Objective
An efficient search API based on Spring boot which is protected via OAuth2.0. Use OKTA OAuth2.0 Machine2Machine instead of Web based OAuth2.0. The m2m method implements Client Credentials flow and is recommended for server-side (AKA confidential) client applications with no end user, which normally describes machine-to-machine communication.
Additionally build a Boomi based HTTP client that gets authenticated data from the Spring boot API (OPTIONAL)
Example: An internal API (Boomi HTTP client or CURL) calling another third party API (Spring boot) which is secured via OKTA. Your client application/API needs to securely store its Client ID and secret and pass those to Okta in exchange for an access token. At a high-level, the flow only has four steps:
Prequisites
- Basic familiarity with Spring Boot, Postgresql, docker, Boomi, OAuth2 workflows
- Docker host with docker-compose installed and access to Internet
- Boomi Atomsphere account (optional in case you want to spin up the Client API)
Continue reading on GitHub...
Top comments (0)