Skip to content

A simple API secured with AWS Cognito OAuth2 as resource server

Notifications You must be signed in to change notification settings

aflores01/aws-cognito-secured-ms

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

AWS COGNITO SECURED MS

A simple API secured with AWS Cognito OAuth2 as resource server

##Requirements

  • AWS Account to setup appClient, scopes, resource server etc.

##Features

This spring boot application comes with a simple API which composes of one endpoint and a service to do business logic.

###What you need:

  • AWS User Pool
  • Client ID, secret & region
  • Your /oauth/token URL
  • A resource server defined for your scopes inside management console in AWS

##Setting up you environment variables

spring_security_oauth2_resourceserver_jwt_issuer_uri=https://cognito-idp..amazonaws.com/ server_port:Your desired server port

##Make the magic

When your resource server its running and up you can generate your access_token and authenticate each call to your API with the defined scopes in AWS console management. Spring Boot automatically manages the permissions through the defined scopes, and you cannot access a resource that's not defined in the Resource Server.

##I need to disable the security in some resources of my application

Check the SecurityConfiguration, as we are using Spring Security to manage permissions, you can disable the authentication for desired resources.

About

A simple API secured with AWS Cognito OAuth2 as resource server

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages