Excellent 👌👌

Very well done (i am not yet thru)! Very many thanks - absolute great tutorial! May i kindly ask if one must have a running Postgres on the defined port running or should that be "generated on the fly"? (only part i had to switch to a inmemory H2 DB because i wasn't able to get it to run). Will defently further dive in to the materia to get a full understanding but you already enabled me for a quite good base to further learn! Again thank you! :)

You're so awesome

Nice video, I was almost able to have my spring cloud config client get password from vault. Not sure what you did on the client side to indicate that it needs to get the password from Spring Config vault. Can you share what how did you accomplish that. Spring documentation seems to refer to about Define properties with the {vault} prefix to specify the Vault path and key for retrieving secrets:

What if the user tries to acess Microservice directly insted of api Gateway..??

Thank you so much for the video. I have a problem related to storing the session information in redis. When you opened the redis cli, i noticed that the first entry is regarding the principal, but in my case it's not present. I tried logging whether spring security is creating the user and it is, but it's not persisting the principals information along with the session id and expirations in redis. Therefore when i try to fetch the sessions linked to the user i get nothing :( NOTE: i've defined the user inside the .properties file, i don't know if that's relevant.

Thank you :)

Thanks for the video. However, I have a question. Is there a way to login to keycloak without redirecting to the keycloak login page? I have a custom login screen in my ReactJS app and I want to make use of it instead.

Mate. Nice video, teached me a lot of things. As a constructive criticism, when you dont talk while writing some code, put a song to play louder, and when youre speaking, let the same song in the background. Its a nice strategy and increase the quality of your video!

Superb content

I don’t know why my token can be displayed through system.out however in the front I can’t seem to get the value of the token, the field token doesn’t even show in my response

I am sooo confused I am a beginner. Is it possible to integrate this approach into view based authorization? By that I mean using MVC controller, and not REST. If yes, then what should I do? I use mechanism with the userDetailsService and this classical form with login and password.

Not beginer friendly

Hi Sir, the applicaiton back and front end are running now but.. not really sure why i am getting backend point not found.. where as I am able to hit the endpoint via Postman..nt_app_login_form_3_Template_app_login_form_onSubmitLoginEvent_0_listener @ content.component.html:8 onSubmitLogin @ login-form.component.ts:29 LoginFormComponent_Template_form_ngSubmit_11_listener @ login-form.component.html:17 Zone - HTMLFormElement.addEventListener:submit (async) LoginFormComponent_Template @ login-form.component.html:15 ContentComponent_Template

Great Job

Hi Sir.. I am getting the below error while running the Spring Boot Applicaiton /Users/Srikar/Desktop/Angular/AngularSecurity/backend/src/main/java/com/srikar/jwt/backend/mappers/UserMapper.java:14: error: Unknown property "password" in result type User. Did you mean "null"? @Mapping(target = "password", ignore = true) ^

One more question: isn't this solution vulnerable to CSRF? Yes, we don't have sessions. But imagine a button on other site with delete request to protected url on ours. User clicks it and authentication cookie will work on our site. Or I am wrong?

I have cloned the project during the project setup I am getting error at WebClient declaration saying it may not have been initialized same in UserRepository and PasswordEncoder

How to run this project locally to test the APIs?

Awesome tutorial!

thx yu very much for your explains, Can yu do a short video for deployement springboot application dockerised in amazon ?

Thanks for video

Thank you so much for your guide! Would u kindly to give a hint how to use it with standart spring form without FE ? ^_^

Who uses class components?

great tutorial ! but what if i want to add the option : login with registered infos how i can i integrate it

is aws ec2 from aws free tier?

I have watched your videoson springboot oauth2 series, they are very good! I take this chance to bring a request on springboot keycloak oauth2 authentication. Could you please make video to demo BFF pattern ( Backend for FrontEnd). BFF is thought more secure than PKCE flow?

Hi jawman, I am preferring thymeleaf for my personal project over fromtend frameworks, because those frameworks are extra pain.

Could you please make video to demo BFF pattern ( Backend for FrontEnd). BFF is thought more secure than PKCE flow. Reply

Could you please make video to demo BFF pattern ( Backend for FrontEnd). BFF is thought more secure than PKCE flow.

Thank you very much. I did a lot of config but they didn't work. This worked but I had to add this corsConfiguration.setAllowedHeaders(List.of("*")); (I am working with JWT token)

how to deploy service A and service B and make REST communication between them

Hello, great video! Using gateway as oauth client, how to authenticate and consume the api using Postman or insomnia? Thanks!

How much do you sleep per 24h? Your eyes are so white, mine are so red! Also, can you do the same tutorial but with Graphql instead of REST? Thanks for the very informative tutorial.

can we deploy it with free tier?

Sorry I'm dumb. When you say "and go to a terminal" (to connect to the instance). Do you mean just the command line on my local machine? Or are you talking about something in AWS? Doesn't AWS provide like 3 different ways within the console to connect to the instance? What do you mean when you say "and go to a terminal"?

Thanks alot !

How did you learn it, it's a black box, everyone uses it but no one knows about it. I'm a self learner and I don't have a company behind me, I'm unemployed, and I want to bring a product to the market, but I have to get my users securely registered or the procedure, and I'm scared because that can fall on my feet. My stack: -Angular, -Spring boot, wants the Angula app to authenticate then the user registers or logs in

Thank you so much, man, i am currently looking your second video and again it made so much clear for me. AWS was a misterum for me. So many features and things you can do there but you bring it to the point. Exactly the information you need for starting with AWS. Of course this YT channel is in my abos since now!

Thank you so much! This made so many things clear to me. I worked with several old ways to manage my projects. From hosting my own servers (about 20 years ago) to some docker managed instances and so on. AWS was a misterium for me. So many things you can do there but you brought it to the point for me. EC2 is only a virtual machine :) And the networking is also only networking VPC (virtual private cnetwork ;))

If I deploy telegram bot using spring boot, the process is the same?

excellent content!! I'm ont from a anglophone country but i understand without problemes