Spring Security 6 | How to Create a Login System with Spring Data JPA and JWTs [NEW 2023]

Sdílet
Vložit
  • čas přidán 22. 08. 2024

Komentáře • 303

  • @kelvinwarui2982
    @kelvinwarui2982 Před rokem +45

    You had me in the first 20 seconds , tutorial hell has brought me here i was almost loosing my mind on spring security

  • @adarshpandey8526
    @adarshpandey8526 Před 8 měsíci +7

    You just revived my passion for spring boot based backend development. Thank you so much. This is the best spring security crash course I've found on CZcams even better than the inspirations you mentioned in this video. The reason is, that you used less jargon and fancy Java. You showed basic Java skills to explain an already complex spring security concept which feels smooth.
    Most of the creators from the Java community tend to use a lot of fancy Java design patterns and advanced Java features which causes great difficulty for freshers to understand such complex concepts.
    Constructive Criticism:
    I have one small suggestion for you, the cutting of your voice is really not good. There are no pauses between your speech, leading to you sounding monotonous even when you're not. Also, it made me rewind many times since I never understood where one sentence ended and the other began.
    Love your content. keep going ♥

  • @cydoentis
    @cydoentis Před rokem +26

    This video hit the nail on the head, I watched countless other videos from other people before I found this one, and the content was either outdated or poorly explained. I appreciate that you did everything from scratch and explained each step. Wish I found this video about 8 videos earlier, but I finally understand the whole implementation process for Jwt's. 11/10 will watch again.

  • @cod4basterd
    @cod4basterd Před 10 měsíci +10

    Holy crap. Thank you so much; this is amazing. Top tier content. I learned so much from this compared to hours of Amigoscode or Dan Vega. Nothing against those guys, they just have so much content to get through and a lot of it is outdated. Thank you so much for putting this together. I got what I needed out of it and then some.

  • @vsaihruthikreddy7127
    @vsaihruthikreddy7127 Před 6 měsíci +1

    All I could say this is an extraordinary tutorial. I tried all of the spring security tutorials but they did not cover the nitty gritty aspects of it like the jwt token creation and authorization but you just were superb. Thank you very much for uploading a gem ❤

  • @fetterollie54
    @fetterollie54 Před rokem +7

    Great video and working around the deprecated methods wasn’t too bad and was a very good practice of working with documentation. Thanks for putting this all together. 👏🏼👏🏼👏🏼

    • @mathewfrancis4167
      @mathewfrancis4167 Před 10 měsíci

      how did you get the JwtAuthenticationConverter to work in the SecureityFilterChain ?

    • @fetterollie54
      @fetterollie54 Před 10 měsíci +1

      @@mathewfrancis4167 I’ll check in a bit and get back to you

    • @mathewfrancis4167
      @mathewfrancis4167 Před 10 měsíci

      @@fetterollie54I'll be infinitely great-full when you will :)

    • @fetterollie54
      @fetterollie54 Před 10 měsíci

      @@mathewfrancis4167
      Not sure if you can put code blocks in here:
      @Bean
      public SecurityFilterChain filterChain(HttpSecurity http) throws Exception{
      http
      // disable cross site request forgery
      .csrf(csrf -> csrf.disable())
      // any http requests are authorized
      .authorizeHttpRequests(auth -> {
      auth.requestMatchers("/auth/**").permitAll();
      auth.requestMatchers("/admin/**").hasRole("ADMIN");
      auth.requestMatchers("/user/**").hasAnyRole("ADMIN", "USER");
      auth.anyRequest().authenticated();
      });
      http
      .oauth2ResourceServer((oauth2) -> oauth2.jwt(jwt -> jwt.jwtAuthenticationConverter(jwtAuthenticationConverter())));
      http
      .sessionManagement(session -> session.sessionCreationPolicy(SessionCreationPolicy.STATELESS));
      // build into security chain
      return http.build();
      };

    • @fetterollie54
      @fetterollie54 Před 10 měsíci +1

      Also I stepped away from the project a month ago and haven’t looked at it since. Hope this is what you are looking for…

  • @daffarandika3148
    @daffarandika3148 Před měsícem

    clear and concise, great video mate!

  • @maz1ogra
    @maz1ogra Před 11 měsíci +2

    This video is a compilation of everything useful that is said in the other videos, discarding all the other useless things that are said, updating it to the latest versions of spring.
    Liked the video, keep it up.

  • @mrowox
    @mrowox Před rokem +6

    What I usually want to see in security videos is handling security for different type of roles. E.g a backend service for sellers and buyers, drivers and riders, students and teachers and so on

    • @jhonandersonperaltaochoa9833
      @jhonandersonperaltaochoa9833 Před rokem

      lo que tu quieres es manejo de roles

    • @anywho3934
      @anywho3934 Před rokem +2

      hey have you figured it out ? any other resources you found ? cause I have to implement it in project

    • @MyBinaryLife
      @MyBinaryLife Před 9 měsíci +2

      this logic is implemented in the SecurityFilterChain bean in your security configuration class

  • @aman_deep21
    @aman_deep21 Před rokem +10

    What a fantastic to the point video it is, Thank you so much Ethan for sharing valuable knowledge with all of us, my knowledge before and after watching this video has increased very much, looking forward to more of your videos.
    I had watched a bunch of videos on this topic, but your explanation made it much easy to follow and code along with you.

  • @CarlosSousa-cq3jc
    @CarlosSousa-cq3jc Před 3 měsíci

    After thousands of videos on spring security, I finally found an excellent one

  • @mohssinedardar410
    @mohssinedardar410 Před 11 měsíci +1

    Thank you so much! I highly recommend this video to anyone who wants to learn about Spring Security. It is a comprehensive and informative resource :)

  • @ShermukhammadKarimov
    @ShermukhammadKarimov Před 19 dny +1

    thanks for this amazing masterclass

  • @sajithkumarganesan9823
    @sajithkumarganesan9823 Před 11 měsíci +3

    Fantastic Video, Thank you for putting all this together in one place and having it explained very clearly and at a steady pace. Great work!!!

  • @sherlockholmes1605
    @sherlockholmes1605 Před rokem +8

    Liked the video! Here's an idea for future tutorials, can you create git branches for each chapter? this way we can go back and forth between different chapters to compare and contrast the changes.

  • @KieranMueller
    @KieranMueller Před rokem +4

    fyi if you are struggling with deprecated methods, or other things (example: I was unable to run project due to an error with the security filter chain method, request matchers specifically. You can always just downgrade the version of Spring Boot in your POM.xml to use what was used in the video and everything will work.

  • @superkobke
    @superkobke Před 11 měsíci +3

    Well done. Had some troubles with dependencies but overall your video is quite amazing! Thank you so much!

  • @romanlobko1293
    @romanlobko1293 Před 9 měsíci +1

    Amazing video! Such a complex topic was explained in a relatively simple way, thank you!

  • @maelina2222
    @maelina2222 Před 2 měsíci

    This is a really great tutorial. Thanks for this

  • @apurvasaha8871
    @apurvasaha8871 Před 11 měsíci +3

    Finally found a video for working around the older deprecated methods. Thank you very much.
    Edit:
    Unable to generate the jwt token during login, and getting a 401 Unauthorized error response back.
    Might be an issue with the deprecated jwt() method in oauth2ResourceServer(oauth2ResourceServerConfigurer::jwt()).
    But even with the new code oauth2ResourceServer(oauth2 -> oauth2.jwt(Customizer.withDefaults())) which provides a default implementation of the oauth2ResourceServerConfigurer class its not working.
    If anyone has faced the same issue and solved it, Please let me know. Thank you.

    • @TheMrBatica
      @TheMrBatica Před 11 měsíci +1

      I had exact the same issue but I skipped the line 'daoProvider.setPasswordEncoder(passwordEncoder());' under SecurityConfiguration class -> AuthenticationManager ... i had only "daoProvider.setUserDetailsService(detailsService);" hope it helps.

    • @manmitapatnaik2513
      @manmitapatnaik2513 Před 10 měsíci

      Yes please help in this. I am facing the same issue in intellij.

    • @manmitapatnaik2513
      @manmitapatnaik2513 Před 10 měsíci

      ​@@TheMrBaticaBut here daoAuthenticationProvider.setUserDetailsService(detailsService) is used . So what did you exactly change

    • @TheMrBatica
      @TheMrBatica Před 10 měsíci

      I wrote what was my problem. I didn't have -> 'daoProvider.setPasswordEncoder(passwordEncoder());

    • @bochunator1173
      @bochunator1173 Před 5 měsíci

      @@TheMrBatica Thanks, I had the same problem. Maybe someone has the same issue, so here I put proper code: @Bean
      public AuthenticationManager authManager(UserDetailsService detailsService) {
      DaoAuthenticationProvider daoProvider = new DaoAuthenticationProvider();
      daoProvider.setUserDetailsService(detailsService);
      daoProvider.setPasswordEncoder(passwordEncoder());
      return new ProviderManager(daoProvider);
      }

  • @koffeetalk
    @koffeetalk Před rokem +2

    Wow, first time I get it right. Thank you! This channel should have much more followers.
    I had some issues using Lombok, but when I did all the constructors, getters, setters manually it's finally worked! I guess I need more experience with constructors first, then use lombok.

    • @unknownkoder
      @unknownkoder  Před rokem +3

      I have also had issues with Lombok and I know others sometimes do as well. That is why I chose not to use it in this video.

  • @pranavthakkar2720
    @pranavthakkar2720 Před 7 měsíci

    The Best explanation I have even seen for spring security and jwt authentication. Thanks alot.

  • @ajaythombare6235
    @ajaythombare6235 Před 8 měsíci +3

    Spring Security is confusing but you did a great job.
    I found a lot of things in one place it helped me a lot.
    Thanks

  • @pradeepk2864
    @pradeepk2864 Před rokem +1

    perfect video, everything will go smoothly without getting any blocker for me, thanks brother for such a nice video😍

  • @shauryatomer1058
    @shauryatomer1058 Před 3 měsíci

    Thanks, for this great tutorial. Concise and blazingly fast.

  • @Mihai-mb4ew
    @Mihai-mb4ew Před 8 měsíci +2

    Man, this video is top notch. It is exactly what was missing from youtube. Could you, please, share with us, how did you figure all this out? What materials did you use for documentation or how was your thought process? Or maybe is it just experience? I watched Dan Vegas' video about JWT and I was really wondering how to achieve role authorization. I wouldn't have figured it out by myself.

  • @khacthinh23.06
    @khacthinh23.06 Před 9 měsíci

    tôi mới học khá lúng túng với spring security nhưng xem hết video của bạn tôi đã hiểu hơn rất nhiều, cảm ơn video của bạn.

  • @malbunb
    @malbunb Před 8 měsíci +2

    This is a greate tutorial. Thanks for that!

  • @SailBuddha
    @SailBuddha Před 8 měsíci

    This was fantastic! I followed it, but changed JPA to jdbcTemplate, because the road to Hell is paved with too much abstraction. Doing it that way, everything made perfect sense. Thank you!

  • @anurp4173
    @anurp4173 Před 8 měsíci

    Wow, you had me in the first 20 seconds. Got the problem absolutely spot on. thanks

    • @anurp4173
      @anurp4173 Před 7 měsíci

      I have done exactly as you have mentioned in the video upto configuring basic authentication, I keep getting 401 unauthorized exception despite supplying the username and password correctly

  • @alexbrun6863
    @alexbrun6863 Před 11 měsíci +1

    Absolute legend for making this

  • @kheydbeats
    @kheydbeats Před 11 měsíci

    It was indeed an absolute Behemoth of a video! Great tutorial, loved the pacing and the explanations. My subscribe and like is your good sir.

  • @maingawesley8212
    @maingawesley8212 Před 6 měsíci

    Trust me I haven't started this tutorial, I just read the description and I know Spring Security is bagged already😆😅

  • @professionalyoutubevideowa37

    Excellent tutorial. This is just what I needed to get started.

  • @DarkHid3
    @DarkHid3 Před 6 měsíci

    Good video, I watched it to the end, kinda hard to understand the whole thing because I've just started learning this framework but with the time for sure I will comeback and watch it again!

  • @paypalmymoneydfs
    @paypalmymoneydfs Před rokem +1

    It really was legit hell, YT algorithm was hiding you from me too 😂

  • @curiosabouttech
    @curiosabouttech Před 11 měsíci

    Thank you so much after searching alot i found this video that covered my ground up spring security and jwt thank you man.

  • @kwamekyeimonies
    @kwamekyeimonies Před 10 měsíci

    Yeah, very true.about 80% of the videos sessions use deprecated modules

  • @kumar-mh6hy
    @kumar-mh6hy Před 11 měsíci

    great content video with proper explanation keep doing contents like this 😍, i was looking for this type content for many days, i just wasted a lot of time but this saved my time and can explain how to save roles in DB annd retrieve it from DB and also about OAuth 2.0

  • @user-bm3ip7rg9i
    @user-bm3ip7rg9i Před 6 měsíci

    Absolutely amazing video, learned a lot from this, Thanks!!

  • @Justsomeguy492
    @Justsomeguy492 Před rokem

    thanks for a clear video. its incredible how spring security team has no good documentation for spring security 6

  • @user-ds9yw9km9w
    @user-ds9yw9km9w Před 4 měsíci

    Wonderful! Thanks!

  • @rashidcollins6337
    @rashidcollins6337 Před 9 měsíci

    one of the best security tutorial, clear explanation, am now confidence about spring security. Thank you @Unknown Coder

  • @harshpratapsinghshekhawat3034
    @harshpratapsinghshekhawat3034 Před 11 měsíci

    Much needed video on the upgraded ways of Spring Security, I'm glad that i was able to find it
    I have a request though, could you also post a video on formLogin using spring security

  • @existence_zero1692
    @existence_zero1692 Před rokem

    This video is the best spring security video ❤

  • @codex8797
    @codex8797 Před 7 měsíci +1

    Thank you so much bro, you are a life saver

  • @olliDeg
    @olliDeg Před 10 měsíci

    Great video, really helpful!

  • @tylerljohnson
    @tylerljohnson Před 9 měsíci

    excellent tutorial, and thank you for the timestamps!

  • @duri467
    @duri467 Před 4 měsíci

    mega tutorial man, THANKS !

  • @podcasts.clips.delivery

    Brother, you are a lifesaver!

  • @Justin_Jay
    @Justin_Jay Před 10 měsíci

    Wow. Thank you for this. Brilliant

  • @amitgrover1992
    @amitgrover1992 Před rokem +2

    Thank for the detailed explanation, please suggest how to do authentication for an application using Thymeleaf and MVC controller.

  • @jackedkarlmarx
    @jackedkarlmarx Před 2 měsíci +1

    Hey @Unknown Koder, I fixed the bug you encountered at 1:41:35, apparently this stems from a deprecated use of the jwt() Method, this is the correct way of configuring it as of Spring Security 6.1.x:
    .oauth2ResourceServer((oauth2) -> oauth2
    .jwt(jwtConfigurer -> jwtConfigurer.jwtAuthenticationConverter(jwtAuthenticationConverter())))

  • @mr_bla_
    @mr_bla_ Před rokem +1

    fantastic video thanks lot

  • @randomforest_dev
    @randomforest_dev Před rokem

    thanks for this awesome tutorial! very helpful!

  • @togashi-azul
    @togashi-azul Před 5 měsíci

    Very good video

  • @bojidaryordanov2035
    @bojidaryordanov2035 Před 9 měsíci

    Insane video. Ty so much

  • @user-uk7bd2nq8c
    @user-uk7bd2nq8c Před rokem

    Thank You! That was very helpful

  • @RotorVideos01
    @RotorVideos01 Před 6 měsíci

    Thank you for the video!

  • @michasasua8977
    @michasasua8977 Před 9 měsíci

    thank you for you effort, great job!

  • @t0khyo
    @t0khyo Před 10 měsíci

    Toturial hell got me here bro 🗿👍🏿

  • @sasaprograma
    @sasaprograma Před rokem

    Great content, thanks a lot!!

  • @manishareddy1
    @manishareddy1 Před 7 měsíci

    Great Video..Thank you so much

  • @bryanantoine8911
    @bryanantoine8911 Před rokem

    great video helped me a lot

  • @aashirsiddiqui177
    @aashirsiddiqui177 Před rokem

    Thanks for the vid, the deprecated APIs were a pain in the ass!

  • @oshannanayakkara6187
    @oshannanayakkara6187 Před 6 měsíci

    Bro this is golden

  • @BeneTanStarcraft
    @BeneTanStarcraft Před rokem

    Thanks for this video!

  • @gaddp
    @gaddp Před rokem

    sick hoodie man

  • @kvittitoe
    @kvittitoe Před 10 měsíci

    fantastic video

  • @MathiasDurrenberger
    @MathiasDurrenberger Před 7 měsíci

    Well done. A 1000 thanks

  • @luciano5026
    @luciano5026 Před 5 měsíci

    Thank you !!!!

  • @user-my9yc3bi8o
    @user-my9yc3bi8o Před 8 měsíci

    This video is amazing

  • @abdelmoneimelshafei6570
    @abdelmoneimelshafei6570 Před 11 měsíci

    Big thanks, Sir 🥰🥰🥰

  • @abdelkadermiladi5647
    @abdelkadermiladi5647 Před 7 měsíci

    THANK YOU

  • @vatana7
    @vatana7 Před rokem

    Thank you for your tutorial

  • @AhmetMurati
    @AhmetMurati Před rokem

    in first minutes I subscribed

  • @bajrangchapola6748
    @bajrangchapola6748 Před 7 měsíci

    Great Content!!! Can you make a video on how this authentication backend works with API gateway ? Any of the members if know

  • @sfgmbkmbksfg3722
    @sfgmbkmbksfg3722 Před 6 měsíci

    Mind blowing

  • @fahrican9708
    @fahrican9708 Před rokem

    great video!

  • @KuldipGhotane
    @KuldipGhotane Před rokem

    It was brilliant, please add oauth 2 support for the same repo

  • @lucaspraado
    @lucaspraado Před rokem +3

    Hi man, i have this erro in my securityConfiguration.
    line : .oauth2ResourceServer(OAuth2ResourceServerConfigurer::jwt)
    Error: 'jwt()' is deprecated and marked for removal
    Do you no fix?

    • @onadiranbayonle2368
      @onadiranbayonle2368 Před rokem

      you can have it like this
      http
      .oauth2ResourceServer(oauth2 -> oauth2
      .jwt(jwt -> jwt
      .jwtAuthenticationConverter(jwtAuthenticationConverter())
      )
      );

    • @josefjanda4008
      @josefjanda4008 Před 11 měsíci

      Is this some help for this part of code?

    • @ashishprakashsingh9073
      @ashishprakashsingh9073 Před 5 měsíci

      If anyone please help

  • @mathewfrancis4167
    @mathewfrancis4167 Před 10 měsíci +1

    Lovely just what i needed ... i'm new to this level of spring security ... so I hope this question isn't a silly one ... i would like to know how and where you generated the public and private key in you code... thank you :)

  • @Ayman_youtube
    @Ayman_youtube Před 6 měsíci

    thank you

  • @sabinsesumariyan3687
    @sabinsesumariyan3687 Před 8 měsíci

    very good content

  • @theominarinidemelo756

    TU É FODA MAN, VC É INCRIVELLLLLLLL

  • @carlosmollapaza9267
    @carlosmollapaza9267 Před 5 měsíci +1

    How to validate jwt is invalid or expired?

  • @merakli2022
    @merakli2022 Před 4 měsíci

    Thanks for the content. I believe java spring boot authentication is unnecessarily complex, clunky and requires too much boilerplate code.

  • @KieranMueller
    @KieranMueller Před rokem

    Love this intro, getting pissed off in tutorial hell with deprecated methods and little explanation

  • @eugenesmith9940
    @eugenesmith9940 Před rokem +1

    Do we really need to return user credentials (even if it's wrapped into some DTO without any sort of sensitive information)? I mean is it so-called "best practice" or we can just return simple status code? Is it mandatory to return anything or we can just use void methods in such cases?

    • @unknownkoder
      @unknownkoder  Před rokem +1

      Its not mandatory, however some applications may use some of the users information in the frontend of the application. This is why I send back basic info in the tutorial.

  • @simeonrubko1218
    @simeonrubko1218 Před rokem +2

    Fantastic video...only problem I recieved was at 1:35:00 during login There is no PasswordEncoder mapped for the id "null" i don't know if I have done something wrong or need to update spring security....it doesnt work with admin as well

    • @unknownkoder
      @unknownkoder  Před rokem

      Double check the repository in the description, I believe you are missing the mapping for the password encoder in the SecurityConfig class.

    • @simeonrubko1218
      @simeonrubko1218 Před rokem

      I double checked it and there was nothing missing..but when I copied all code from Config class it suddenly worked..thanks for the answer@@unknownkoder

    • @simeonrubko1218
      @simeonrubko1218 Před rokem

      I have one more question though..now that we have functional webapp working through postman.. how can I set up this to work within webpage ? I mean now we have working hashing and tokens.. I created login and register form.html but don't know how to connect those parts together

    • @rohity294
      @rohity294 Před 10 měsíci

      @@unknownkoder same error for me too.

    • @NishantBudia
      @NishantBudia Před 10 měsíci

      I had the same problem,
      for me I had not set the password encoder in the AuthenticationManager Bean in security config
      @Bean
      public AuthenticationManager authManager(UserDetailsService detailsService){
      DaoAuthenticationProvider daoProvider = new DaoAuthenticationProvider();
      daoProvider.setUserDetailsService(detailsService);
      daoProvider.setPasswordEncoder(passwordEncoder()); //this line I had not written
      return new ProviderManager(daoProvider);
      }

  • @Abdrabbo1
    @Abdrabbo1 Před 9 měsíci

    thank you sooooooooooo much!

  • @user-qd5vb1hh9i
    @user-qd5vb1hh9i Před 5 měsíci

    Greate tutorial,
    Am asking for getting an end-point which returns an access token by accepting refresh token, Note Access token should also be returned on login attempt.

  • @dimkaddd7674
    @dimkaddd7674 Před 5 měsíci

    why there is no doFilterInternal to filter the JWT and check if it was valid, and as I remember there was a secret key that is used to generate JWT

  • @QmGhq2T7CzQ
    @QmGhq2T7CzQ Před 11 měsíci

    I am using DOMA, I can't declare the Set authorities as it says it is not supported as persistent type.

  • @patel5532
    @patel5532 Před rokem

    I would be great if you upload separate small lecture like 15-25 min length tutorial, Long lecture are so overwhelming and it looser the interest.

    • @unknownkoder
      @unknownkoder  Před rokem +4

      This is why I created chapters, people can watch at their own pace and come back to specific places where they left off.

  • @kaydanderson4487
    @kaydanderson4487 Před 10 měsíci

    Awesome video, I followed everything you said (mostly) and got postman working at the end, but Im a bit confused on how to implement a login page and move to a secured page?

  • @user-cq3ew1ik2q
    @user-cq3ew1ik2q Před rokem +2

    Thanks very much for the vid! Really enjoy your teaching style!
    I am having a bit of a problem though, when I change the loadUserByUsername() method inside the UserService class to call findUserByUsername on the repo, the app stops accepting a valid username & password combination of admin.
    I have checked the database and the user admin tuple is definately there but I get an error 401 no matter what I enter?
    Have been stuck on this for a few days so would appreciate any help!
    Thanks very much in advance!

    • @unknownkoder
      @unknownkoder  Před rokem +1

      Sounds like a problem in the Spring security configuration most likely.

    • @user-cq3ew1ik2q
      @user-cq3ew1ik2q Před rokem

      @@unknownkoder Configuration
      public class SecurityConfig {
      @Bean
      public PasswordEncoder passwordEncoder(){
      return new BCryptPasswordEncoder();
      }
      @Bean
      public AuthenticationManager authenticationManager(UserDetailsService detailsService){
      DaoAuthenticationProvider daoAuthenticationProvider = new DaoAuthenticationProvider();
      daoAuthenticationProvider.setUserDetailsService(detailsService);
      return new ProviderManager(daoAuthenticationProvider);
      }
      @Bean
      public SecurityFilterChain filterChain (HttpSecurity http) throws Exception{
      http
      .authorizeHttpRequests((authz) ->
      authz.anyRequest().authenticated()
      )
      .httpBasic(withDefaults());
      return http.build();
      }
      }
      This is my ssecurityConfig at 47 mins - Can you see anything that might be causing this?
      Thanks in advance!

    • @paulosamvrosiadis3484
      @paulosamvrosiadis3484 Před rokem

      i have the same problem , have you solved it ?

    • @user-cq3ew1ik2q
      @user-cq3ew1ik2q Před rokem

      @@paulosamvrosiadis3484 Yes!
      Turns out I wasn't sending the POST request properly. Using postman & ensuring I was sending a POST request properly helped solve it. Goodluck!

    • @hamzaazeem4602
      @hamzaazeem4602 Před 11 měsíci

      Same problem :(

  • @user-zs7nn9fl1e
    @user-zs7nn9fl1e Před 11 měsíci

    best ever

  • @satyaprasannadash5401
    @satyaprasannadash5401 Před rokem +1

    the video is really helpful, but faced a problem, can you help me out ?
    1:09:44 => there is no arg for httpBasic() method in Filtercahain config method
    1:09:47 => Suddunly a the arg appeared as httpBasic(withDefaults())
    can you explain the purpose of withDefault() method? did you create it or it will be refered from somewhere else

    • @unknownkoder
      @unknownkoder  Před rokem +1

      If you take a look at the repository in the description, and go to the AuthConfiguration class you will see that withDefault() is a static import from Spring Security.

    • @satyaprasannadash5401
      @satyaprasannadash5401 Před rokem +2

      @@unknownkoder Thanks for clarification, btw the actual problem is, I am facing while adding the permitAll() access to the auth/** for registraion at 1:09:50 , I got an error while starting the server after adding it i.e
      Factory method 'filterChain' threw exception with message: This method cannot decide whether these patterns are Spring MVC patterns or not. If this endpoint is a Spring MVC endpoint, please use requestMatchers(MvcRequestMatcher); otherwise, please use requestMatchers(AntPathRequestMatcher).
      so I think it may prevented by adding withDefaults(), but showing same even after addding, can you help me out ?

  • @abdulaibah9396
    @abdulaibah9396 Před 11 měsíci +1

    towards the end when we were setting up the jwt auth converter alot of the stuff you shown was deprecated. So i switched it over to the more recent stuff but when i coded it im getting an 403 forbidden error.

    • @goshochernii
      @goshochernii Před 3 měsíci

      after getting the jwt token right? did you find a solution?