Это пробный урок. Оформите подписку, чтобы получить доступ ко всем материалам курса. Премиум

  1. Урок 1. 00:04:25
    Introduction
  2. Урок 2. 00:07:20
    Introduction to OAuth 2
  3. Урок 3. 00:03:17
    OAuth 2.0 Roles
  4. Урок 4. 00:04:19
    Current State of OAuth 2.0 in Spring Security 5
  5. Урок 5. 00:05:01
    OAuth 2.0 Client Types
  6. Урок 6. 00:07:46
    OAuth Access Token
  7. Урок 7. 00:03:41
    OAuth2 and OpenID Connect (OIDC)
  8. Урок 8. 00:04:27
    Introduction
  9. Урок 9. 00:09:46
    Authorization Code. Introduction.
  10. Урок 10. 00:07:37
    Authorization Code Demo. Initial Request.
  11. Урок 11. 00:04:22
    Authorization Code Demo. Exchange code for Access token.
  12. Урок 12. 00:05:38
    PKCE-enhanced Authorization Code
  13. Урок 13. 00:01:14
    Generating PKCE Code Verifier
  14. Урок 14. 00:01:30
    Generating PKCE Code Challenge
  15. Урок 15. 00:07:21
    PKCE Demo. Requesting Authorization Code
  16. Урок 16. 00:04:44
    PKCE Demo. Exchanging Code for Access Token
  17. Урок 17. 00:01:42
    Client Credentials
  18. Урок 18. 00:02:39
    Client Credentials Grant Type Demo
  19. Урок 19. 00:02:14
    The Password Credentials Flow
  20. Урок 20. 00:03:02
    The Password Credentials Flow: Demo
  21. Урок 21. 00:05:05
    Introduction
  22. Урок 22. 00:02:26
    Requesting Refresh Token that never expires
  23. Урок 23. 00:03:14
    Refreshing Access Token. Demonstration.
  24. Урок 24. 00:04:08
    Introduction
  25. Урок 25. 00:02:03
    Starting up Standalone Authorization Server Keycloak
  26. Урок 26. 00:03:41
    Starting and Stopping Keycloak Server
  27. Урок 27. 00:01:21
    Creating an Initial Admin User
  28. Урок 28. 00:03:04
    Creating a new Realm
  29. Урок 29. 00:02:56
    Creating a new user
  30. Урок 30. 00:04:53
    Creating a new OAuth client application
  31. Урок 31. 00:01:06
    Configuring Client Application Secrets
  32. Урок 32. 00:03:56
    Requesting Access Token and Refresh Token
  33. Урок 33. 00:02:16
    Enable/Disable OAuth 2.0 Authorization Flow
  34. Урок 34. 00:04:56
    OAuth 2.0 Client Scopes
  35. Урок 35. 00:03:01
    Introduction
  36. Урок 36. 00:04:05
    Creating a new project
  37. Урок 37. 00:00:57
    Import project into Spring Tool Suite IDE
  38. Урок 38. 00:01:36
    Starting Resource Server on different port number
  39. Урок 39. 00:04:50
    Creating a Rest Controller Class
  40. Урок 40. 00:02:58
    Access Token Validation URIs
  41. Урок 41. 00:03:53
    Accessing endpoints with an Access Token
  42. Урок 42. 00:04:17
    Accessing Principal and JWT Claims
  43. Урок 43. 00:03:38
    Demo - Accessing JWT Claims
  44. Урок 44. 00:09:15
    Introduction
  45. Урок 45. 00:01:58
    Create WebSecurityConfigurerAdapter and enable Web Security
  46. Урок 46. 00:02:46
    Override the default HttpSecurity configuration
  47. Урок 47. 00:02:25
    Configure Scope-based access control
  48. Урок 48. 00:03:14
    Demo - without using proper Scope
  49. Урок 49. 00:01:06
    Demo - using proper Scope
  50. Урок 50. 00:05:35
    Introduction
  51. Урок 51. 00:01:15
    Creating User Role
  52. Урок 52. 00:02:22
    Securing Endpoints to a Specific Role
  53. Урок 53. 00:02:09
    Creating Role Converter class
  54. Урок 54. 00:02:12
    Decoding JWT to find user roles
  55. Урок 55. 00:01:32
    Converting Roles into GrantedAuthority objects
  56. Урок 56. 00:01:08
    Register JwtAuthenticationConverter with HttpSecurity
  57. Урок 57. 00:03:40
    Trying how it works
  58. Урок 58. 00:04:56
    Introduction
  59. Урок 59. 00:02:20
    Enable Method Level Security
  60. Урок 60. 00:05:55
    @Secured annotation example
  61. Урок 61. 00:04:00
    @PreAuthorized annotation
  62. Урок 62. 00:05:39
    Reading UserId from JWT Access Token
  63. Урок 63. 00:03:01
    Trying how the @PreAuthorized annotation works
  64. Урок 64. 00:03:32
    Creating getUser() to be used with @PostAuthorize
  65. Урок 65. 00:03:09
    @PostAuthorized annotation
  66. Урок 66. 00:04:07
    Trying how to the @PostAuthorized annotation works
  67. Урок 67. 00:06:02
    Introduction
  68. Урок 68. 00:04:18
    Creating API Gateway Project
  69. Урок 69. 00:00:37
    Import API Gateway to Spring Tool Suite
  70. Урок 70. 00:06:27
    Configuring API Gateway Routes
  71. Урок 71. 00:03:46
    Trying how it works
  72. Урок 72. 00:03:45
    Albums & Photos Resource Servers
  73. Урок 73. 00:03:05
    Routing to multiple Resource Servers
  74. Урок 74. 00:04:10
    Trying how it works
  75. Урок 75. 00:04:40
    Introduction
  76. Урок 76. 00:03:24
    Creating Eureka Discovery Service Project
  77. Урок 77. 00:03:50
    Configuring Eureka project
  78. Урок 78. 00:04:14
    Eureka Client Dependency
  79. Урок 79. 00:02:46
    @EnableDiscoveryClient and configuration properties
  80. Урок 80. 00:00:51
    Trying how it works
  81. Урок 81. 00:01:10
    Exercise
  82. Урок 82. 00:04:47
    Solution overview
  83. Урок 83. 00:02:08
    Load Balancing - Introduction
  84. Урок 84. 00:04:13
    Starting Resource Servers on Random IP Address
  85. Урок 85. 00:07:01
    Eureka and Resource Server Instance Id
  86. Урок 86. 00:04:38
    Configuring API Gateway as Eureka Client
  87. Урок 87. 00:03:25
    Configure API Gateway Routes
  88. Урок 88. 00:02:18
    Return the running port number
  89. Урок 89. 00:03:47
    Trying how it works
  90. Урок 90. 00:01:43
    OAuth 2.0 in MVC Web App - Introduction
  91. Урок 91. 00:02:29
    Creating a new Spring Boot Project
  92. Урок 92. 00:04:13
    Creating Controller class
  93. Урок 93. 00:04:55
    Returning list of albums
  94. Урок 94. 00:04:22
    Displaying Albums in HTML Page
  95. Урок 95. 00:01:20
    Adding OAuth2 Client Dependency
  96. Урок 96. 00:05:31
    Configuring OAuth2 Client properties
  97. Урок 97. 00:02:40
    Configuring OAuth2 Provider properties
  98. Урок 98. 00:06:26
    Reading ID Token
  99. Урок 99. 00:06:12
    Reading JWT Access Token
  100. Урок 100. 00:07:40
    HTTP Request to an Internal Resource Server
  101. Урок 101. 00:02:09
    Trying how it works
  102. Урок 102. 00:01:28
    A different approach to adding access token
  103. Урок 103. 00:01:16
    Adding WebClient Dependency
  104. Урок 104. 00:04:53
    Creating a WebClient Bean
  105. Урок 105. 00:02:41
    Using WebClient in a Controller class
  106. Урок 106. 00:01:42
    Trying how it works
  107. Урок 107. 00:01:55
    Introduction
  108. Урок 108. 00:02:16
    Creating a new project
  109. Урок 109. 00:04:04
    Protected Resource Controller class
  110. Урок 110. 00:03:05
    Protected Resource HTML Page
  111. Урок 111. 00:03:10
    Creating public page
  112. Урок 112. 00:03:05
    Configure HTTP Security
  113. Урок 113. 00:04:54
    OAuth 2 Client and Provider configurations
  114. Урок 114. 00:02:07
    Facebook: Client Id and Client Secret
  115. Урок 115. 00:01:31
    Trying how Facebook login works
  116. Урок 116. 00:07:45
    Google Client Id and Client Secret
  117. Урок 117. 00:01:06
    Trying how Google sign-in works
  118. Урок 118. 00:03:51
    Register a new Okta app
  119. Урок 119. 00:03:41
    Configure Okta properties
  120. Урок 120. 00:01:00
    Trying how sign-in with Okta works
  121. Урок 121. 00:03:44
    Configure logout functionality
  122. Урок 122. 00:01:13
    Configure the Logout link
  123. Урок 123. 00:02:45
    Trying how logout link works
  124. Урок 124. 00:03:52
    OpenID Connect End Session Endpoint
  125. Урок 125. 00:02:56
    Implementing OidcClientInitiatedLogoutSuccessHandler
  126. Урок 126. 00:01:08
    Trying how Logout from Okta works
  127. Урок 127. 00:02:09
    Introduction
  128. Урок 128. 00:05:33
    Creating a new Public client in Keycloak
  129. Урок 129. 00:01:26
    Creating a new Spring Boot client application
  130. Урок 130. 00:01:46
    Creating Index.html
  131. Урок 131. 00:01:09
    Import jQuery
  132. Урок 132. 00:04:12
    Generating Random State value
  133. Урок 133. 00:02:29
    Generating Code Verifier value
  134. Урок 134. 00:03:27
    Generating Code Challenge value
  135. Урок 135. 00:05:11
    Requesting PKCE-Enhanced Authorization Code
  136. Урок 136. 00:01:00
    Creating Auth Code Reader HTML Page
  137. Урок 137. 00:03:43
    Reading authorization code from the Redirect URI
  138. Урок 138. 00:02:17
    Validating "state" request parameter
  139. Урок 139. 00:05:46
    Exchange Code for Access Token
  140. Урок 140. 00:02:11
    Finding Refresh Token and ID Token
  141. Урок 141. 00:05:23
    Sending Request to Resource Server
  142. Урок 142. 00:04:54
    Configure CORS Access on API Gateway
  143. Урок 143. 00:10:05
    Configure CORS in Resource Server
  144. Урок 144. 00:04:05
    Introduction
  145. Урок 145. 00:03:10
    Creating a new project
  146. Урок 146. 00:04:47
    Creating RemoteUserStorageProvider class
  147. Урок 147. 00:04:04
    Creating RemoteUserStorageProviderFactory class
  148. Урок 148. 00:01:26
    Adding Keycloak Core Dependency
  149. Урок 149. 00:03:28
    Solution overview
  150. Урок 150. 00:09:16
    Remote Users Webservice Overview
  151. Урок 151. 00:01:44
    RESTEasy HTTP Client Dependency
  152. Урок 152. 00:05:55
    Implementing Users Api Service
  153. Урок 153. 00:03:06
    Creating User Class
  154. Урок 154. 00:03:57
    Adding the verifyUserPassword to UsersApiService
  155. Урок 155. 00:04:46
    Building RESTEasy HTTP Client
  156. Урок 156. 00:05:39
    Implementing getUserByUsername() method
  157. Урок 157. 00:03:48
    Verifying User Password
  158. Урок 158. 00:04:17
    Packaging UserStorageProvider
  159. Урок 159. 00:08:46
    Deploying User Storage SPI
  160. Урок 160. 00:04:42
    Trying how it works
  161. Урок 161. 00:03:33
    Introduction
  162. Урок 162. 00:04:02
    Creating a new project
  163. Урок 163. 00:08:45
    Register an OAuth Client
  164. Урок 164. 00:05:31
    Configure Authorization Server
  165. Урок 165. 00:03:40
    Spring Security Configuration
  166. Урок 166. 00:04:59
    A request for Authorization Code
  167. Урок 167. 00:06:07
    Exchange Authorization Code for JWT Access Token
  168. Урок 168. 00:03:52
    Creating and Configure Resource Server
  169. Урок 169. 00:04:19
    Resource Server API Endpoint
  170. Урок 170. 00:03:39
    Consume protected API Endpoints
  171. Урок 171. 00:03:41
    Project Overview
  172. Урок 172. 00:04:42
    OAuth2 Client-related configuration
  173. Урок 173. 00:02:53
    Reading the JWT Access Token
  174. Урок 174. 00:03:44
    Sending HTTP Request
  175. Урок 175. 00:01:39
    Trying how it works