spring-boot-sample | sample shows how easy to integrate Doma | Application Framework library

I'm trying to implement the ability to use Azure B2C with Spring Boot's Webflux Security. While there's no official library to actually do this, it was said by someone at Microsoft that Spring Security 5's native features could support Azure B2C. I've followed this repository (though it's not webflux based) to get an idea on pulling this off. The JWT tokens are validated via the audience UUID for an application.

Once I try to actually supply a JWT token to a request, I'm getting a HTTP 401 error stating Authentication failed: Failed to validate the token.

The thing is that in the example repository, they're using the endpoint https://login.microsoftonline.com/{tenantId}/v2.0 for the issuer url.

On the other hand, the JWT token returned from B2C has the issuer https://{tenantName}.b2clogin.com/{tenantId}/v2.0/.

If I use the issuer https://{tenantName}.b2clogin.com/{tenantId}/v2.0/ instead, the JWT decoder won't be able to find the configurations.

So now I feel there's an inconsistency on what the issuer URL actually is, which prevents Webflux from actually being able to perform the authentication.

Here's the code I have for the security.

How to integrate an Azure AppConfiguration with SpringBoot 2.5.x or higher?

Info

Im trying to use an Azure AppConfiguration resource with a Spring Boot 2.5.4 project. Unfortunately I cant get it to read a setting from the AppConfiguration or even connect to it as far as I can tell.

The project is newly created with the Spring Initializr where I only added

• Spring Boot Starter Web
• Spring Boot Starter Security
• Spring Boot Starter WebSocket

Afterwards I tried following the Microsoft Quickstart documentation with no success. The documentation mentions that its using Spring 2.4.x so I assume some changes broke it.

I also tried to identify the issue by looking through some Azure Spring Boot Code Samples.

All the examples so far use the bootstrap.properties file which I learned during my search so far is deprecated. Moving the settings to the application.yml or enabling use-legacy-processing: true did not work either. Any ideas?

pom.xml

I am practicing an azure sample named OAuth 2.0 Sample for Azure AD Spring Boot Starter Resource Server library for Java.I followed the steps but blocked in Check the authentication and authorization.I have got the access_token successfully, but I don't know how to use it in postman or any other ways. Is there any doc or advice? Thanks very much!

Okay, I added the Authorization in request header, but I got 401 and an error message. And this is way where I got the access_token. Is there something wrong?

I have an Spring Boot 2.4.5 project with Kotlin created using this example

The readme describes placing a service principle's ID and secret in the properties. Is this not counter to using a key vault to store your secrets? Or am I reading this incorrectly?

I'm going through a tutorial on Microsoft Docs on how to secure my Spring MVC application using Spring Boot Starter for Azure Active Directory. I'm trying to secure the admin area of my site. I have a @PreAuthorize annotation on a controller method that I only want users in the admin group to have access to. I am able to get a login prompt, but after succesfully logging in I get a 403 for that controller method. When I remove the @PreAuthorize annotation, I can log in and access the method just fine.

Here is the controller method:

I tried creating a Custom AggregationOperation based on https://github.com/krishnaiitd/learningJava/tree/master/spring-boot-sample-data-mongodb When I used a custom aggregation in my aggregation for a lookup, it threw an exception saying the "as" field is not found on the entity.

If anybody has tried using custom AggregationOperation please share your code or let me know where I am going wrong.

Below is my code,

I've written a project by spring boot, now I'm using Milton Project to add webdav support. there is some simple example that works well. but when I add this example to my project, Spring Security Firewall rejects requests.

thank you in advance for your answers.

pom