Securing a Spring Boot Application with Keycloak

In this article, I’m going to show you how to secure a Spring Boot application using Keycloak.

Securing Spring Boot with Keycloak - ThomasVItale.com

Before doing that, I’d like to briefly recall what I’ve done so far.

First, I highlighted the main features of Keycloak used in this series and explained how to install and boot the Keycloak server.

Then, I set Keycloak with some basic configurations to use it for securing a web application (providing it with authentication and authorisation).

In this article, I’ll talk about how to:

    1. Create a client in Keycloak;
    2. Set up the Spring Boot application;
    3. Define the application resources;
    4. Add access policies based on user roles.

You can check out the full source code of the demo project I’m going to build on GitHub.

Let’s get started! Continue reading “Securing a Spring Boot Application with Keycloak”