Tag Archive

OAuth 2.0

Multi-tenant OAuth 2.0 Resource Servers (with Spring Security 5)

TLDR;

Merry Microservices: Part 3 ‘Policy Service’–Managing application-specific authorization based on identity and permissions

This is Part 3 of the series “Merry Microservices”

Stop overloading JWTs with permission claims

Here’s why…

Merry Microservices: Part 2 ‘UI Gateway’–A React UI served by a Spring Cloud Gateway OAuth 2.0 Client

This is Part 2 of the series “Merry Microservices”

Merry Microservices: Part 1 ‘Resource Server’–An OAuth 2.0 Resource Server with Webflux and R2DBC

This is Part 1 of the series “Merry Microservices”

Merry Microservices: An Introduction–Reactive, Full Stack and Policy-Driven on Kubernetes

Implementing Microservices Security Protocols and Patterns with Spring Security 5.2

Last month, I had the opportunity to speak with Joe Grandja at SpringOne Platform 2019 in Austin, Texas. In the talk, we break apart the pieces of an intentionally non-trivial demo to show how you can secure real-life microservices architectures with OAuth 2.0 and OpenID Connect.

HttpInvoker over OAuth 2.0 with Spring Boot 2.2

Ok, so HttpInvoker may not be the what the hipsters are using (it’s been around since 2003 or so) but there are still plenty of Java desktop applications out there communicating over RMI or EJB that could use a security boost by using OAuth 2.0.

JHipster (3.5.1) Microservices with UAA

The JHipster UAA (User Account and Authentication) server option shouldn’t be confused with cloudfoundry’s UAA – although they do similar things.

Back to Top ↑

OAuth

Multi-tenant OAuth 2.0 Resource Servers (with Spring Security 5)

TLDR;

Merry Microservices: Part 3 ‘Policy Service’–Managing application-specific authorization based on identity and permissions

This is Part 3 of the series “Merry Microservices”

Merry Microservices: Part 2 ‘UI Gateway’–A React UI served by a Spring Cloud Gateway OAuth 2.0 Client

This is Part 2 of the series “Merry Microservices”

Merry Microservices: Part 1 ‘Resource Server’–An OAuth 2.0 Resource Server with Webflux and R2DBC

This is Part 1 of the series “Merry Microservices”

Merry Microservices: An Introduction–Reactive, Full Stack and Policy-Driven on Kubernetes

Implementing Microservices Security Protocols and Patterns with Spring Security 5.2

Last month, I had the opportunity to speak with Joe Grandja at SpringOne Platform 2019 in Austin, Texas. In the talk, we break apart the pieces of an intentionally non-trivial demo to show how you can secure real-life microservices architectures with OAuth 2.0 and OpenID Connect.

HttpInvoker over OAuth 2.0 with Spring Boot 2.2

Ok, so HttpInvoker may not be the what the hipsters are using (it’s been around since 2003 or so) but there are still plenty of Java desktop applications out there communicating over RMI or EJB that could use a security boost by using OAuth 2.0.

JHipster (3.5.1) Microservices with UAA

The JHipster UAA (User Account and Authentication) server option shouldn’t be confused with cloudfoundry’s UAA – although they do similar things.

Back to Top ↑

Spring Security

Multi-tenant OAuth 2.0 Resource Servers (with Spring Security 5)

TLDR;

Merry Microservices: Part 3 ‘Policy Service’–Managing application-specific authorization based on identity and permissions

This is Part 3 of the series “Merry Microservices”

Merry Microservices: Part 1 ‘Resource Server’–An OAuth 2.0 Resource Server with Webflux and R2DBC

This is Part 1 of the series “Merry Microservices”

Merry Microservices: An Introduction–Reactive, Full Stack and Policy-Driven on Kubernetes

Implementing Microservices Security Protocols and Patterns with Spring Security 5.2

Last month, I had the opportunity to speak with Joe Grandja at SpringOne Platform 2019 in Austin, Texas. In the talk, we break apart the pieces of an intentionally non-trivial demo to show how you can secure real-life microservices architectures with OAuth 2.0 and OpenID Connect.

HttpInvoker over OAuth 2.0 with Spring Boot 2.2

Ok, so HttpInvoker may not be the what the hipsters are using (it’s been around since 2003 or so) but there are still plenty of Java desktop applications out there communicating over RMI or EJB that could use a security boost by using OAuth 2.0.

Back to Top ↑

OpenID Connect

Cat’s Nest! OpenID Connect Authentication with NestJS, React, and MongoDB

In this post, we’ll explore how to create a NestJS back-end that handles OpenID Connect authentication for a React app that it serves up with an express-session. The session store will share the MongoDB instance that is also used for storing cats.

Merry Microservices: Part 3 ‘Policy Service’–Managing application-specific authorization based on identity and permissions

This is Part 3 of the series “Merry Microservices”

Stop overloading JWTs with permission claims

Here’s why…

Merry Microservices: Part 2 ‘UI Gateway’–A React UI served by a Spring Cloud Gateway OAuth 2.0 Client

This is Part 2 of the series “Merry Microservices”

Merry Microservices: An Introduction–Reactive, Full Stack and Policy-Driven on Kubernetes

Implementing Microservices Security Protocols and Patterns with Spring Security 5.2

Last month, I had the opportunity to speak with Joe Grandja at SpringOne Platform 2019 in Austin, Texas. In the talk, we break apart the pieces of an intentionally non-trivial demo to show how you can secure real-life microservices architectures with OAuth 2.0 and OpenID Connect.

Back to Top ↑

Spring Boot

Environment Variable Generator for Spring Boot

I like setting and overriding Spring Boot app configuration using environment variables.

Multi-tenant OAuth 2.0 Resource Servers (with Spring Security 5)

TLDR;

Merry Microservices: Part 3 ‘Policy Service’–Managing application-specific authorization based on identity and permissions

This is Part 3 of the series “Merry Microservices”

Merry Microservices: Part 2 ‘UI Gateway’–A React UI served by a Spring Cloud Gateway OAuth 2.0 Client

This is Part 2 of the series “Merry Microservices”

Merry Microservices: Part 1 ‘Resource Server’–An OAuth 2.0 Resource Server with Webflux and R2DBC

This is Part 1 of the series “Merry Microservices”

Merry Microservices: An Introduction–Reactive, Full Stack and Policy-Driven on Kubernetes

Back to Top ↑

Tutorial

Merry Microservices: Part 3 ‘Policy Service’–Managing application-specific authorization based on identity and permissions

This is Part 3 of the series “Merry Microservices”

Merry Microservices: Part 2 ‘UI Gateway’–A React UI served by a Spring Cloud Gateway OAuth 2.0 Client

This is Part 2 of the series “Merry Microservices”

Merry Microservices: Part 1 ‘Resource Server’–An OAuth 2.0 Resource Server with Webflux and R2DBC

This is Part 1 of the series “Merry Microservices”

Merry Microservices: An Introduction–Reactive, Full Stack and Policy-Driven on Kubernetes

JHipster (3.5.1) Microservices with UAA

The JHipster UAA (User Account and Authentication) server option shouldn’t be confused with cloudfoundry’s UAA – although they do similar things.

Back to Top ↑

Keycloak

Merry Microservices: Part 3 ‘Policy Service’–Managing application-specific authorization based on identity and permissions

This is Part 3 of the series “Merry Microservices”

Merry Microservices: Part 2 ‘UI Gateway’–A React UI served by a Spring Cloud Gateway OAuth 2.0 Client

This is Part 2 of the series “Merry Microservices”

Merry Microservices: Part 1 ‘Resource Server’–An OAuth 2.0 Resource Server with Webflux and R2DBC

This is Part 1 of the series “Merry Microservices”

Merry Microservices: An Introduction–Reactive, Full Stack and Policy-Driven on Kubernetes

Back to Top ↑

Reactive

Merry Microservices: Part 3 ‘Policy Service’–Managing application-specific authorization based on identity and permissions

This is Part 3 of the series “Merry Microservices”

Merry Microservices: Part 2 ‘UI Gateway’–A React UI served by a Spring Cloud Gateway OAuth 2.0 Client

This is Part 2 of the series “Merry Microservices”

Merry Microservices: Part 1 ‘Resource Server’–An OAuth 2.0 Resource Server with Webflux and R2DBC

This is Part 1 of the series “Merry Microservices”

Merry Microservices: An Introduction–Reactive, Full Stack and Policy-Driven on Kubernetes

Back to Top ↑

Webflux

Merry Microservices: Part 3 ‘Policy Service’–Managing application-specific authorization based on identity and permissions

This is Part 3 of the series “Merry Microservices”

Merry Microservices: Part 2 ‘UI Gateway’–A React UI served by a Spring Cloud Gateway OAuth 2.0 Client

This is Part 2 of the series “Merry Microservices”

Merry Microservices: Part 1 ‘Resource Server’–An OAuth 2.0 Resource Server with Webflux and R2DBC

This is Part 1 of the series “Merry Microservices”

Merry Microservices: An Introduction–Reactive, Full Stack and Policy-Driven on Kubernetes

Back to Top ↑

React

Cat’s Nest! OpenID Connect Authentication with NestJS, React, and MongoDB

In this post, we’ll explore how to create a NestJS back-end that handles OpenID Connect authentication for a React app that it serves up with an express-session. The session store will share the MongoDB instance that is also used for storing cats.

Merry Microservices: Part 3 ‘Policy Service’–Managing application-specific authorization based on identity and permissions

This is Part 3 of the series “Merry Microservices”

Merry Microservices: Part 2 ‘UI Gateway’–A React UI served by a Spring Cloud Gateway OAuth 2.0 Client

This is Part 2 of the series “Merry Microservices”

Merry Microservices: An Introduction–Reactive, Full Stack and Policy-Driven on Kubernetes

Back to Top ↑

TypeScript

Cat’s Nest! OpenID Connect Authentication with NestJS, React, and MongoDB

In this post, we’ll explore how to create a NestJS back-end that handles OpenID Connect authentication for a React app that it serves up with an express-session. The session store will share the MongoDB instance that is also used for storing cats.

Merry Microservices: Part 3 ‘Policy Service’–Managing application-specific authorization based on identity and permissions

This is Part 3 of the series “Merry Microservices”

Merry Microservices: Part 2 ‘UI Gateway’–A React UI served by a Spring Cloud Gateway OAuth 2.0 Client

This is Part 2 of the series “Merry Microservices”

Merry Microservices: An Introduction–Reactive, Full Stack and Policy-Driven on Kubernetes

Back to Top ↑

R2DBC

Merry Microservices: Part 3 ‘Policy Service’–Managing application-specific authorization based on identity and permissions

This is Part 3 of the series “Merry Microservices”

Merry Microservices: Part 2 ‘UI Gateway’–A React UI served by a Spring Cloud Gateway OAuth 2.0 Client

This is Part 2 of the series “Merry Microservices”

Merry Microservices: Part 1 ‘Resource Server’–An OAuth 2.0 Resource Server with Webflux and R2DBC

This is Part 1 of the series “Merry Microservices”

Merry Microservices: An Introduction–Reactive, Full Stack and Policy-Driven on Kubernetes

Back to Top ↑

Microservices

Merry Microservices: Part 3 ‘Policy Service’–Managing application-specific authorization based on identity and permissions

This is Part 3 of the series “Merry Microservices”

Merry Microservices: Part 2 ‘UI Gateway’–A React UI served by a Spring Cloud Gateway OAuth 2.0 Client

This is Part 2 of the series “Merry Microservices”

Merry Microservices: Part 1 ‘Resource Server’–An OAuth 2.0 Resource Server with Webflux and R2DBC

This is Part 1 of the series “Merry Microservices”

Merry Microservices: An Introduction–Reactive, Full Stack and Policy-Driven on Kubernetes

Back to Top ↑

Hooks

Merry Microservices: Part 3 ‘Policy Service’–Managing application-specific authorization based on identity and permissions

This is Part 3 of the series “Merry Microservices”

Merry Microservices: Part 2 ‘UI Gateway’–A React UI served by a Spring Cloud Gateway OAuth 2.0 Client

This is Part 2 of the series “Merry Microservices”

Merry Microservices: An Introduction–Reactive, Full Stack and Policy-Driven on Kubernetes

Back to Top ↑

Kubernetes

Environment Variable Generator for Spring Boot

I like setting and overriding Spring Boot app configuration using environment variables.

Merry Microservices: An Introduction–Reactive, Full Stack and Policy-Driven on Kubernetes

Back to Top ↑

Create React App

Merry Microservices: Part 3 ‘Policy Service’–Managing application-specific authorization based on identity and permissions

This is Part 3 of the series “Merry Microservices”

Merry Microservices: Part 2 ‘UI Gateway’–A React UI served by a Spring Cloud Gateway OAuth 2.0 Client

This is Part 2 of the series “Merry Microservices”

Back to Top ↑

JWT

Multi-tenant OAuth 2.0 Resource Servers (with Spring Security 5)

TLDR;

Stop overloading JWTs with permission claims

Here’s why…

Back to Top ↑

JHipster

JHipster (3.5.1) Microservices with UAA

The JHipster UAA (User Account and Authentication) server option shouldn’t be confused with cloudfoundry’s UAA – although they do similar things.

Back to Top ↑

Spring Framework

HttpInvoker over OAuth 2.0 with Spring Boot 2.2

Ok, so HttpInvoker may not be the what the hipsters are using (it’s been around since 2003 or so) but there are still plenty of Java desktop applications out there communicating over RMI or EJB that could use a security boost by using OAuth 2.0.

Back to Top ↑

RMI

HttpInvoker over OAuth 2.0 with Spring Boot 2.2

Ok, so HttpInvoker may not be the what the hipsters are using (it’s been around since 2003 or so) but there are still plenty of Java desktop applications out there communicating over RMI or EJB that could use a security boost by using OAuth 2.0.

Back to Top ↑

Swing

HttpInvoker over OAuth 2.0 with Spring Boot 2.2

Ok, so HttpInvoker may not be the what the hipsters are using (it’s been around since 2003 or so) but there are still plenty of Java desktop applications out there communicating over RMI or EJB that could use a security boost by using OAuth 2.0.

Back to Top ↑

Spring Cloud Gateway

Merry Microservices: An Introduction–Reactive, Full Stack and Policy-Driven on Kubernetes

Back to Top ↑

Jenkins X

Merry Microservices: An Introduction–Reactive, Full Stack and Policy-Driven on Kubernetes

Back to Top ↑

DevOps

Merry Microservices: An Introduction–Reactive, Full Stack and Policy-Driven on Kubernetes

Back to Top ↑

Authorization

Stop overloading JWTs with permission claims

Here’s why…

Back to Top ↑

Permissions

Stop overloading JWTs with permission claims

Here’s why…

Back to Top ↑

Roles

Stop overloading JWTs with permission claims

Here’s why…

Back to Top ↑

Identity

Stop overloading JWTs with permission claims

Here’s why…

Back to Top ↑

Scopes

Stop overloading JWTs with permission claims

Here’s why…

Back to Top ↑

RBAC

Stop overloading JWTs with permission claims

Here’s why…

Back to Top ↑

Authentication

Cat’s Nest! OpenID Connect Authentication with NestJS, React, and MongoDB

In this post, we’ll explore how to create a NestJS back-end that handles OpenID Connect authentication for a React app that it serves up with an express-session. The session store will share the MongoDB instance that is also used for storing cats.

Back to Top ↑

MongoDB

Cat’s Nest! OpenID Connect Authentication with NestJS, React, and MongoDB

In this post, we’ll explore how to create a NestJS back-end that handles OpenID Connect authentication for a React app that it serves up with an express-session. The session store will share the MongoDB instance that is also used for storing cats.

Back to Top ↑

NestJS

Cat’s Nest! OpenID Connect Authentication with NestJS, React, and MongoDB

In this post, we’ll explore how to create a NestJS back-end that handles OpenID Connect authentication for a React app that it serves up with an express-session. The session store will share the MongoDB instance that is also used for storing cats.

Back to Top ↑