Okta in Spring Boot implementation with Spring Security and oauth2 | LIVE DEMO | Code Decode
HTML-код
- Опубликовано: 7 сен 2024
- In this example we have explained Okta Spring boot with oauth2 and Spring Security.
Udemy Course of Code Decode on Microservice k8s AWS CICD link:
openinapp.co/u...
Course Description Video :
yt.openinapp.c...
Next Level App download link : next-level.one...
Create an Account in Okta
Login / Register to developer.okta...
Okta is our - Authorization server. It will provide us Access token to access our secured APIs.
Okta internally uses Oauth2.0 as underlying protocol for security implementation.
Okta provides a pre-configured custom authorization server called default.
You can register or login with Google / Github etc.
After successful registration , Next you need to create an application
Click on 3 lines in top left corner there u can see application dropdown
Click on applications
Then click on Create App Integration and choose the type of authorization method you want to use.
We need API Services
Interact with Okta APIs using the scoped OAuth 2.0 access tokens for machine-to-machine authentication.
Name your application
After that remember to save imp information - such as client credentials, client secrets, and Okta domain id that will be used later for our application
Client Id = Our public identifier to the OAuth flows.
Secret Id = Password for the client ID.
Okta Domain ID = The ID of the organization where our application is located.
Next Go to the Security tab and click on the API section
Here we have the following properties: authorization server name, audience, and issuer URI.
Audience = the claim aud to identify the recipient that the JWT is intended for.
Authorization server name = the name of the authorization server. In this case, I’m using the default one, but you can also create your own authorization server with the proper policies, scope, and claims.
Issuer URL is a unique identifier and a point to provide important metadata about the server, including a request for a token by adding the /v1/token path.
Create Spring Boot Application
Create a Spring boot project
Add Okta starter dependency - okta-spring-boot-starter - This will add all required classes for securing Spring application
Now we need to configure the API, adding some properties to our application.yml.
Now if you try to run Application - it will create error - Your Okta Issuer URL is missing. You can copy your domain from the Okta Developer Console
okta:
oauth2:
issuer: ${yourDomainId}/oauth2/default
Now after Securing the Application. Create any controller and rest endpoint.
Secure your Spring Boot Application
You will not be able to access the Get request also with okta implemented
To Test your application now - Try hitting through postman and u can see 401 - unauthorised
Create Custom scope as “ custom “ in okta.
use it to get token and use that token in apis.
In order for someone to make a request to your API, they need an access token. How an access token is obtained depends on the client making the request
Most Asked Core Java Interview Questions and Answers: • Core Java frequently a...
Advance Java Interview Questions and Answers: • Advance Java Interview...
Java 8 Interview Questions and Answers: • Java 8 Interview Quest...
Hibernate Interview Questions and Answers:
• Hibernate Interview Qu...
Spring Boot Interview Questions and Answers:
• Advance Java Interview...
Angular Playlist: • Angular Course Introdu...
SQL Playlist: • SQL Interview Question...
GIT: • GIT
Subscriber and Follow Code Decode
Subscriber Code Decode: www.youtube.co...
LinkedIn : / codedecodeyoutube
Instagram: / codedecode25
#okta#springsecurity #codedecode
I have started preparing for job interviews and following all the videos you uploaded in this channel from past fews day. I must say you did a great job here. Thank you for all the hardwork you are putting and keep sharing your valuable knowledge with us. Thanks.
Means a lot to us 🙏🙏. Keep learning keep shining Man 🌟🌟🌟🌟
Great explanation and in depth coverage of the topic. May GOD bless you. Doing a great job.
Thanks Shalini 🙂👍
One of the best videos on OAuth 2.0 I have come across. Thank infinitely
Thank you so much
I was looking for okta nd understood from beginning to end. Thanks a lot dear🥰.. learning a lot from your videos
Glad to hear that Gayatri 😊👍
I feel like CODE DECODE become university. Thank You.
Thanks Ashish 😊👍
Thank you!
To me this was a lot more straight-forward than keycloak, and you explained it very clearly.
Thanks 😊👍
Very informative video to learn about Okta and token generation.
Thanks Robin 😊
Excellent video.. really appreciate your efforts to explain in detailed manner ..its very clear so that fresher can also learn without any difficulty..god bless you sister.
Thanks for the motivation bavana
you are a time saver. very clear and crisp explanation.
Thanks 🙏🙏👍👍
Thanks mam nicely explained 🙏.
and please bring other videos on this concept like custom configuration.
and implement such way that we can use it in Enterprise application level.
Thanks
Sure we will do that👍👍🙂
Wow Great Explination 👍👍👍👍👍👍
Just watching Okta content and your popped up thanks 🙏
Thanks Pratik 🙂🙂👍
Yet another great video!! I have been following your videos and content. It's been amazing. Thank you soo much for your time and effort. Please upload the next part of this that is securing only post apis and not get apis.
Sure 👍Thanks 👍
Excellent content video. Please provide continution madam🥰👌👌
Thank :)
Good video. I am jot sure if u will make the next part of it.
Thank you very well explained in short video ,please make details series about security
Sure Swapnil 👍
Yes. I want a video on the implementation you referred to in the last 1 minute ie integrating okta with webszcurtiyconfigureadapter and ant matchers for bypassing certain end points.
Sure Tanson 👍👍
Indian youtubers are on direct point
Thanks
Thank you so much for the amazing insights into the profiles.... Highly helpful and educative. Keep creating more content.
Hello Maam your lectures helped me a lot to crack big tech companies interview round Thanks a lot for this can you please do a session for MYBatis also
Thanks for the video. Please upload further videos related to security configuration and all.
Hey!!!! Your way of presenting is too good.
Thanks Vishnu 🙂🙂
Seriously Its awesome. Pls make more videos !!!!!!!!
Thanks Siddharth 🙂🙂👍👍
Love your content madam, love from Gujarat😊.
Please make a same video with Keycloak too.
Please make that video.
Sure Anjaniy 😃😃🙂👍
@@CodeDecode thanks in advanced.
Very useful video as always , but one thing i want to know that how the internals of these works in spring application which filter , AuthenticationManager , provider are getting used to authorize client and storing Authenticated Objects if these things you explain in the next video will be awesome and will be next level of knowledge.❤️❤️❤️
Sure we will do that 👍👍
@@CodeDecode Is this video available , if so can you pleaseee share it will be very helpful
i learned a lot from you ,tqsm🌹
I'm so glad! ❤️
First comment and first like.. i waiting for this.. thank you mam
Thanks a lot🙂👍👍😃
Please make more video on okta authentication and authorization for microservices communication including api gateway
Sure 👍
nice explanation
Your contents are amazing and so useful. I have been watching them recently and learning so much from you. Really Appreciate your efforts. Could you please share the link of next part of this video if it is uploaded? Thank you again.
Good exercice for okta jwt
thanks
Hi, your videos are so informative I learned a lot from your videos thank you for making informative videos for us. I have a request could you please make a video where linkedin and twitter used as social login platform instead of okta that can be very useful. Please make a video on this topic
Thank you for all hard work .plz make an extension
Thanks . Sure Rakesh 👍👍
just wow!,Excelent content,Thanks alot !
Very good tutorial
Thanks
Hi Mam, I am big fan of your channel, regarding SSO how to modify the already existing backend system because that systems already have user information which internally used in different parts of the application, please share any video on this.
Very well explained!! Thanks to good video
Thanks Aastha ❤️
Thank its very helpful knowledge, may i know how can we define in controller the. Specific endpoint can be access by scope(roles) which based while creating token, could you help me that to implement please.
We will create video on that soon👍
Thank you so much
You're most welcome
Hi code decode member, I really want to learn from you. Do you conduct offline trainings?
Hope you will do the user registration part too, thanks
User registration part? Can u plz elaborate?
Great
Thanks😇
Grate Video mam.
Please make extension of this video.
Thank you.
sure omkar we will create it soon
HI Nice explanation
I have two questions:
How can i have okta validation without "/okta" in url?
How to extract user information and pass it to different function from jwt?
MORE VIDEO ON THIS PLEASE
Sure ujjwal we will create it soon
Thank you Mam
Can you create a demo with new authorization server please?
Can we have a securityconfig class video please ?
6:00 Yes please create
🙏🙏🙏please upload one video for authorization_code as grant type🙏🙏🙏
@codedecode The DPoP proof JWT header is missing.
I'm getting this while generating token
same could you solve it?
Hello mam
Currently its showing error at 16:22 The DPoP proof JWT header is missing
please provide a way to resolve this
same could you solve it?
Thank you for your efforts and I am getting 404 error.
{
"error": "invalid_dpop_proof",
"error_description": "The DPoP proof JWT header is missing."
}
Could you please help me.
Getting same error
same could you solve it?
Please create more content on oauth
Sure we will create it soon
Please attach a link in the comments of Single sign on, which you said you'll discuss in next video, i can't find by searching on your channel.
do you have a oauth2 with okta ODIC-openID web application without postman API, please post asap
What do you require exactly? Spring boot application?
Hi,
I follow the steps in the video but while generating the token using postman i am getting below error:
"error": "unsupported_grant_type",
"error_description": "The authorization grant type is not supported by the authorization server. Configured grant types: [client_credentials]."
what could be issue here?
In recent time DPoP came into picture for JWT token and this example is not working. i am getting "invalid_dpop_proof" error. It would be great if you could make a video about this issue.
same could you solve it?
{
"error": "invalid_dpop_proof",
"error_description": "The DPoP proof JWT header is missing."
}
what can be done in this case, while generating token
same could you solve it?
Please add the next video
The Okta UI has changed.. can you show a sample with the latest UI ?
Sure👍
pls do customization auth server as well mam
Pls create the next video for okta
Sure 👍👍
I have created application in same way you explained but it's not working
Issue?
I have configured all as you told and getting torn from jwt token as well. When I pass this token as basic with JWT and passed credentials etc. But getting 401 from postman when I hit my application. Am I Missing anything?
Can you please create the second part of this
Sure Gaurav 👍
@@CodeDecode Yes pls. I need it desperately.
We want part2 of okta
Can you please explain and upload the spring batch
U Have any github account
Can u show the role based also OIDC one
Can you please solve leetcode with basic logic
Sure we are already uploading many such videos on channel
do we have the extension of this video series?
Mam, please make extension of this video.. Thanks.
Sure 👍👍
How to get access token for a specifc user ?
Access tokens have claims. Claims have user info. From front end get access token signing that specific user, you will then get all user info in your token itself
@@CodeDecode in this video to get the access token you have passed username and password as client id and client secret. I have 5 users in the Okta directory. When i try to get access token by passing those users credentials, i cannot get access token. How to resolve this ?
14:20 you will cry why you are not getting access token 🤣🤣
I tried the same way what tou did for my project POC am getting the below error couldn't retrieve remote JWK set PKIX path building failed sun.security.certpath.suncertpathbuilderexception
Please suggest what can be done for this issue
plz make one more video on okta..
Sure 👍👍
Im getting below error
{
"error": "invalid_dpop_proof",
"error_description": "The DPoP proof JWT header is missing."
}
same could you solve it?