# README

[![MIT licensed](https://img.shields.io/badge/license-MIT-blue.svg)](https://opensource.org/license/mit) ![Java CI](https://github.com/andifalk/cloud-security-workshop/workflows/JavaCI/badge.svg)

## OAuth 2.1 and OpenID Connect for Java Developers (Hands-On Workshop)

Workshop on building secure cloud-native applications using OAuth 2.0 and OpenID Connect 1.0 authentication and authorization.

Please follow the provided step-by-step [Tutorial](https://andifalk.gitbook.io/oauth-2.1-and-openid-connect-for-java-developers) for this workshop.

* [Introduction](#introduction)
* [Intro Lab](#intro-lab)
* [Hands-On Labs](#hands-on-labs)
* [Best-Practices & Recommendations](#best-practices--recommendations)

### Setup

* [Requirements](https://andifalk.gitbook.io/oauth-2.1-and-openid-connect-for-java-developers/setup/requirements)
* [Setup](https://andifalk.gitbook.io/oauth-2.1-and-openid-connect-for-java-developers/setup/setup)

### Introduction

* [Introduction to OAuth 2.1 and OpenID Connect](https://andifalk.gitbook.io/oauth-2.1-and-openid-connect-for-java-developers/introduction/introduction)
* [Sample Application Architecture](https://andifalk.gitbook.io/oauth-2.1-and-openid-connect-for-java-developers/introduction/architecture)

### Intro Lab

* [Authorization Code Grant in Action](https://andifalk.gitbook.io/oauth-2.1-and-openid-connect-for-java-developers/intro-labs/auth-code-in-action)
* [Practice Authorization Grant Flows](https://andifalk.gitbook.io/oauth-2.1-and-openid-connect-for-java-developers/intro-labs/oauth-grants)

### Hands-On Labs

* [Lab 1: The server side (resource server)](https://andifalk.gitbook.io/oauth-2.1-and-openid-connect-for-java-developers/hands-on-labs/product)
* [Lab 2: The client side](https://andifalk.gitbook.io/oauth-2.1-and-openid-connect-for-java-developers/hands-on-labs/ui)

### Best-Practices & Recommendations

* [Client-Side](https://andifalk.gitbook.io/oauth-2.1-and-openid-connect-for-java-developers/best-practices-and-recommendations/client)
* [Server-Side](https://andifalk.gitbook.io/oauth-2.1-and-openid-connect-for-java-developers/best-practices-and-recommendations/server)

### Feedback

Any feedback on this hands-on workshop is highly appreciated. Just email *andreas.falk(at)novatec-gmbh.de* or contact me via Twitter (*@andifalk*).

### License

MIT licensed