Spring Tips: the Spring Authorization Server: securing SPAs and messaging flows
Vložit
- čas přidán 12. 07. 2024
- hi, Spring fans! In this installment, we continue our look at the venerable Spring Authorization Server, this time looking at how to extend its use beyond just HTTP APIs, to secure single page applications and messaging flows with OAuth.
- Věda a technologie
Interesting, thank you very much!
Thank you very much
Great video. I tried this token relay and gateway proxy thing, but the gateway client does not refresh the token. Is there any additional configuration that I missed?
Is Spring Authorization Server support user Registration? if not how can I handle user register as an e-commerce app and wanna user signup before place orders?
stay tuned for the next installment wherein we look at durable implementations of the `UserDetailsService`, `RegisteredClientRepository`, etc., using something like JDBC. You can build a self service signup form on top of that database.
The note popup sound is too loud/uneasy on the ears, maybe because audio quality in this one seems slightly off.
Is there a video on using grailvm to compile spring config server?
How about fixing Spring Boot WebMVC & Spring Boot Security Native executables and images issue in latest SB Security version?
There's brand new spring cloud gateway mvc but it misses a good hands on tutorial. I really wish to use it instead of reactive one. Do You plan to do such tutorial?
do you have github repository link for this exercise?
Are you sure about the CSRF protection disabling in an application relying on sessions, like the gateway configured with oauth2Login is in your system? This looks like a big security issue that many watchers of this video will follow...