Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Securing Spring Boot Microservices with OAuth and OpenID Connect - Devoxx Belgium 2023

Securing Spring Boot Microservices with OAuth and OpenID Connect - Devoxx Belgium 2023

We will embark on a thrilling journey to master the art of securing Spring Boot microservices. We will dive deep into the world of microservices architecture and uncover the security challenges that lie beneath the surface. In this hands-on lab, you'll unlock the secrets of OAuth and OpenID Connect protocols and create an impenetrable shield for your microservices.

But that's not all - we'll take it up a notch by seamlessly integrating IdPs like Keycloak and Auth0 into your microservices security ecosystem, unleashing a whole new level of features and convenience. You'll learn how to configure Spring Security for your microservices and these IdPs. You will learn how to set up authentication and authorization for your microservices. We will also show you how to configure advanced authentication mechanisms, such as multi-factor authentication, social login, and passkeys.

Prepare to get your hands dirty as we dive into practical implementation using real-world examples, you'll gain the confidence and skills needed to conquer client registration, master token management, and skillfully handle authorization requests. You'll witness the magic unfold as your microservices become a fortress of security, guarded by the formidable combination of OAuth, OpenID Connect, and your IdP.

By the end of this hands-on lab, you'll be equipped with knowledge and hands-on experience to implement robust security measures in your own microservices applications.

Matt Raible

October 03, 2023
Tweet

More Decks by Matt Raible

Other Decks in Technology

Transcript

  1. © 2023 Okta and/or its affiliates. All rights reserved.
    Securing Spring Boot
    Microservices with
    OAuth and OpenID
    Connect
    Deepu K Sasidharan
    Developer Advocate
    Auth0 by Okta
    Matt Raible
    Developer Advocate
    Auth0 by Okta

    View full-size slide

  2. Deepu K Sasidharan
    @deepu105
    Matt Raible
    @mraible
    Your Identity
    Experts

    View full-size slide

  3. © 2023 Okta and/or its affiliates. All rights reserved.
    Workshop Labs
    01 Authorization in Spring Boot
    02 Authentication in Spring Boot
    03 Role Based Access Control in Spring Boot
    04 Secure Spring Boot Microservices
    05 Add Social Login with Google
    06 Add MFA with FIDO Security Keys
    07 Authentication with Passkeys

    View full-size slide

  4. Microservices Demo

    View full-size slide

  5. https://auth0.com/blog/java-spring-boot-microservices

    View full-size slide

  6. Start your engines!
    https://a0.to/devoxx

    View full-size slide

  7. Advanced Settings > EU Region

    View full-size slide

  8. © 2023 Okta and/or its affiliates. All rights reserved.
    Thank you! Deepu K Sasidharan
    [email protected]
    @deepu105
    Matt Raible
    [email protected]
    @mraible
    developer.auth0.com
    a0.to/nl-signup/java

    View full-size slide