Cognito, Angular2, and Java/Spring - java

We are in the process of building a new web application and have decided our technology stack will use many AWS services, Java-Spring, and Angular2. We plan to also build iOS and Android apps in the future so I love the features that Cognito provides. However, I can't seem to find any good documentation/examples of Angular2/Java applications using Cognito. The sample apps seem to be strictly front-end or backend. How do I authenticate via Cognito in Angular2, while also checking Cognito user permissions in the back-end Java/Spring app? I need to authenticate my restful endpoints against the user logged in from Angular.

Related

Spring Boot Oauth2 and google services api

I have an web application whcih allows only google users and uses spring-boot-starter-oauth2-client to obtain authentication. I want to integrate Google API into my application, but all examples using its onw Oath2 process to authenticate user. How can I reuse existing spring boot google login for interaction with google API services?
Thanks!
You have to use the spring-boot-starter-oauth2-client dependency that allows the client registration for oauth2 providers, but before that it's necessary the client-id and client-secret provided by your oauth2 provider (such google). Here's a nice guide of how do that.

spring boot web app for authentication/autorization using AWS Cognito Java API

AWS Cognito primarly meant for Serverless user authentication from Mobile or Web application (Javascript).
The primary concern is that, we need to do client implementation for each of the client like Android, IOS and Javascript.
Instead of that can we have spring boot server which will expose a login/signup/action rest endpoint for all the above clients where the spring boot will authenticate/signup with Congnito on behalf of the clients and send the access_token response back to the client. This way, Conginto integration will be done only in one place which is the Spring boot application.
Can we go ahead with this approach? Does AWS SDK supports Java for cognito access from Server?
Here's an article which shows an example of implementing a Spring boot application that is able to authenticate the user against Amazon Cognito using OAuth 2.0 authorization code grant and JSON Web Tokens.
This github repo contains the example code in Kotlin
Probably, this is in some ways, similar to your usecase.

App Enigne flex Java - Authenticating API using Google Cloud Endpoints JWT

We have an App Engine flex Java REST API and want it to be secured with Google Cloud Endpoints. We have successfully done this with API key,
but we want to do it with JWT.
Our consumer for API is outside of Cloud and doesn't have a Google account. In the official documentation for App Engine flex, it has examples for API key but not for JWT. We have gone through (docs) but couldn't find anything for Java.

Oauth2 2LO between two apps in GAE

I work in a project using GAE.
I have a GAE app that consume Rest services from others GAE apps (this apps uses different Google Apis with 2LO oauth2, eg: one app uses Gcalendar Api, other Gmail Api, ...). The REST apps are in Java and use GoogleCredential for consume Google Apis. All the apps are in same domain (Company is own of all projects).
I need migrate the principal GAE app (also in Java) from 2LO Oauth 1 to 2LO Oauth2.
I see this example but not is 2LO. https://code.google.com/p/google-oauth-java-client/wiki/Samples
Can I use Credential from Google-Oauth-api or GoogleCredential? Or GoogleCredential is only for Google Apis?
Thanks.
This [1] is the 2LO OAuth 2.0 implementation of Google OAuth you can use on App Engine and is usually refereed as the OAuth for Server to Server Applications on public documentation. This method requires of a Service Account that you can obtain on the Google Developers Console of your app. More info here [2].
[1] https://developers.google.com/accounts/docs/OAuth2ServiceAccount
[2] https://developers.google.com/api-client-library/java/google-api-java-client/app-engine

GAE + SAML + JAVA + OpenSAML

I am creating a web application on GAE. In this application i have to implement the SSO feature using SAML 2.0. I am suffering lot on web but i didn't find any example. I get the knowledge how SAML work, which library i have to use in java. But before starting i want to know if this feature is possible in GAE. I know google apps are based on SAML and provide SSO functionality. But i didn't find any link where it stated that GAE also support SAML and we can create SAML application on GAE. Thanks
I have done some integration with my demo google app engine account. Here i used Java based SAML2 IDP in my local which has been connected to LDAP user store. And using this IDP, i could login to google app account. Here what i understood. We need to configure about the IDP details (uri and so on) in the google account and upload a certificate of my IDP. Then i want to create same user which was in my IDP, in the google app account (I guess, it is for authorization purpose). Once i tried to login to google app, then it redirects me to my local SAML2 IDP and i need to provide user credentials to IDP. Then i would be directed to google app and can login to it. Here is some guide how to enable SAML2 SSO with shibboleth. I guess this would be help you.

Categories