16 Implementing an OAuth 2 client

This chapter covers

Implementing OAuth 2 login
Implementing a Spring Security OAuth 2 client
Using the client credentials grant type

Often we need to implement communication between backend applications, especially with backend apps composed of multiple services. In such cases, when systems have authentication and authorization built over OAuth 2, it’s recommended that you authenticate calls between apps using the same approach. While in some cases, developers use HTTP Basic and API Key authentication methods (chapter 6) for simplicity, to keep the system consistent and more secure, using the OAuth 2 client credentials grant type is the preferred option for such cases.

Remember the OAuth 2 actors (figure 16.1)? We discussed the authorization server in chapter 14 and the resource server in chapter 15. This chapter is dedicated to the client. We’ll discuss how to use Spring Security to implement an OAuth 2 client and when and how a backend app becomes a client in an OAuth 2 system.

Figure 16.1 The OAuth2 actors. In this chapter, we discuss the client and how a backend app can act as a client in a system with authentication and authorization designed as OAuth 2.

16.1 Implementing OAuth 2 login

16 Implementing an OAuth 2 client

This chapter covers

Figure 16.1 The OAuth2 actors. In this chapter, we discuss the client and how a backend app can act as a client in a system with authentication and authorization designed as OAuth 2.

16.1 Implementing OAuth 2 login

16.1.1 Implementing authentication with a common provider

16.1.2 Giving the user more possibilities

16.1.3 Using a custom authorization server

16.1.4 Adding flexibility to your configurations

16.1.5 Managing authorization for OAuth 2 login

16.2 Implementing an OAuth 2 client

16.3 Summary