OAuth 2.0 in Spring Boot Applications

This video course is for beginner Java developers who are interested in learning how to secure OAuth 2.0 Resources in Spring Security 5.

The course covers only the new OAuth 2.0 stack in Spring Security 5.

You will learn how to: 

• Perform each OAuth 2 authorization flow,

  • Authorization Code,

  • PKCE-enhanced authorization code,

  • Client credentials,

  • Password credentials.

• Startup and configure the Keycloak server,

• Configure OAuth 2 Resource Server,

• Startup multiple Resource Servers on random port numbers,

• Configure Spring Cloud API Gateway,

• Configure and use Eureka Registry and Discovery Service,

• Build a simple Spring MVC Web Application that fetches data from a protected Resource Server running behind Spring Cloud API Gateway.

• Implement a simple JavaScript application that uses PKCE-Enhanced authorization code to acquire JWT access tokens and communicate with protected Resource Server,

• Learn how to refresh an expired JWT Access token,

• Learn to implement Scope-base access control,

• Learn how to implement Role-based access control,

• OAuth social login with Facebook, Google, and Okta accounts,

• Implement Keycloak Remote User Authentication(User Storage SPI)

• New Spring Authorization Server version 0.2.2

This is a step-by-step video course that explains how to use OAuth 2 from the very beginning. If you do not have experience with OAuth and would like to learn how to use it in Spring Boot Web Applications, then this video course is for you.