Bro i don't know who are you.. you are God's gift. I am search for a job.. once I got it..I will give super thanks to you

Спасибо!

haven't found anything simpler on JWT Authentication & Authorization than this video! Kudos. You're so so important for the community! Keep making such videos please.

What a man you are ? It's not only tutorial for security .It's the night mare for me to achieve security in spring application.Hats off keep the learning spell always on.Thanks a lot!🌟

One thing I can say..........the best channel I have ever seen....thank u so much sir

Basanth, All your courses are simple, straight forward, easy to understand for all levels. Kudos to your efforts.💯

Crystal clear explanation and implementation. No need to watch any other video after this. Thank you.

I never thought i would be able to understand JWT until i found this video. you really Blessing to us

I have been binge watching many videos on JWT authentication and luckily found this video, you are simply amazing with the way of delivering things sir, thanks a lot and more power to you to roll out such amazing videos in the future

Hats off to you sir You literally made Spring Security Easy. I've gone through many lengthy videos but nothing worked your spring security videos made me learn within 2hrs including jwt and basic auth.

Your communication is OK kind. But your content, efforts, presentation are really awesome. Keep up your good work sir

Simply amazing Sir. I was struggling for authorization configuration in springboot 3.2.0. You have covered it well.

Thanks for the video. I did learn a lot from it. A few points: 1. the authentication manager is not recommended although it works, you should come up with your own authentication manager. 2. there is a new nimbus package in the latest Spring security which should be used for encoder and decoder. 3. that filter is not necessary as I understand. You simply provide the encoder and decoder, spring security will automatically take care of the security check for all the configured paths.

Sir, thank a lot for your contribution. I have searched so many methods to implement JWT on my project running on Spring 3.1.5 but couldn't find a proper solution. We need more videos on new releases like this. Thanks a lot!!!🤩

Starting to learn Spring Boot security now, Thanks for your effort as always.

Great tutorial those who are moving spring security 6. Awesome! job.

Really Your Tech Gem .. Hands of your clear explanation .. LOVE IT :)

Sir, plz provide flow diagrams of each classes before you code. And also include entire flow with all classes as summary at the end and if possible at very begining. You know the flow, so you find it super easy naming classes, but its tough for any beginners as classes names are big and similar. My hostel juniors gave me this feedback when I shared them ur lecture.

incredible! didn't expect to find usage ready solution here, but you nailed it. thanks!

I appreciate the detailed description of this video. Thanks for sharing.

🎯 Key Takeaways for quick navigation: 00:00 📹 This video tutorial covers implementing a refresh token mechanism in a Spring Boot application with JSON Web Tokens (JWT). 03:18 🛡️ Refresh tokens enhance the security of JWT authentication by allowing users to obtain new access tokens without re-entering credentials. 05:45 💼 The tutorial demonstrates how to configure and use Spring Security 6 for managing JWT-based authentication and authorization in a Spring Boot project. 08:20 🤖 You'll learn about the importance of token expiration times, token stores, and token revocation for effective JWT authentication. 12:10 🔐 Implementing a refresh token mechanism is crucial for maintaining secure and seamless user sessions in Spring Boot applications. Made with HARPA AI

Yr explanation is just amazing👍👍

Watching your complete series because of the migration project, Thanks a lot again

Really helped me for my internship

Just amazing as always. May God bless you.

I have learned everything I needed to learn, thanks a lot man

thanks, great video. I have followed lots of youtube videos only this code working properly. thanks again.

No words Mind Blowing session

this happens the first time for me, i just needed a walkthrough in spring3 + jwt and spring security. and well, you provided it 22 minutes ago. +sub

Amazing video, you made so easy, understood every part

Thanks basant for the detailed video about jwt

Another nice explanation video ❤

Oh wow , thank you so much sir .. i was thinking to request you for this spring security jwt and just found it now . Great ,will cover this in this weekend,thank you 😊

Thankyou so much for this I have got a task to build jwt auth This will be very helpful for me

Amazing video with covering all the aspect of JWT in latest version of spring boot. Thank you for the in detailed walkthrough. Please make one video on internals of spring boot security internals with new classes in involved latest version

Thanks for choosing this topic. And make a Oauth 2 verification video in spring boot 3

as per my understanding we should not hit db again for jwt token validation and we should recreate token with given header and payload and compare it with resent token, however i understand we can not verify roles with that, so there is some gap in this and i am not sure yet how that will be done.

Nice explanation.......❤

Sir G- i believe you are saving the life of more than 95% programmer who is getting through your sessions. Because i am damm sure, eventually the search for a good content could have end up to one and only your session.. Thanks Man..

Hi I have a question, at 34:13 while checking for null and bearer, why we are giving space after Bearer?

Your explanation is really good, thanks for making tutorial

Present when needed. Thank you!

Thanks , your tutorial clips are the best.

Nice ...keep posting some complex spring boot projects...

Great explanation sir thanks lot

This is very right way explain.

Excellent! Love it

Nicely covered both authentication and authorization.

27:20 How does AuthenticationManager knows it needs to lookup 'userinfo' table to verify username ?

bro just nailed it

Wanted to add one point: if we are generating token only when user register or login then in validation process, we can skip fetching user details from db because if the token is modified then it will be invalid token when we match it using our secret. So, If the token is valid then we can save it to our security context always.This is my understanding. Please add to it if something is incorrect or I am missing something.

Thats a great stuff as always :) . .. One request to you ..can you create one video on Spring Security OAuth Authorization Server using spring boot 3.0 .. Thanks again.. keep up good work :)

Perfect Example for Spring Securrity ! Sir can you please guide how @PostMapping("/authenticate") end point is working internally? How it reading user from DataBase! although we are not using any repository in this end point. How AuthenticationMangar finds the correct user name from database?

Really helpful thanks.

amazing tutorial!

Great video, thanks for all the explanation!

thank you man, that was very helpful

Worth watching your videos

This is so well explained! Thank you!

Thank you sir, more videos , I'm beginner :)

i from vietnam, thanks your video

I implemented this JWT Authentication and Authorization, and when I call the endpoints via Postman everything works perfectly. The problem is that I'm trying to write unit tests for my controllers using JUnit 5, but all endpoints always throw 403 Forbidden. Even when I use the @WithMockUser annotation, the same problem continues. Does anyone know what the problem could be? Did someone who implemented this JWT Authentication and Authorization manage to do the unit tests for the controllers?

At 17:45, how did you define the key string with the class label SECRET? I cannot find documentation on this and I have no idea how you did it. It happened very fast.

Love the popping sounds

Greate explanation sir! as always 🙏🙏.

Thanks , love it

Thank you for this, is there a chance of you making a full stack tutorial with Java and React in future. It will be really helpful.

such great tutorial, explained in simple way, help be crash course through it and build a new micro service implementing spring JWT authentication, thank you so much

One thing I realized, in your extractAllClaims method, the jtw parser throws exceptions that are not caught. For example, if the token is expired it throws a ExpiredJWTException! So you checks for istokenexpired is moot.

Love you bro ! Thanks alottttt

you passed claims map empty (During token generation), what is the use of that i did n't get that point? can you please elaborate that little more.

Very good content. Thank you very much!

Nice tutorial sir

Best Tutorial ever bro thank you somuch

Thanks Buddy, can you make a video integrating jwt on api gateway

Amazing. Thank you so much

A really nice explanation . Very helpful

Thank you sir for this video. It is really very helpful.

Can you please do this using Reactive approach, it will help us.

Thank you so much master, te amo

Again an amazing tutorial. I can't thank you enough. ❤

Well explained 🙂

Excellent video. I also wanted to know how to implement logout. Can you show a sample with the same example?

Hi , I have a small request. Might be funny for some. Can you please create a small video on roadmap. Like roadmap for spring security, roadmap for spring boot or core. So that everyone can have a idea what to start first and what not. Thank you

in JWT validation, we are not validating the password right ? First time user put their credentials, the System validates and if user is authenticated,JWT is issued to him, then the subsequent request user sends in the JWT in the request and the server just validates the username in the JWT is matching with the username in the userdetails corresponding to that user in the system and also the expiry date in the JWT is validated and if both the scenarios passes, the user is provided with the resource that he has requested.

very informative , please we need a demo for spring boot 3 & spring cloud keycloak

❤Great demo

Hi Basant, It’s a nice content but my question is in our project how do we generate secret key and where do we store and how to access it.Plz let me know.Thanks

Well done Basant but I have a question.. Let's say i have multiple instances of my app.. How do I configure the authentication manager with Redis.. Thanks

thank you for your helpful videos. please do a video on Oauth2 for springboot 3

Thank you so much sir.

Can you do a tutorial on using JWT authentication and Angular for the front end? I don't know if it's possible for you to do it, but I'm at roadblocks in trying to figure this out

Have a question about roles. I saw some video where they didn't user preauthorize annotation. But used enum role. What is the best approuch ?

@Javatechie : I like your videos, you are doing a great job. I just have one doubt here, we are extracting username from JWT token, then from that username we are fetching UserDetails, then we are matching username from JWT token with user name from UserDetails, but they both will always be same, isn't it?

Hello sir, thank you for your tutorial. I have a request. Can you do tutorial on how to handle AuthExceptions or JWTExceptions or any other exceptions inside filters, so they will be sent to user in json format.

in this flow can we add authentication using goolge etc.?

Hats Off sir!

Highly appreciated

Hi, what if token is invalid ? For example if the token expired there will be an exception in the filter that can't be handled using controlleradvice, the response will be Internal Server Error but should be e.g 403. What is the best way to deal with it ?

Hell yeah thanks man 🔥