Shirts");
+        shirt.setDescription("Slim-fitting style, contrast raglan long sleeve, three-button henley placket.");
+
+        map.put("1", foldsack);
+        map.put("2", shirt);
+        return map;
+    }
+
+}
diff --git a/...ng-boot-modules/spring-boot-keycloak-2/src/main/resources/application-keycloak.properties b/...ng-boot-modules/spring-boot-keycloak-2/src/main/resources/application-keycloak.properties
@@ -0,0 +1,13 @@
+server.port=18080
+
+keycloak.enabled=true
+
+spring.security.oauth2.resourceserver.jwt.issuer-uri=http://localhost:8080/realms/baeldung-soap-services
+
+# Custom properties begin here
+ws.api.path=/ws/api/v1/*
+ws.port.type.name=ProductsPort
+ws.target.namespace=http://www.baeldung.com/springbootsoap/keycloak
+ws.location.uri=http://localhost:18080/ws/api/v1/
+
+logging.level.root=DEBUG
diff --git a/spring-boot-modules/spring-boot-keycloak-2/src/main/resources/products.xsd b/spring-boot-modules/spring-boot-keycloak-2/src/main/resources/products.xsd
@@ -0,0 +1,45 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:tns="http://www.baeldung.com/springbootsoap/keycloak"
+    targetNamespace="http://www.baeldung.com/springbootsoap/keycloak" elementFormDefault="qualified">
+
+    <xs:element name="getProductDetailsRequest">
+        <xs:complexType>
+            <xs:sequence>
+                <xs:element name="id" type="xs:string"/>
+            </xs:sequence>
+        </xs:complexType>
+    </xs:element>
+    <xs:element name="deleteProductRequest">
+        <xs:complexType>
+            <xs:sequence>
+                <xs:element name="id" type="xs:string"/>
+            </xs:sequence>
+        </xs:complexType>
+    </xs:element>
+    <xs:element name="getProductDetailsResponse">
+        <xs:complexType>
+            <xs:sequence>
+                <xs:element name="product" type="tns:product"/>
+            </xs:sequence>
+        </xs:complexType>
+    </xs:element>
+    <xs:element name="deleteProductResponse">
+        <xs:complexType>
+            <xs:sequence>
+                <xs:element name="message" type="xs:string"/>
+            </xs:sequence>
+        </xs:complexType>
+    </xs:element>
+
+    <!-- Define the complex object Product -->
+
+    <xs:complexType name="product">
+        <xs:sequence>
+            <xs:element name="id" type="xs:string"/>
+            <xs:element name="name" type="xs:string"/>
+            <xs:element name="description" type="xs:string"/>
+        </xs:sequence>
+    </xs:complexType>
+
+
+</xs:schema>