This tutorial will teach you how to implement Role-based access control in the new Spring Authorization Server. You will learn how to add a user role to a JWT token issued by Spring Authorization Server and configure Spring Resource Server to secure access to the API endpoint based on a user role. 1. Create, Run…
Read More Role-based Access Control in Spring Authorization ServerIn this blog post, you will learn how to add user Roles and Authorities to a JWT token issued by the new Spring Authorization Server. When writing this tutorial, I assumed you are familiar with the new Spring Configuration Server setup. Otherwise, please check the Spring Authorization Server tutorial first. Adding Granted Authorities to JWT To include…
Read More Add Roles to JWT Issued by Spring Authorization ServerIn this tutorial, you will learn how to create and configure the new Spring OAuth Authorization Server. Video Demonstration To demonstrate how to configure and use the new Spring Authorization Server, I have created a series of step-by-step video lessons. You can access these video lessons by enrolling in my video course called “OAuth 2.0…
Read More Spring Authorization Server TutorialIn this short tutorial, you will learn how to configure the /logout functionality in your Spring Boot Web application that uses OAuth2 Social Login. To learn how to implement the OAuth2 Social login feature, please check the following tutorial: Spring Security OAuth 2 Social Login. Configure HttpSecurity Applications that use Spring Security and OAuth2 Social login…
Read More Spring Security OAuth 2 Social LogoutIn this tutorial, you will learn how to add a Social Login(OAuth 2) feature into your Spring MVC Web application. This will allow users to login to your application with their social network accounts like Facebook, Google, or other large services that support OAuth 2 like for example GitHub. Spring Security 5 offers very good…
Read More Spring Security OAuth 2 Social LoginIn this tutorial, you will learn how to use the Keycloak REST API to create a new user for your application. There are a few ways you get to register a new user: You can create a new user using the Keycloak Web Administration Console, You can let users register a new account themselves, Or…
Read More Keycloak REST API: Create a New UserIn this tutorial, you will learn how to get an access token from the Keycloak authorization server using the OAuth Authorization Code Grant flow. You should use this authorization flow only if your application support redirects. For example, if your application is a Web application or a mobile application, then this authorization grant flow is…
Read More Keycloak: Authorization Code Grant Example