Index
A
- access tokens
- generating, as JWT / Generating access tokens as JWT, How to do it..., How it works...
- Advanced Encryption Standard (AES) / How to do it...
- Android client
- protecting, with PKCE / Protecting an Android client with PKCE, How it works...
- Android development environment
- Android OAuth 2.0 client
- creating, Authorization Code used with system browser / Creating an Android OAuth 2.0 client using an Authorization Code with the system browser, There's more...
- creating, Implicit grant type used with system browser / How to do it..., How it works...
- creating, embedded browser used / Creating an Android OAuth 2.0 client using the embedded browser, How to do it..., How it works...
- Android Studio
- URL, for downloading / How to do it...
- Android Virtual Device (AVD) / How to do it...
- asymmetric signed JWT token
- validating / Validating asymmetric signed JWT token, How to do it..., How it works...
- Authorization Code
- used, for creating Android OAuth 2.0 / Creating an Android OAuth 2.0 client using an Authorization Code with the system browser, There's more...
- Authorization Code grant type
- about / Protecting resources using the Authorization Code grant type
- used, for protecting resources / Protecting resources using the Authorization Code grant type, How to do it..., How it works...
- used, for creating OAuth 2.0 client / Creating an OAuth 2.0 client using the Authorization Code grant type, How to do it...
- Authorization Code injection
- client, protection against / Protecting the client against Authorization Code injection, How to do it..., How it works...
- Authorization Server
- about / Introduction
- protecting, from invalid redirection / Protecting the Authorization Server from invalid redirection, How it works...
C
- cache
- used, for improving performance for remote validation / Improving performance using cache for remote validation, How it works...
- client
- protection, against Authorization Code injection / Protecting the client against Authorization Code injection, How to do it..., How it works...
- client app, provided by OAuth 2 server
- Password grant type, using for / Using the Password grant type for client apps provided by the OAuth 2 server, How to do it..., There's more...
- Client Credentials grant type
- configuring / Configuring the Client Credentials grant type, How to do it..., There's more...
- used, for creating OAuth 2.0 client / Creating an OAuth 2.0 client using the Client Credentials grant type, How to do it..., How it works...
- client details
- storing, RDBMS used / Using a relational database to store tokens and client details, There's more...
- client registration
- implementing / Implementing client registration, How to do it..., How it works...
- client side
- user's contacts, reading from Facebook / Reading the user's contacts from Facebook on the client side
- refresh tokens, managing / Managing refresh tokens on the client side, How it works...
- proof-of-possession key semantics, using / Using proof-of-possession key on the client side, How to do it...
- creating, embedded browser used
- used, for creating Android OAuth 2.0 client / How to do it...
- Cross-origin Resource Sharing (CORS) / How it works...
- Cross-Site Request Forgery (CSRF) / Protecting the client against Authorization Code injection
- Cross Site Request Forgery (CSRF) / There's more..., There's more...
- custom claims
- adding, on JWT / Adding custom claims on JWT, How to do it..., How it works...
D
- dynamic client registration
- about / Dynamic client registration, How to do it..., There's more...
- with mobile applications / How to do it..., How it works...
E
- embedded browser
- used, for creating Android OAuth 2.0 client / Creating an Android OAuth 2.0 client using the embedded browser, How it works...
- environment
- preparing / Preparing the environment
F
- Facebook
- user's contacts, reading on client side / Reading the user's contacts from Facebook on the client side
- user's contacts, reading on server side / Reading the user's contacts from Facebook on the server side
- used, for authenticating users / Using Facebook to authenticate users, How to do it..., How it works...
G
- Gatling
- used, for load testing token validation process with shared databases / Using Gatling to load test the token validation process using shared databases
- used, for load testing remote token validation / Getting ready, How to do it..., There's more...
- Google's users
- authenticating, with Google OpenID Connect / Authenticating Google's users through Google OpenID Connect, How to do it..., How it works...
- Google OpenID Connect
- used, for authenticating Google's users / Authenticating Google's users through Google OpenID Connect, How to do it..., How it works...
- reference link / Authenticating Google's users through Google OpenID Connect, How it works...
- using, with Spring Security 5 / Using Google OpenID Connect with Spring Security 5, How to do it...
- using, with Spring Security / How it works...
H
- hash-based message authentication code (HMAC) / Generating access tokens as JWT
I
- Identity Provider
- user information, obtaining from / Obtaining user information from Identity Provider, How to do it..., There's more...
- Implicit grant type
- about / How to do it...
- supporting / Supporting the Implicit grant type, How to do it..., How it works...
- used, for creating OAuth 2.0 client / Creating an OAuth 2.0 client using the Implicit grant type, How to do it..., How it works...
- used, for creating Android OAuth 2.0 client / How to do it..., How it works...
- in-memory configuration / Getting ready
- Integrated Development Environment (IDE) / Preparing the environment
J
- JavaScript libraries
- reference link / How to do it...
- JavaScript Object Notation (JSON) / How it works...
- JSON Web Encryption (JWE)
- about / Using JWE to cryptographically protect JWT tokens
- used, for cryptographically protecting JWT tokens / Using JWE to cryptographically protect JWT tokens, How to do it..., How it works...
- using, at resource server side / Using JWE at the Resource Server side, How it works...
- JSON Web Key (JWK) / How it works...
- JSON Web Signature (JWS) / Using JWE to cryptographically protect JWT tokens, How it works...
- JSON Web Tokens (JWT)
- about / Introduction
- URL / Generating access tokens as JWT
- access tokens, generating as / Generating access tokens as JWT, How to do it..., How it works...
- references / How it works...
- custom claims, adding on / Adding custom claims on JWT, How to do it..., How it works...
- JWT tokens
- validating, at resource server side / Validating JWT tokens at the Resource Server side, How to do it..., See also
- symmetric signing / Asymmetric signing of a JWT token, How to do it..., How it works...
- cryptographically protecting, with JWE / Using JWE to cryptographically protect JWT tokens, How to do it..., How it works...
M
- Maven
- URL, for downloading / How to do it...
- Microsoft and Google Open ID providers
- using, together with Spring Security 5 / Using Microsoft and Google OpenID providers together with Spring Security 5, How to do it..., How it works...
- Microsoft Azure
- URL, for registering / Getting ready
- mobile applications
- dynamic client registration, using / How to do it..., How it works...
- Mobile client / Introduction
O
- OAuth 2.0 client
- creating, with Authorization Code grant type / Creating an OAuth 2.0 client using the Authorization Code grant type, How to do it...
- creating, Implicit grant type used / Creating an OAuth 2.0 client using the Implicit grant type, How to do it..., How it works...
- creating, Resource Owner Password Credentials grant type used / Creating an OAuth 2.0 client using the Resource Owner Password Credentials grant type, There's more...
- creating, Client Credentials grant type used / Creating an OAuth 2.0 client using the Client Credentials grant type, How to do it..., How it works...
- OAuth 2.0 Google
- protected resources, accessing / Accessing OAuth 2.0 Google protected resources bound to the user's session, How to do it..., How it works...
- OAuth 2.0 LinkedIn
- protected resources, accessing / Accessing OAuth 2.0 LinkedIn protected resources, How to do it..., How it works..., There's more...
- OAuth 2.0 migration
- approaching, with Resource Owner Password Credentials grant type / Using the Resource Owner Password Credentials grant type as an approach for OAuth 2.0 migration, There's more...
- OAuth 2.0 protected API
- accessing, with RestTemplate / Accessing an OAuth 2.0 protected API with RestTemplate, How to do it..., How it works...
- OAuth 2.0 Provider
- about / Introduction
- creating / Breaking the OAuth 2.0 Provider in the middle, How to do it..., How it works...
- proof-of-possession key semantics, using on / Using proof-of-possession key semantics on OAuth 2.0 Provider, How to do it..., How it works...
- OAuth 2.0 specification
- about / Introduction
- Resource Owner / Introduction
- Authorization Server / Introduction
- Web client / Introduction
- Resource Server / Introduction
- Mobile client / Introduction
- operational system (OS) / How to do it...
P
- Password grant type
- using, for client app provided by OAuth 2 server / Using the Password grant type for client apps provided by the OAuth 2 server, How to do it..., There's more...
- proof-of-possession key semantics
- using, on OAuth 2.0 provider / Using proof-of-possession key semantics on OAuth 2.0 Provider, How to do it..., How it works...
- using, on client side / Using proof-of-possession key on the client side, How to do it..., How it works...
- Proof Key for Code Exchange by OAuth Public Clients (PKCE)
- about / Introduction
- used, for protecting Android client / Protecting an Android client with PKCE, How it works...
R
- Redis
- used, for storing token / Using Redis as a token store, How it works...
- URL, for installing / How to do it...
- refresh tokens
- support, adding / Adding support for refresh tokens, How to do it..., There's more...
- managing, on client side / Managing refresh tokens on the client side, How to do it...
- Relational Database Management System (RDBMS)
- about / There's more..., Using a relational database to store tokens and client details
- used, for storing tokens / Using a relational database to store tokens and client details, There's more...
- used, for storing client details / Using a relational database to store tokens and client details, There's more...
- remote token validation
- load testing, with Gatling / Getting ready, How to do it..., There's more...
- remote validation
- with token introspection / Remote validation using token introspection, How to do it..., There's more...
- performance, improving with cache / Improving performance using cache for remote validation, How it works...
- Request for Comments (RFC) / Introduction
- Resource Owner / Introduction
- Resource Owner Password Credentials grant type
- used, for approaching OAuth 2.0 migration / Using the Resource Owner Password Credentials grant type as an approach for OAuth 2.0 migration, There's more...
- used, for creating OAuth 2.0 client / Creating an OAuth 2.0 client using the Resource Owner Password Credentials grant type, There's more...
- resources
- protecting, Authorization Code grant type used / Protecting resources using the Authorization Code grant type, How to do it..., How it works...
- Resource Server
- about / Introduction
- audience, validating / Validating the Resource Server audience, How to do it..., How it works...
- protecting, with scope validation / Protecting Resource Server with scope validation, How to do it..., How it works...
- resource server side
- JWT tokens, validating at / Validating JWT tokens at the Resource Server side, How to do it..., There's more...
- JWE, using at / Using JWE at the Resource Server side, How it works...
- RestTemplate
- used, for accessing OAuth 2.0 protected API / Accessing an OAuth 2.0 protected API with RestTemplate, How to do it..., How it works...
- RFC 7009
- reference link / Revoking issued tokens
- RFC 7519
- reference link / Generating access tokens as JWT
- RFC 7591
- reference link / See also, Using dynamic client registration with mobile applications
- RFC 7662
- reference link / Remote validation using token introspection, There's more...
- RFC 7800
- reference link / Using proof-of-possession key semantics on OAuth 2.0 Provider
- RFC 8252
- reference link / How it works...
S
- scopes
- binding, with user roles for protecting resources / Binding scopes with user roles to protect user's resources, How it works...
- reference link / Binding scopes with user roles to protect user's resources
- scope validation
- used, for protecting Resource Server / Protecting Resource Server with scope validation, How to do it..., How it works...
- Spring Boot
- reference link / See also
- Spring Initializr
- Spring security
- reference link / There's more...
- Spring Security 5
- Google OpenID Connect, using / Using Google OpenID Connect with Spring Security 5, How to do it..., How it works...
- Microsoft and Google Open ID providers, using together / Using Microsoft and Google OpenID providers together with Spring Security 5, How to do it..., How it works...
- Spring Security OAuth2
- about / Introduction
- reference link / How it works...
- SQL command
- reference link / How to do it...
- symmetric signing
- of JWT / Asymmetric signing of a JWT token
- of JWT tokens / How to do it..., How it works...
- system browser
- Android OAuth 2.0 client, creating with Authorization Code / Creating an Android OAuth 2.0 client using an Authorization Code with the system browser, There's more...
- Android OAuth 2.0 client, creating with Implicit grant type / Creating an Android OAuth 2.0 client using the Implicit grant type with the system browser, How to do it..., How it works...
T
- tenant identifier / How to do it...
- TLS/SSL
- using / There's more...
- token introspection
- used, for remote validation / Remote validation using token introspection, How to do it..., There's more...
- token revocation / Revoking issued tokens, How to do it..., How it works...
- tokens
- storing, RDBMS used / Using a relational database to store tokens and client details, There's more...
- storing, Redis used / Using Redis as a token store, How it works...
- token validation process
- load testing, with Gatling / Using Gatling to load test the token validation process using shared databases
U
- user's contacts
- reading, from Facebook on client side / Reading the user's contacts from Facebook on the client side
- reading, from Facebook on server side / Reading the user's contacts from Facebook on the server side
- UserInfo endpoint
- reference link / How to do it...
- user information
- obtaining, from Identity Provider / Obtaining user information from Identity Provider, How to do it..., There's more...
- validation / There's more...
- users
- authenticating, Facebook used / Using Facebook to authenticate users, How to do it..., How it works...
W
- Web Client / Introduction