Securing Microservices with OAuth 2.0 and OpenID Connect (Hands-On Workshop)
by Andreas Falk
"OAuth 2.0 and OpenID Connect (OIDC) are the most commonly used solutions for stateless, token-based authentication in distributed Microservice architectures as of today.
You might already know the basic concepts of OAuth 2.0 and OpenID Connect. But have you ever asked yourself how to really implement this practically for Microservices using a well-known framework like Spring Security?
Then this workshop is a good opportunity to get to know how it works by making your hands dirty in code.
After a short recap for the basic concepts of OAuth 2.0 and OpenID Connect, we will use a Spring Boot based Java application to gradually implement authentication and authorization using these standards.
- The detailed procedure of the Authorization Code Grant protocol flow
- Implementation of an OAuth 2.0/OIDC compliant Resource Server
- Implementation of an OAuth 2.0/OIDC compliant client
- Automated testing with OAuth 2.0 and OpenID Connect
Basic experience in Java is expected. For the hands-on part, a notebook with at least JDK version 11 and any Java IDE installed is required."