It would have been less confusing if the names used were non-generic. "client", "spring" as values create confusion - one doesn't know at first glance if it is a user defined value, or something that you have to use as is. "client" and "spring" also happen to occur in property keys - not just here but in the larger spring/java ecosystem which adds to the confusion. Had to watch it back and forth several times to make sense.
@corssobv10 ай бұрын
i agree!
@kevinnguyen16310 ай бұрын
good point
@pjl-software10 ай бұрын
Very relevant, thank you!! Just finished my own KZbin series building a web app using Google Sign-on JWTs as my authorization server with Spring Boot/Spring Security as my resource server. I'd like to extend the series to include a custom Spring Authorization server :)
@gondaimgano10 ай бұрын
followed this to the letter but for some reason I am getting a whitelabel "/error" is there something I am missing? its saying too many redirects 🤔
@michaelmikeyjacobs10 ай бұрын
Hi Josh, awesome video as always. Would it be possible to extend this example to multiple different identity providers in the authorization server and how would this be done, since the idp will generate the token but the client will validate against the Authorization Server?
@lewiswccfulАй бұрын
Thank you very much. That's very useful. Seems it doesn't work well with all the projects upgraded to latest spring boot version. Just leaving the oauth client not upgraded will work though
@goalreacher62888 ай бұрын
Doest Spring Authorization server support SAML protocol?
@shogant5 күн бұрын
I cut and pasted all the config text in the application.properties files and see this white label error page: Whitelabel Error Page This application has no explicit mapping for /error, so you are seeing this as a fallback. Thu Dec 19 22:58:27 PST 2024 There was an unexpected error (type=Not Found, status=404).
@hablahei110 ай бұрын
I would love some kind of tutorial on how to set up a client credentials grant / flow authorization server
@thetrilbies18 ай бұрын
Great video Josh. My use case is internel app eg APIs -> gateway -> resource server. Can I use the oauth2 server in this scenario?
@emileastih900610 ай бұрын
Great video thank you!
@mohammadtoficmohammad35949 ай бұрын
thank you very useful
@malikoski10 ай бұрын
Josh, where can I buy this t-shirt? Great video!!
@rajeevjayaram49819 ай бұрын
Would it be possible or you to implement PKCE
@paulfx50194 ай бұрын
Hey Josh, you are the man as usual....although I do have 1 question, how does the user logout? Cheers
@yasbas38833 ай бұрын
maybe by just calling the "/logout" in the app where you have your oauth2 client?
@abhisheksoni38004 ай бұрын
In the client application, It is giving me error "Unknown provider ID 'spring'"
@AjayKumar-fd9mv10 ай бұрын
This is great
@amitpccsful9 ай бұрын
where in code authorization code is exchanged with access token?
@toritsejuFO7 ай бұрын
"on my second favorite place on the Internet", 😂😂😂 always
@miquel9758 ай бұрын
Hi again, one question, if somebody can help me... I have a front end with a HTML login, is possible use this HTML login to validate into authorization server, instead of default login page of authoritzation server? I don't customize the login page, I want use login HTML of my frontend. regards
@MrPakurfulo7 ай бұрын
I imagine you can do it with a redirect in the oauth2 configuration
@sumitpaswan268210 ай бұрын
consent page is not coming. in my case after login directly it is show response with {"message" : "Hello, one"}
@thetrilbies18 ай бұрын
The consent page is not showing because in the application.yml in the registration spring section, we didnt specify requires consent.
@sumitpaswan26828 ай бұрын
6:21 you mean spring.security.oauth2.authorizationserver.client.client1.requires-authorization-consent=true I have already configured above property
@yuyeyang49738 ай бұрын
hello, when i get localhost:8080/ authserver print out org.springframework.security.access.AccessDeniedException: Access Denied, why ?
@yognirog10 ай бұрын
much helpful thank you :) 77th like
@arnabchowdhury489210 ай бұрын
Please share your code
@konstiblum10 ай бұрын
Please lose the "30 seconds later" animations. They are only annoying, adding nothing to the video.
10 ай бұрын
please, is Josh Long, do you know how many people this man has helped? You don't know what you are saying, for me he can put that intro longer if he wants, it is nothing compared to all his contribution, and he is always contributing.
@web-application79449 ай бұрын
if you speak "slower" , it could help non-english speakers to understand you better.