How to secure SpringBoot REST APIs using AWS Cognito OAuth2 scopes?
HTML-код
- Опубликовано: 4 авг 2024
- This video explains how to build a SpringBoot application from scratch and secure the APIs using the AWS Cognito OAuth2 scopes. It uses the OAuth 2.0 client credentials grant to get access token from AWS Cognito and use that access token to call the SpringBoot APIs.
#identity #iam #security #sso #aws #amazonwebservices #oidc #idtoken #spring #springboot #openidconnect #java #javaprogramming #javasecurity #springsecurity #oauth #oauth2 #apisecurity Наука
Please subscribe to this channel for regular updates ruclips.net/channel/UCEEayyyCrJO94FYlzF0NLTg
Thank You for the support.
Great job, thank you for the tutorial!
Glad it was helpful!
Please like, share & subscribe to this channel!
Thanks for the video.
Thank you. Please subscribe to support this channel.
Sir can you make video on Google sign in with cognito+ how to connect with spring boot backend
There are three videos related to this. I will try to post a single video combining these. But, you can watch these videos to get an idea of how it will work.
ruclips.net/video/7r0eBNBNEZ8/видео.html - How to integrate AWS Cognito with Google Social login?
ruclips.net/video/uWz2t1cVYUQ/видео.html - How to integrate Google Sign-in with your Web Application?
ruclips.net/video/7zyhENQRb7c/видео.html - How to secure SpringBoot REST APIs using AWS Cognito OAuth2 scopes?
Hello, your video is very helpfull. Just a doubt, if I want to use roles that are coming from azure AD integrated with cognito, I just have to change to the roles instead scopes?
I think you can use the roles. You can try the expression based access control to check the roles in JWT token docs.spring.io/spring-security/reference/5.8/servlet/authorization/expression-based.html
Thank you so much man! One more subscriber!@@securityinaction1018
HI, thanks for the video. How do we create new users and then provide them with an access token to auth to the app?
Please refer these videos. These videos explain how to integrate with Cognito using OIDC authorization code grant flow that involves user authentication.
ruclips.net/video/o2IM9oI6Eqk/видео.html - How to integrate Java Spring Boot application with AWS Cognito using OIDC?
ruclips.net/video/lWVmJ1CXzMo/видео.html - How to setup OpenID Connect Authorization code grant flow with PKCE using AWS Cognito?
Is this for Authentication and Authorization both? or just authorization
It's Authorization for APIs.
@@securityinaction1018 As i have to implement both Authentication and authorization both in my one api what do i follow? shall i implement this for authorization and ruclips.net/video/o2IM9oI6Eqk/видео.html for authentication?
Yes, that's right. You can integrate your web app using OIDC and secure APIs using access token
Please like, subscribe & share!! Thanks in advance.