Jan 24–26, 2023Virtual


Configuring and Extending Spring Authorization Server

Imagine you can download and minimally configure an OAuth2 Authorization Server with secure defaults in less than 10 minutes, easily customize the configuration, and extend the default server capabilities and provide custom features to conform to the security requirements defined by your organization.

If that sounds good, you need to try Spring Authorization Server. It delivers a very flexible configuration model for customizing the defaults and provides well-defined extension points for plugging in custom features.

This talk demonstrates the configuration and extension possibilities that Spring Authorization Server provides. We start at ground zero with the minimal required configuration. Then we customize the defaults by demonstrating how to fine-tune the configuration for the core components and protocol endpoints. Finally, we demonstrate how to extend the server capabilities and provide a custom authorization grant type that supports custom parameters and access token type.