If you're already a student of Learn Spring Security, you can get started diving deeper into OAuth2 with Module 10, and then Modules 12, 13, and the upcoming module 17. If you're not yet a student, you can get access to the course here: http://bit.ly/github-lss
mvn clean install
This project contains a number of modules, but here are the main ones you should focus on and run:
oauth-authorization-server
- the Authorization Server (port = 8081)oauth-resource-server-1
- the Resource Server (port = 8082)oauth-resource-server-2
- the secondary Resource Server (port = 8088)And, depending on what grant type you want to try out, you'll work with one of these UI/Clients:
angularjs/oauth-ui-implicit
(port = 8083)angularjs/oauth-ui-password
(port = 8084)Other Modules:
clients-angular/oauth-ui-implicit-angular
- another version of the Implicit Grant UI Module - using Angular 7clients-angular/oauth-ui-password-angular
- another version of the Password Grant UI Module - using Angular 7clients-angular/oauth-ui-authorization-code-angular
- Authorization Code Grant UI Module - using Angular 7Finally, you can ignore all other modules.
You can run any sub-module using command line:
mvn spring-boot:run
If you're using Spring STS, you can also import them and run them directly, via the Boot Dashboard
You can then access the UI application - for example the module using the Password Grant - like this:
http://localhost:8084/
You can login using these credentials, username:john and password:123
mvn clean install
cd src/main/resources
And run the command to download the dependencies:
npm install
npm start
The main purpose of these projects are to analyze how OAuth should be carried out on Javascript-only Single-Page-Applications, using the authorization_code flow with PKCE.
The SPA/clients-js-only-react project includes a very simple Spring Boot Application serving a couple of separate Single-Page-Applications developed in React.
It includes two pages:
The Step-By-Step guide supports using different providers (Authorization Servers) by just adding (or uncommenting) the corresponding entries in the static/spa/js/configs.js.
After running the Spring Boot Application (a simple mvn spring-boot:run command will be enough), we can browse to http://localhost:8080/pkce-stepbystep/index.html and follow the steps to find out what it takes to obtain an access token using the Authorization Code with PKCE Flow.
When prompted the login form, we might need to create a user for our Application first.
To use all the features contained in the http://localhost:8080/pkce-realcase/index.html page, we'll need to first start the resource server (SPA/oauth-resource-server-auth0).
In this page, we can:
此处可能存在不合适展示的内容,页面不予展示。您可通过相关编辑功能自查并修改。
如您确认内容无涉及 不当用语 / 纯广告导流 / 暴力 / 低俗色情 / 侵权 / 盗版 / 虚假 / 无价值内容或违法国家有关法律法规的内容,可点击提交进行申诉,我们将尽快为您处理。