Announcement Announcement Module
No announcement yet.
Sample separated resource and authorization server Spring Security OAuth 2.0 Page Title Module
Move Remove Collapse
Conversation Detail Module
  • Filter
  • Time
  • Show
Clear All
new posts

  • Sample separated resource and authorization server Spring Security OAuth 2.0


    I've already deploy an project using Spring Security OAuth 2.0 based on Spring Oauth 2.0 Sprinklr with custom user service and client service. I custom user_service so that i can meet the requirement to authenticate user using web service, the client from internal database because the client managed in our system. It's working, but there is a planning to separate the project which is 1 project is Authorization Server and other is Resource. I've looking around but not yet found any tutorial or well documentation on how to separate this. All i have is sample Sprinklr and in the spring-servlet.xml configuration tell that the resource server can have own block and what i think this can be 2 different project (let say authorization.war and resource_user.war).

    If anybody here can help me with tutorial or documentation on how to do this, I would be very gratefull.


  • #2
    There is some help here :


    • #3
      Thanks pulapura, i'll check it out..


      • #4
        Oh, i want to ask another question if you don't mind..

        In the link that you provide there is configuration for authorization server, but how about the configuration for the resource itself? What i have to do to validate the access_token that get from servlet request. Do i have to write it on the api bean to call authorization server (let say : http://localhost:8080/auth_server/oauth/validate) or just write it on spring-servlet.xml configuration.

        Many thanks