Mocking is an essential part of unit testing, and the Mockito library makes it easy to write clean and intuitive unit tests for your Java code.
Get started with mocking and improve your application tests using our Mockito guide:
Handling concurrency in an application can be a tricky process with many potential pitfalls. A solid grasp of the fundamentals will go a long way to help minimize these issues.
Get started with understanding multi-threaded applications with our Java Concurrency guide:
Spring 5 added support for reactive programming with the Spring WebFlux module, which has been improved upon ever since. Get started with the Reactor project basics and reactive programming in Spring Boot:
Since its introduction in Java 8, the Stream API has become a staple of Java development. The basic operations like iterating, filtering, mapping sequences of elements are deceptively simple to use.
But these can also be overused and fall into some common pitfalls.
To get a better understanding on how Streams work and how to combine them with other language features, check out our guide to Java Streams:
Explore Spring Boot 3 and Spring 6 in-depth through building a full REST API with the framework:
Yes, Spring Security can be complex, from the more advanced functionality within the Core to the deep OAuth support in the framework.
I built the security material as two full courses - Core and OAuth, to get practical with these more complex scenarios. We explore when and how to use each feature and code through it on the backing project.
You can explore the course here:
Spring Data JPA is a great way to handle the complexity of JPA with the powerful simplicity of Spring Boot.
Get started with Spring Data JPA through the guided reference course:
Refactor Java code safely — and automatically — with OpenRewrite.
Refactoring big codebases by hand is slow, risky, and easy to put off. That’s where OpenRewrite comes in. The open-source framework for large-scale, automated code transformations helps teams modernize safely and consistently.
Each month, the creators and maintainers of OpenRewrite at Moderne run live, hands-on training sessions — one for newcomers and one for experienced users. You’ll see how recipes work, how to apply them across projects, and how to modernize code with confidence.
Join the next session, bring your questions, and learn how to automate the kind of work that usually eats your sprint time.
Distributed systems often come with complex challenges such as service-to-service communication, state management, asynchronous messaging, security, and more.
Dapr (Distributed Application Runtime) provides a set of APIs and building blocks to address these challenges, abstracting away infrastructure so we can focus on business logic.
In this tutorial, we'll focus on Dapr's pub/sub API for message brokering. Using its Spring Boot integration, we'll simplify the creation of a loosely coupled, portable, and easily testable pub/sub messaging system:
If you're working on a Spring Security (and especially an OAuth) implementation, definitely have a look at the Learn Spring Security course:
>> LEARN SPRING SECURITY1. Overview
Okta provides features like authentication, authorization, and social login for web, mobile, or API services. Additionally, it has robust support for the Spring Framework to make integrations quite straightforward.
In this tutorial, we’ll explore Spring Security with Okta along with a minimalistic setup of the Okta developer account.
2. Setting Up Okta
2.1. Developer Account Sign Up
First, we’ll sign up for a free Okta developer account that provides access for up to 1k monthly active users. However, we can skip this section if we already have one:
2.2. Dashboard
Once logged in to the Okta developer account, we’ll land at the dashboard screen that briefs us about the number of users, authentications, and failed logins.
Additionally, it also shows detailed log entries of the system:
Further, we’ll note the Org URL at the upper-right corner of the Dashboard, required for Okta setup in our Spring Boot App that we’ll create later.
2.3. Create a New Application
Then, let’s create a new application using the Applications menu to create OpenID Connect (OIDC) app for Spring Boot.
Further, we’ll choose the Web platform out of available options like Native, Single-Page App, and Service:
2.4. Application Settings
Next, let’s configure a few application settings like Base URIs and Login redirect URIs pointing to our application:
Also, make sure to mark Authorization code for the Grant type allowed, required to enable OAuth2 authentication for a web application.
2.5. Client Credentials
Then, we’ll get values for the Client ID and Client secret associated with our app:
Please keep these credentials handy because they are required for Okta setup.
3. Spring Boot App Setup
Now that our Okta developer account is ready with essential configurations, we’re prepared to integrate Okta security support in a Spring Boot App.
3.1. Maven
First, let’s add the latest okta-spring-boot-starter Maven dependency to our pom.xml:
<dependency>
<groupId>com.okta.spring</groupId>
<artifactId>okta-spring-boot-starter</artifactId>
<version>3.0.6</version>
</dependency>3.2. Gradle
Similarly, when using Gradle, we can add the okta-spring-boot-starter dependency in the build.gradle:
compile 'com.okta.spring:okta-spring-boot-starter:1.4.0'3.3. application.properties
Then, we’ll configure Okta oauth2 properties in the application.properties:
okta.oauth2.issuer=https://dev-example123.okta.com/oauth2/default
okta.oauth2.client-id=1230oaa4yncmaxaQ90ccJwl4x6
okta.oauth2.client-secret=hjiyblEzgT0ItY91Ywcdzwa78oNhtrYqNklQ5vLzvruT123
okta.oauth2.redirect-uri=/authorization-code/callbackHere, we can use the default authorization server (if none available) for the issuer URL that points to the {orgURL}/oauth2/default.
Also, we can create a new Authorization server in the Okta developer account by using the API menu:
Then, we’ll add the Client Id and Client secret of our Okta app that was generated in the previous section.
Last, we’ve configured the same redirect-uri that is being set in the Application Settings.
4. HomeController
After that, let’s create the HomeController class:
@RestController
public class HomeController {
@GetMapping("/")
public String home(@AuthenticationPrincipal OidcUser user) {
return "Welcome, "+ user.getFullName() + "!";
}
}Here, we’ve added the home method with Base Uri (/) mapping, configured in the Application Settings.
Also, the argument of the home method is an instance of the OidcUser class provided by Spring Security for accessing the user information.
That’s it! Our Spring Boot App is ready with Okta security support. Let’s run our app using the Maven command:
mvn spring-boot:runWhen accessing the application at localhost:8080, we’ll see a default sign-in page provided by Okta:
Once logged in using the registered user’s credentials, a welcome message with the user’s full name will be shown:
Also, we’ll find a “Sign up” link at the bottom of the default sign-in screen for self-registration.
5. Sign Up
5.1. Self-Registration
For the first time, we can create an Okta account by using the “Sign up” link, and then providing information like email, first name, and last name:
5.2. Create a User
Or, we can create a new user from the Users menu in the Okta developer account:
5.3. Self-Service Registration Settings
Additionally, sign-up and registration settings can be configured from the Users menu in the Okta developer account:
6. Okta Spring SDK
Now that we’ve seen Okta security integration in the Spring Boot App, let’s interact with the Okta management API in the same app.
First, we should create a Token by using the API menu in the Okta developer account:
Make sure to note down the Token as it is shown only once after generation. Then, it’ll be stored as a hash for our protection.
6.1. Setup
Then, let’s add the latest okta-spring-sdk Maven dependency to our pom.xml:
<dependency>
<groupId>com.okta.spring</groupId>
<artifactId>okta-spring-sdk</artifactId>
<version>1.4.0</version>
</dependency>6.2. application.properties
Next, we’ll add a few essential Okta client properties:
okta.client.orgUrl=https://dev-example123.okta.com
okta.client.token=00TVXDNx1e2FgvxP4jLlONbPMzrBDLwESSf9hZSvMI123Here, we’ve added the token noted in the previous section.
6.3. AdminController
Last, let’s create the AdminController, injected with the Client instance:
@RestController
public class AdminController {
@Autowired
public Client client;
}That’s it! We’re ready to call methods on the Client instance to make requests to the Okta API.
6.4. List Users
Let’s create the getUsers method to fetch a list of all users in our organization, using the listUsers method that returns a UserList object:
public class AdminController {
// ...
@GetMapping("/users")
public UserList getUsers() {
return client.listUsers();
}
}After that, we can access localhost:8080/users to receive a JSON response containing all users:
{
"dirty":false,
"propertyDescriptors":{
"items":{
"name":"items",
"type":"com.okta.sdk.resource.user.User"
}
},
"resourceHref":"/api/v1/users",
"currentPage":{
"items":[
{
"id":"00uanxiv7naevaEL14x6",
"profile":{
"firstName":"Anshul",
"lastName":"Bansal",
"email":"[email protected]",
// ...
},
// ...
},
{
"id":"00uag6vugXMeBmXky4x6",
"profile":{
"firstName":"Ansh",
"lastName":"Bans",
"email":"[email protected]",
// ...
},
// ...
}
]
},
"empty":false,
// ...
}6.5. Search User
Similarly, we can filter users using the firstName, lastName, or email as query parameters:
@GetMapping("/user")
public UserList searchUserByEmail(@RequestParam String query) {
return client.listUsers(query, null, null, null, null);
}Let’s search for a user by email using localhost:8080/[email protected]:
{
"dirty":false,
"propertyDescriptors":{
"items":{
"name":"items",
"type":"com.okta.sdk.resource.user.User"
}
},
"resourceHref":"/api/v1/users?q=ansh%40bans.com",
"currentPage":{
"items":[
{
"id":"00uag6vugXMeBmXky4x6",
"profile":{
"firstName":"Ansh",
"lastName":"Bans",
"email":"[email protected]",
// ...
},
// ...
}
]
},
// ...
}6.6. Create User
Also, we can create a new user by using the instance method of the UserBuilder interface:
@GetMapping("/createUser")
public User createUser() {
char[] tempPassword = {'P','a','$','$','w','0','r','d'};
User user = UserBuilder.instance()
.setEmail("[email protected]")
.setFirstName("Norman")
.setLastName("Lewis")
.setPassword(tempPassword)
.setActive(true)
.buildAndCreate(client);
return user;
}So, let’s access localhost:8080/createUser and verify new user’s details:
{
"id": "00uauveccPIYxQKUf4x6",
"profile": {
"firstName": "Norman",
"lastName": "Lewis",
"email": "[email protected]"
},
"credentials": {
"password": {},
"emails": [
{
"value": "[email protected]",
"status": "VERIFIED",
"type": "PRIMARY"
}
],
// ...
},
"_links": {
"resetPassword": {
"href": "https://dev-example123.okta.com/api/v1/users/00uauveccPIYxQKUf4x6/lifecycle/reset_password",
"method": "POST"
},
// ...
}
}Similarly, we can perform a range of operations like listing all applications, creating an application, listing all groups, and creating a group.
7. Conclusion
In this quick tutorial, we explored Spring Security with Okta.
First, we set up the Okta developer account with essential configurations. Then, we created a Spring Boot App and configured the application.properties for Spring Security integration with Okta.
Next, we integrated the Okta Spring SDK to manage Okta API. Last, we looked into features like listing all users, searching a user, and creating a user.
