Spring Tips: the Spring Authorization Server: securing SPAs and messaging flows
HTML-код
- Опубликовано: 1 июн 2024
- hi, Spring fans! In this installment, we continue our look at the venerable Spring Authorization Server, this time looking at how to extend its use beyond just HTTP APIs, to secure single page applications and messaging flows with OAuth.
Наука
Interesting, thank you very much!
Great video. I tried this token relay and gateway proxy thing, but the gateway client does not refresh the token. Is there any additional configuration that I missed?
Thank you very much
There's brand new spring cloud gateway mvc but it misses a good hands on tutorial. I really wish to use it instead of reactive one. Do You plan to do such tutorial?
How about fixing Spring Boot WebMVC & Spring Boot Security Native executables and images issue in latest SB Security version?
Is there a video on using grailvm to compile spring config server?
The note popup sound is too loud/uneasy on the ears, maybe because audio quality in this one seems slightly off.
Is Spring Authorization Server support user Registration? if not how can I handle user register as an e-commerce app and wanna user signup before place orders?
stay tuned for the next installment wherein we look at durable implementations of the `UserDetailsService`, `RegisteredClientRepository`, etc., using something like JDBC. You can build a self service signup form on top of that database.
do you have github repository link for this exercise?
Are you sure about the CSRF protection disabling in an application relying on sessions, like the gateway configured with oauth2Login is in your system? This looks like a big security issue that many watchers of this video will follow...