Client Credentials

Secure Server-to-Server Communication with Spring Boot and OAuth 2.0

April 2, 2018 bdemers

Most OAuth 2.0 guides are focused around the context of a user, i.e., login to an application using Google, Github, Okta, etc., then do something on behalf of that user. While useful, these guides ignore server-to-server communication where there is no user and you only have one service connecting to another one.

Brian Demers

Father, Geek 🤓,
Beekeeper 🐝,
Java Champion ♨️, Developer Advocate 🥑

Recent Posts

From Hour-Long Builds to Streamlined Productivity: The Spring Boot Journey

June 2, 2023

Add Auth to Any App with OAuth2 Proxy

July 14, 2022

Authenticate from the Command Line with Java

April 11, 2022

Three Ways to Run Your Java Locally with HTTPS

January 31, 2022

Five Anti-Patterns with Secrets in Java

December 14, 2021

View more posts

Categories

java 41

security 26

builds 23

development 16

dpe 12

productivity 11

spring-boot 11

testing 9

apache-shiro 8

video 8

oauth-2.0 5

spring 5

tutorial 5

tutorials 5

ci 4

maven 4

oauth 4

oidc 4

cli 3

jax-rs 3

jwt 3

oauth2 3

reproducible-builds 3

vulnerabilities 3

github 2

hazelcast 2

hugo 2

interview 2

microservices 2

nexus 2

okta 2

rest 2

spring-security 2

tips 2

tokens 2

travis-ci 2

access-tokens 1

apache-maven 1

arm 1

authentication 1

basic-auth 1

benchmarks 1

best-practices 1

certificates 1

chocolatey 1

client-credentials 1

command-line 1

content-negotiation 1

cryptography 1

devrel 1

dropwizard 1

firebase 1

git 1

github-actions 1

gpg 1

graalvm 1

gradle 1

groovy 1

hamcrest 1

haproxy 1

https 1

intel 1

ioc 1

jaxrs 1

jjwt 1

jpaseto 1

legacy 1

localhost 1

oauth2-proxy 1

paseto 1

performance 1

plexus 1

quarkus 1

secrets 1

security-tokens 1

securitytxt 1

session 1

spring-cloud-gateway 1

spring-native 1

spring-session 1

subversion 1

team 1

tests 1

user-authentication 1

yubikey 1