This article describes how to create Spring Boot application with oauth2 authorization using password
grant type. This grant type is appropriate for internal clients which we trust to get username and password from the user, like for example internal web UI or native mobile app.
JetBrains Hub is an user management tool enabling single sign-on across all JetBrains web applications (like YouTrack or Upsource). But it also can work as a standalone oauth2/saml provider what brings to mind to use it as a central users repository for a number of different applications. Like for example GitLab. They provide oauth2 profile for GitLab to allow sign-in to Hub using GitLab credentials (GitLab acts as oauth2 provider) but we’d like to do something opposite - to use Hub working as oauth2 provider for GitLab, and to sign-in to GitLab with Hub credentials.
Read the full articleHere I’d like to describe another interesting case I’ve been struggling with for recent few days. This involves the following use case: enable asynchronous events support for Tomcat/Spring multi-tenancy SaaS application, that can be pushed to listening client groups. To be specific, the event should be channeled to following groups: to specific user, to all users of specific tenant and to all users.
Read the full articleMy way to reflect permission system implemented on database/ORM level in full text indexing system based on Lucene.
Read the full article