Enterprise Security with Spring Authorization Server 1.0 by Rob Winch @ Spring I/O
ฝัง
- เผยแพร่เมื่อ 19 ก.ค. 2024
- Spring I/O 2023 - Barcelona, 18-19 May
Slides: docs.google.com/presentation/...
GitHub Repo: github.com/rwinch/spring-ente...
There are commercial OAuth Authorization Server options available, but none of them can be customized to meet your requirements. Settling is not an option.
Fortunately, the newly released Spring Authorization Server makes it easy to build a fully customizable OAuth Authorization Server. Building on the time tested foundation of Spring Security, Spring Authorization Server allows you to create your own Authorization Server with the full power of Spring and Spring Security at your fingertips.
In this talk you will learn how to create your own Authorization Server using Spring Authorization Server. You will also learn how to customize your authorization server using common extension points while following best practices that ensure your Authorization Server is Enterprise ready. - วิทยาศาสตร์และเทคโนโลยี
For future reference: IDEA View -> Appeareance -> Presentation mode + in settings you can spec the pres mode font scaling (175% by default).
Learned something new today
CTRL + ` (backtick - on the left side of the 1) then 5 then 1 : turn your IDE in presentation mode -- same key sequence will return you to normal mode😀
Well explained indeed.
Once again, you made a very informative video.
Do you have any experience with Spring Authorization Server and Two-Factor Authentication.
In what way can I implement this. Can you point me in the right direction?
Thanks.
Is there any user registration end-point by default?
For API's you said access_token, but we have API keys also. When should we use API keys instead of access_token? Can you please help understand?
Not sure why the entirety of the talk was spent talking only about authentication and not authorization.
The csrf advice is bad imo, if you're in a browser but you send your jwt in an header instead of a cookie csrf isn't needed.
I am glad I am not the only one who caught that!
can't see the code! makes this presentation useless! next time try dark mode, who knows might have helped
How arrogant are you actually? The dude explained everything in a great way and provided you with the github repo......
@@peteraleksiev1131 nope... They had enough time to prepare. So there is no excuse for the unreadable font size. Even the people in the attendance kept asking him to increase the font and his answer was ..... "That's as big as I can make it on this laptop" didn't he prep the presentation? what about other presentations? were they all like this? unacceptable!
lol, just watch it on youtube like the rest of us
I can see it perfectly fine - get yourself some glasses
Homo sapiens are really strange species. How anyone can dislike this presentation is beyond me. It was exceptional and beautiful.