Oauth2

Tutorial

Spring Boot

Basic Tutorial

SB introduction

SB Annotations

SB Application Properties

SB REST API

SB Parameters

SB with JPA & Hibernate

Queries

SB Relationship Mappings

One-to-One Mapping

One-to-Many and Many-to-One Mapping

Many-to-Many Mapping

SB Derived Query Methods

Spring Security

Introduction to Spring Security

Authentication & Authorization in Spring Security

Security Configuration

JWT

Oauth2

Spring Boot OAuth2 Authentication

❮ Previous

Next ❯

OAuth 2.0 is an industry-standard protocol for authorization that allows secure access to resources without exposing user credentials

What is OAuth2?

OAuth2 allows applications to authenticate users via third-party providers like Google, Facebook, GitHub, and Keycloak without sharing passwords.

✅ Authorization Code Flow (Most Secure)

✅ Client Credentials Flow (For machine-to-machine authentication)

✅ Password Grant Flow (Deprecated – Use Authorization Code)

✅ Implicit Flow (Deprecated – Use PKCE)

Add OAuth2 Dependencies:

Include the necessary dependencies in pom.xml:

<groupId>org.springframework.boot</groupId>

<artifactId>spring-boot-starter-oauth2-client</artifactId>

</dependency>

<groupId>org.springframework.boot</groupId>

<artifactId>spring-boot-starter-security</artifactId>

</dependency>

<groupId>org.springframework.boot</groupId>

<artifactId>spring-boot-starter-web</artifactId>

</dependency>

Configure OAuth2 Providers:

create access key and secret from google for goole login and paste in application.properties

application.properties

#google Oauth2 credentials

spring.security.oauth2.client.registration.google.client-id=874105057-9q8tgp7raiqbv749pfiqktpnq1cmgd8.apps.googleusercontent.com

spring.security.oauth2.client.registration.google.client-secret=GOCSX-uXkDADlMzl_-4FOBJ2q6PSdwGgj

Implement Security Configuration

import org.springframework.context.annotation.Configuration;

import org.springframework.security.config.Customizer;

import org.springframework.security.config.annotation.web.builders.HttpSecurity;

import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;

import org.springframework.security.web.SecurityFilterChain;

@Configuration

@EnableWebSecurity

public class SecurityConfig {

public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {

http.authorizeHttpRequests(auth->auth.anyRequest().authenticated())

.oauth2Login(Customizer.withDefaults());

return http.build();

}

Create a Simple Controller

import org.springframework.web.bind.annotation.*;

@RestController

@RequestMapping("/")

public class AuthController {

@GetMapping("/hello")

public String greet(){

return "Hello world";

}

Get Route `GET:http://localhost:8080/hello`

❮ Previous

Next ❯

Whereisstuff is simple learing platform for beginer to advance level to improve there skills in technologies.we will provide all material free of cost.you can write a code in runkit workspace and we provide some extrac features also, you agree to have read and accepted our terms of use, cookie and privacy policy.

What is OAuth2?

Add OAuth2 Dependencies:

Configure OAuth2 Providers:

Implement Security Configuration

Create a Simple Controller

Get Route GET:http://localhost:8080/hello

Get Route `GET:http://localhost:8080/hello`