{"id":24414833,"url":"https://github.com/andifalk/secure-oauth2-oidc-workshop","last_synced_at":"2025-07-20T22:33:52.912Z","repository":{"id":35818291,"uuid":"198832839","full_name":"andifalk/secure-oauth2-oidc-workshop","owner":"andifalk","description":"Hands-On Workshop for OAuth 2.0 and OpenID Connect 1.0","archived":false,"fork":false,"pushed_at":"2024-01-09T16:05:42.000Z","size":33158,"stargazers_count":90,"open_issues_count":41,"forks_count":41,"subscribers_count":6,"default_branch":"master","last_synced_at":"2025-06-03T21:56:41.183Z","etag":null,"topics":["angular","authentication","authorization","java","keycloak","microservices","oauth2","openid-connect","spring-boot","spring-security","testcontainers"],"latest_commit_sha":null,"homepage":"https://andifalk.gitbook.io/openid-connect-workshop","language":"Java","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/andifalk.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2019-07-25T13:03:55.000Z","updated_at":"2024-10-29T15:29:47.000Z","dependencies_parsed_at":"2025-04-12T03:41:19.637Z","dependency_job_id":"62e25c7e-c657-49b4-b9d5-7802b9857c93","html_url":"https://github.com/andifalk/secure-oauth2-oidc-workshop","commit_stats":null,"previous_names":[],"tags_count":5,"template":false,"template_full_name":null,"purl":"pkg:github/andifalk/secure-oauth2-oidc-workshop","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/andifalk%2Fsecure-oauth2-oidc-workshop","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/andifalk%2Fsecure-oauth2-oidc-workshop/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/andifalk%2Fsecure-oauth2-oidc-workshop/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/andifalk%2Fsecure-oauth2-oidc-workshop/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/andifalk","download_url":"https://codeload.github.com/andifalk/secure-oauth2-oidc-workshop/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/andifalk%2Fsecure-oauth2-oidc-workshop/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":263111382,"owners_count":23415442,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["angular","authentication","authorization","java","keycloak","microservices","oauth2","openid-connect","spring-boot","spring-security","testcontainers"],"created_at":"2025-01-20T07:19:36.573Z","updated_at":"2025-07-02T09:32:20.440Z","avatar_url":"https://github.com/andifalk.png","language":"Java","funding_links":[],"categories":[],"sub_categories":[],"readme":"[![License](https://img.shields.io/badge/License-Apache%20License%202.0-brightgreen.svg)][1]\n![Java CI](https://github.com/andifalk/secure-oauth2-oidc-workshop/workflows/Java%20CI/badge.svg)\n[![Release](https://img.shields.io/github/release/andifalk/secure-oauth2-oidc-workshop.svg?style=flat)](https://github.com/andifalk/secure-oauth2-oidc-workshop/releases)\n\n# OAuth 2.0 / OpenID Connect Workshop\n\nAuthentication and authorization for Microservices with OAuth 2.0 (OAuth2) and OpenID Connect 1.0 (OIDC).\nThis contains both, theory parts on all important concepts, and hands-on practice labs.\n\n__Table of Contents__\n\n* [Workshop Tutorial](https://andifalk.gitbook.io/openid-connect-workshop)\n* [Requirements and Setup](setup)\n* [Hands-On Workshop](#hands-on-workshop)    \n  * [Intro Labs](#intro-labs)\n    * [Lab: Authorization Grant Flows in Action](intro-labs/oauth-grants)\n    * [Demo: Auth Code Flow in Action](intro-labs/auth-code-demo)\n    * [Demo: GitHub Client](intro-labs/github-client)\n  * [Hands-On Labs](#hands-on-labs)\n    * [Lab 1: Resource Server](lab1)\n    * [Lab 2: Client (Auth Code)](lab2)\n    * [Lab 3: Client (Client-Credentials)](lab3)\n    * [Lab 4: Testing JWT Auth\u0026Authz](lab4)\n    * [Lab 5: JWT Testing Server](lab5)\n    * [Lab 6: SPA Client (Authz Code with PKCE)](lab6)\n  * [Bonus Labs](#bonus-labs)  \n    * [Demo: Multi-Tenant Resource Server](bonus-labs/multi-tenant-server-app)\n    * [Demo: Resource Server with Micronaut](bonus-labs/micronaut-server-app)\n    * [Demo: Resource Server with Quarkus](bonus-labs/quarkus-server-app)\n    * [Lab: Keycloak Testcontainers](bonus-labs/keycloak-test-containers)\n* [Feedback](#feedback)\n* [License](#license)    \n\n## Workshop Tutorial\n\nTo follow the hands-on workshop please open the [workshop tutorial](https://andifalk.gitbook.io/openid-connect-workshop).\n\n## Requirements and Setup\n\nFor the hands-on workshop you will extend a provided sample application along with guided tutorials.\n\nThe components you will build (and use) look like this:\n\n![Architecture](docs/images/demo-architecture.png)\n\n__Please check out the [complete documentation](application-architecture) for the sample application before \nstarting with the first hands-on lab__. \n\nAll the code currently is build using\n\n* [Spring Boot 2.4.x Release](https://spring.io/blog/2020/11/12/spring-boot-2-4-0-available-now) \n* [Spring Framework 5.3.x Release](https://spring.io/blog/2020/10/27/spring-framework-5-3-goes-ga)\n* [Spring Security 5.4.x Release](https://spring.io/blog/2020/09/10/spring-security-5-4-goes-ga)\n* [Spring Batch 4.3.x Release](https://spring.io/blog/2020/10/28/spring-batch-4-3-is-now-ga)\n\nAll code is verified against the currently supported long-term version 11 of Java (The latest version 14 should work as well).\n\nTo check system requirements and setup for this workshop please follow the [setup guide](setup).\n\n## Hands-On Workshop\n\n### Intro Labs\n\n* [Lab: Authorization Grant Flows in Action](intro-labs/oauth-grants)\n* [Demo: Authorization Code Grant Flow in Action](intro-labs/auth-code-demo)\n* [Demo: A pre-defined OAuth2 client for GitHub](intro-labs/github-client)\n\n### Hands-On Labs\n\n* [Lab 1: OAuth2/OIDC Resource Server](lab1)\n* [Lab 2: OAuth2/OIDC Web Client (Auth Code Flow)](lab2)\n* [Lab 3: OAuth2/OIDC Batch Job Client (Client-Credentials Flow)](lab3)\n* [Lab 4: OAuth2/OIDC Testing Environment](lab4)\n* [Lab 5: OAuth2/OIDC Angular Client](lab5)\n\n### Bonus Labs\n\n* [Demo: Multi-Tenant Resource Server](bonus-labs/multi-tenant-server-app)\n* [Demo: OAuth2/OIDC Resource Server with Micronaut](bonus-labs/micronaut-server-app)\n* [Demo: OAuth2/OIDC Resource Server with Quarkus](bonus-labs/quarkus-server-app)\n* [Lab: Keycloak Testcontainers](bonus-labs/keycloak-test-containers)\n\n\n## Feedback\n\nAny feedback on this hands-on workshop is highly appreciated.\n\nJust send an email to _andreas.falk(at)novatec-gmbh.de_ or contact me via Twitter (_@andifalk_).\n\n## License\n\nApache 2.0 licensed\n\n[1]:http://www.apache.org/licenses/LICENSE-2.0.txt\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fandifalk%2Fsecure-oauth2-oidc-workshop","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fandifalk%2Fsecure-oauth2-oidc-workshop","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fandifalk%2Fsecure-oauth2-oidc-workshop/lists"}