Enterprise OAuth 2.0 - Using okta(1)
Okta Authorization Server
Okta setup and Endpoints
https://developer.okta.com/signup/
Custom Resource Server using Spring boot
https://developer.okta.com/docs/reference/api/authorization-servers/#authorization-server-object
https://dev-15955701-admin.okta.com/admin/oauth2/as
# Okta oauth security setting. The access tokens are coming in as JWT tokens
spring.security.oauth2.resourceserver.jwt.jwk-set-uri: <PLACE OKTA ISSUER URL HERE FROM OKTA CONSOLE>/v1/keys
Deep Dive Resource Owner Password Grant Type
Create application client in Okta.
Test it on Postman.
============================================================
STEP 1: Construct a Token Request for username and password
============================================================
ENDPOINT =>
HTTP TYPE => POST
grant_type=
client_id=
client_secret= (NOT NEEDED)
username =
password
scope=openid profile email offline_access fakebook.api.read fakebookapi.admin
============================================================
STEP 2: Send Token Request and extract Token
============================================================
=> use openid profile email offline_access
=> Okta returns JWT tokens
=> dissect token in jwt.io
=> Difference between the ID TOKEN and ACCESS TOKEN
============================================================
STEP 3: Send a FakeBookAPI request (Get All Books)
============================================================