Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/oktadev/auth0-full-stack-java-example

🔥 Full Stack Java Example
https://github.com/oktadev/auth0-full-stack-java-example

auth0 fullstack fullstack-java java oidc react spring-boot

Last synced: 1 day ago
JSON representation

🔥 Full Stack Java Example

Host: GitHub
URL: https://github.com/oktadev/auth0-full-stack-java-example
Owner: oktadev
Created: 2021-10-12T19:33:58.000Z (about 3 years ago)
Default Branch: main
Last Pushed: 2022-05-12T01:05:06.000Z (over 2 years ago)
Last Synced: 2024-04-15T15:55:04.839Z (7 months ago)
Topics: auth0, fullstack, fullstack-java, java, oidc, react, spring-boot
Language: Java
Homepage: https://auth0.com/blog/full-stack-java-with-react-spring-boot-and-jhipster/
Size: 5.36 MB
Stars: 26
Watchers: 6
Forks: 15
Open Issues: 1
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

        # Full Stack Java Example with JHipster (React + Spring Boot) 🤓

This example app shows you how to create a slick-looking, full-stack, secure application using React, Spring Boot, and JHipster.

Please read the following blog posts to learn more:

- [Full Stack Java with React, Spring Boot, and JHipster][blog] to see how this app was created.

- [Introducing Spring Native for JHipster: Serverless Full-Stack Made Easy][blog-spring-native] to convert this app to an executable with Spring Native.

- [Use GitHub Actions to Build GraalVM Native Images][blog-github-graalvm] to automate your GraalVM builds.

**Prerequisites:**

- [Node.js 14+](https://nodejs.org/)

- [Java 11+](https://sdkman.io)

- [Docker Compose](https://docs.docker.com/compose/install/)

- An [Auth0 Account](https://auth0.com/signup)

> [Auth0](https://auth0.com) is an easy to implement, adaptable authentication and authorization platform. Basically, we make your login box awesome.

- [Getting Started](#getting-started)

- [Links](#links)

- [Help](#help)

- [License](#license)

## Getting Started

To install this example, clone it.

```

git clone https://github.com/oktadev/auth0-full-stack-java-example.git

cd auth0-full-stack-java-example

```

Create a `.auth0.env` file in the root of the project, and fill it with the code below to override the default OIDC settings:

```shell

export SPRING_SECURITY_OAUTH2_CLIENT_PROVIDER_OIDC_ISSUER_URI=https:///

export SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_OIDC_CLIENT_ID=

export SPRING_SECURITY_OAUTH2_CLIENT_REGISTRATION_OIDC_CLIENT_SECRET=

export JHIPSTER_SECURITY_OAUTH2_AUDIENCE=https:///api/v2/

```

You'll need to create a new web application in Auth0 and fill in the `<...>` placeholders before this works.

### Create an OpenID Connect App on Auth0

Log in to your Auth0 account (or [sign up](https://auth0.com/signup) if you don't have an account). You should have a unique domain like `dev-xxx.eu.auth0.com`.

Press the **Create Application** button in [Applications section](https://manage.auth0.com/#/applications). Use a name like `JHipster Baby!`, select `Regular Web Applications`, and click **Create**.

Switch to the **Settings** tab and configure your application settings:

- Allowed Callback URLs: `http://localhost:8080/login/oauth2/code/oidc`

- Allowed Logout URLs: `http://localhost:8080/`

Scroll to the bottom and click **Save Changes**.

In the [roles](https://manage.auth0.com/#/roles) section, create new roles named `ROLE_ADMIN` and `ROLE_USER`.

Create a new user account in the [users](https://manage.auth0.com/#/users) section. Click on the **Role** tab to assign the roles you just created to the new account.

_Make sure your new user's email is verified before attempting to log in!_

Next, head to **Auth Pipeline** > **Rules** > **Create**. Select the `Empty rule` template. Provide a meaningful name like `Group claims` and replace the Script content with the following.

```js

function(user, context, callback) {

  user.preferred_username = user.email;

  const roles = (context.authorization || {}).roles;

  function prepareCustomClaimKey(claim) {

    return `https://www.jhipster.tech/${claim}`;

  }

  const rolesClaim = prepareCustomClaimKey('roles');

  if (context.idToken) {

    context.idToken[rolesClaim] = roles;

  }

  if (context.accessToken) {

    context.accessToken[rolesClaim] = roles;

  }

  callback(null, user, context);

}

```

This code is adding the user's roles to a custom claim (prefixed with `https://www.jhipster.tech/roles`). This claim is mapped to Spring Security authorities in `SecurityUtils.java`.

Click **Save changes** to continue.

**NOTE**: Want to have all these steps automated for you? Vote for [this issue](https://github.com/auth0/auth0-cli/issues/351) in the Auth0 CLI project.

### Run Your JHipster App with Auth0

Set your Auth0 properties in `.auth0.env`, and start the app.

```shell

source .auth0.env

./mvnw

```

_Voilà_ - your full stack app is using Auth0! Open your favorite browser to `http://localhost:8080` and sign-in.

## Links

This example uses the following open source libraries:

- [JHipster](https://www.jhipster.tech)

- [Spring Boot](https://spring.io/projects/spring-boot)

- [Spring Security](https://spring.io/projects/spring-security)

## Help

Please post any questions as comments on the [blog post][blog].

## License

Apache 2.0, see [LICENSE](LICENSE).

[blog]: https://auth0.com/blog/full-stack-java-with-react-spring-boot-and-jhipster/

[blog-spring-native]: https://developer.okta.com/blog/2022/03/03/spring-native-jhipster

[blog-github-graalvm]: https://developer.okta.com/blog/2022/04/22/github-actions-graalvm