Thank you so much for this video, this is the best Auth0 video I've seen so far. And thanks for showing a detailed and practical example. Question: assuming I want to send a jwt token to a react application after the user has authenticated just as in your video, how do I do this?
Glad it was helpful! Do you want to replace Java SpringBoot app with a React app? If so, I am sure React has some libraries for OIDC authentication similar to Java SpringBoot security libraries. I remember seeing something called NextAuth.js which supports OIDC for React apps. Please like, subscribe & share!! Thanks in advance.
You can refer this on how to add roles as a claim to the access token documentation auth0.com/docs/get-started/apis/enable-role-based-access-control-for-apis Please like, subscribe & share this video / channel !! Thanks in advance.
Hello, thanks for this its quite helpfull. I have a question, how should we do when we have several endpoints that required at least a user ID / email to be able to fetch some info from database? how should we make it work with auth0 to make sure requested user is logged in + matches the one logged in? Thanks
Userid or email is available in the ID token. I think you can customize the Auth0 access token to include these claims as well. The other question on "requested user is logged in + matches the one logged in" is not clear. Can you elaborate the scenario? Without authenticating in Auth0, the application cannot get the tokens like ID, Access token
Thanks a lot for this videos 🙌 question how do you get access for the access and refresh token after this? I see their are setting a session cookie but I want the jwts
I will work on that and post a video. Meanwhile, you can take a look at this documentation docs.spring.io/spring-security/reference/servlet/oauth2/client/authorization-grants.html#_using_the_access_token for some idea on how it works
Please subscribe to this channel for regular updates ua-cam.com/channels/EEayyyCrJO94FYlzF0NLTg.html
Thank You for the support.
Thanks for tutorial man.A big thanks
Welcome!
Please like, subscribe & share this video to support this channel !! Thanks in advance.
Thank you so much for this video, this is the best Auth0 video I've seen so far. And thanks for showing a detailed and practical example.
Question: assuming I want to send a jwt token to a react application after the user has authenticated just as in your video, how do I do this?
Glad it was helpful!
Do you want to replace Java SpringBoot app with a React app? If so, I am sure React has some libraries for OIDC authentication similar to Java SpringBoot security libraries. I remember seeing something called NextAuth.js which supports OIDC for React apps.
Please like, subscribe & share!! Thanks in advance.
how can i get role of user ? for example i have created user : Jon, and his role is admin, how i can get this role ?
You can refer this on how to add roles as a claim to the access token documentation auth0.com/docs/get-started/apis/enable-role-based-access-control-for-apis
Please like, subscribe & share this video / channel !! Thanks in advance.
Hello, thanks for this its quite helpfull. I have a question, how should we do when we have several endpoints that required at least a user ID / email to be able to fetch some info from database? how should we make it work with auth0 to make sure requested user is logged in + matches the one logged in?
Thanks
Userid or email is available in the ID token. I think you can customize the Auth0 access token to include these claims as well.
The other question on "requested user is logged in + matches the one logged in" is not clear. Can you elaborate the scenario? Without authenticating in Auth0, the application cannot get the tokens like ID, Access token
Thanks a lot for this videos 🙌 question how do you get access for the access and refresh token after this? I see their are setting a session cookie but I want the jwts
I will work on that and post a video. Meanwhile, you can take a look at this documentation docs.spring.io/spring-security/reference/servlet/oauth2/client/authorization-grants.html#_using_the_access_token for some idea on how it works
Perfect vid, i wonder if this works with jdk21 and spring boot 3.2.3
I have not tried with these specific versions. But, I guess it should work as long as Spring didn't change any of those OIDC related configurations
what is the purpose of step 7 ?
Are you referring to /oauth/token endpoint call?