Questions tagged [spring-oauth2]
The spring-oauth2 tag has no usage guidance, but it has a tag wiki.
spring-oauth2
762
questions
-1
votes
0
answers
21
views
Setting Up a Centralized Authentication Server with AWS Cognito and Spring Security Using JWT [closed]
i am using AWS Cognito as a custom provider, before i integrated aws cognito with spring security, where after successful login i took the id, access token and saved it in session. which worked fine. ...
0
votes
0
answers
38
views
Migrating from Spring cloud oauth2 to spring security after Springboot 3.0.0 upgrade
After migrating my project from Springboot security 2.7 to 3.0, i find myself in a bit of a migration trouble.
I have correctly migrated whole project ot use jakarta dependencies instead of javax, but ...
0
votes
0
answers
39
views
oauth2 authorization server TokenStore replacement (Spring Boot 3.1.0)
In old version of auth server (5.7) I have custom JwtTokenStore for caching and pre-check exists tokens (and for revoke). In new authorization server project I can't found any same solution. As an ...
0
votes
0
answers
31
views
Spring Oauth2 Authorization server - Login, registration and forget passowrd flows along with social login
I went through Spring Oauth2 authorization server tutuorials on spring offical website and I have following question, for which I didnt get a concrete answer
Requirement: Login, Registration & ...
0
votes
0
answers
111
views
Issue in Spring Authorization Server and Spring Cloud Gateway refresh_token flow
I have created Spring Authorization Server and Spring Cloud Gateway and everything looks perfect, but I found a problem in the gateway and specifically in the flow based on the refresh token. When ...
1
vote
0
answers
44
views
Spring application working when built locally and copied into docker, but not when built inside docker
I'm trying to build and run a Springboot application inside Docker.
At first I would just build the JAR file locally, and then copy and run it in a Docker image, but now I also want to build the JAR ...
0
votes
1
answer
76
views
Additional verification logic when refreshing an access token
I am working on implementing access and refresh tokens with OAuth 2.0. I have implemented a custom grant type, and I can renew the access token using a refresh token with already existing ...
1
vote
1
answer
73
views
What is the expected number of OAuth2 client logins with Webflux and Spring Security on immediate HTTP requests?
Currently we're monitoring a lot of client logins at our identity provider and I'd like to make sure what we could expect here from Spring Security.
Our setup is as follows
@Configuration(...
0
votes
1
answer
39
views
How do I correctly get Coinbase OAuth2 user attributes on login with Spring?
To create a ClientRegistration.Builder for Coinbase, I'm using this code:
ClientRegistration.Builder builder = getBuilder(registrationId,
ClientAuthenticationMethod.CLIENT_SECRET_BASIC, redirectUri)/...
-1
votes
1
answer
63
views
What's the relationship between Keycloak SSO Session Idle Time and Spring Session Timeout?
I am referencing following tutorials to combine Keycloak OAuth2 and Spring Boot+Spring Gateway+Spring Security+Spring Session to save http session in Redis:
https://www.baeldung.com/spring-cloud-...
0
votes
1
answer
101
views
How to bypass keycloak login page and provide client suggested idp with spring security
I have configured spring security with keycloak using the Oauth2 client feature in the BFF, keycloak will play the role of an idp broker and it is configured successfully with Microsoft (we will be ...
0
votes
0
answers
76
views
Occurs error "ClassNotFoundException: net.minidev.json.JSONObject" with the minidev relocated dependency
An error occurs when i trying to add the spring-security-oauth2-client dependency.
Caused by: java.lang.ClassNotFoundException: net.minidev.json.JSONObject
at jdk.internal.loader....
2
votes
0
answers
111
views
Federated SAML 2.0 SSO login with Spring Authorization Server
The requirement is to implement Single Sign On(SSO) with SAML using Spring Authorization Server, based on Service Provider(SP) initiated flow.
Does Spring Authorization Server support SSO with SAML? ...
2
votes
3
answers
309
views
JWTEncoder: Failed to select a JWK signing key
I have an auth-server + resource server in one app. I've spent a lot of time searching and debugging, but there aren't many updated pages or topics about Spring Boot 3.+ related to this. So, I had ...
0
votes
1
answer
66
views
Spring OAuth2 Resource Server - best way to transform Jwt / JwtAuthenticationToken into another Authentication
I've configured my SecurityFilterChain with .oauth2ResourceServer as follows
.oauth2ResourceServer(resourceServerConfigurer -> {
resourceServerConfigurer.jwt(jwtConfigurer -> {
final ...