
Explore architecture diagrams for OAuth and OpenID Connect, learning how rectangles, data centers, users, and browsers illustrate interactions, security boundaries, and redirect flows with 302 forwarding.
Install and configure Postgres on macOS, connect to a local database, and create a dedicated Keycloak DB to host Keycloak tables, using dbeaver or pgadmin to verify the schema.
Learn how clients and scopes govern access in OAuth and OpenID Connect, using endpoints from the well-known configuration and client registration to obtain tokens for protected resource servers.
Explore how client credentials grant lets a client obtain an access token for itself to access resources, and why the password grant is deprecated in OAuth 2.1, authorization code flow.
OpenID Connect extends OAuth 2.0 with scopes such as OpenID, profile, and email to authenticate users and access id tokens and user info in apps using Keycloak and Spring Boot.
Explore how enterprise apps use OpenID Connect with Keycloak to embed roles in tokens for internal authorization, and verify tokens locally in microservices using authorization code and client credentials grants.
Run the app with Keycloak OpenID configuration, perform the authorization code flow, exchange the code for tokens, validate state and nonce, and map scopes to Spring Security authorities.
Split the bug tracker into a user interface and a resource server, securing the API with OAuth and OpenID Connect using Keycloak and JWT verification on port 8081.
Explore handling multiple identity providers, such as Keycloak and GitLab, and how access tokens, JWTs, and public-key verification affect microservice security.
Enable Keycloak to act as a SAML service provider, integrating with an external SAML IDP through trusted metadata. Map SAML roles to bug tracker access for enterprise users.
Recent Updates :
All Spring Boot examples tested & updated with Spring Boot 3.5.9, Java 25 & Keycloak 26.5.0
How do we use OAuth and OpenID Connect in real world Enterprise applications? How do we handle multiple OpenID Connect Identity Providers ? How do we use Identity Brokers for integration with SAML and Social Providers like Google, GitLab or Facebook? How do we mix OpenID Connect and OAuth using multiple Providers at the same time ?
This course on OAuth and OpenID Connect builds on my previous course called Enterprise OAuth and OpenID Connect by using Keycloak as the Custom Identity Provider. Students will go through hands-on development using Keycloak, GitLab, Okta and Spring Boot 3.5.x/Spring Security 6.x. Students are expected to have some knowledge of OAuth and Spring Boot.
WHAT THE LEARNERS ARE SAYING:
5 STARS - Viraj has excellent command over subject matter and is also great at teaching complex subject which is evident in this course. As a user of technologies mention in course including Keycloak at my job, I find this content extremely thorough and highly useful. Viraj has covered the topics in depth without making them boring (as one would find by reading RFCs). Congratulations and thanks to Viraj for producing another quality content!!
5 STARS - Viraj is an amazing teacher walking through each step. Its a pleasure to be in his class.
5 STARS - The course is detailed providing technical information. The instructor explains concepts in detail with supporting diagrams. Highly recommend this course for anyone interested in understanding concepts of OAuth and OpenID and step-by-step hands-on instructions.
5 STARS - I like the detailed approach on explaining the basic concepts. Well done.
5 STARS - Great presentation
With the help of theory, plentiful Diagrams and code-centric content, students will learn the following.
Overview of OAuth and OpenID Connect for Enterprise and Social Applications
Protect OpenID Connect Applications using Scopes and Roles
Create OAuth Microservices (Resource Servers) secured with JWT and Opaque tokens
Learn how and when to use Client Credential grant type in Enterprise applications
Learn how to handle Multiple OpenID Connect Identity Providers in Spring Boot
Learn how to use Identity Brokers in Keycloak with Social Identity Providers like Google, GitLab, Facebook etc.
Learn how to use Identity Brokers for OpenID Connect and SAML Integration
Learn how to mix OAuth and OpenID Connect with Multiple Identity providers at the same time
Understand about Cryptographic Hashing, Encryption and Digital Signatures using openssl
Using a Course Project and Assignments, students will get Hands-On practice to implement all that is learnt in the sections.
This course will take you to the next level in your understanding of Authentication and Authorization. Not only do we learn about real life OAuth and OpenID Connect programming but also the architectural Authentication/Authorization blueprints for an enterprise which will guarantee to make you an expert. There is a wealth of Information here; don't miss it.
REMEMBER… I'm so confident that you'll love this course that we're offering a FULL money-back guarantee for 30 days! So it's a complete no-brainer, sign up today with ZERO risk and EVERYTHING to gain.